$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft File: 520NqzR6OOK4e1oiovfJ4hwYybw.mft (raw, json) Hash identifier: k6WvLGH2UsDDcKr3UzwvWuYJntwDButUZDYi+KAeSko= Subject key identifier: 7C:66:35:37:A4:71:8C:4A:90:B3:42:7E:B7:D7:D6:DE:5F:35:2B:86 Authority key identifier: E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC Certificate issuer: /CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Certificate serial: 019827B4FAF79CB02A2496799486C8766674 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft Manifest number: 10DB Signing time: Sun 20 Jul 2025 12:00:28 +0000 Manifest this update: Sun 20 Jul 2025 12:00:28 +0000 Manifest next update: Mon 21 Jul 2025 12:00:28 +0000 Files and hashes: 1: 1-i_ESwYWDKjvxe-cLQFb33q5Qu0.roa (hash: MWN71QN/v297mIABIQi0BIqexEx6vQv3LxWHulQ1lh0=) 2: 3uMGCa1hGu4z3o3-_G7z4ipL-iU.roa (hash: W9UTR4UDUFmqfh0USMFmsobpW7zQlT5fd2b07I+b238=) 3: 520NqzR6OOK4e1oiovfJ4hwYybw.crl (hash: xf3fHRiCTe6Hd8SCa/mfsWQFTAWkkbxFgXIcJJXCRA4=) 4: 53Cd6ksm6jJ9RlO5imUtuWj1rJA.roa (hash: cQll3lCbJxJtoxzsBZdQMm8ZJ1gmBBCp3yO2flYfKKU=) 5: 5aybWk2Ky5dF88Dl5BHsEFM1SO0.roa (hash: H+JwBN0SZWGViTYdzpWvA1lltG+ihuV8ot5mKPyc2Ag=) 6: D51k8Yufzem8ogKjVaG-BE3-N9Q.roa (hash: LfZnqpQQPapIc1GbVrcmd90U2aDXCgwED1y7JLo14nI=) 7: EEzCfGegHPEpdqTqvMRMlcFre1Y.roa (hash: uwoju1vAFdOs3H0Q+w/qT7aEQBJpMP98DiaXonyIQ9M=) 8: EQAhdlSS1FIFJlau-mazb3tbQD8.roa (hash: EYIWh35VYrIjFevk0wSjam09x/CTgAsspbJddnJMeDU=) 9: PLzlfTmqAL1rzlLN1TFrpHpYMVU.roa (hash: INujx6I3LZF9XIVr4zE9W5J6NHU6IlkfUKgf+j8aJrU=) 10: QCPaGZ8bi2Da50RQ4k8ya1w0dq4.roa (hash: UeTuehE3XWxqnHJAwNv7xL7hPz4xW2vyEJKj+BsbTow=) 11: aAu5S5IbLCTcHF2sjNSq_YvIkRs.roa (hash: Ofs8Vq4O2KmWTmDnq5aKJmZojKw/IVecQ8WTuC45ixk=) 12: fjY_g_wwgFPVt57q0tJYGzzoSDw.roa (hash: qq4Ldl54/taiWut/8vwq9PH71gezdeLMf1VMPmsHUe8=) 13: pw1_qD5J6o76enPdGNTr_4Viub8.roa (hash: L6pLEncIISYEMGBKzu7DbyUXVYEOgT4kfh4modTEATA=) 14: qigZWtFurHaD054OcaOqq49am_w.roa (hash: Sa19eTl0ldE9k7oxfeYcou5g3EZnF3X8bF0Hbur3zdE=) 15: tKmEC4MB5hqVQbFF_5qlwwlDujU.roa (hash: DWWPvUtVR9Z8569/gJySYMoNxwD1GjHbMP8gxFtXEzs=) 16: tRNXUlx68rKP9UOE-hhExB1kws8.roa (hash: +Hd3tIKng2pbogIxn1dcX/j1LNU33NvuDwSbS4tdpEA=) 17: ve2cUb4I36o88cUncaHeOHK5tGk.roa (hash: 6gTupRG97QR/JQvN8ay2tdbOI4Q3EMkpnACGQxjxniI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Jul 2025 04:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:27:b4:fa:f7:9c:b0:2a:24:96:79:94:86:c8:76:66:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Validity Not Before: Jul 20 12:00:28 2025 GMT Not After : Jul 21 12:00:28 2025 GMT Subject: CN=7c663537a4718c4a90b3427eb7d7d6de5f352b86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:7a:f7:13:44:e6:a7:a5:d2:8f:83:52:1f:23: 55:7e:7b:3f:c7:3b:46:3f:ac:cb:78:ef:bc:b1:92: 20:6a:f0:0a:40:58:86:9f:08:c5:f4:61:d3:9b:c5: 29:ad:ef:6b:80:47:aa:a8:cc:83:ec:df:35:03:ca: f4:f5:8e:ee:40:2d:4f:b8:05:f7:b6:f7:61:7e:38: a7:ae:9d:68:68:3f:10:3d:c3:2a:50:d0:60:c6:b3: 6c:20:7c:41:8f:7c:2f:56:e7:54:0f:b1:8e:42:e3: d8:af:05:20:c9:0e:db:0a:8b:35:bc:2f:9e:4b:22: 10:ff:ba:3f:86:21:32:a6:1a:8d:76:e4:8b:b3:2e: e3:a9:77:26:15:4f:14:30:7e:39:60:ca:a5:fb:fa: f2:5d:dc:3d:1a:2d:51:59:de:e3:91:63:65:f2:3f: f7:19:fc:b2:2c:f7:fc:82:9d:b6:89:3f:4d:b2:75: c5:85:f4:58:2d:d2:23:c5:75:1e:ad:7d:31:9e:39: 32:bf:f5:b0:2a:d1:80:5c:65:3d:77:ef:5a:53:a2: de:cc:0a:b9:56:dc:75:6e:24:03:6f:78:24:7f:33: 4c:f2:01:f5:4f:47:cf:f3:e9:05:0c:ee:91:85:7d: 5a:58:92:7d:58:50:1c:fa:da:77:bb:d0:5d:6d:c8: 2f:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:66:35:37:A4:71:8C:4A:90:B3:42:7E:B7:D7:D6:DE:5F:35:2B:86 X509v3 Authority Key Identifier: keyid:E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:5b:ae:b4:f9:e9:f7:54:be:ea:5d:5e:db:56:ce:8d:48:09: 77:02:c5:fd:d3:7e:00:7e:ae:0e:03:5e:09:21:0e:01:23:f4: 09:ed:7b:2a:26:1c:e5:b3:8a:76:0b:20:27:88:1f:68:d1:f5: 90:40:39:fa:11:56:ed:d0:4f:af:92:fc:55:71:e5:c1:d7:48: 48:8a:71:da:a2:f9:f4:64:5d:ec:e3:0f:68:3c:22:ad:eb:05: af:71:2f:84:e2:66:ac:69:98:ec:ad:d9:2e:92:52:c1:b7:aa: a4:ca:24:1b:c8:76:de:d5:95:38:a8:46:3c:c7:cb:a8:88:6a: e1:08:c9:f1:45:a6:9b:61:31:56:30:77:ea:af:6a:92:56:b5: 85:87:6e:08:00:90:ae:dc:9b:f6:18:c3:37:ba:91:d8:41:7d: b5:45:a1:cd:4c:e4:99:1e:0a:4f:5d:8e:a5:6a:31:c0:d0:df: b1:2b:1a:d4:61:32:34:77:e4:61:e7:93:df:2c:b5:3d:9d:e7: 70:9a:b7:49:0c:32:48:1d:69:69:61:8a:95:e7:0e:aa:d1:a0: 84:44:28:6a:7b:7b:4a:43:11:52:46:fa:50:58:c4:c3:9c:85: ed:2a:59:4b:55:4c:2c:3d:00:87:bd:14:46:63:26:b1:9a:87: 7e:74:b4:fe -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZgntPr3nLAqJJZ5lIbIdmZ0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3NmQwZGFiMzQ3YTM4ZTJiODdiNWEyMmEyZjdjOWUyMWMx OGM5YmMwHhcNMjUwNzIwMTIwMDI4WhcNMjUwNzIxMTIwMDI4WjAzMTEwLwYDVQQD Eyg3YzY2MzUzN2E0NzE4YzRhOTBiMzQyN2ViN2Q3ZDZkZTVmMzUyYjg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkHr3E0Tmp6XSj4NSHyNVfns/xztG P6zLeO+8sZIgavAKQFiGnwjF9GHTm8Upre9rgEeqqMyD7N81A8r09Y7uQC1PuAX3 tvdhfjinrp1oaD8QPcMqUNBgxrNsIHxBj3wvVudUD7GOQuPYrwUgyQ7bCos1vC+e SyIQ/7o/hiEyphqNduSLsy7jqXcmFU8UMH45YMql+/ryXdw9Gi1RWd7jkWNl8j/3 GfyyLPf8gp22iT9NsnXFhfRYLdIjxXUerX0xnjkyv/WwKtGAXGU9d+9aU6LezAq5 Vtx1biQDb3gkfzNM8gH1T0fP8+kFDO6RhX1aWJJ9WFAc+tp3u9BdbcgvZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHxmNTekcYxKkLNCfrfX1t5fNSuGMB8GA1UdIwQY MBaAFOdtDas0ejjiuHtaIqL3yeIcGMm8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDkt YmQzYmZjOTliZGE5LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDktYmQzYmZjOTliZGE5 LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmFuutPnp 91S+6l1e21bOjUgJdwLF/dN+AH6uDgNeCSEOASP0Ce17KiYc5bOKdgsgJ4gfaNH1 kEA5+hFW7dBPr5L8VXHlwddISIpx2qL59GRd7OMPaDwiresFr3EvhOJmrGmY7K3Z LpJSwbeqpMokG8h23tWVOKhGPMfLqIhq4QjJ8UWmm2ExVjB36q9qkla1hYduCACQ rtyb9hjDN7qR2EF9tUWhzUzkmR4KT12OpWoxwNDfsSsa1GEyNHfkYeeT3yy1PZ3n cJq3SQwySB1paWGKlecOqtGghEQoant7SkMRUkb6UFjEw5yF7SpZS1VMLD0Ah70U RmMmsZqHfnS0/g== -----END CERTIFICATE-----Generated at Sun Jul 20 14:09:56 2025 by rpki-client