$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft File: o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft (raw, json) Hash identifier: VoelC7GNdSFpFdWCKMS8LnFNNVjTrUUR+t4gvV46zU8= Subject key identifier: 5F:CF:CB:6C:D4:A5:4B:6E:A4:FE:EC:EE:D3:C3:EC:9F:C7:F9:A6:33 Authority key identifier: A3:89:E7:03:5B:08:E1:81:A3:41:F3:7E:DA:73:43:D2:3F:1C:AF:A4 Certificate issuer: /CN=a389e7035b08e181a341f37eda7343d23f1cafa4 Certificate serial: 01976D74517DF64023660B859EEE80D868F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4nnA1sI4YGjQfN-2nND0j8cr6Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft Manifest number: 14BF Signing time: Sat 14 Jun 2025 08:00:28 +0000 Manifest this update: Sat 14 Jun 2025 08:00:28 +0000 Manifest next update: Sun 15 Jun 2025 08:00:28 +0000 Files and hashes: 1: A-6dGixYiVjP5SArd3OOXzF_y94.roa (hash: dHKBVyiR8mv13Z7wTMxDvJhUaTAdj4JJSYSEmomSgRI=) 2: EdyN193XAqCuwUeh3uoqwgMp6YM.roa (hash: aMp83WD7+8DMvO0EZKm2i6yVdt39wHGmWPL1VSmKtjM=) 3: KWzqOLtIWSWtWkByhLp85FW_7rM.roa (hash: +yMm4K7E6517qc0jJ3daW8uChLhsqKi3MVBCXwIyDXI=) 4: ZMT2qJeQlu-C5i0G01EBCNd-g6M.roa (hash: Jul8wggfGDzUNFRFlHhNzs2me0GUF4GTUbIsvxzWDwQ=) 5: adPv80nsAvDoMdbWFhmbQrTYx_c.roa (hash: 4ui5pcCs9o10PJAGBjhy0LQC0IJvn6eEg11QBgbYrhM=) 6: ayrwJOZcqXwPotZkkftDNJvjVWI.roa (hash: u8hehMe3mSy7WRp8JZKZ+vW+iYZYC7RSsKKYne4ZeUk=) 7: dBRyMZmE2MJby6jWlOxwaQP0Xaw.roa (hash: n5MzTBEIB9PdMNKBfe5+OAUwctGrct8tICmAF1a6F9E=) 8: fnuqhATdgk7065LZ-MFpw_mk_Sk.roa (hash: MF0/pFOYDoQu2nRxFXy3gK33SujqFiXhgPkh2E7fsqk=) 9: mPlgxbWD56Le2xy3b_FhRsqSxsc.roa (hash: AfWfwIbPTYGoiVxVmMF6d4mso8lDoU2eXTIxJq7pZSw=) 10: o4nnA1sI4YGjQfN-2nND0j8cr6Q.crl (hash: rGKFscfbnUn7NcdJV0zp+BkLUg0dLA6pV9SEk0X8+14=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft rsync://rpki.ripe.net/repository/DEFAULT/o4nnA1sI4YGjQfN-2nND0j8cr6Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Jun 2025 01:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:6d:74:51:7d:f6:40:23:66:0b:85:9e:ee:80:d8:68:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a389e7035b08e181a341f37eda7343d23f1cafa4 Validity Not Before: Jun 14 08:00:28 2025 GMT Not After : Jun 15 08:00:28 2025 GMT Subject: CN=5fcfcb6cd4a54b6ea4feeceed3c3ec9fc7f9a633 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:01:21:57:32:be:2e:8e:d4:27:b4:89:f9:70: e3:09:d9:92:f9:f0:32:22:88:67:0c:1e:15:08:be: 0c:d9:d5:39:6c:3e:4d:9c:a0:8c:f4:ca:f3:6a:df: 27:e9:10:11:f8:51:13:78:c8:71:6c:48:74:d5:a0: 93:b7:ca:df:19:dd:46:1d:e0:ce:55:7f:41:53:d5: ff:e8:57:c1:2f:9a:03:61:96:eb:1c:ba:1e:fe:59: d9:54:9e:c5:95:46:eb:7a:7b:b4:1c:f6:b7:78:11: 0f:f6:7b:a7:bf:5f:5d:e4:52:65:55:ff:1e:94:8d: f3:f6:e5:42:e4:8a:fd:cf:be:b9:f5:67:79:78:50: f2:db:11:d4:49:68:6d:b3:1f:26:5a:d5:37:42:ed: 54:30:67:3b:af:19:44:53:c5:94:bd:8c:66:1d:a5: 1c:6a:45:95:90:be:b3:5e:38:28:b3:04:8d:01:a4: b7:4e:95:ac:ea:53:1e:28:6c:b3:9c:0b:f8:0d:9d: 46:6c:de:77:ab:57:70:38:58:ef:a1:5d:bc:98:15: 71:f2:54:b8:a8:e4:94:22:44:04:a9:58:12:cf:55: 5d:a1:ae:9f:6b:e8:88:aa:ab:04:7e:e0:b1:ee:75: a4:2e:b6:e6:35:7c:5b:b6:14:fc:1a:7a:a4:2f:4f: df:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:CF:CB:6C:D4:A5:4B:6E:A4:FE:EC:EE:D3:C3:EC:9F:C7:F9:A6:33 X509v3 Authority Key Identifier: keyid:A3:89:E7:03:5B:08:E1:81:A3:41:F3:7E:DA:73:43:D2:3F:1C:AF:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4nnA1sI4YGjQfN-2nND0j8cr6Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:78:16:cf:38:fa:2a:b5:76:76:a1:19:49:fa:3b:d8:f6:67: 35:dd:0b:88:c6:18:e7:43:a8:e1:06:09:6d:39:8d:61:d7:c4: 1f:d7:53:27:1d:84:23:94:82:86:66:f0:d1:3e:f6:c2:cf:4d: 95:2e:e7:65:29:8d:bb:98:02:a3:59:be:ef:4d:f4:56:f9:65: ff:33:17:50:ef:56:e2:da:a4:a5:5f:b9:1d:f3:08:c4:70:b0: ca:9a:ab:cd:3a:7a:e5:90:ed:a8:0c:f5:30:40:bb:83:1a:bd: 96:f7:be:17:59:a4:db:c4:10:96:42:ca:cf:2d:ab:a6:2c:7a: 33:18:49:80:45:09:29:64:ae:bd:06:b2:aa:09:61:33:13:8c: 6c:fd:30:bd:af:42:9a:ba:06:88:dd:fd:8d:16:e3:a6:82:17: 38:ce:cc:69:c5:57:50:c8:e1:5a:87:c6:f8:95:3e:e1:7f:1c: 56:dc:9a:aa:11:ca:07:1a:05:7f:f8:6e:e5:b2:16:3f:c2:36: c9:dc:75:e9:1a:76:7c:73:cb:db:5c:f3:8e:b7:fa:f3:23:5f: d3:90:95:60:6a:ca:e9:d8:bd:f9:d5:5a:25:fd:4e:9d:e2:32: 94:88:50:67:2e:fe:b8:2c:0a:39:cd:ee:7c:d6:c0:07:24:a4: f4:79:26:ad -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdtdFF99kAjZguFnu6A2GjwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzODllNzAzNWIwOGUxODFhMzQxZjM3ZWRhNzM0M2QyM2Yx Y2FmYTQwHhcNMjUwNjE0MDgwMDI4WhcNMjUwNjE1MDgwMDI4WjAzMTEwLwYDVQQD Eyg1ZmNmY2I2Y2Q0YTU0YjZlYTRmZWVjZWVkM2MzZWM5ZmM3ZjlhNjMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkQEhVzK+Lo7UJ7SJ+XDjCdmS+fAy IohnDB4VCL4M2dU5bD5NnKCM9Mrzat8n6RAR+FETeMhxbEh01aCTt8rfGd1GHeDO VX9BU9X/6FfBL5oDYZbrHLoe/lnZVJ7FlUbrenu0HPa3eBEP9nunv19d5FJlVf8e lI3z9uVC5Ir9z7659Wd5eFDy2xHUSWhtsx8mWtU3Qu1UMGc7rxlEU8WUvYxmHaUc akWVkL6zXjgoswSNAaS3TpWs6lMeKGyznAv4DZ1GbN53q1dwOFjvoV28mBVx8lS4 qOSUIkQEqVgSz1Vdoa6fa+iIqqsEfuCx7nWkLrbmNXxbthT8GnqkL0/fnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF/Py2zUpUtupP7s7tPD7J/H+aYzMB8GA1UdIwQY MBaAFKOJ5wNbCOGBo0HzftpzQ9I/HK+kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzRubkExc0k0WUdqUWZOLTJuTkQwajhjcjZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9mMDUzY2QtMWQ3OS00M2ExLTlhYWIt MGU3MjQxNmI0ZGM3LzEvbzRubkExc0k0WUdqUWZOLTJuTkQwajhjcjZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9mMDUzY2QtMWQ3OS00M2ExLTlhYWItMGU3MjQxNmI0ZGM3 LzEvbzRubkExc0k0WUdqUWZOLTJuTkQwajhjcjZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJXgWzzj6 KrV2dqEZSfo72PZnNd0LiMYY50Oo4QYJbTmNYdfEH9dTJx2EI5SChmbw0T72ws9N lS7nZSmNu5gCo1m+7030Vvll/zMXUO9W4tqkpV+5HfMIxHCwypqrzTp65ZDtqAz1 MEC7gxq9lve+F1mk28QQlkLKzy2rpix6MxhJgEUJKWSuvQayqglhMxOMbP0wva9C mroGiN39jRbjpoIXOM7MacVXUMjhWofG+JU+4X8cVtyaqhHKBxoFf/hu5bIWP8I2 ydx16Rp2fHPL21zzjrf68yNf05CVYGrK6di9+dVaJf1OneIylIhQZy7+uCwKOc3u fNbABySk9HkmrQ== -----END CERTIFICATE-----Generated at Sat Jun 14 10:47:46 2025 by rpki-client