$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft File: 8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft (raw, json) Hash identifier: sXG94zTIPeaAI6CVpcLPlnkqug0HPiOWCpMSJ7pYinA= Subject key identifier: 10:DA:1D:E1:82:6E:A8:D1:D3:B6:50:B7:5A:1C:A8:B2:A9:77:8C:33 Authority key identifier: 8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B Certificate issuer: /CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b Certificate serial: 51135F461AD5449196FAF8BD8DA853F8E48889F8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft Manifest number: 01D3 Signing time: Sat 26 Apr 2025 09:59:59 +0000 Manifest this update: Sat 26 Apr 2025 09:54:59 +0000 Manifest next update: Sun 27 Apr 2025 13:03:59 +0000 Files and hashes: 1: 39312e3139302e3135372e302f32342d3234203d3e20323130383330.roa (hash: LHHDMQAiPEKdKz+17Sj/aubO3T0fJoOtFfvF63ozlF8=) 2: 3231322e3130332e34362e302f32342d3234203d3e20383334.roa (hash: vEdELFQYtyYRinzQ/tV7Y8LvXVFViQxnidBgfJLOB14=) 3: 34352e39352e38302e302f32342d3234203d3e203136323736.roa (hash: 3x0cRO+g1bZbRHut+QAG7pwDzd80m15dxHMNduCBIhg=) 4: 3138352e3234302e3130372e302f32342d3234203d3e203439353434.roa (hash: o+hzP90nSI+T3y9sTbshYXhWjocfA2wlZEaogIaY53I=) 5: 8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl (hash: TEr77WQFd/+A644JKJgHzEMDE42KwdzAUHve8orhyGY=) 6: 3138352e3234302e3130372e302f32342d3234203d3e20323036323836.roa (hash: uGwx7QYEVtWq3r41S0xDstrUOU9fM4LmhcP60xb6Uzo=) 7: 3231322e3130332e34342e302f32342d3234203d3e20323133393138.roa (hash: qGJQiTgIvP4Ve1lRuA50bfURyANdu4X5JKcPosVvvQA=) 8: 3231322e3130332e34372e302f32342d3234203d3e20333935333734.roa (hash: PFxgHUemXkNJXYJkB+UVPkLxlX5c1eOHSCGm+h10TUo=) 9: 3139332e32342e3233342e302f32342d3234203d3e20383334.roa (hash: wDn4WvWEnl0ktIwomfuSX0xxTMgnjS6eS37UfP6tuk8=) 10: 34352e39352e38312e302f32342d3234203d3e203239383032.roa (hash: RSLVUL+AislPXW7KHmpbzgP/rzQAkGuHFrgP4qIPD94=) 11: 34352e39352e38322e302f32332d3234203d3e20313734.roa (hash: j5uBx1ZwzePSy8f9EGQJPGu8wElQLvhVLCemoigNpZM=) 12: 3138352e3234302e3130362e302f32342d3234203d3e20323134343538.roa (hash: A4xSoaJgKGvgYyxTiRaQc7hyiiMELV+dvyPZYNnypk4=) 13: 3138352e3234302e3130342e302f32342d3234203d3e20323130353338.roa (hash: e7DAYp4SHfxn2VHLApclYeubQioRqGakPF4YwyLlJQg=) 14: 3231322e3130332e34352e302f32342d3234203d3e2038303735.roa (hash: fHVIMx8xlYqpN0AXQfWLm0vqOUAEGFXc3sBROHoQyYA=) 15: 3138352e3234302e3130352e302f32342d3234203d3e203630313137.roa (hash: nJLQI+3MB7hgnbhNjFug7l3lg1m6x3LnNsfdR2vKKGE=) 16: 3139332e32342e3233352e302f32342d3234203d3e203630373831.roa (hash: 3IIPnO8jnB/C9bfC+8H124jFOjjxVU8ltj/gUK5jsA4=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 27 Apr 2025 11:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:13:5f:46:1a:d5:44:91:96:fa:f8:bd:8d:a8:53:f8:e4:88:89:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b Validity Not Before: Apr 26 09:54:59 2025 GMT Not After : Apr 27 13:03:59 2025 GMT Subject: CN=10DA1DE1826EA8D1D3B650B75A1CA8B2A9778C33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:f1:a0:d6:f0:fd:b6:da:90:17:54:14:5f:c6: 0b:77:26:35:c9:98:d0:9e:3b:46:a4:02:50:dd:f0: 7a:74:4c:91:35:73:e1:ce:45:09:0e:16:67:8e:0b: 1c:71:2c:16:f1:8f:6b:59:31:5c:aa:c7:7b:80:c8: 9b:a7:34:df:bc:71:0e:fb:4b:16:28:1f:ae:25:92: 0a:d4:be:22:b9:d4:be:a7:ed:b5:dd:98:ed:97:65: 2d:df:1c:37:bc:53:c5:61:2b:ff:36:94:81:a8:e0: 38:eb:3b:b7:01:e9:b5:d7:dd:a3:1e:35:23:9d:dd: 8b:05:16:78:1b:3a:17:97:4e:f2:67:16:76:9a:02: ec:5e:bb:e8:e7:c8:3c:71:b1:d5:1c:c2:12:0b:ba: 6f:02:82:ca:b9:97:03:8e:6b:14:53:27:9e:b9:5d: 30:54:35:70:5a:b6:a6:9f:b1:58:75:b3:df:52:4e: 9c:f9:73:34:42:49:7a:c9:7c:3c:89:bf:f9:44:11: c4:7e:6f:eb:1c:4e:78:6e:52:fd:d6:6d:6e:ca:c1: 66:3a:ea:47:ce:fc:26:2d:33:44:a8:e3:89:93:65: a6:1a:ec:f9:e8:65:a4:fc:a5:de:81:63:e8:f5:4b: f6:2f:c5:a6:4f:45:d9:16:32:06:d5:2c:24:1c:ca: c4:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:DA:1D:E1:82:6E:A8:D1:D3:B6:50:B7:5A:1C:A8:B2:A9:77:8C:33 X509v3 Authority Key Identifier: keyid:8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:83:3e:e0:1e:20:ef:63:ab:45:7d:ca:c2:5c:bb:82:fd:60: 0e:1a:94:0f:dc:8f:0e:6e:43:77:33:1b:c2:86:30:29:2d:03: e3:ac:af:1c:27:7c:9f:63:6c:70:4d:4d:d5:35:d2:03:18:70: ac:4f:6d:e1:ed:89:7a:51:a1:b1:59:5a:93:0f:c2:d6:ec:c0: af:cf:bb:c5:72:94:0a:96:df:ab:6e:d2:6b:42:0b:69:22:52: 9b:f5:0f:76:cc:92:3f:c5:28:70:fb:68:42:3c:d5:cf:4d:3a: 02:85:58:34:7b:2a:71:dc:8f:75:94:2a:0b:a4:da:c1:c2:2c: c6:9c:1a:ae:7c:dd:9a:02:b8:2d:c3:5b:c6:f4:a5:a4:1c:f4: c4:b3:ae:a2:ba:03:de:9c:d0:fc:5f:fc:a1:7c:c0:a4:77:9a: f6:ab:62:a7:0d:33:4e:ad:ba:9c:ce:b3:9b:7a:75:de:be:6f: 0e:b2:db:73:c2:8f:de:ad:af:93:a6:1c:a7:cf:6f:9b:b0:53: 56:91:be:6e:46:b8:26:1f:a4:ad:87:57:7e:c9:ad:71:02:ee: 45:79:01:49:75:8d:06:3c:e8:b5:45:7d:3b:ff:46:aa:be:04: 74:d7:30:46:f8:35:7d:bc:7f:9e:61:08:d4:83:3c:cd:d2:f9: 8b:97:06:11 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUURNfRhrVRJGW+vi9jahT+OSIifgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGMxMmI0MjczODMyYjQxNTZmZTAwOTJmNmFlN2U1YjNj ZTIzYWQ4YjAeFw0yNTA0MjYwOTU0NTlaFw0yNTA0MjcxMzAzNTlaMDMxMTAvBgNV BAMTKDEwREExREUxODI2RUE4RDFEM0I2NTBCNzVBMUNBOEIyQTk3NzhDMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCX8aDW8P222pAXVBRfxgt3JjXJ mNCeO0akAlDd8Hp0TJE1c+HORQkOFmeOCxxxLBbxj2tZMVyqx3uAyJunNN+8cQ77 SxYoH64lkgrUviK51L6n7bXdmO2XZS3fHDe8U8VhK/82lIGo4DjrO7cB6bXX3aMe NSOd3YsFFngbOheXTvJnFnaaAuxeu+jnyDxxsdUcwhILum8Cgsq5lwOOaxRTJ565 XTBUNXBatqafsVh1s99STpz5czRCSXrJfDyJv/lEEcR+b+scTnhuUv3WbW7KwWY6 6kfO/CYtM0So44mTZaYa7PnoZaT8pd6BY+j1S/YvxaZPRdkWMgbVLCQcysR9AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUENod4YJuqNHTtlC3Whyosql3jDMwHwYDVR0j BBgwFoAUjBK0JzgytBVv4Akvaufls84jrYswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOGJmZDY4ODItZDZiMy00YWE4LWJjMGEtNzExZDY4YmQx OThiLzAvOEMxMkI0MjczODMyQjQxNTZGRTAwOTJGNkFFN0U1QjNDRTIzQUQ4Qi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2pCSzBKemd5dEJWdjRBa3ZhdWZsczg0 anJZcy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84YmZkNjg4Mi1k NmIzLTRhYTgtYmMwYS03MTFkNjhiZDE5OGIvMC84QzEyQjQyNzM4MzJCNDE1NkZF MDA5MkY2QUU3RTVCM0NFMjNBRDhCLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgYM+4B4g72OrRX3Kwly7 gv1gDhqUD9yPDm5DdzMbwoYwKS0D46yvHCd8n2NscE1N1TXSAxhwrE9t4e2JelGh sVlakw/C1uzAr8+7xXKUCpbfq27Sa0ILaSJSm/UPdsySP8UocPtoQjzVz006AoVY NHsqcdyPdZQqC6TawcIsxpwarnzdmgK4LcNbxvSlpBz0xLOuoroD3pzQ/F/8oXzA pHea9qtipw0zTq26nM6zm3p13r5vDrLbc8KP3q2vk6Ycp89vm7BTVpG+bka4Jh+k rYdXfsmtcQLuRXkBSXWNBjzotUV9O/9Gqr4EdNcwRvg1fbx/nmEI1IM8zdL5i5cG EQ== -----END CERTIFICATE-----Generated at Sat Apr 26 19:04:17 2025 by rpki-client