$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft File: o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft (raw, json) Hash identifier: MNC4zA2RNfhbrrIVyo+AnPvxq3N+ta/PMIwRe7CF4ws= Subject key identifier: B3:91:53:C4:E5:CC:D6:ED:B4:F7:50:11:A7:C8:C4:65:04:F5:91:D2 Authority key identifier: A3:89:E7:03:5B:08:E1:81:A3:41:F3:7E:DA:73:43:D2:3F:1C:AF:A4 Certificate issuer: /CN=a389e7035b08e181a341f37eda7343d23f1cafa4 Certificate serial: 019672663A3620ACF2A88293EDC32FC401ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4nnA1sI4YGjQfN-2nND0j8cr6Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft Manifest number: 143D Signing time: Sat 26 Apr 2025 14:00:24 +0000 Manifest this update: Sat 26 Apr 2025 14:00:24 +0000 Manifest next update: Sun 27 Apr 2025 14:00:24 +0000 Files and hashes: 1: A-6dGixYiVjP5SArd3OOXzF_y94.roa (hash: dHKBVyiR8mv13Z7wTMxDvJhUaTAdj4JJSYSEmomSgRI=) 2: EdyN193XAqCuwUeh3uoqwgMp6YM.roa (hash: aMp83WD7+8DMvO0EZKm2i6yVdt39wHGmWPL1VSmKtjM=) 3: KWzqOLtIWSWtWkByhLp85FW_7rM.roa (hash: +yMm4K7E6517qc0jJ3daW8uChLhsqKi3MVBCXwIyDXI=) 4: ZMT2qJeQlu-C5i0G01EBCNd-g6M.roa (hash: Jul8wggfGDzUNFRFlHhNzs2me0GUF4GTUbIsvxzWDwQ=) 5: adPv80nsAvDoMdbWFhmbQrTYx_c.roa (hash: 4ui5pcCs9o10PJAGBjhy0LQC0IJvn6eEg11QBgbYrhM=) 6: ayrwJOZcqXwPotZkkftDNJvjVWI.roa (hash: u8hehMe3mSy7WRp8JZKZ+vW+iYZYC7RSsKKYne4ZeUk=) 7: dBRyMZmE2MJby6jWlOxwaQP0Xaw.roa (hash: n5MzTBEIB9PdMNKBfe5+OAUwctGrct8tICmAF1a6F9E=) 8: fnuqhATdgk7065LZ-MFpw_mk_Sk.roa (hash: MF0/pFOYDoQu2nRxFXy3gK33SujqFiXhgPkh2E7fsqk=) 9: mPlgxbWD56Le2xy3b_FhRsqSxsc.roa (hash: AfWfwIbPTYGoiVxVmMF6d4mso8lDoU2eXTIxJq7pZSw=) 10: o4nnA1sI4YGjQfN-2nND0j8cr6Q.crl (hash: FHy0cv0ImsiqHlwMS7n5I82FUEsGrUC0iaJkoCq3aTo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft rsync://rpki.ripe.net/repository/DEFAULT/o4nnA1sI4YGjQfN-2nND0j8cr6Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 27 Apr 2025 11:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:72:66:3a:36:20:ac:f2:a8:82:93:ed:c3:2f:c4:01:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a389e7035b08e181a341f37eda7343d23f1cafa4 Validity Not Before: Apr 26 14:00:24 2025 GMT Not After : Apr 27 14:00:24 2025 GMT Subject: CN=b39153c4e5ccd6edb4f75011a7c8c46504f591d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:db:94:d2:3e:a4:46:94:e8:30:67:83:15:b8: dd:8c:9a:bd:1a:39:91:75:5c:a3:24:17:9b:ad:e5: 5c:24:5e:28:c6:fd:70:60:8d:70:44:5c:0f:7e:fa: b9:1a:bd:81:90:88:9f:45:b9:b3:1c:34:68:ec:be: 32:2b:03:96:5c:01:25:7f:39:43:fa:e3:08:a4:d7: 2c:4e:27:86:b8:82:1e:eb:91:1f:b7:e8:3c:f2:b3: b7:d8:09:7a:83:e5:2d:d5:99:e4:95:f9:71:eb:4d: c0:97:5a:0f:c2:79:0b:05:1c:e8:3d:89:24:51:11: 9a:dc:10:be:f1:50:52:61:9e:1c:27:81:21:09:d5: 55:b9:20:e8:9a:30:42:56:7c:5d:c1:90:19:5a:f6: c9:a6:d1:10:c4:d3:83:2b:46:be:8c:0a:2b:95:26: b8:83:2b:51:b3:b1:fa:cf:c3:60:8b:ed:9f:56:5a: 34:1e:ea:d2:fb:31:27:33:c6:ad:64:39:49:83:9d: a3:72:96:1c:dd:61:2c:21:07:39:32:ae:2f:47:fc: bb:52:3a:a1:ac:79:e5:5b:55:28:de:2c:f6:78:bd: 92:05:e3:92:7b:aa:b8:b6:86:0f:c2:75:07:e4:1b: f4:23:d7:10:c2:04:e2:32:7f:82:eb:6b:30:85:1a: 85:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:91:53:C4:E5:CC:D6:ED:B4:F7:50:11:A7:C8:C4:65:04:F5:91:D2 X509v3 Authority Key Identifier: keyid:A3:89:E7:03:5B:08:E1:81:A3:41:F3:7E:DA:73:43:D2:3F:1C:AF:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4nnA1sI4YGjQfN-2nND0j8cr6Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:e5:a2:33:33:80:60:aa:86:68:26:42:36:b5:d9:06:c7:bd: 1c:26:f4:2d:74:64:bb:5f:3c:f4:95:6d:d7:83:bb:0c:dc:9b: 92:b7:1b:43:db:24:f5:fc:42:19:b4:1c:a9:10:92:66:ca:3f: d4:3b:60:3b:89:8c:be:25:9f:c0:76:93:40:5c:f4:70:8f:84: 8d:c8:a7:b5:ed:e8:c8:d8:d9:35:ac:e9:39:08:bd:a8:d3:c1: 6f:06:1f:34:25:2e:d0:4e:4c:b1:71:17:11:a9:22:41:43:51: 41:6d:c3:46:98:48:67:ef:7e:96:a6:32:0f:df:fb:e0:b6:7e: d6:04:c1:1a:c7:4e:0b:26:a9:e3:2f:6f:db:5c:6d:8b:86:5f: c0:f7:c2:6b:88:2a:20:72:f8:a6:d4:71:17:82:34:3d:8f:03: 8f:d6:9b:fc:19:e9:0a:4b:c5:fa:6e:ed:dc:35:89:a4:99:a9: 0c:3a:c1:00:ab:ad:4e:dd:7f:46:41:7c:cc:bf:16:a1:32:ac: b5:ee:9e:2f:f7:45:f2:a7:31:46:27:f9:f9:6f:b1:65:8c:9c: 00:e5:92:4a:3d:ff:1e:78:1f:08:e6:cd:9e:c2:71:c5:cb:e7: 78:5e:62:71:cd:52:29:3a:d0:83:7e:10:7f:f6:f5:f5:8b:c4: 09:68:78:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZZyZjo2IKzyqIKT7cMvxAHtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzODllNzAzNWIwOGUxODFhMzQxZjM3ZWRhNzM0M2QyM2Yx Y2FmYTQwHhcNMjUwNDI2MTQwMDI0WhcNMjUwNDI3MTQwMDI0WjAzMTEwLwYDVQQD EyhiMzkxNTNjNGU1Y2NkNmVkYjRmNzUwMTFhN2M4YzQ2NTA0ZjU5MWQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp9uU0j6kRpToMGeDFbjdjJq9GjmR dVyjJBebreVcJF4oxv1wYI1wRFwPfvq5Gr2BkIifRbmzHDRo7L4yKwOWXAElfzlD +uMIpNcsTieGuIIe65Eft+g88rO32Al6g+Ut1Znklflx603Al1oPwnkLBRzoPYkk URGa3BC+8VBSYZ4cJ4EhCdVVuSDomjBCVnxdwZAZWvbJptEQxNODK0a+jAorlSa4 gytRs7H6z8Ngi+2fVlo0HurS+zEnM8atZDlJg52jcpYc3WEsIQc5Mq4vR/y7Ujqh rHnlW1Uo3iz2eL2SBeOSe6q4toYPwnUH5Bv0I9cQwgTiMn+C62swhRqFLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLORU8TlzNbttPdQEafIxGUE9ZHSMB8GA1UdIwQY MBaAFKOJ5wNbCOGBo0HzftpzQ9I/HK+kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzRubkExc0k0WUdqUWZOLTJuTkQwajhjcjZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9mMDUzY2QtMWQ3OS00M2ExLTlhYWIt MGU3MjQxNmI0ZGM3LzEvbzRubkExc0k0WUdqUWZOLTJuTkQwajhjcjZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9mMDUzY2QtMWQ3OS00M2ExLTlhYWItMGU3MjQxNmI0ZGM3 LzEvbzRubkExc0k0WUdqUWZOLTJuTkQwajhjcjZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAROWiMzOA YKqGaCZCNrXZBse9HCb0LXRku1889JVt14O7DNybkrcbQ9sk9fxCGbQcqRCSZso/ 1DtgO4mMviWfwHaTQFz0cI+Ejcinte3oyNjZNazpOQi9qNPBbwYfNCUu0E5MsXEX EakiQUNRQW3DRphIZ+9+lqYyD9/74LZ+1gTBGsdOCyap4y9v21xti4ZfwPfCa4gq IHL4ptRxF4I0PY8Dj9ab/BnpCkvF+m7t3DWJpJmpDDrBAKutTt1/RkF8zL8WoTKs te6eL/dF8qcxRif5+W+xZYycAOWSSj3/HngfCObNnsJxxcvneF5icc1SKTrQg34Q f/b19YvECWh4uA== -----END CERTIFICATE-----Generated at Sat Apr 26 19:37:08 2025 by rpki-client