$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft File: 7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft (raw, json) Hash identifier: HwxBT65OsbG7vF4JV9KqfyjhHIdmB0CfqIh8R586dUA= Subject key identifier: 6B:30:D6:88:33:C8:3E:DD:8B:8C:93:5F:88:69:05:FF:FE:C3:90:FA Authority key identifier: 7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85 Certificate issuer: /CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985 Certificate serial: 571FE792FB8539A0BDA68D712FDC74BCF3FE1DEC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft Manifest number: 49 Signing time: Sun 27 Apr 2025 23:28:23 +0000 Manifest this update: Sun 27 Apr 2025 23:23:23 +0000 Manifest next update: Tue 29 Apr 2025 02:28:23 +0000 Files and hashes: 1: 326130393a626534303a323830303a3a2f34302d3438203d3e20313939393530.roa (hash: AiP13DNBwIkSFzdQdSir0FYGd4okcKOcyfxhs/nt0mM=) 2: 326130653a666434353a326630303a3a2f34382d3438203d3e20323132393636.roa (hash: fCahoT0DASmE4L0CnNku4FHnUTfBEMsJKaoRBnEvKJY=) 3: 326130393a626534303a323830303a3a2f34302d3438203d3e20323133313730.roa (hash: bGsR+5RlWB67shIeVpz1QNwpCAPKyIXgoOV7T0RQXx8=) 4: 7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl (hash: 5VW54Pz52HJoenmOHSCbK53VQ0dDxE6t7XqvFMg9Bjg=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 28 Apr 2025 23:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:1f:e7:92:fb:85:39:a0:bd:a6:8d:71:2f:dc:74:bc:f3:fe:1d:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985 Validity Not Before: Apr 27 23:23:23 2025 GMT Not After : Apr 29 02:28:23 2025 GMT Subject: CN=6B30D68833C83EDD8B8C935F886905FFFEC390FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:02:b0:4f:7d:91:96:ce:55:b0:d0:a9:f5:53: f6:5d:3c:93:9d:d4:d7:0d:fa:72:84:8c:97:95:9f: 08:2b:7e:a9:90:d7:cb:17:3c:38:e1:36:eb:d9:fa: f5:00:e5:4e:46:fe:20:ac:68:12:e1:cb:4d:fd:77: c2:23:8c:a9:2a:b2:d7:29:cd:6f:e7:17:e7:4f:25: 5e:a7:f3:a0:3a:8b:09:0b:e1:94:da:1f:5c:85:fd: 7d:96:f0:a8:04:bb:94:d3:d1:fc:53:ce:95:bc:37: cc:e7:8b:93:7c:42:56:8c:fe:b0:8b:d4:e7:fd:8e: 5c:f8:40:6c:96:f2:c7:62:d1:ca:7f:53:6a:ab:08: 0e:20:58:ac:e1:b8:05:9d:d9:9d:81:c3:bc:b5:8c: 9f:3a:0c:0b:53:11:7d:d9:d5:d2:fd:05:0b:bc:9e: b4:be:2d:29:95:95:85:e4:4d:aa:c0:70:8e:50:97: f2:db:0c:9c:01:06:56:07:b9:a8:84:2b:a4:f1:62: fd:88:b2:60:79:17:b0:47:42:f2:fc:fa:61:11:16: 57:73:06:07:6a:24:e0:07:c3:9b:52:ae:b4:78:ec: d0:b5:39:fb:b8:0d:2e:e2:2d:66:7b:3c:e1:f8:2f: 47:0d:26:3c:1c:41:62:8d:2d:40:f2:fe:41:58:d8: d2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:30:D6:88:33:C8:3E:DD:8B:8C:93:5F:88:69:05:FF:FE:C3:90:FA X509v3 Authority Key Identifier: keyid:7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:37:38:26:fe:d0:95:2f:f5:58:77:05:93:6f:d5:b9:90:8f: e5:94:06:31:91:90:71:04:c7:56:73:be:71:79:51:4b:29:63: 9f:d5:05:71:ac:bc:96:aa:b1:bf:bf:af:9c:c4:ce:91:5b:f5: cb:1b:71:f8:a4:8b:51:2f:03:2f:80:05:17:f6:22:22:a3:88: c0:5f:20:08:94:68:76:74:35:31:7f:7d:11:49:6b:97:bf:bf: ff:a2:2f:5c:06:61:d0:64:da:0b:5f:ef:a0:71:a4:8f:07:cf: ae:75:f5:ab:02:e6:95:e3:e4:95:11:2f:77:ea:0b:92:80:f1: 85:e1:a8:1c:99:61:73:5b:69:c9:22:22:20:c5:ec:ad:b0:06: 1b:5c:63:04:5f:fe:1c:6c:16:e0:4c:3a:08:83:8b:74:e9:10: 4f:cc:3b:4f:da:ca:1d:87:ae:b9:75:45:e8:aa:a5:26:ea:dd: af:87:58:69:55:c7:5a:12:c3:5d:5b:36:9e:68:2b:59:1b:18: 64:8a:85:99:a3:8e:f5:21:e1:cc:ac:89:09:e2:67:e0:ba:9e: 60:6e:b9:85:b6:0d:1b:ab:46:fd:6b:cc:25:63:ff:a5:89:f4: 3e:e6:e9:97:1d:b2:d2:6b:f2:ee:d6:17:c4:53:89:a7:db:28: 76:ac:c8:95 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUVx/nkvuFOaC9po1xL9x0vPP+HewwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN2YyMTZmNDlhM2I5YTg0YTBlODVlODBhMmM0Mjg3NGYw OWVhMzk4NTAeFw0yNTA0MjcyMzIzMjNaFw0yNTA0MjkwMjI4MjNaMDMxMTAvBgNV BAMTKDZCMzBENjg4MzNDODNFREQ4QjhDOTM1Rjg4NjkwNUZGRkVDMzkwRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoArBPfZGWzlWw0Kn1U/ZdPJOd 1NcN+nKEjJeVnwgrfqmQ18sXPDjhNuvZ+vUA5U5G/iCsaBLhy039d8IjjKkqstcp zW/nF+dPJV6n86A6iwkL4ZTaH1yF/X2W8KgEu5TT0fxTzpW8N8zni5N8QlaM/rCL 1Of9jlz4QGyW8sdi0cp/U2qrCA4gWKzhuAWd2Z2Bw7y1jJ86DAtTEX3Z1dL9BQu8 nrS+LSmVlYXkTarAcI5Ql/LbDJwBBlYHuaiEK6TxYv2IsmB5F7BHQvL8+mERFldz BgdqJOAHw5tSrrR47NC1Ofu4DS7iLWZ7POH4L0cNJjwcQWKNLUDy/kFY2NIlAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUazDWiDPIPt2LjJNfiGkF//7DkPowHwYDVR0j BBgwFoAUfyFvSaO5qEoOhegKLEKHTwnqOYUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmRmYjMwY2EtZTFjMi00OTIxLWIwNTQtZDRhZjA5MTY1 YWYxLzAvN0YyMTZGNDlBM0I5QTg0QTBFODVFODBBMkM0Mjg3NEYwOUVBMzk4NS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Z5RnZTYU81cUVvT2hlZ0tMRUtIVHdu cU9ZVS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZGZiMzBjYS1l MWMyLTQ5MjEtYjA1NC1kNGFmMDkxNjVhZjEvMC83RjIxNkY0OUEzQjlBODRBMEU4 NUU4MEEyQzQyODc0RjA5RUEzOTg1Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKDc4Jv7QlS/1WHcFk2/V uZCP5ZQGMZGQcQTHVnO+cXlRSyljn9UFcay8lqqxv7+vnMTOkVv1yxtx+KSLUS8D L4AFF/YiIqOIwF8gCJRodnQ1MX99EUlrl7+//6IvXAZh0GTaC1/voHGkjwfPrnX1 qwLmlePklREvd+oLkoDxheGoHJlhc1tpySIiIMXsrbAGG1xjBF/+HGwW4Ew6CIOL dOkQT8w7T9rKHYeuuXVF6KqlJurdr4dYaVXHWhLDXVs2nmgrWRsYZIqFmaOO9SHh zKyJCeJn4LqeYG65hbYNG6tG/WvMJWP/pYn0Pubplx2y0mvy7tYXxFOJp9sodqzI lQ== -----END CERTIFICATE-----Generated at Mon Apr 28 04:30:48 2025 by rpki-client