$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft File: OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft (raw, json) Hash identifier: 7uZleRJbD0GMvV+dJCMlR26gIfExO6o31852AYwXjxM= Subject key identifier: FE:69:05:F4:93:69:42:6C:A0:B6:F6:30:A6:97:82:3C:B2:F9:2E:44 Authority key identifier: 38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 Certificate issuer: /CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Certificate serial: 01976C98DBFB97A196DCF165F42A98F1B6BD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft Manifest number: 159D Signing time: Sat 14 Jun 2025 04:00:46 +0000 Manifest this update: Sat 14 Jun 2025 04:00:46 +0000 Manifest next update: Sun 15 Jun 2025 04:00:46 +0000 Files and hashes: 1: 3nAxOrqe3oi83iVjt7-kMzJ_imI.roa (hash: 0jNIl4uBhcm5LdIuubw+L/Ha2QMXka6zLLkNeAcF40c=) 2: 7B2j1343QblR9F6iTWiRinHn8x0.roa (hash: Bp/dbOZRIjunqnEsDuN3X0tRwg1SKVjgcGEA09U24Zc=) 3: B9dwnbBbiJenj05UDjyUy_TzXDg.roa (hash: s4Wv5YaGEZaX82N6dusRWR3tSJBVmvjmxniLSHfxYAE=) 4: E6umy5_OlHHb3NOgNKiaqTj372A.roa (hash: kmYIRPqCRch39x2r6WhmK+8aDVBlwYVLvzQIGAbOPps=) 5: MP0FknZx-rt-jXqxm1yu7mNghjg.roa (hash: 0IVLTHz5qrQC3E0s/+3I0aF+dTWKqMK9+O5p+t6rJac=) 6: OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl (hash: f1TJxe/W1KNLUUEe4JQJ/4z230P14K2VVVfGFWWREFk=) 7: P0hYRZk_epkkwrcDiaxk_ejd9pE.roa (hash: RbP7Hj7hNb6SHmHJtPw1bzOEo2w8Ign3eKIaXKeZWz8=) 8: SOBAES4j7h-D6nKfccoc2NpSr8A.roa (hash: vmAKmT6VUkF1cozh164hgKJKVk8BJXYwDbwibYkkVy4=) 9: WBa-OMWvS5R9EiWcpIqPa_m7lKo.roa (hash: JhWDx8KAw0uX/VJGQRKzvoZLcAnbsOAM+D0EwwgJJrs=) 10: _6ucnx77KQFalvj5yEE2wp5osls.roa (hash: Xw55WCSv/8tmiRj4/KKvZ6v3swmB6TKO4qL1Xw6aI30=) 11: hmNo0lfF6aVfLa7MkqmEKjtbdyQ.roa (hash: +xwhsq1RdvJOWfeJtHcoWSMc+U0UkSWEqMUWf9xz80w=) 12: jtw47htspCaZBqLn-szAwwLDgRI.roa (hash: 4ge4ZfZPpCPnlsJ6k5nbKp3z9nIWCai+fnrSIWJ/WUA=) 13: jzrvK-bgXnpFKZtkluSwDEQbp08.roa (hash: ZM3tthCJVaSjXclzoJDdeWjLh7O5ICpnIBuMTiMEL9g=) 14: nDB6bqiXy-rzhdku9Lj005kPHfA.roa (hash: 0AJR+PurXnO7T0pJNk8Tq3MFQx7X/cSxW3eCAXJvtLk=) 15: pvCC0r4LUt3fsl1VHVQdfXh8Y18.roa (hash: 7j0tvWV4dVH4uAAkH8k/IyIqfSMk5UZQp8CnBxjMpFY=) 16: u50dx3Lab1g7VZDVh4T56LPcn_0.roa (hash: jDquIHZmp2NFyWqEfhpXVj8qaJ2TUhubdI3kfdM2qms=) 17: z5q48ktpf1eARPpbmIGK9GsvsrQ.roa (hash: tmWASzkDn54AHUg2VFq+szTIlcEFXE4zmXDoc40cFbw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Jun 2025 01:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:6c:98:db:fb:97:a1:96:dc:f1:65:f4:2a:98:f1:b6:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Validity Not Before: Jun 14 04:00:46 2025 GMT Not After : Jun 15 04:00:46 2025 GMT Subject: CN=fe6905f49369426ca0b6f630a697823cb2f92e44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:34:ee:68:fc:50:62:c0:ca:e8:31:cf:2a:25: 50:f8:b1:8f:f2:3a:1e:e6:eb:e9:d7:fd:67:09:a6: 4f:3c:84:72:15:e7:21:bd:2a:1e:a6:de:6e:02:e4: 11:c7:dd:12:e4:2c:91:33:8d:40:39:56:49:e9:4a: a4:d5:64:c4:5f:42:07:51:91:78:9e:c4:bd:72:ee: cb:eb:7f:de:3a:28:5c:f6:21:e1:c4:d4:6e:7d:10: 44:ac:3d:0a:ff:8e:ee:9f:07:3f:ba:39:79:7c:c2: a1:96:ed:9b:22:fe:43:ac:85:f1:df:7d:e1:31:7d: ce:23:8a:55:ab:ff:52:27:84:2b:ca:55:f1:1e:00: a7:cc:d3:26:f3:54:4d:01:cb:8d:31:8e:a6:f6:52: 99:17:16:a2:a9:d3:66:b0:75:73:7d:03:2a:43:97: 3c:ad:d4:2c:13:bd:e1:60:e3:db:12:2e:9a:12:2f: ea:35:5c:d8:95:80:96:74:3d:80:63:5c:59:a5:0e: 95:06:25:5b:73:a7:f9:f9:20:8a:25:78:01:4b:7c: 63:e2:0d:6f:f6:92:6a:95:1a:fc:31:ff:7c:93:8d: f7:65:df:2b:3c:eb:e8:ea:b3:a2:ad:2e:56:80:6e: 96:7c:69:81:3b:bc:a9:ad:46:11:b7:45:d1:54:37: f2:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:69:05:F4:93:69:42:6C:A0:B6:F6:30:A6:97:82:3C:B2:F9:2E:44 X509v3 Authority Key Identifier: keyid:38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:ec:59:e3:f1:94:41:fa:2c:a4:46:17:6d:ea:d8:70:e6:e2: d3:48:17:7e:5f:04:38:c3:d2:8b:14:4b:e5:52:34:0e:43:ba: f8:33:7e:e4:b9:e3:61:18:e1:34:e8:a9:56:cd:86:19:4c:dc: d9:e9:cf:46:29:08:ea:93:75:d2:fb:97:26:da:39:18:5e:31: ac:14:1e:19:e7:ca:87:58:b5:58:a8:00:15:fa:e4:bf:63:f0: fb:f3:59:c6:6e:af:35:3c:8f:f2:cc:41:5a:99:12:2e:a0:6e: b0:02:01:bb:e8:cf:ef:9d:29:d4:38:9d:e9:40:71:c9:82:83: 1f:d7:f8:ef:70:82:37:db:83:12:61:81:30:7a:1c:a0:c3:11: 8d:20:52:82:48:66:ee:50:69:ca:b8:1f:66:7a:bf:e0:5d:16: 7e:cf:e2:88:c7:db:92:5a:a5:d4:96:49:89:ab:ba:cb:3b:6e: 35:4e:62:08:c1:fa:2b:95:9c:94:b0:c0:74:41:99:98:cc:52: b6:92:e7:0f:cc:27:55:04:a9:3a:91:d1:f6:cd:b8:6b:dc:72: d1:4a:da:ac:d9:59:4a:12:1b:fe:b6:c1:b9:c1:8e:90:12:7b: 3f:9d:b2:07:89:52:02:03:67:1f:0f:99:c3:ca:1d:26:0c:77: c1:07:ca:15 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdsmNv7l6GW3PFl9CqY8ba9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4N2Q2ZGY3ZWI3NTQyZTAzMzNhZWVkZDE0YWRmZjhmNTFm OGNiZDgwHhcNMjUwNjE0MDQwMDQ2WhcNMjUwNjE1MDQwMDQ2WjAzMTEwLwYDVQQD EyhmZTY5MDVmNDkzNjk0MjZjYTBiNmY2MzBhNjk3ODIzY2IyZjkyZTQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAljTuaPxQYsDK6DHPKiVQ+LGP8joe 5uvp1/1nCaZPPIRyFechvSoept5uAuQRx90S5CyRM41AOVZJ6Uqk1WTEX0IHUZF4 nsS9cu7L63/eOihc9iHhxNRufRBErD0K/47unwc/ujl5fMKhlu2bIv5DrIXx333h MX3OI4pVq/9SJ4QrylXxHgCnzNMm81RNAcuNMY6m9lKZFxaiqdNmsHVzfQMqQ5c8 rdQsE73hYOPbEi6aEi/qNVzYlYCWdD2AY1xZpQ6VBiVbc6f5+SCKJXgBS3xj4g1v 9pJqlRr8Mf98k433Zd8rPOvo6rOirS5WgG6WfGmBO7yprUYRt0XRVDfyzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP5pBfSTaUJsoLb2MKaXgjyy+S5EMB8GA1UdIwQY MBaAFDh9bffrdULgMzru3RSt/49R+MvYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2Mt NjA5YTQ4YjJiMTRkLzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2MtNjA5YTQ4YjJiMTRk LzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI+xZ4/GU QfospEYXberYcObi00gXfl8EOMPSixRL5VI0DkO6+DN+5LnjYRjhNOipVs2GGUzc 2enPRikI6pN10vuXJto5GF4xrBQeGefKh1i1WKgAFfrkv2Pw+/NZxm6vNTyP8sxB WpkSLqBusAIBu+jP750p1Did6UBxyYKDH9f473CCN9uDEmGBMHocoMMRjSBSgkhm 7lBpyrgfZnq/4F0Wfs/iiMfbklql1JZJiau6yztuNU5iCMH6K5WclLDAdEGZmMxS tpLnD8wnVQSpOpHR9s24a9xy0UrarNlZShIb/rbBucGOkBJ7P52yB4lSAgNnHw+Z w8odJgx3wQfKFQ== -----END CERTIFICATE-----Generated at Sat Jun 14 09:09:15 2025 by rpki-client