$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft File: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft (raw, json) Hash identifier: lDPNJ8omM3itwfMgchcRc67whYoStk6ZTZxKCGv/cIo= Subject key identifier: 66:A4:AC:DD:67:5C:4B:6C:69:3B:9A:1B:59:9B:8F:ED:24:6F:28:6A Authority key identifier: 5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE Certificate issuer: /CN=5da3215abfa4621d57709f838a92801f2e90ddfe Certificate serial: 28351AD47A4B4F7AE9AC5F35E554D7B67E1EBE75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft Manifest number: 0426 Signing time: Sat 26 Apr 2025 23:49:59 +0000 Manifest this update: Sat 26 Apr 2025 23:44:59 +0000 Manifest next update: Mon 28 Apr 2025 01:48:59 +0000 Files and hashes: 1: 34352e38312e35392e302f32342d3234203d3e20323132333834.roa (hash: 7ySWNlqh8pfpYqSc3fbfv+VTSwiuDNFNlc7aZa5se9U=) 2: 34352e38312e35362e302f32342d3234203d3e203634323637.roa (hash: kGVNeEKX35ugOpsFmA5GwCl6f0GnZpLJS8pEn3cyWJI=) 3: 326130393a643634303a3a2f32392d3239203d3e20313938333435.roa (hash: LaBCcb8mjeERCC5tHKO7thlovLIwutTtPGiGYEZVPF8=) 4: 34352e38312e35382e302f32342d3234203d3e20323039323432.roa (hash: Cjq2FzLN5G1VEvkKyI6FB5noxcWUxvPOvV4W7hBfw5c=) 5: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl (hash: BUVVJ5LCToB3C8+nglM8O93eb3CPkojYdwC5Vlel90E=) 6: 34352e38312e35372e302f32342d3234203d3e203631333137.roa (hash: Nt6v0on8wvNIRTqw0ZzJ5VjTWjEZFT63u0ZbVbhKyNc=) 7: 34352e38312e35392e302f32342d3234203d3e20323131343339.roa (hash: Y0ZApSmGCRch+djTYBN+U0p8LaOUa+NCEgyRR8hvTcU=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 28 Apr 2025 01:48:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:35:1a:d4:7a:4b:4f:7a:e9:ac:5f:35:e5:54:d7:b6:7e:1e:be:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5da3215abfa4621d57709f838a92801f2e90ddfe Validity Not Before: Apr 26 23:44:59 2025 GMT Not After : Apr 28 01:48:59 2025 GMT Subject: CN=66A4ACDD675C4B6C693B9A1B599B8FED246F286A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:ff:87:6a:30:8d:5f:b0:29:bd:66:da:f0:cb: f5:03:45:8a:8b:e3:98:e3:58:7a:e1:4b:a8:76:1b: 84:8c:fc:69:7f:fc:90:0d:d3:09:60:62:5c:46:85: f3:83:c3:cf:4b:aa:a7:62:0a:d2:d7:e5:c4:3e:8f: 5d:be:8a:11:34:09:5a:1d:7a:c9:26:c1:62:84:ac: 5a:70:f9:52:35:05:74:b6:e1:6e:20:5d:02:bf:fc: 27:a7:0f:43:76:fe:6c:ba:9f:26:fe:0f:9d:b1:74: f4:f2:0a:97:d2:9c:5e:e0:66:49:05:46:5b:d4:5e: ec:10:17:9b:3f:90:36:3e:5e:cf:57:1a:8a:32:88: f9:16:83:f5:e3:9f:9f:87:83:7d:9d:6d:3d:a4:a3: 90:a6:91:de:67:90:c3:1e:46:19:fc:81:27:40:2b: 74:24:c4:7b:31:dc:1c:20:e7:2c:9b:a9:1a:1c:7c: 6c:c5:9c:eb:8f:55:76:f6:62:85:da:f6:38:e0:56: 09:e5:63:2d:f5:59:8d:49:a1:85:57:f8:9e:5b:6a: 0c:0c:1f:be:c7:0a:ba:df:16:93:78:4e:fe:3c:61: 0c:c0:9c:09:17:31:74:96:1c:98:db:61:5b:1c:cf: bc:e1:c2:90:5d:cc:f2:2f:09:07:b2:3a:a3:63:6f: 9b:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:A4:AC:DD:67:5C:4B:6C:69:3B:9A:1B:59:9B:8F:ED:24:6F:28:6A X509v3 Authority Key Identifier: keyid:5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:29:4b:ba:84:6c:f6:61:21:e6:b1:df:ed:da:f5:56:69:f5: b3:6e:c6:b9:82:eb:59:30:28:80:af:b3:d8:65:cc:60:62:57: d4:d1:ab:40:52:a2:f0:11:68:b1:18:b1:b0:8e:65:e2:04:66: 32:96:bf:87:11:e2:6d:0f:da:8d:35:d1:ed:28:44:fe:d5:e3: 57:80:d1:ac:67:31:05:da:5c:b3:9c:45:9e:43:df:54:7d:05: aa:27:67:2d:9e:4a:8a:9d:db:84:b3:65:3d:21:2c:76:d2:f7: 45:3d:42:32:80:86:45:70:a7:6a:bc:4a:8e:1b:e6:b1:55:0d: b6:ba:14:c3:53:35:16:ca:28:a7:7a:42:0c:c4:86:78:8f:6d: 39:1a:56:39:48:97:a7:fd:dd:11:d9:97:7d:5f:e4:3b:42:b2: 41:7b:90:9c:ce:81:ee:06:34:ad:a0:19:07:1f:94:3b:b8:3a: ca:a2:57:3e:cf:df:7f:a1:de:e1:1a:7b:d4:c3:de:97:2c:bc: 9f:fb:35:43:a6:f4:63:c8:12:23:81:a3:11:dd:ba:e2:e7:09: 34:5e:44:27:48:39:41:a8:c4:2d:4e:5e:fc:82:f8:bf:6d:c9: b3:d6:78:12:45:e2:da:61:28:91:05:3f:6d:7a:65:3f:15:b0: 50:ff:57:f4 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUKDUa1HpLT3rprF815VTXtn4evnUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRhMzIxNWFiZmE0NjIxZDU3NzA5ZjgzOGE5MjgwMWYy ZTkwZGRmZTAeFw0yNTA0MjYyMzQ0NTlaFw0yNTA0MjgwMTQ4NTlaMDMxMTAvBgNV BAMTKDY2QTRBQ0RENjc1QzRCNkM2OTNCOUExQjU5OUI4RkVEMjQ2RjI4NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCS/4dqMI1fsCm9Ztrwy/UDRYqL 45jjWHrhS6h2G4SM/Gl//JAN0wlgYlxGhfODw89LqqdiCtLX5cQ+j12+ihE0CVod eskmwWKErFpw+VI1BXS24W4gXQK//CenD0N2/my6nyb+D52xdPTyCpfSnF7gZkkF RlvUXuwQF5s/kDY+Xs9XGooyiPkWg/Xjn5+Hg32dbT2ko5Cmkd5nkMMeRhn8gSdA K3QkxHsx3Bwg5yybqRocfGzFnOuPVXb2YoXa9jjgVgnlYy31WY1JoYVX+J5bagwM H77HCrrfFpN4Tv48YQzAnAkXMXSWHJjbYVscz7zhwpBdzPIvCQeyOqNjb5sHAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUZqSs3WdcS2xpO5obWZuP7SRvKGowHwYDVR0j BBgwFoAUXaMhWr+kYh1XcJ+DipKAHy6Q3f4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmYyNDU2N2ItN2E3NC00YzFmLWFhODUtZGQyNGFmNzNj Y2JiLzAvNURBMzIxNUFCRkE0NjIxRDU3NzA5RjgzOEE5MjgwMUYyRTkwRERGRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hhTWhXci1rWWgxWGNKLURpcEtBSHk2 UTNmNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjI0NTY3Yi03 YTc0LTRjMWYtYWE4NS1kZDI0YWY3M2NjYmIvMC81REEzMjE1QUJGQTQ2MjFENTc3 MDlGODM4QTkyODAxRjJFOTBEREZFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIylLuoRs9mEh5rHf7dr1 Vmn1s27GuYLrWTAogK+z2GXMYGJX1NGrQFKi8BFosRixsI5l4gRmMpa/hxHibQ/a jTXR7ShE/tXjV4DRrGcxBdpcs5xFnkPfVH0FqidnLZ5Kip3bhLNlPSEsdtL3RT1C MoCGRXCnarxKjhvmsVUNtroUw1M1Fsoop3pCDMSGeI9tORpWOUiXp/3dEdmXfV/k O0KyQXuQnM6B7gY0raAZBx+UO7g6yqJXPs/ff6He4Rp71MPelyy8n/s1Q6b0Y8gS I4GjEd264ucJNF5EJ0g5QajELU5e/IL4v23Js9Z4EkXi2mEokQU/bXplPxWwUP9X 9A== -----END CERTIFICATE-----Generated at Sun Apr 27 13:14:47 2025 by rpki-client