$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft File: bSDd05jayPYswSUmMl8YIftyT3U.mft (raw, json) Hash identifier: klLz+w2BLtRvA2gXUALwHtNjSHuq+4vz9PGxRooxrTs= Subject key identifier: 13:9E:55:32:C0:F2:8F:94:B8:E0:B7:64:61:C2:CA:C4:D2:02:81:AE Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Certificate serial: 019741E5D920ED363ABEEA87B9BB6D3481F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft Manifest number: 1471 Signing time: Thu 05 Jun 2025 21:01:11 +0000 Manifest this update: Thu 05 Jun 2025 21:01:11 +0000 Manifest next update: Fri 06 Jun 2025 21:01:11 +0000 Files and hashes: 1: 1cBjbhQO7ncLuCJPPP3ax-BP1rc.roa (hash: Jy5kekjzCQxDaa0ItIoXnMNYM41DXr2Kna+F8NZUTeI=) 2: 8hRBXjeqaNVqsRXwD3teVm2IptQ.roa (hash: 7trj/DN0w0nR+thBLV8DeXduqLYmWtu9yjYZdu4vyJw=) 3: Bx__fFiMMTggkGq_nd5kX3xmUcg.roa (hash: mKBt1ZL1NN3yHJQYqC4MudwNnNLAyAG6zsc+LH7T2yM=) 4: CLnjMLjaN6TgfiTPKuCp1qWork0.roa (hash: MihJ/9Q2aOSD5kcM3rgBq2rOZB5XjrnOSNAyQ0gi6BU=) 5: Ff-r3-0iyLfe2eC4tftKl7r4ksA.roa (hash: XBCuFAzYlK+KS0b0qdNX4BGXCyC4kES1ua5iNmQkljo=) 6: Hd6EfoaV6nT3HCN6XaeOjid6KeE.roa (hash: jB+LwnmkqI7LD0NI0i2IOq5xZm+2j2nKXigXc5yngNg=) 7: Kdr1IpxFOfOedDgEd0rr_-GJc6w.roa (hash: 4mvPk5YCIebKrrCqmTuHh7apgwePzT2ptGjzqSnMQ2k=) 8: MPADllIHWdYho5SL9cNb4fTjF5g.roa (hash: 0EWuYNC8MZ5sfsDzG+GHQhkCofnYevzEpH/1M0Pt09c=) 9: XhfMqezXvZ9Gr1SfZAFxxiBLdqw.roa (hash: QCoblTw77lmvmm3xeIb8Fg5RScedsC6Svua+HgD7wlE=) 10: _363_dFkTrxVWJRfmKGhVcGEYxw.roa (hash: EFI43I2qKJ1jnWCRyPrzhjddU2bZAD3g2m1Gb9lWY6w=) 11: aIC6ROQmIBkJtMQV3BLilIyM4Jc.roa (hash: +ZDiWP7vx5S7AAhHLcn6ylil5bTpyx1nO3rHC5JU56A=) 12: bSDd05jayPYswSUmMl8YIftyT3U.crl (hash: bLcdVDg4ICGo7sdHCQAuHGHebNfZnTkq9HM66c/Y6Bc=) 13: irOUAsVrlxFg5m013u0wtydduUU.roa (hash: z7Yif2k8ig/75nD80USkf23TbWyOlu3D9+tkTdBp9Ks=) 14: o5T0k_44TSkIgUx_Ff4U-HFRZqU.roa (hash: IFaPUBy92F06F1cq2klHPE/ZCTKON9EkjF2KsBLKJXw=) 15: q9StAyu8IQxQODGldzud6Hz7gjM.roa (hash: HxF/ydsfM4P76p2qg7HDS8Ct7rDXryB8JaDzIZFolV4=) 16: qSlaLn-7EYhvBs__DrzBebluApA.roa (hash: /m9RdlfwCPFmSdntKKJTP1sX7ETuhSL8wJhpD8u8EQU=) 17: rgzdAffmWWAVB7HsZPyDscdDfUs.roa (hash: PHFUtB9FTI42HYVNCn11UAKgdzJHvZkAvCdcalSeSVs=) 18: vyh_XE53itxxZ2DN3zJiSHad7oQ.roa (hash: BwwJTDqClirjAI8z/+dm20U+LpRGL9usTj1KRJXE4gs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Jun 2025 20:42:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:41:e5:d9:20:ed:36:3a:be:ea:87:b9:bb:6d:34:81:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Validity Not Before: Jun 5 21:01:11 2025 GMT Not After : Jun 6 21:01:11 2025 GMT Subject: CN=139e5532c0f28f94b8e0b76461c2cac4d20281ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:e0:37:b4:ed:23:78:96:dd:f3:ad:d8:f3:f9: d2:a9:67:c6:c1:a0:4a:87:ca:7c:63:e6:4d:aa:2a: e3:1e:48:69:4c:77:c4:56:ec:ef:70:5d:d0:1e:95: 1a:b9:64:85:58:fe:db:c3:76:05:4a:3e:ac:34:c0: 77:ed:80:7e:f7:4e:f1:e3:3b:9c:9f:45:49:6d:ad: 02:b7:74:b8:0e:d3:b0:5d:ae:9b:bd:07:7e:23:da: e6:69:57:04:6d:02:a3:5f:ed:a9:23:30:7f:92:f8: 22:da:9e:55:52:42:e1:a6:4f:cd:26:11:bb:d5:b5: 68:03:96:f8:35:ab:b4:55:d6:c9:98:00:55:27:ca: a0:a5:3f:64:e8:50:54:e5:9a:d6:04:54:86:33:39: d8:2e:fc:df:0a:b3:97:d3:af:ff:aa:dd:d5:3c:8d: 5e:8c:4f:cf:1e:3f:29:4f:77:33:51:a6:a8:35:9c: 05:09:6a:42:db:4e:92:01:df:ea:8e:27:fc:ba:95: 25:89:07:17:fd:c1:61:da:4b:55:32:ff:47:60:06: dc:53:6b:98:63:ca:12:51:20:09:ba:5d:69:2f:2d: a9:6f:5a:d4:92:7d:9c:ca:51:64:0e:7e:54:96:8e: 6c:e7:03:bb:35:6a:12:42:d1:18:6b:54:56:9c:e9: eb:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:9E:55:32:C0:F2:8F:94:B8:E0:B7:64:61:C2:CA:C4:D2:02:81:AE X509v3 Authority Key Identifier: keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:73:80:3a:d9:2c:60:9c:f9:d2:ab:0e:1c:ed:4c:8a:3c:32: 8c:94:f8:7c:a3:e8:79:6d:79:4e:b8:c7:f8:6c:32:13:61:f9: 08:c6:01:2b:d6:fb:3c:36:de:a9:86:30:3b:71:7d:4b:6a:b8: 89:64:87:c1:1c:ad:da:a8:47:a6:8e:a2:2c:5b:bd:73:46:31: ff:52:32:f3:3e:bf:65:13:03:21:cf:e0:16:85:7c:87:cd:ba: 98:4f:f5:ca:ef:e0:c0:6f:46:87:11:00:1e:5e:c3:ca:c3:32: 5f:f5:f9:49:bd:10:63:58:2a:b7:91:14:a8:92:91:d3:2b:ce: 36:c6:b1:ce:bd:13:31:e2:54:b6:f0:5d:aa:98:37:61:4a:d9: 61:34:bf:d8:04:da:8f:cf:5a:c2:1c:d8:ec:7a:08:ca:4c:2e: d4:a4:47:b1:34:85:25:2c:a3:4f:22:f6:27:b1:2a:a7:a0:f4: 15:af:a9:a9:63:4e:2a:b5:ab:c6:63:8c:f1:ca:0e:a2:6b:cc: 2a:4d:29:e6:1a:28:0a:d6:95:75:87:4e:8e:b7:99:31:87:2f: 29:b7:80:80:b9:2e:2d:59:84:c1:05:df:45:19:f9:7b:bc:af: e3:d1:57:c7:13:c2:f2:d3:e2:8a:1c:af:17:57:6a:46:3a:71: f4:10:04:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdB5dkg7TY6vuqHubttNIH1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMjBkZGQzOThkYWM4ZjYyY2MxMjUyNjMyNWYxODIxZmI3 MjRmNzUwHhcNMjUwNjA1MjEwMTExWhcNMjUwNjA2MjEwMTExWjAzMTEwLwYDVQQD EygxMzllNTUzMmMwZjI4Zjk0YjhlMGI3NjQ2MWMyY2FjNGQyMDI4MWFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/eA3tO0jeJbd863Y8/nSqWfGwaBK h8p8Y+ZNqirjHkhpTHfEVuzvcF3QHpUauWSFWP7bw3YFSj6sNMB37YB+907x4zuc n0VJba0Ct3S4DtOwXa6bvQd+I9rmaVcEbQKjX+2pIzB/kvgi2p5VUkLhpk/NJhG7 1bVoA5b4Nau0VdbJmABVJ8qgpT9k6FBU5ZrWBFSGMznYLvzfCrOX06//qt3VPI1e jE/PHj8pT3czUaaoNZwFCWpC206SAd/qjif8upUliQcX/cFh2ktVMv9HYAbcU2uY Y8oSUSAJul1pLy2pb1rUkn2cylFkDn5Ulo5s5wO7NWoSQtEYa1RWnOnrSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBOeVTLA8o+UuOC3ZGHCysTSAoGuMB8GA1UdIwQY MBaAFG0g3dOY2sj2LMElJjJfGCH7ck91MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmIt MzZkZTY1NzIzMmJlLzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmItMzZkZTY1NzIzMmJl LzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHnOAOtks YJz50qsOHO1MijwyjJT4fKPoeW15TrjH+GwyE2H5CMYBK9b7PDbeqYYwO3F9S2q4 iWSHwRyt2qhHpo6iLFu9c0Yx/1Iy8z6/ZRMDIc/gFoV8h826mE/1yu/gwG9GhxEA Hl7DysMyX/X5Sb0QY1gqt5EUqJKR0yvONsaxzr0TMeJUtvBdqpg3YUrZYTS/2ATa j89awhzY7HoIykwu1KRHsTSFJSyjTyL2J7Eqp6D0Fa+pqWNOKrWrxmOM8coOomvM Kk0p5hooCtaVdYdOjreZMYcvKbeAgLkuLVmEwQXfRRn5e7yv49FXxxPC8tPiihyv F1dqRjpx9BAEkA== -----END CERTIFICATE-----Generated at Fri Jun 6 04:56:04 2025 by rpki-client