$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft File: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft (raw, json) Hash identifier: D3Rs2kDFMwa1qUDngQa1K41SXSFTIg0GeK+9oA8Lb9E= Subject key identifier: 47:C9:16:6B:FA:7B:E1:26:08:22:2F:33:77:7E:DA:4D:84:6A:3C:AD Authority key identifier: F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD Certificate issuer: /CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Certificate serial: 79C5A2899E92C4CAC715FDB89608D378840B5E11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft Manifest number: 049A Signing time: Sat 26 Apr 2025 10:14:59 +0000 Manifest this update: Sat 26 Apr 2025 10:09:59 +0000 Manifest next update: Sun 27 Apr 2025 11:45:59 +0000 Files and hashes: 1: 3139332e39332e3135352e302f32342d3234203d3e203631333137.roa (hash: SV7SbziqH7eMIEMJIbsVc3dV1p2SM237aRtzHljTDkg=) 2: 34362e3235302e3232342e302f32302d3234203d3e20313431393935.roa (hash: j/tvDF/xrBJ6Z/GVFcZpOag/ZBQuFXiJ56kFmYlSx34=) 3: 34362e3235302e3234302e302f32302d3234203d3e20313431393935.roa (hash: NLU++5xZjzD437PtmNgvfxHCqYMIFnb00RqdIBmj2Iw=) 4: 3139332e39332e3135352e302f32342d3234203d3e203230343733.roa (hash: Yia13ZpyH/rxCHPO1ZKxkaJKT40u4xmMRfCLnQCmpaw=) 5: 3139332e39332e3135332e302f32342d3234203d3e203439313237.roa (hash: muToXyQQPQk1kATIKIk2PX93pnZZn2qQ05PiLXKydlA=) 6: 3139332e39332e3135342e302f32342d3234203d3e20323131343135.roa (hash: lcDvK25Krwnz/wCtWIMtJ+GA0fjdNOA7l7WMMKyVVUU=) 7: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl (hash: A0ENHmygleBEoWemlVUKTnL/RUtT79uGbllocQw4CMs=) 8: 3139332e39332e3135332e302f32342d3234203d3e20323134303336.roa (hash: FgMfWX7zLNqyUMvyIkAVqVqXpYApxS0iTmFAdZ7lH9Q=) 9: 3139332e39332e3135322e302f32342d3234203d3e20313939363134.roa (hash: jNaGJEHXg+vn+v2vVdhmJa1IVdEz/D1ggT5kvM1c0Hk=) 10: 326130303a386530303a313a3a2f34382d3438203d3e203230373132.roa (hash: jAOxURrHtZvlqdFVdBr3F4ACmPO4DT4L5AmOtZPktVY=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 27 Apr 2025 11:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:c5:a2:89:9e:92:c4:ca:c7:15:fd:b8:96:08:d3:78:84:0b:5e:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Validity Not Before: Apr 26 10:09:59 2025 GMT Not After : Apr 27 11:45:59 2025 GMT Subject: CN=47C9166BFA7BE12608222F33777EDA4D846A3CAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:4d:d8:44:80:d9:ce:93:71:5b:52:50:af:67: c0:1f:44:43:4e:52:83:f4:73:10:78:96:89:1e:84: 48:9b:fd:de:25:92:54:98:59:c2:c7:d3:97:89:a3: 31:1b:df:be:38:a6:e9:d3:44:f6:23:46:39:7b:bc: 3a:7f:34:03:11:94:a7:7c:5e:20:fa:39:75:4c:7b: 01:ee:81:7f:7f:c0:cb:0d:ed:df:0f:34:5c:7f:32: d2:16:60:68:0f:70:03:0e:e3:55:4d:eb:9b:03:25: d6:e2:95:aa:4b:81:ea:2c:63:dc:fa:2a:ed:51:76: cc:e0:9b:11:b9:88:0f:f3:ba:d2:24:11:1c:3f:db: d2:fb:12:9d:92:7c:f5:57:4c:3c:f9:a8:02:cb:9f: 5c:f1:69:34:5b:02:69:1b:8c:e1:e3:83:57:54:43: 33:a7:c6:12:be:e8:51:ae:4a:f6:a6:a9:a7:fd:4a: 71:63:d9:15:7b:18:2c:d7:df:08:ae:6f:e8:a0:88: e4:13:c9:f1:de:05:2d:1b:a9:3b:0b:7a:11:c7:32: 44:be:a0:ae:84:97:5e:c8:b6:91:42:4f:90:27:e1: b3:bc:b3:69:65:bc:8e:c8:de:c7:a8:67:8c:c6:f9: 93:b4:9f:b7:26:86:24:d0:98:91:c9:ec:06:56:b4: f1:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:C9:16:6B:FA:7B:E1:26:08:22:2F:33:77:7E:DA:4D:84:6A:3C:AD X509v3 Authority Key Identifier: keyid:F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:47:b5:f7:b1:65:2e:18:b3:6f:44:b6:d6:38:4f:93:75:5d: 78:31:b5:3e:16:fd:6a:a5:0a:4a:ff:b3:db:d4:7e:ea:ef:fd: 62:ee:e2:f7:f5:3b:be:b5:a1:1c:a7:a8:49:74:11:53:2c:e2: b2:5a:de:9b:e5:d3:4d:83:9f:3e:98:3d:1c:af:21:96:36:fc: d3:e5:72:22:84:7d:fe:57:50:51:c3:64:03:1a:bc:32:41:94: 75:2b:42:5c:5c:a5:a0:3e:de:e4:b9:46:d6:bc:20:fd:18:08: d3:a4:77:11:24:ba:72:28:60:7e:cb:5b:e6:96:67:2d:84:af: 1b:fb:4d:1e:61:db:ce:b6:5e:d5:7e:55:87:bf:b4:3c:3d:1a: 4b:ef:d5:59:f9:4a:fc:c7:76:5e:e2:b0:b3:cf:b5:eb:5e:68: 38:9a:78:d6:da:63:62:2e:93:c5:89:cd:26:87:fe:36:ca:56: a8:cb:3c:08:d0:0f:b4:90:c4:4f:8e:54:64:82:e0:0d:1f:1e: a6:f7:00:20:06:4f:73:19:1a:87:20:bf:db:a3:36:9e:46:18: 6f:39:7f:3a:52:05:5f:cc:47:89:51:3a:72:30:71:ef:7e:03: 74:43:35:cc:11:5f:1d:9d:6c:8b:45:19:7a:5d:6a:3c:f8:6c: ac:cf:a4:aa -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUecWiiZ6SxMrHFf24lgjTeIQLXhEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjI5ZmJhYjRkYjg2N2Y2YmQ5YTdlZmY2YWE1NWQ5OGMx NjJlMWFhZDAeFw0yNTA0MjYxMDA5NTlaFw0yNTA0MjcxMTQ1NTlaMDMxMTAvBgNV BAMTKDQ3QzkxNjZCRkE3QkUxMjYwODIyMkYzMzc3N0VEQTREODQ2QTNDQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRTdhEgNnOk3FbUlCvZ8AfRENO UoP0cxB4lokehEib/d4lklSYWcLH05eJozEb3744punTRPYjRjl7vDp/NAMRlKd8 XiD6OXVMewHugX9/wMsN7d8PNFx/MtIWYGgPcAMO41VN65sDJdbilapLgeosY9z6 Ku1RdszgmxG5iA/zutIkERw/29L7Ep2SfPVXTDz5qALLn1zxaTRbAmkbjOHjg1dU QzOnxhK+6FGuSvamqaf9SnFj2RV7GCzX3wiub+igiOQTyfHeBS0bqTsLehHHMkS+ oK6El17ItpFCT5An4bO8s2llvI7I3seoZ4zG+ZO0n7cmhiTQmJHJ7AZWtPFpAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUR8kWa/p74SYIIi8zd37aTYRqPK0wHwYDVR0j BBgwFoAU8p+6tNuGf2vZp+/2qlXZjBYuGq0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmY1MmQ4MTQtM2QyZi00ZGY0LTgxNDAtZGZiNTMwZjc0 OTEyLzAvRjI5RkJBQjREQjg2N0Y2QkQ5QTdFRkY2QUE1NUQ5OEMxNjJFMUFBRC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhwLTZ0TnVHZjJ2WnAtXzJxbFhaakJZ dUdxMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjUyZDgxNC0z ZDJmLTRkZjQtODE0MC1kZmI1MzBmNzQ5MTIvMC9GMjlGQkFCNERCODY3RjZCRDlB N0VGRjZBQTU1RDk4QzE2MkUxQUFELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT0e197FlLhizb0S21jhP k3VdeDG1Phb9aqUKSv+z29R+6u/9Yu7i9/U7vrWhHKeoSXQRUyzislrem+XTTYOf Ppg9HK8hljb80+VyIoR9/ldQUcNkAxq8MkGUdStCXFyloD7e5LlG1rwg/RgI06R3 ESS6cihgfstb5pZnLYSvG/tNHmHbzrZe1X5Vh7+0PD0aS+/VWflK/Md2XuKws8+1 615oOJp41tpjYi6TxYnNJof+NspWqMs8CNAPtJDET45UZILgDR8epvcAIAZPcxka hyC/26M2nkYYbzl/OlIFX8xHiVE6cjBx734DdEM1zBFfHZ1si0UZel1qPPhsrM+k qg== -----END CERTIFICATE-----Generated at Sun Apr 27 01:00:32 2025 by rpki-client