$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft File: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft (raw, json) Hash identifier: pO6hnyhkjzLju0hjE1fboW0/3+Z8NqIqXZ6mTCzP1eY= Subject key identifier: 10:DF:08:61:65:C7:9C:E2:A5:89:F6:F2:9A:A3:9F:5E:E9:6A:95:7F Authority key identifier: F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 Certificate issuer: /CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Certificate serial: 7EF457D98321D43F25EEC8418DDFCFB1D87D6357 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft Manifest number: D4 Signing time: Sun 27 Apr 2025 09:42:40 +0000 Manifest this update: Sun 27 Apr 2025 09:37:40 +0000 Manifest next update: Mon 28 Apr 2025 13:09:40 +0000 Files and hashes: 1: 326131343a373538303a663330303a3a2f34302d3430203d3e20323135343730.roa (hash: NYjufeU5nji5tNLR9669xX3/zAC6IxnZWFE8KHjLm6Y=) 2: 326131343a373538303a343030303a3a2f33362d3336203d3e20323133343238.roa (hash: f38GGJwA8aLs49rknYyp3/ozCmX5eTGnavOZGUBAqUw=) 3: 326131343a373538303a383030303a3a2f33362d3438203d3e20323135343730.roa (hash: ibb68AQAVWJMES3NYRBIOdUeHnGKp+tFUocAxCKgPEU=) 4: 326131343a373538303a663333303a3a2f34342d3438203d3e20323134303330.roa (hash: E8taggS6sI4q0LKjH6/GmLcIK3Cj0Fw4lwLi8ILdzT4=) 5: 326131343a373538303a363030303a3a2f33362d3438203d3e20323039353534.roa (hash: 7bwiHUB+0vEKFxOfRTRz/zFRAxgK1WxBsECd2SJxocI=) 6: 326131343a373538303a663331303a3a2f34342d3438203d3e20323134303834.roa (hash: 7Ht9ysaUQlknniITxiGGZVb7FReUYStDZL1yen2prNE=) 7: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl (hash: 6pED9S/pIZK3pgb/k4XLq7GfTO06nQvnBdaqnbXVguQ=) 8: 326131343a373538303a663334303a3a2f34342d3438203d3e20323133343238.roa (hash: Z7InVHvKI4/fqGkdwdL0zl1WS4Iyc09xlEsVxaD8p5A=) 9: 326131343a373538303a663332303a3a2f34342d3434203d3e20323135343730.roa (hash: XgYHMfBb1tBckmqvYy7acYD3hSj36S+vN34vUn5oaD4=) 10: 326131343a373538303a663330313a3a2f34382d3438203d3e20323135343730.roa (hash: GyqnDZwlRU44RSAJS6AmGof5uxXXmzhkRtpFSrxG7Nw=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 28 Apr 2025 07:29:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:f4:57:d9:83:21:d4:3f:25:ee:c8:41:8d:df:cf:b1:d8:7d:63:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Validity Not Before: Apr 27 09:37:40 2025 GMT Not After : Apr 28 13:09:40 2025 GMT Subject: CN=10DF086165C79CE2A589F6F29AA39F5EE96A957F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:53:12:d1:2c:82:c2:d5:8e:fa:74:b5:d0:52: 84:03:42:12:21:f5:79:ad:d7:d4:33:e7:92:5f:67: ce:08:a0:c3:4b:b4:06:f9:e0:c4:a3:94:71:57:55: 1d:c5:6d:06:29:45:1a:e2:fb:69:87:da:fb:ea:4e: de:d1:e6:7f:db:d4:47:2a:3e:53:c1:92:d2:82:6b: 27:d6:b0:dc:76:8f:69:1d:40:91:a2:ae:54:a5:04: 2f:ce:b8:a9:65:5f:e7:54:11:13:03:70:4d:0d:b0: 92:d2:4b:37:b1:77:05:41:33:e3:2f:f6:ef:5e:8b: 1e:bc:db:e5:e3:85:b9:ac:3b:71:5c:96:29:eb:33: ab:1c:3d:ed:85:21:ed:b5:43:01:3f:2b:8b:36:03: ba:a6:d0:e8:8e:22:b0:2c:e0:24:ef:13:13:5d:fd: a6:47:78:e8:8f:15:01:3b:85:d8:15:a6:a2:d7:19: 1a:3c:42:73:d0:57:ff:83:ac:f3:b5:25:fe:6d:4a: ad:a0:07:55:51:91:10:76:23:80:6f:f3:06:28:6b: 04:0b:a1:6a:db:76:f4:1e:5c:87:35:b3:ec:a3:a4: 21:c2:6f:61:ab:d3:68:19:0a:f9:f6:14:b0:6e:f1: 9b:a5:75:2d:12:b3:1d:62:77:fe:19:87:21:bc:83: ea:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:DF:08:61:65:C7:9C:E2:A5:89:F6:F2:9A:A3:9F:5E:E9:6A:95:7F X509v3 Authority Key Identifier: keyid:F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:d1:6a:f4:7a:1e:92:4a:b7:aa:2a:16:53:93:95:c4:f2:22: b3:1b:49:f5:15:da:c2:a4:87:6b:33:c6:99:12:af:00:2f:c7: 52:33:f4:3c:a6:68:26:c4:d9:e9:20:c3:af:9f:f9:cd:ce:2b: ca:b6:b6:af:52:17:8b:ca:40:54:33:fa:90:cc:10:ee:e2:3d: d0:40:3a:5e:2d:f6:d0:55:ed:0d:cd:f0:a3:10:9c:cc:1a:c6: 0a:b3:b5:83:c1:cc:6b:be:e5:87:aa:6a:13:0f:96:ee:02:7f: 00:a5:e0:10:5f:47:b6:f8:7b:06:76:c1:3e:f0:f5:c2:93:37: 5a:89:ea:5d:e6:be:89:07:1d:75:59:8a:aa:3e:81:a4:70:cf: a5:60:48:8c:42:7a:4d:a0:92:4e:bf:ce:84:20:54:ed:b5:ca: 04:af:87:a4:4a:98:53:80:05:33:dd:dd:1b:51:d1:1a:3b:b2: 10:84:fc:dd:6e:13:ac:dd:a5:06:8b:74:17:aa:fc:4e:c7:99: b0:0b:e2:f5:bc:90:71:f2:a4:ba:e8:45:de:e3:d6:58:5c:8e: e7:c2:45:f3:0e:f4:56:22:60:b8:43:80:5c:78:66:52:e5:98: 62:fa:b4:9c:c9:00:87:7e:75:ae:1c:98:53:95:ba:08:a0:10: 51:34:c6:18 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUfvRX2YMh1D8l7shBjd/Psdh9Y1cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENG OTM5RjRGNDAeFw0yNTA0MjcwOTM3NDBaFw0yNTA0MjgxMzA5NDBaMDMxMTAvBgNV BAMTKDEwREYwODYxNjVDNzlDRTJBNTg5RjZGMjlBQTM5RjVFRTk2QTk1N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoUxLRLILC1Y76dLXQUoQDQhIh 9Xmt19Qz55JfZ84IoMNLtAb54MSjlHFXVR3FbQYpRRri+2mH2vvqTt7R5n/b1Ecq PlPBktKCayfWsNx2j2kdQJGirlSlBC/OuKllX+dUERMDcE0NsJLSSzexdwVBM+Mv 9u9eix682+XjhbmsO3FclinrM6scPe2FIe21QwE/K4s2A7qm0OiOIrAs4CTvExNd /aZHeOiPFQE7hdgVpqLXGRo8QnPQV/+DrPO1Jf5tSq2gB1VRkRB2I4Bv8wYoawQL oWrbdvQeXIc1s+yjpCHCb2Gr02gZCvn2FLBu8ZuldS0Ssx1id/4ZhyG8g+qTAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUEN8IYWXHnOKlifbymqOfXulqlX8wHwYDVR0j BBgwFoAU9ABy/9wPGxWmnlvHmi9YjPk59PQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTlhYTlkYTctZjFlNC00ZDk4LWJmOTUtOWZkZmNmNDQ4 Zjc3LzAvRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENGOTM5RjRGNC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GNDAwNzJGRkRDMEYxQjE1QTY5RTVCQzc5 QTJGNTg4Q0Y5MzlGNEY0LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzE5YWE5ZGE3LWYxZTQtNGQ5OC1iZjk1LTlmZGZjZjQ0OGY3Ny8wL0Y0MDA3MkZG REMwRjFCMTVBNjlFNUJDNzlBMkY1ODhDRjkzOUY0RjQubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBj0Wr0 eh6SSreqKhZTk5XE8iKzG0n1FdrCpIdrM8aZEq8AL8dSM/Q8pmgmxNnpIMOvn/nN zivKtravUheLykBUM/qQzBDu4j3QQDpeLfbQVe0NzfCjEJzMGsYKs7WDwcxrvuWH qmoTD5buAn8ApeAQX0e2+HsGdsE+8PXCkzdaiepd5r6JBx11WYqqPoGkcM+lYEiM QnpNoJJOv86EIFTttcoEr4ekSphTgAUz3d0bUdEaO7IQhPzdbhOs3aUGi3QXqvxO x5mwC+L1vJBx8qS66EXe49ZYXI7nwkXzDvRWImC4Q4BceGZS5Zhi+rScyQCHfnWu HJhTlboIoBBRNMYY -----END CERTIFICATE-----Generated at Sun Apr 27 17:24:58 2025 by rpki-client