$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft File: OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft (raw, json) Hash identifier: eMgYwWKWxqUFR+nGTY2pE1LW0wmXfikdtKiflIkeDAM= Subject key identifier: AD:EE:42:05:70:43:07:5F:8C:6B:54:6B:F9:E5:05:45:42:C0:78:49 Authority key identifier: 38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 Certificate issuer: /CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Certificate serial: 0196794457C06FF2C30C4682A4A392D1190F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft Manifest number: 151F Signing time: Sun 27 Apr 2025 22:00:43 +0000 Manifest this update: Sun 27 Apr 2025 22:00:43 +0000 Manifest next update: Mon 28 Apr 2025 22:00:43 +0000 Files and hashes: 1: 3nAxOrqe3oi83iVjt7-kMzJ_imI.roa (hash: 0jNIl4uBhcm5LdIuubw+L/Ha2QMXka6zLLkNeAcF40c=) 2: 7B2j1343QblR9F6iTWiRinHn8x0.roa (hash: Bp/dbOZRIjunqnEsDuN3X0tRwg1SKVjgcGEA09U24Zc=) 3: B9dwnbBbiJenj05UDjyUy_TzXDg.roa (hash: s4Wv5YaGEZaX82N6dusRWR3tSJBVmvjmxniLSHfxYAE=) 4: E6umy5_OlHHb3NOgNKiaqTj372A.roa (hash: kmYIRPqCRch39x2r6WhmK+8aDVBlwYVLvzQIGAbOPps=) 5: MP0FknZx-rt-jXqxm1yu7mNghjg.roa (hash: 0IVLTHz5qrQC3E0s/+3I0aF+dTWKqMK9+O5p+t6rJac=) 6: OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl (hash: V/SPaRgUtXoVZfOBFGztTG7SXwBU4sNbKSasV3q221I=) 7: P0hYRZk_epkkwrcDiaxk_ejd9pE.roa (hash: RbP7Hj7hNb6SHmHJtPw1bzOEo2w8Ign3eKIaXKeZWz8=) 8: SOBAES4j7h-D6nKfccoc2NpSr8A.roa (hash: vmAKmT6VUkF1cozh164hgKJKVk8BJXYwDbwibYkkVy4=) 9: WBa-OMWvS5R9EiWcpIqPa_m7lKo.roa (hash: JhWDx8KAw0uX/VJGQRKzvoZLcAnbsOAM+D0EwwgJJrs=) 10: _6ucnx77KQFalvj5yEE2wp5osls.roa (hash: Xw55WCSv/8tmiRj4/KKvZ6v3swmB6TKO4qL1Xw6aI30=) 11: hmNo0lfF6aVfLa7MkqmEKjtbdyQ.roa (hash: +xwhsq1RdvJOWfeJtHcoWSMc+U0UkSWEqMUWf9xz80w=) 12: jtw47htspCaZBqLn-szAwwLDgRI.roa (hash: 4ge4ZfZPpCPnlsJ6k5nbKp3z9nIWCai+fnrSIWJ/WUA=) 13: jzrvK-bgXnpFKZtkluSwDEQbp08.roa (hash: ZM3tthCJVaSjXclzoJDdeWjLh7O5ICpnIBuMTiMEL9g=) 14: nDB6bqiXy-rzhdku9Lj005kPHfA.roa (hash: 0AJR+PurXnO7T0pJNk8Tq3MFQx7X/cSxW3eCAXJvtLk=) 15: pvCC0r4LUt3fsl1VHVQdfXh8Y18.roa (hash: 7j0tvWV4dVH4uAAkH8k/IyIqfSMk5UZQp8CnBxjMpFY=) 16: u50dx3Lab1g7VZDVh4T56LPcn_0.roa (hash: jDquIHZmp2NFyWqEfhpXVj8qaJ2TUhubdI3kfdM2qms=) 17: z5q48ktpf1eARPpbmIGK9GsvsrQ.roa (hash: tmWASzkDn54AHUg2VFq+szTIlcEFXE4zmXDoc40cFbw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 28 Apr 2025 22:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:79:44:57:c0:6f:f2:c3:0c:46:82:a4:a3:92:d1:19:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Validity Not Before: Apr 27 22:00:43 2025 GMT Not After : Apr 28 22:00:43 2025 GMT Subject: CN=adee42057043075f8c6b546bf9e5054542c07849 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:13:2c:82:40:bc:1b:b8:84:ba:5d:8a:94:7b: 9f:37:09:97:75:a1:7e:83:52:2c:c9:89:ab:b9:a2: 1f:ce:1d:e7:1a:a4:c5:cb:88:f5:a1:c9:8d:d6:70: 8b:77:29:9f:c6:db:86:00:4d:d2:3f:63:e5:2a:b1: b4:e2:a0:07:c0:9b:20:a5:d1:17:c1:ae:31:03:2d: e0:87:09:cd:f6:35:91:05:ee:39:bd:45:5b:63:08: bf:e4:19:63:e3:48:6f:dd:c9:18:3b:89:22:15:20: b3:5f:a8:f3:80:a8:03:fd:5d:e7:31:83:b0:90:8b: 4b:7b:01:7c:c8:10:a0:11:72:36:b0:24:e9:63:7f: 35:39:61:61:29:cc:d7:a0:ac:a9:01:18:92:2d:9b: 39:2b:1c:4d:95:14:7a:5d:17:c4:46:0a:4c:10:38: 63:86:57:6e:fe:67:b1:25:be:2c:ee:53:4e:81:f9: e5:03:29:c3:c5:e6:3a:30:00:75:2f:26:a5:62:30: cf:14:90:5b:ea:5a:70:8f:d0:cc:96:89:dc:9b:5f: 9b:58:b6:ed:86:64:86:9a:84:f0:19:da:f9:21:ec: fb:35:b7:dd:b6:ca:30:ad:55:78:0d:5c:40:c7:24: 23:6d:27:dc:87:8d:c7:20:f8:69:7f:17:2d:c6:fb: 74:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:EE:42:05:70:43:07:5F:8C:6B:54:6B:F9:E5:05:45:42:C0:78:49 X509v3 Authority Key Identifier: keyid:38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:21:36:f1:a4:34:05:84:fa:f8:6c:06:68:56:c1:fc:19:ee: 77:b7:15:01:95:25:31:07:ec:d5:12:ea:7e:9f:87:a0:54:81: a4:ac:ab:2e:99:34:28:5b:ac:53:89:7e:a3:20:94:e3:5b:9c: 5e:da:f5:74:e4:ef:bd:bd:39:19:d4:07:a2:5c:c8:17:3a:9e: 38:ab:0e:55:96:c7:f3:86:fb:10:ec:2a:d7:b2:07:32:bb:a2: c4:bd:dd:cf:d5:a9:4c:e2:9d:95:8a:6a:ef:b2:a4:2a:51:df: 35:b0:4f:d3:0b:0f:58:5c:c3:86:34:0e:29:f4:09:16:0c:8f: 47:92:ff:ae:b4:f8:a8:b6:12:4b:dc:a5:45:aa:39:37:19:7d: 6b:51:13:f3:b3:92:ed:83:0c:db:30:fb:12:62:97:a6:f4:7e: b4:9e:c6:93:b8:2f:78:70:37:97:a5:9b:51:f2:19:12:1c:3f: 6d:07:5e:7c:28:d9:5e:31:c1:7a:22:3f:58:be:17:12:98:10: 88:18:c1:ac:fd:1b:c9:57:9f:0f:a5:f0:1d:a7:f0:00:44:d2: 39:09:43:87:7c:1b:00:2c:66:d0:20:94:47:68:2d:3c:f6:fe: f2:f8:cd:2f:11:17:d9:f7:c7:23:f3:4e:83:c3:86:da:d6:aa: 8d:26:79:9f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZZ5RFfAb/LDDEaCpKOS0RkPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4N2Q2ZGY3ZWI3NTQyZTAzMzNhZWVkZDE0YWRmZjhmNTFm OGNiZDgwHhcNMjUwNDI3MjIwMDQzWhcNMjUwNDI4MjIwMDQzWjAzMTEwLwYDVQQD EyhhZGVlNDIwNTcwNDMwNzVmOGM2YjU0NmJmOWU1MDU0NTQyYzA3ODQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8xMsgkC8G7iEul2KlHufNwmXdaF+ g1IsyYmruaIfzh3nGqTFy4j1ocmN1nCLdymfxtuGAE3SP2PlKrG04qAHwJsgpdEX wa4xAy3ghwnN9jWRBe45vUVbYwi/5Blj40hv3ckYO4kiFSCzX6jzgKgD/V3nMYOw kItLewF8yBCgEXI2sCTpY381OWFhKczXoKypARiSLZs5KxxNlRR6XRfERgpMEDhj hldu/mexJb4s7lNOgfnlAynDxeY6MAB1LyalYjDPFJBb6lpwj9DMloncm1+bWLbt hmSGmoTwGdr5Iez7NbfdtsowrVV4DVxAxyQjbSfch43HIPhpfxctxvt04wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK3uQgVwQwdfjGtUa/nlBUVCwHhJMB8GA1UdIwQY MBaAFDh9bffrdULgMzru3RSt/49R+MvYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2Mt NjA5YTQ4YjJiMTRkLzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2MtNjA5YTQ4YjJiMTRk LzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmiE28aQ0 BYT6+GwGaFbB/Bnud7cVAZUlMQfs1RLqfp+HoFSBpKyrLpk0KFusU4l+oyCU41uc Xtr1dOTvvb05GdQHolzIFzqeOKsOVZbH84b7EOwq17IHMruixL3dz9WpTOKdlYpq 77KkKlHfNbBP0wsPWFzDhjQOKfQJFgyPR5L/rrT4qLYSS9ylRao5Nxl9a1ET87OS 7YMM2zD7EmKXpvR+tJ7Gk7gveHA3l6WbUfIZEhw/bQdefCjZXjHBeiI/WL4XEpgQ iBjBrP0byVefD6XwHafwAETSOQlDh3wbACxm0CCUR2gtPPb+8vjNLxEX2ffHI/NO g8OG2taqjSZ5nw== -----END CERTIFICATE-----Generated at Mon Apr 28 08:09:57 2025 by rpki-client