$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft File: Kfp91j8uLYe194UAk8dDu_vhTkQ.mft (raw, json) Hash identifier: KR+gZiZba0Wj//8tQetQ+4y1POFyb6atA6DYh1VQSO0= Subject key identifier: C1:E4:34:F5:CB:78:6C:F8:39:57:BD:FE:47:64:B3:A8:AA:6F:97:37 Authority key identifier: 29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 Certificate issuer: /CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Certificate serial: 01983A60097FBEB0F8974D4EAA260833C46C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft Manifest number: 04AA Signing time: Thu 24 Jul 2025 03:00:28 +0000 Manifest this update: Thu 24 Jul 2025 03:00:28 +0000 Manifest next update: Fri 25 Jul 2025 03:00:28 +0000 Files and hashes: 1: 05o0ilxpLPFj724SFa-brN8vzXk.roa (hash: CPN9MrS7MYDAN7zH2nr9vN3ZoOoKTAOXjde0z1Y3r4g=) 2: 5h88FMdyJ4BKxPsdcgHQyCeiggw.roa (hash: Owv+GMEcs1uONJHFnOZ4mKs3NxskXYOAjZpyCXtz47Y=) 3: 7HfOX3VXYMpd2AIPBc7-S-uMs_8.roa (hash: k5M6cr3ux0zaC3HrK4AQu/eEDnL7gIrijJy4BZ0Nw4M=) 4: 7OOt-MnHsX07hiPdKHIMZaJ8wrg.roa (hash: 7nZ90mtRGZWhPbm1Puw7IzZkWIgR1R3W35D51WFY05w=) 5: BT9PpbhARp2PKEupubiiio8TvBc.roa (hash: PoRHUsj11iEWOHUhXg6p185DLswF97IfYO5dpNwM+4k=) 6: F1OWe033_DuZ-JjrisCh6PYvi1s.roa (hash: bLONjsizRZ/N6QYxCW6KHMn5K6t8a7PJWP3/t57vEJk=) 7: K3PHjFr5iZQBePAHzZD7020H3CQ.roa (hash: cYqNDwyqOAThtjZwtvIGK4yhgMYUiG7kHacZddA60SQ=) 8: Kfp91j8uLYe194UAk8dDu_vhTkQ.crl (hash: Yv586AsHMyYrzeVUo6Tef3g+MshyvTUcLes78OpvZvw=) 9: PwDUcjqBkiIEULzXxKTVGmmTWG4.roa (hash: FRJ/j45X7Ib31MDYnkP96sRJLV09a4YTIEwHH8GRm+c=) 10: SGJaxM1tftN6eWW_JhWZIZdq6Hs.roa (hash: i3+GB/wkLsPOj8TleSkbJUTDI0kj7dMA6dFb0QRWP+8=) 11: X-V1c33BeHLMq6YPZ6efCsl3cMM.roa (hash: qD2GqEyAmd2okDBw6OR3DlzX+O8r0bDHBHVLHEg9U3g=) 12: X6A7ZOxQkF-N5TBF6hNZ0D-sPxQ.roa (hash: sOJamuYIhYJWJLrvAE1wd1xA2gh7NgXmer7n43KBLdc=) 13: Y68HM_eE8K1w4SS6fxm68_4816Q.roa (hash: j5XSBxx8t0t2IG8jaeix/JPoU5Vp2pcHE0yvoVN43nY=) 14: eM7RoSEq3C715iKtcwBUqsiVTDM.roa (hash: U7xNVv9g2fKrI4EOjzXQcIX1ekwna/aEJqfXxfKaR90=) 15: u-M1H4DlyfJcf3cI4KPf60AAf5E.roa (hash: rqvHkJ1B+GOatMUS6IQfjBMvmK91Ea22MfD3TS1yuVM=) 16: us6ukJjPwguMUHmhc8SpjnjeHOE.roa (hash: RuHDwxtF2zmik+S8Nhu0t8NrGvwHVQJraNmp1nORf/c=) 17: zvMqPtiLMOCgjOxqm6euJp83YNA.roa (hash: jIvx8RFgHAKB/kauSEcxDljiE/0sDn1/Jfcw3a0iCKU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 25 Jul 2025 03:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:3a:60:09:7f:be:b0:f8:97:4d:4e:aa:26:08:33:c4:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Validity Not Before: Jul 24 03:00:28 2025 GMT Not After : Jul 25 03:00:28 2025 GMT Subject: CN=c1e434f5cb786cf83957bdfe4764b3a8aa6f9737 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:91:c2:cd:69:7b:a3:5d:55:83:ad:3b:e9:4e: ec:17:7d:13:87:cd:52:00:03:27:19:30:e5:bd:37: ec:8d:b5:6c:85:ad:09:9e:dd:6f:30:ab:68:0f:10: 5e:74:64:cc:fc:9c:fa:f0:50:61:3a:c3:5b:27:13: ce:7f:2e:45:0f:17:32:62:72:b5:04:f5:44:c3:33: 18:8f:1b:2a:16:c2:6d:9e:7b:62:4b:d3:63:a2:f4: 03:94:2a:60:97:3f:d4:3a:d2:23:76:ab:55:19:19: 13:84:da:a0:84:fc:57:df:f3:73:89:a0:76:60:af: da:5c:cd:a4:04:91:d7:f4:4e:6e:a6:ab:dc:9d:52: f7:45:d0:4c:d2:57:44:45:24:17:18:2a:42:a3:fb: 0d:ef:d7:a3:c5:3d:bf:c7:1b:fa:63:9d:c6:90:03: d1:01:41:c7:8a:ff:87:ae:1f:35:95:70:59:6f:d0: b5:4d:40:82:82:d7:7e:77:f4:46:0e:5d:b6:d1:41: 67:c2:0f:60:93:61:81:de:9b:de:72:0a:50:7f:6b: 45:86:86:ac:84:53:ea:8b:73:99:b9:8c:ab:fb:cb: c4:4f:8f:3c:e8:b0:a2:53:6f:ec:6a:c9:74:3b:dd: e1:e7:4b:43:56:96:72:7b:96:d2:25:33:ca:37:ae: 6c:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:E4:34:F5:CB:78:6C:F8:39:57:BD:FE:47:64:B3:A8:AA:6F:97:37 X509v3 Authority Key Identifier: keyid:29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:3c:02:1d:84:da:eb:1c:79:c7:2a:63:49:32:b4:f5:26:f6: d4:9a:d9:53:72:9d:73:8a:81:03:ae:eb:04:8e:29:ec:d0:0d: 8b:a2:af:70:97:ee:36:88:ed:d4:47:a9:19:6d:6d:25:97:b8: d7:c3:42:ca:8e:cf:f1:0f:61:1d:3e:20:e0:cf:d3:6c:c2:1f: 7d:d1:28:f0:ad:54:5e:a5:07:61:38:88:3a:ef:af:40:25:a1: 66:5c:92:bf:c5:92:6b:89:d5:a1:01:64:75:d6:37:b2:f3:66: 42:f1:31:08:38:89:f3:fb:63:4e:a6:ad:dd:d2:59:a6:18:b0: 91:19:3a:d5:95:41:f2:f7:e9:05:78:6c:d5:6d:73:fb:88:ec: 31:4a:af:98:86:d8:6f:64:5c:3a:97:6d:dd:5d:95:96:38:10: 2b:bc:79:5d:42:a2:64:76:27:13:92:12:7a:54:f2:19:91:c8: 77:4f:8b:be:01:3e:0d:6b:20:69:4f:bf:e1:ce:b6:fc:42:6f: e7:06:54:75:54:eb:7a:59:0b:46:72:e1:7c:85:8c:39:c3:fc: 2d:17:a4:40:bd:86:b5:19:2f:ef:d6:5c:ab:7e:da:a2:60:60: 3f:f1:22:01:6e:d1:90:01:ec:a7:0f:6b:48:a6:cd:9c:89:b0: 1d:3e:a6:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZg6YAl/vrD4l01OqiYIM8RsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZmE3ZGQ2M2YyZTJkODdiNWY3ODUwMDkzYzc0M2JiZmJl MTRlNDQwHhcNMjUwNzI0MDMwMDI4WhcNMjUwNzI1MDMwMDI4WjAzMTEwLwYDVQQD EyhjMWU0MzRmNWNiNzg2Y2Y4Mzk1N2JkZmU0NzY0YjNhOGFhNmY5NzM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArZHCzWl7o11Vg6076U7sF30Th81S AAMnGTDlvTfsjbVsha0Jnt1vMKtoDxBedGTM/Jz68FBhOsNbJxPOfy5FDxcyYnK1 BPVEwzMYjxsqFsJtnntiS9NjovQDlCpglz/UOtIjdqtVGRkThNqghPxX3/NziaB2 YK/aXM2kBJHX9E5upqvcnVL3RdBM0ldERSQXGCpCo/sN79ejxT2/xxv6Y53GkAPR AUHHiv+Hrh81lXBZb9C1TUCCgtd+d/RGDl220UFnwg9gk2GB3pvecgpQf2tFhoas hFPqi3OZuYyr+8vET4886LCiU2/sasl0O93h50tDVpZye5bSJTPKN65sPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMHkNPXLeGz4OVe9/kdks6iqb5c3MB8GA1UdIwQY MBaAFCn6fdY/Li2HtfeFAJPHQ7v74U5EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUt NzlmN2I2ZWE3YzE0LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUtNzlmN2I2ZWE3YzE0 LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANzwCHYTa 6xx5xypjSTK09Sb21JrZU3Kdc4qBA67rBI4p7NANi6KvcJfuNojt1EepGW1tJZe4 18NCyo7P8Q9hHT4g4M/TbMIffdEo8K1UXqUHYTiIOu+vQCWhZlySv8WSa4nVoQFk ddY3svNmQvExCDiJ8/tjTqat3dJZphiwkRk61ZVB8vfpBXhs1W1z+4jsMUqvmIbY b2RcOpdt3V2VljgQK7x5XUKiZHYnE5ISelTyGZHId0+LvgE+DWsgaU+/4c62/EJv 5wZUdVTrelkLRnLhfIWMOcP8LRekQL2GtRkv79Zcq37aomBgP/EiAW7RkAHspw9r SKbNnImwHT6mxA== -----END CERTIFICATE-----Generated at Thu Jul 24 11:52:34 2025 by rpki-client