$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft File: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft (raw, json) Hash identifier: q8h+GEIZrEK7aJQTeNrTjKI7HNo1mR7ynk+ja1wwlH8= Subject key identifier: 6D:1A:2F:3D:7B:C9:A7:39:17:68:6D:CF:45:AB:80:C3:D3:2E:76:B1 Authority key identifier: 5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE Certificate issuer: /CN=5da3215abfa4621d57709f838a92801f2e90ddfe Certificate serial: 34A90C22554E56D0DDE8C292A2F9142941166DB5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft Manifest number: 0466 Signing time: Sat 14 Jun 2025 04:32:50 +0000 Manifest this update: Sat 14 Jun 2025 04:27:50 +0000 Manifest next update: Sun 15 Jun 2025 07:26:50 +0000 Files and hashes: 1: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl (hash: MYi9jLn6dBSoRkRRON7pZXhnUUx+Hh2bPLlD/glkecQ=) 2: 34352e38312e35362e302f32342d3234203d3e203634323637.roa (hash: kGVNeEKX35ugOpsFmA5GwCl6f0GnZpLJS8pEn3cyWJI=) 3: 34352e38312e35392e302f32342d3234203d3e20323131343339.roa (hash: Y0ZApSmGCRch+djTYBN+U0p8LaOUa+NCEgyRR8hvTcU=) 4: 34352e38312e35392e302f32342d3234203d3e20323132333834.roa (hash: 7ySWNlqh8pfpYqSc3fbfv+VTSwiuDNFNlc7aZa5se9U=) 5: 34352e38312e35382e302f32342d3234203d3e20323039323432.roa (hash: Cjq2FzLN5G1VEvkKyI6FB5noxcWUxvPOvV4W7hBfw5c=) 6: 34352e38312e35372e302f32342d3234203d3e203631333137.roa (hash: Nt6v0on8wvNIRTqw0ZzJ5VjTWjEZFT63u0ZbVbhKyNc=) 7: 326130393a643634303a3a2f32392d3239203d3e20313938333435.roa (hash: LaBCcb8mjeERCC5tHKO7thlovLIwutTtPGiGYEZVPF8=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Jun 2025 01:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:a9:0c:22:55:4e:56:d0:dd:e8:c2:92:a2:f9:14:29:41:16:6d:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5da3215abfa4621d57709f838a92801f2e90ddfe Validity Not Before: Jun 14 04:27:50 2025 GMT Not After : Jun 15 07:26:50 2025 GMT Subject: CN=6D1A2F3D7BC9A73917686DCF45AB80C3D32E76B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d1:d7:4c:37:4e:2f:aa:ff:ed:1f:de:40:73: 7e:c1:4d:70:07:0b:69:59:04:62:c2:a0:ff:b5:82: 5a:e3:5f:bb:b0:c7:a5:27:5c:f0:06:3c:5d:b0:0b: 6f:79:b9:90:41:a5:77:54:1a:f7:a3:22:5a:7b:44: ce:e1:22:58:e5:00:81:94:4f:a3:6b:de:5c:d2:0b: be:96:c7:b8:33:ee:5c:4e:53:4a:d7:10:c8:3a:3b: 97:f0:01:b8:28:fc:25:14:91:fb:b0:01:d1:ae:e9: 72:38:42:32:92:44:56:a6:35:34:c2:59:a1:4d:94: ca:63:06:e1:f4:c6:58:1c:bb:20:8a:67:7b:dd:d0: 19:4e:9b:b8:7d:56:35:19:5e:c3:90:10:3c:4d:ff: 80:52:d4:f2:7d:91:b7:92:55:4d:3e:78:dc:18:08: 6f:21:cb:b0:17:1b:39:05:fc:f3:bc:29:90:4d:f9: 6e:37:bb:4f:80:e5:cb:82:74:5f:ca:20:60:0f:03: 78:59:ac:4d:a1:9e:14:cd:56:ed:00:80:59:20:7a: 55:3e:5b:58:34:be:61:40:ad:f0:bc:98:1c:be:a7: 6d:ab:af:a8:e6:3f:24:10:97:26:a5:ad:97:fb:47: 2c:4a:b7:2b:54:55:5d:72:3c:2a:bf:50:12:c8:33: 31:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:1A:2F:3D:7B:C9:A7:39:17:68:6D:CF:45:AB:80:C3:D3:2E:76:B1 X509v3 Authority Key Identifier: keyid:5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:c3:f6:fa:e3:94:ee:fa:d8:61:ae:5a:9e:76:dc:36:3e:a7: c9:06:e0:06:83:bb:44:e1:78:a9:09:66:03:03:c4:75:3c:2a: b4:74:e4:9d:4a:69:a8:39:4b:c7:c4:5d:71:c7:bd:6b:52:42: de:74:5b:83:b1:54:e5:ab:43:9d:70:ae:0d:02:dd:5e:d5:4a: 13:ad:bc:a4:cd:dc:98:50:5d:f6:a1:a8:35:49:4a:83:98:af: 5b:79:b2:52:be:45:b6:79:f7:a3:e1:df:75:a4:50:2d:a0:42: ad:80:c2:5e:6f:c1:4c:49:8b:95:e0:c1:6e:bc:45:a9:37:e3: 9e:0b:8f:7b:9f:57:1a:a8:d5:df:3f:95:9c:60:5e:0a:e7:4f: aa:5e:63:1d:09:2e:84:55:26:86:45:94:b6:96:80:92:0e:14: d3:07:99:ca:8a:20:48:40:84:b3:74:52:bf:98:94:77:95:06: ab:c0:49:aa:7a:48:de:1a:87:5b:48:83:90:d8:23:37:14:4a: c5:0c:89:3d:91:de:97:d4:35:f8:51:08:ac:24:36:c0:63:55: e9:f0:9a:28:94:8f:4e:06:a1:e5:01:2a:de:1f:c2:b6:25:60: 6e:b1:70:cc:bc:85:26:84:77:a6:dc:61:c5:0c:ea:70:15:2d: 0b:9b:82:3f -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUNKkMIlVOVtDd6MKSovkUKUEWbbUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRhMzIxNWFiZmE0NjIxZDU3NzA5ZjgzOGE5MjgwMWYy ZTkwZGRmZTAeFw0yNTA2MTQwNDI3NTBaFw0yNTA2MTUwNzI2NTBaMDMxMTAvBgNV BAMTKDZEMUEyRjNEN0JDOUE3MzkxNzY4NkRDRjQ1QUI4MEMzRDMyRTc2QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq0ddMN04vqv/tH95Ac37BTXAH C2lZBGLCoP+1glrjX7uwx6UnXPAGPF2wC295uZBBpXdUGvejIlp7RM7hIljlAIGU T6Nr3lzSC76Wx7gz7lxOU0rXEMg6O5fwAbgo/CUUkfuwAdGu6XI4QjKSRFamNTTC WaFNlMpjBuH0xlgcuyCKZ3vd0BlOm7h9VjUZXsOQEDxN/4BS1PJ9kbeSVU0+eNwY CG8hy7AXGzkF/PO8KZBN+W43u0+A5cuCdF/KIGAPA3hZrE2hnhTNVu0AgFkgelU+ W1g0vmFArfC8mBy+p22rr6jmPyQQlyalrZf7RyxKtytUVV1yPCq/UBLIMzEZAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUbRovPXvJpzkXaG3PRauAw9MudrEwHwYDVR0j BBgwFoAUXaMhWr+kYh1XcJ+DipKAHy6Q3f4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmYyNDU2N2ItN2E3NC00YzFmLWFhODUtZGQyNGFmNzNj Y2JiLzAvNURBMzIxNUFCRkE0NjIxRDU3NzA5RjgzOEE5MjgwMUYyRTkwRERGRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hhTWhXci1rWWgxWGNKLURpcEtBSHk2 UTNmNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjI0NTY3Yi03 YTc0LTRjMWYtYWE4NS1kZDI0YWY3M2NjYmIvMC81REEzMjE1QUJGQTQ2MjFENTc3 MDlGODM4QTkyODAxRjJFOTBEREZFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAesP2+uOU7vrYYa5annbc Nj6nyQbgBoO7ROF4qQlmAwPEdTwqtHTknUppqDlLx8Rdcce9a1JC3nRbg7FU5atD nXCuDQLdXtVKE628pM3cmFBd9qGoNUlKg5ivW3myUr5Ftnn3o+HfdaRQLaBCrYDC Xm/BTEmLleDBbrxFqTfjnguPe59XGqjV3z+VnGBeCudPql5jHQkuhFUmhkWUtpaA kg4U0weZyoogSECEs3RSv5iUd5UGq8BJqnpI3hqHW0iDkNgjNxRKxQyJPZHel9Q1 +FEIrCQ2wGNV6fCaKJSPTgah5QEq3h/CtiVgbrFwzLyFJoR3ptxhxQzqcBUtC5uC Pw== -----END CERTIFICATE-----Generated at Sat Jun 14 12:24:12 2025 by rpki-client