$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.mft File: UST7oeQBwD5boc13rp7jnP1jG_s.mft (raw, json) Hash identifier: Y5Ts6DcOc3IRAnY7BNpXuKJJAayx/nma/jfXHe0/UgY= Subject key identifier: F8:95:5F:2D:D9:18:8C:57:DF:ED:F1:25:EA:F4:D1:A1:6E:04:A8:B6 Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb Certificate serial: 019828C7C797F02D4DE2FEC809159BCC46B5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.mft Manifest number: 1273 Signing time: Sun 20 Jul 2025 17:00:38 +0000 Manifest this update: Sun 20 Jul 2025 17:00:38 +0000 Manifest next update: Mon 21 Jul 2025 17:00:38 +0000 Files and hashes: 1: 1-0RU5-UH22DOsQOFsaTxG_A9jv8.roa (hash: fqVefE6RlaYUPduGoWsI2YNic7R0MJ4+DTDKQ/JK4rc=) 2: 7lxVna_a0xg23I1zjghxq6R0RXo.roa (hash: tXqQs9pDj0utpLVKfAdmZ32ratdKDLdXwvY9QAYFHbQ=) 3: 8neCxhaAsYaJYU9S15NmrANTFco.roa (hash: 4Xxa8uO6V7yLYBbylJYWkJX0nrzIRa0JN8AeDSSd+ak=) 4: BIV00WGdCsdMPZily9CzqPCb__g.roa (hash: 2Po5O5AX+uWN/KKrFaZyBDhCcTGjg4dn50nifm52n4M=) 5: J9EfRVewePQYGlLe8kNseKQHxJk.roa (hash: 9VVRmDPU/cfVWvE65Fl3QvG+s92pe334/sHSfdMSMFU=) 6: KiMYrb7_k5A1XChjZVkaZe03-J4.roa (hash: 30qTixTrPBopXsIzoLW1hBKkrCQ5vS3MAYgu2zCZ2kU=) 7: LouV9CNyeDg8LwFm0WQg3Epf8sM.roa (hash: riVTvdLY1eaWT/u45Jf1fSb9f2SlRG/qD/bZHRckGb8=) 8: TZnMCWCDD7gEt2iDrVgun6OOwPs.roa (hash: SXv2dOCtyEflvEs/51vkBcKAPnsJErnwyCUiGSJl1Gs=) 9: UJXvhibxw_8TtOKnD--xEYn-Zww.roa (hash: OjpDb9p6TT8FBXJ45Y7m0jK/9WUgig2slzPx0C3W9Ns=) 10: UST7oeQBwD5boc13rp7jnP1jG_s.crl (hash: hIpHP5nnwE2xWIyuWc6tvFT7jG4895olZkIf5Hx8SzA=) 11: UqRTo9zfPVco3yYn5nw6sqcSIPY.roa (hash: /Dt51aOP8kus3h99adWYkONhAkJ+yJWSL0c8KmtagW0=) 12: VnKbkzMWAdNyZPCEQCwxH17zOTU.roa (hash: M1ZyqSf62mnrFwNeiW1+tjvlZxQ3ALH4X2u5wgU4NPE=) 13: Xmv46alzrB60JmjVYvB6COzgMjA.roa (hash: hA/zNdXVXqQjvFAUICGet5aUd1QUuqsgENdS1uEiVVY=) 14: aVFwHTvrBr3MaaT1GxfwFhQwlgc.roa (hash: Jx28FX3SHYUfXV2//LO+eZWptV/ZkvXBO4d6ecz0axc=) 15: ce8k7XCQyghvYHchvwALfCrVJwg.roa (hash: yQNx287pWR7HRDZfUEYypC3YO0EWbPD76GUoO2g6XzE=) 16: dK1BXPCUXOQRT5oOEUWvGxP9gQk.roa (hash: Ys5B95zExSqqxQNADZXH3Qy0NLQy7XLhKxBDY3n6xFE=) 17: jdQZdakevZhVtKrglfN2RFnzQcI.roa (hash: YWgCWrFOGK/KKipBlp5lhfep+s/kMG6GomEIbVictxA=) 18: l7wxx1zLyo_Vp6Dh5EdYTFcM2nU.roa (hash: CxolEvFopBeQFh0sVq8DG+TsCtldic0vb/t6anZwnLM=) 19: mI-_CctqZI0K2tk6hRHxlecB4_0.roa (hash: L5SL5l2FWo7G2VvQUQ1QwP0hC9pB98xkcansR+H3uHU=) 20: ry5QBM2Eu4QVa3IbvVInNcRx-ao.roa (hash: mo2V1hYGi7uA3mmFMMTCShk3qAC1sKE08+9dYnb3F5w=) 21: s0b5Fwdu-zyh8O2GAm7qQ0wY_w0.roa (hash: Eks6tlyajlng306QOp1CtkVeuU4kzzJoAMHFpAAbNDE=) 22: vrcMlgU0Wi9OhYXxOY15TJ0q7os.roa (hash: DtNw72Z6H20yjEnHKoB4pA2sPw3AlJ6+4bdxZK8zQUo=) 23: w2mTXklqmB3KRUtzG9fxKD6ZDi4.roa (hash: DcW9Z2MnonH9MmcvaudchOkSRXJ7jGtdyGxCDchTggE=) 24: xoG1HRYkPXWNcKJHXgAW2Xb4s2o.roa (hash: 2Kg1ijiucByfyGpnGvb/gTu1msLK8Pvwp86S9xFGnAU=) 25: yz5Oj1IRN47m7-hfoNRLKR-QsFQ.roa (hash: AJUnhFM68923GYadc3urgh5yRRol8KdV+S2IVDVlxow=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.mft rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Jul 2025 17:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:28:c7:c7:97:f0:2d:4d:e2:fe:c8:09:15:9b:cc:46:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb Validity Not Before: Jul 20 17:00:38 2025 GMT Not After : Jul 21 17:00:38 2025 GMT Subject: CN=f8955f2dd9188c57dfedf125eaf4d1a16e04a8b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2d:72:a4:7a:43:01:88:e0:1b:37:00:37:53: 6a:c0:68:cb:36:8a:f2:6b:01:5a:b7:40:9a:37:ac: 92:c2:b1:93:bb:db:fb:e8:1a:63:b9:0b:12:09:f7: 80:7e:da:62:41:12:84:ab:c5:83:5b:34:ca:38:d5: ee:1f:4e:e7:b0:01:1c:21:c9:e2:dc:6f:28:69:a9: 6f:41:fa:ac:94:f4:d3:1e:24:dd:89:39:2b:1c:44: b8:ff:54:f3:f4:1f:29:44:d3:9d:62:18:3d:ef:c2: b1:0f:40:21:4a:d0:0c:32:46:3c:e4:95:46:b7:fd: c5:a9:13:5e:87:9b:9f:73:34:e5:fe:49:14:d1:80: ae:df:49:80:61:ed:21:54:21:95:83:29:d9:73:da: 56:04:af:73:8a:36:1c:7f:2d:ff:98:9e:d0:b5:0b: f3:16:97:3b:16:a5:9e:cb:d7:e1:f4:30:bc:f5:24: ee:2b:f7:ae:ee:d0:4a:20:38:75:5f:27:fa:c6:e5: 96:b2:54:0b:ea:de:c3:2d:52:22:12:1a:ef:93:44: 60:af:36:d2:3f:72:d8:76:08:08:c8:13:6e:99:2c: ab:77:24:de:44:b1:ab:0d:e3:e5:21:a4:20:31:85: 50:9b:7e:3a:4b:7d:d2:93:49:05:a6:7e:4a:36:f9: e8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:95:5F:2D:D9:18:8C:57:DF:ED:F1:25:EA:F4:D1:A1:6E:04:A8:B6 X509v3 Authority Key Identifier: keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:b8:0a:75:df:78:0e:ab:78:e0:df:5a:b9:6b:b0:ac:6e:ea: 98:82:05:53:3d:36:7a:ce:ba:cb:10:93:e3:c0:9e:49:f2:11: fc:5a:87:43:b5:38:42:28:8a:0a:ef:71:3d:4a:5a:ff:1a:19: 35:46:ed:ac:0a:f1:ee:ee:08:10:f0:1e:2e:3f:52:43:d5:a1: 6d:b7:4b:66:8d:1e:74:18:73:a0:2d:8b:68:b8:b1:10:d5:79: f9:64:9b:a8:6f:23:5c:62:03:dc:d1:9c:fc:62:bb:d0:63:97: 8c:33:67:57:c3:a0:df:b2:7a:88:39:5a:e1:67:53:f5:81:07: 74:7a:29:b4:40:78:18:2f:81:45:db:53:06:45:63:3d:20:00: 9f:e3:ef:73:7a:3a:35:4b:a1:ff:a2:51:98:6d:c5:47:da:77: 3a:e8:d6:a0:46:3c:d2:aa:7c:fe:12:bc:db:d1:7d:38:9c:20: b3:fc:7b:70:86:3b:5b:22:0b:fc:fb:5f:08:b9:24:73:91:10: 3f:44:ed:17:4e:91:57:b6:25:08:64:57:e3:4f:9e:33:f7:cc: 6f:65:60:52:22:e1:97:5c:9b:25:4d:6d:88:82:2d:bd:50:06: b1:d5:10:4f:28:14:af:69:6a:9f:3e:b9:db:de:c8:93:e4:76: 6a:af:2f:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZgox8eX8C1N4v7ICRWbzEa1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxMjRmYmExZTQwMWMwM2U1YmExY2Q3N2FlOWVlMzljZmQ2 MzFiZmIwHhcNMjUwNzIwMTcwMDM4WhcNMjUwNzIxMTcwMDM4WjAzMTEwLwYDVQQD EyhmODk1NWYyZGQ5MTg4YzU3ZGZlZGYxMjVlYWY0ZDFhMTZlMDRhOGI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxy1ypHpDAYjgGzcAN1NqwGjLNory awFat0CaN6ySwrGTu9v76BpjuQsSCfeAftpiQRKEq8WDWzTKONXuH07nsAEcIcni 3G8oaalvQfqslPTTHiTdiTkrHES4/1Tz9B8pRNOdYhg978KxD0AhStAMMkY85JVG t/3FqRNeh5ufczTl/kkU0YCu30mAYe0hVCGVgynZc9pWBK9zijYcfy3/mJ7QtQvz Fpc7FqWey9fh9DC89STuK/eu7tBKIDh1Xyf6xuWWslQL6t7DLVIiEhrvk0RgrzbS P3LYdggIyBNumSyrdyTeRLGrDePlIaQgMYVQm346S33Sk0kFpn5KNvnoBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPiVXy3ZGIxX3+3xJer00aFuBKi2MB8GA1UdIwQY MBaAFFEk+6HkAcA+W6HNd66e45z9Yxv7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVVNUN29lUUJ3RDVib2MxM3JwN2puUDFqR19zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9iNzE0YWQtMWY3OC00YTEwLThlNjEt YWI4ZjFmMzM4N2VlLzEvVVNUN29lUUJ3RDVib2MxM3JwN2puUDFqR19zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy9iNzE0YWQtMWY3OC00YTEwLThlNjEtYWI4ZjFmMzM4N2Vl LzEvVVNUN29lUUJ3RDVib2MxM3JwN2puUDFqR19zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR7gKdd94 Dqt44N9auWuwrG7qmIIFUz02es66yxCT48CeSfIR/FqHQ7U4QiiKCu9xPUpa/xoZ NUbtrArx7u4IEPAeLj9SQ9WhbbdLZo0edBhzoC2LaLixENV5+WSbqG8jXGID3NGc /GK70GOXjDNnV8Og37J6iDla4WdT9YEHdHoptEB4GC+BRdtTBkVjPSAAn+Pvc3o6 NUuh/6JRmG3FR9p3OujWoEY80qp8/hK829F9OJwgs/x7cIY7WyIL/PtfCLkkc5EQ P0TtF06RV7YlCGRX40+eM/fMb2VgUiLhl1ybJU1tiIItvVAGsdUQTygUr2lqnz65 297Ik+R2aq8vsg== -----END CERTIFICATE-----Generated at Mon Jul 21 02:20:37 2025 by rpki-client