$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft File: bSDd05jayPYswSUmMl8YIftyT3U.mft (raw, json) Hash identifier: M5XtFrFOZotArgZIPZwPZnE8+9n69sH9x8dz3cAqkQk= Subject key identifier: 2C:07:E8:67:64:4B:0E:07:DD:FC:3E:8E:F8:EF:E9:64:48:DC:74:EE Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Certificate serial: 01991F541FC4CCF9450211C3F17BFA6BA602 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft Manifest number: 156B Signing time: Sat 06 Sep 2025 14:00:30 +0000 Manifest this update: Sat 06 Sep 2025 14:00:30 +0000 Manifest next update: Sun 07 Sep 2025 14:00:30 +0000 Files and hashes: 1: 1-wNbXwWq_rcd31KdtUHBjHqlOYw.roa (hash: Vna41k3RUzjuu4Rno9oMx5pWO8RDhSOU/oHNJLNrfMg=) 2: 1cBjbhQO7ncLuCJPPP3ax-BP1rc.roa (hash: Jy5kekjzCQxDaa0ItIoXnMNYM41DXr2Kna+F8NZUTeI=) 3: 8hRBXjeqaNVqsRXwD3teVm2IptQ.roa (hash: 7trj/DN0w0nR+thBLV8DeXduqLYmWtu9yjYZdu4vyJw=) 4: Bx__fFiMMTggkGq_nd5kX3xmUcg.roa (hash: mKBt1ZL1NN3yHJQYqC4MudwNnNLAyAG6zsc+LH7T2yM=) 5: CLnjMLjaN6TgfiTPKuCp1qWork0.roa (hash: MihJ/9Q2aOSD5kcM3rgBq2rOZB5XjrnOSNAyQ0gi6BU=) 6: Ff-r3-0iyLfe2eC4tftKl7r4ksA.roa (hash: XBCuFAzYlK+KS0b0qdNX4BGXCyC4kES1ua5iNmQkljo=) 7: Hd6EfoaV6nT3HCN6XaeOjid6KeE.roa (hash: jB+LwnmkqI7LD0NI0i2IOq5xZm+2j2nKXigXc5yngNg=) 8: I-d3mGhKAHlT8J9wAcisFqLqGFQ.roa (hash: +t66xrsaCPSb5WzTrykjh+nmEbajrQRTzYzj7itFceY=) 9: Kdr1IpxFOfOedDgEd0rr_-GJc6w.roa (hash: 4mvPk5YCIebKrrCqmTuHh7apgwePzT2ptGjzqSnMQ2k=) 10: MPADllIHWdYho5SL9cNb4fTjF5g.roa (hash: 0EWuYNC8MZ5sfsDzG+GHQhkCofnYevzEpH/1M0Pt09c=) 11: XhfMqezXvZ9Gr1SfZAFxxiBLdqw.roa (hash: QCoblTw77lmvmm3xeIb8Fg5RScedsC6Svua+HgD7wlE=) 12: _363_dFkTrxVWJRfmKGhVcGEYxw.roa (hash: EFI43I2qKJ1jnWCRyPrzhjddU2bZAD3g2m1Gb9lWY6w=) 13: aIC6ROQmIBkJtMQV3BLilIyM4Jc.roa (hash: +ZDiWP7vx5S7AAhHLcn6ylil5bTpyx1nO3rHC5JU56A=) 14: bSDd05jayPYswSUmMl8YIftyT3U.crl (hash: i1Zbfv6ed+qives4RH8W6cxPzseo1CHYRZ8Y18cadJU=) 15: irOUAsVrlxFg5m013u0wtydduUU.roa (hash: z7Yif2k8ig/75nD80USkf23TbWyOlu3D9+tkTdBp9Ks=) 16: o5T0k_44TSkIgUx_Ff4U-HFRZqU.roa (hash: IFaPUBy92F06F1cq2klHPE/ZCTKON9EkjF2KsBLKJXw=) 17: qSlaLn-7EYhvBs__DrzBebluApA.roa (hash: /m9RdlfwCPFmSdntKKJTP1sX7ETuhSL8wJhpD8u8EQU=) 18: rgzdAffmWWAVB7HsZPyDscdDfUs.roa (hash: PHFUtB9FTI42HYVNCn11UAKgdzJHvZkAvCdcalSeSVs=) 19: vyh_XE53itxxZ2DN3zJiSHad7oQ.roa (hash: BwwJTDqClirjAI8z/+dm20U+LpRGL9usTj1KRJXE4gs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Sep 2025 11:14:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:1f:54:1f:c4:cc:f9:45:02:11:c3:f1:7b:fa:6b:a6:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Validity Not Before: Sep 6 14:00:30 2025 GMT Not After : Sep 7 14:00:30 2025 GMT Subject: CN=2c07e867644b0e07ddfc3e8ef8efe96448dc74ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:5c:50:a9:63:34:ae:01:b6:43:54:ba:26:28: 9b:e7:41:26:fe:fb:83:79:1c:1a:7d:39:9b:ac:d0: 43:49:de:06:8e:ea:a5:d4:61:78:d5:4f:39:ae:66: c7:24:59:d2:2c:c4:d1:7a:56:db:88:3a:4d:e3:3e: 47:87:98:dd:ce:b0:97:1c:b0:f4:70:18:db:ad:d3: 9c:4d:16:b9:17:8d:a3:9a:44:b0:bd:7f:09:40:c5: d0:07:b4:07:d4:05:9e:de:82:bb:e6:10:fb:d4:25: bb:2e:2c:fb:04:2a:e8:56:b3:25:25:37:3a:dc:b2: df:7c:28:53:10:c6:e9:87:1e:02:10:ff:e8:68:81: e9:2e:81:12:71:20:b3:dc:c4:08:56:91:56:85:fb: df:50:da:0c:c5:14:b6:11:d3:6b:72:d8:9e:ce:6f: f2:a4:10:a6:5d:73:83:8d:e7:fd:fb:65:55:17:02: cf:ae:8a:b8:72:cc:5b:76:b0:b9:73:52:fa:68:a4: a8:1c:b2:b9:df:d6:f2:b3:c3:a3:e5:12:27:1a:30: 27:f7:ba:7f:15:d2:9e:da:a5:e4:b7:e9:04:20:ca: 12:d0:f7:8c:58:dc:57:32:34:ed:6b:9b:04:ca:80: 28:50:50:05:89:a5:c3:43:be:57:dd:83:c5:bd:f9: 76:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:07:E8:67:64:4B:0E:07:DD:FC:3E:8E:F8:EF:E9:64:48:DC:74:EE X509v3 Authority Key Identifier: keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:fd:e5:57:27:84:02:64:fd:e3:3b:84:f4:3c:34:b1:81:04: c8:f5:4c:8a:38:05:c8:16:66:08:ac:dc:74:5b:71:04:a6:c7: e1:79:24:5b:ec:30:90:d1:6a:70:05:a3:8d:c9:2e:f1:c7:a1: f4:dc:79:55:55:81:a8:95:53:11:be:6a:20:59:e8:f3:2d:b9: 70:d0:69:67:8f:b8:5d:ce:89:41:15:19:47:3e:d3:c9:37:2e: 7f:8b:1b:ff:ef:de:74:1c:79:fc:bc:cc:b6:89:26:fe:dd:ff: 4e:c9:9d:37:ae:0c:0d:fb:81:42:e0:0b:e3:45:dc:9a:8f:e0: b4:25:7f:10:ba:1f:6c:b5:79:fa:ac:d6:bd:80:b3:3f:a8:e4: c6:76:b3:2d:c6:43:78:d6:b9:86:e7:8a:dd:94:9d:8b:a7:07: c3:34:b2:8b:e6:cd:97:8d:df:15:ca:a4:46:8a:fc:ca:35:05: 3c:86:85:f3:ce:61:25:da:45:5c:06:d6:14:09:01:0e:d9:b7: fe:93:52:00:b9:d0:43:f0:cf:21:f7:51:db:5f:45:96:d2:57: ea:13:84:eb:08:f4:9e:0b:83:08:3d:3d:fa:f5:54:c6:91:0f: 02:2b:bc:fd:d8:6b:67:66:ab:97:7e:1e:75:12:be:2f:fc:6b: 31:c4:fb:12 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZkfVB/EzPlFAhHD8Xv6a6YCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMjBkZGQzOThkYWM4ZjYyY2MxMjUyNjMyNWYxODIxZmI3 MjRmNzUwHhcNMjUwOTA2MTQwMDMwWhcNMjUwOTA3MTQwMDMwWjAzMTEwLwYDVQQD EygyYzA3ZTg2NzY0NGIwZTA3ZGRmYzNlOGVmOGVmZTk2NDQ4ZGM3NGVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnVxQqWM0rgG2Q1S6Jiib50Em/vuD eRwafTmbrNBDSd4Gjuql1GF41U85rmbHJFnSLMTRelbbiDpN4z5Hh5jdzrCXHLD0 cBjbrdOcTRa5F42jmkSwvX8JQMXQB7QH1AWe3oK75hD71CW7Liz7BCroVrMlJTc6 3LLffChTEMbphx4CEP/oaIHpLoEScSCz3MQIVpFWhfvfUNoMxRS2EdNrctiezm/y pBCmXXODjef9+2VVFwLProq4csxbdrC5c1L6aKSoHLK539bys8Oj5RInGjAn97p/ FdKe2qXkt+kEIMoS0PeMWNxXMjTta5sEyoAoUFAFiaXDQ75X3YPFvfl2tQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCwH6GdkSw4H3fw+jvjv6WRI3HTuMB8GA1UdIwQY MBaAFG0g3dOY2sj2LMElJjJfGCH7ck91MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmIt MzZkZTY1NzIzMmJlLzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmItMzZkZTY1NzIzMmJl LzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ/3lVyeE AmT94zuE9Dw0sYEEyPVMijgFyBZmCKzcdFtxBKbH4XkkW+wwkNFqcAWjjcku8ceh 9Nx5VVWBqJVTEb5qIFno8y25cNBpZ4+4Xc6JQRUZRz7TyTcuf4sb/+/edBx5/LzM tokm/t3/TsmdN64MDfuBQuAL40Xcmo/gtCV/ELofbLV5+qzWvYCzP6jkxnazLcZD eNa5hueK3ZSdi6cHwzSyi+bNl43fFcqkRor8yjUFPIaF885hJdpFXAbWFAkBDtm3 /pNSALnQQ/DPIfdR219FltJX6hOE6wj0nguDCD09+vVUxpEPAiu8/dhrZ2arl34e dRK+L/xrMcT7Eg== -----END CERTIFICATE-----Generated at Sat Sep 6 16:40:10 2025 by rpki-client