$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft File: bSDd05jayPYswSUmMl8YIftyT3U.mft (raw, json) Hash identifier: D/aMB8vlaKumSxGFGmq4vCchx6yAOZo3nKGndolsGgM= Subject key identifier: 24:5E:BB:B6:D4:4F:C1:70:7C:1A:35:20:68:07:BD:C8:09:B8:B8:11 Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Certificate serial: 019A0824A5A446B06ECA0924231C75D3EE17 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft Manifest number: 15EC Signing time: Tue 21 Oct 2025 19:00:10 +0000 Manifest this update: Tue 21 Oct 2025 19:00:10 +0000 Manifest next update: Wed 22 Oct 2025 19:00:10 +0000 Files and hashes: 1: 1-wNbXwWq_rcd31KdtUHBjHqlOYw.roa (hash: Vna41k3RUzjuu4Rno9oMx5pWO8RDhSOU/oHNJLNrfMg=) 2: 1cBjbhQO7ncLuCJPPP3ax-BP1rc.roa (hash: Jy5kekjzCQxDaa0ItIoXnMNYM41DXr2Kna+F8NZUTeI=) 3: 5eRHhosWaEn81OkNyusCZwVd7dE.roa (hash: ocfP0fS6gnrVeOxLsKmob4730X36T0aRDwqF+FQB7po=) 4: 7dOxBPA-NVqHM_R34TmdQX-eiVk.roa (hash: F50CnYYnm4HGmpVuvVtE+trmrhmEhsgxat1JiN/ij8U=) 5: 8hRBXjeqaNVqsRXwD3teVm2IptQ.roa (hash: 7trj/DN0w0nR+thBLV8DeXduqLYmWtu9yjYZdu4vyJw=) 6: DYlegyxuugcrHdLCVkPaKjiFwIA.roa (hash: ZmFhBg5sskdoXlqUSzUPJuG9Erq+ftlETUSEq7NYxR0=) 7: Ff-r3-0iyLfe2eC4tftKl7r4ksA.roa (hash: XBCuFAzYlK+KS0b0qdNX4BGXCyC4kES1ua5iNmQkljo=) 8: Hd6EfoaV6nT3HCN6XaeOjid6KeE.roa (hash: jB+LwnmkqI7LD0NI0i2IOq5xZm+2j2nKXigXc5yngNg=) 9: I-d3mGhKAHlT8J9wAcisFqLqGFQ.roa (hash: +t66xrsaCPSb5WzTrykjh+nmEbajrQRTzYzj7itFceY=) 10: Kdr1IpxFOfOedDgEd0rr_-GJc6w.roa (hash: 4mvPk5YCIebKrrCqmTuHh7apgwePzT2ptGjzqSnMQ2k=) 11: RpFEf2i-KdvJWns5f60QFIiul8A.roa (hash: IhnLzk7nknFDNbFcmh5KMyW66l5exCsFA25jgANhkOU=) 12: S1WNVPH-yhQYVBlY1oxGoA4pYB8.roa (hash: /KwKr2NjkF6vHZXTNqR2GuVfyY5uthmni4bhiTmH1io=) 13: TKHVPCgKWgmlRhWEubfTc_2iNdo.roa (hash: kNRIFdkqpRBsn7JG22+KFQspfd2argAfeCH1zb4/CE4=) 14: V2uTQCIG7cpvASw3b1o6E1FEC9w.roa (hash: lSRRwHc5aUwf96o9oByRNWmxPAHRtbICzuXtltcIQaU=) 15: YC4l494MMi7jTGcWqfTEBZhM2VY.roa (hash: DmaVqTngLmKv88xcCzv/bh/3DcOXypOgid+RGqcY+/k=) 16: aIC6ROQmIBkJtMQV3BLilIyM4Jc.roa (hash: +ZDiWP7vx5S7AAhHLcn6ylil5bTpyx1nO3rHC5JU56A=) 17: bSDd05jayPYswSUmMl8YIftyT3U.crl (hash: cndeffhtuOazFkZMh9GRF5XYZSVy7P2myO6di7nV4d8=) 18: hmhsGXGseV2PwIXfLkkzy9brjH8.roa (hash: LD7+KdCf6+q+GHIUMNOAE/kbGPimpdSNwZOTxjTUsL4=) 19: mrPMPRRrlkwWoRTckPExVReGdzU.roa (hash: udQkxnQ/puhpRZBZD7aeBvy0qFXVY4xyBvq7R9flC08=) 20: o5T0k_44TSkIgUx_Ff4U-HFRZqU.roa (hash: IFaPUBy92F06F1cq2klHPE/ZCTKON9EkjF2KsBLKJXw=) 21: qSlaLn-7EYhvBs__DrzBebluApA.roa (hash: /m9RdlfwCPFmSdntKKJTP1sX7ETuhSL8wJhpD8u8EQU=) 22: rgzdAffmWWAVB7HsZPyDscdDfUs.roa (hash: PHFUtB9FTI42HYVNCn11UAKgdzJHvZkAvCdcalSeSVs=) 23: vyh_XE53itxxZ2DN3zJiSHad7oQ.roa (hash: BwwJTDqClirjAI8z/+dm20U+LpRGL9usTj1KRJXE4gs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 22 Oct 2025 14:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:08:24:a5:a4:46:b0:6e:ca:09:24:23:1c:75:d3:ee:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Validity Not Before: Oct 21 19:00:10 2025 GMT Not After : Oct 22 19:00:10 2025 GMT Subject: CN=245ebbb6d44fc1707c1a35206807bdc809b8b811 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0f:cd:07:5c:fb:61:fd:da:d4:ea:a8:8c:d1: 05:2e:dc:c3:4d:67:dd:21:29:cd:18:bc:ed:1b:84: ea:ef:12:33:82:a0:c4:8a:19:d0:0a:be:56:3e:a1: bc:f1:29:73:e7:c1:1e:00:b8:69:41:81:7b:47:03: 71:21:bf:dc:14:19:0a:d5:18:46:e4:52:1d:ad:e5: fd:57:6b:0d:6e:8e:2f:e2:3d:f6:99:3c:9c:b7:27: 97:e1:2a:7e:49:76:13:c3:ca:ac:8e:7b:18:cb:ff: 47:31:c6:40:c8:53:ef:7a:ef:41:f6:6e:a8:dc:11: 16:09:9f:35:ab:99:86:e0:c2:97:d9:63:b8:d3:08: 4f:f3:8d:53:4e:45:a7:fe:d2:99:04:20:0b:49:a4: 06:f8:5c:51:0c:64:1c:a6:da:e2:55:74:01:54:21: 0d:60:ee:c7:93:fe:98:34:0c:cc:2c:5d:a3:80:69: 22:05:96:b3:c5:21:1b:6b:78:c3:4c:f3:3a:33:93: 9d:8e:4d:f9:d8:ad:da:7b:17:a6:a7:93:4a:33:be: bc:0c:33:48:0f:ce:84:0a:83:07:75:4a:dd:58:7e: bf:cd:95:ba:30:fe:33:74:4d:7e:3e:5d:f2:19:68: 39:32:b5:ae:3d:75:5a:0a:91:ba:29:33:b5:90:bc: 50:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:5E:BB:B6:D4:4F:C1:70:7C:1A:35:20:68:07:BD:C8:09:B8:B8:11 X509v3 Authority Key Identifier: keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:ce:2e:a6:89:d9:30:ca:d0:87:48:21:07:8c:db:9d:0d:78: d8:79:c3:c6:c1:19:95:79:12:fc:07:b7:e4:75:f0:39:f1:50: 86:2c:42:49:6e:37:9e:14:0c:00:96:e8:78:8b:6a:6a:5b:54: 62:d5:48:b5:a6:04:5e:8f:bf:70:c9:12:a8:7d:ec:25:93:69: af:98:2b:f6:f1:b2:0e:30:da:b2:d6:8c:b3:21:5c:e5:17:8a: e0:41:92:7e:e4:8c:e2:3c:86:44:71:9f:35:b9:cf:57:26:22: 50:c2:97:5f:1f:a3:70:a1:9c:2f:db:99:94:b7:ca:7d:69:98: ed:35:ec:6e:e8:2f:04:71:af:0e:60:d2:fe:cc:3d:8f:9a:42: 91:7a:fd:0f:27:cf:57:8f:7f:73:14:b1:59:a6:dc:17:19:e2: eb:10:31:1d:5f:e9:7a:19:89:5b:26:60:69:10:a8:5c:6d:75: e6:9d:52:6e:d8:9a:6d:58:fb:2a:cf:87:1c:41:2e:f3:7d:70: 41:e1:15:c3:2f:a3:60:aa:c1:45:39:9f:de:c4:df:3f:6d:08: 1f:b9:8f:36:aa:c8:da:06:25:71:1d:1a:5a:b8:59:e4:ff:0b: 89:65:e7:a1:da:aa:c4:b9:04:98:fb:31:88:ee:e4:7d:77:6c: 46:95:2a:b3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZoIJKWkRrBuygkkIxx10+4XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMjBkZGQzOThkYWM4ZjYyY2MxMjUyNjMyNWYxODIxZmI3 MjRmNzUwHhcNMjUxMDIxMTkwMDEwWhcNMjUxMDIyMTkwMDEwWjAzMTEwLwYDVQQD EygyNDVlYmJiNmQ0NGZjMTcwN2MxYTM1MjA2ODA3YmRjODA5YjhiODExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwQ/NB1z7Yf3a1OqojNEFLtzDTWfd ISnNGLztG4Tq7xIzgqDEihnQCr5WPqG88Slz58EeALhpQYF7RwNxIb/cFBkK1RhG 5FIdreX9V2sNbo4v4j32mTyctyeX4Sp+SXYTw8qsjnsYy/9HMcZAyFPveu9B9m6o 3BEWCZ81q5mG4MKX2WO40whP841TTkWn/tKZBCALSaQG+FxRDGQcptriVXQBVCEN YO7Hk/6YNAzMLF2jgGkiBZazxSEba3jDTPM6M5Odjk352K3aexemp5NKM768DDNI D86ECoMHdUrdWH6/zZW6MP4zdE1+Pl3yGWg5MrWuPXVaCpG6KTO1kLxQiQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCReu7bUT8FwfBo1IGgHvcgJuLgRMB8GA1UdIwQY MBaAFG0g3dOY2sj2LMElJjJfGCH7ck91MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmIt MzZkZTY1NzIzMmJlLzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmItMzZkZTY1NzIzMmJl LzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXM4uponZ MMrQh0ghB4zbnQ142HnDxsEZlXkS/Ae35HXwOfFQhixCSW43nhQMAJboeItqaltU YtVItaYEXo+/cMkSqH3sJZNpr5gr9vGyDjDastaMsyFc5ReK4EGSfuSM4jyGRHGf NbnPVyYiUMKXXx+jcKGcL9uZlLfKfWmY7TXsbugvBHGvDmDS/sw9j5pCkXr9DyfP V49/cxSxWabcFxni6xAxHV/pehmJWyZgaRCoXG115p1SbtiabVj7Ks+HHEEu831w QeEVwy+jYKrBRTmf3sTfP20IH7mPNqrI2gYlcR0aWrhZ5P8LiWXnodqqxLkEmPsx iO7kfXdsRpUqsw== -----END CERTIFICATE-----Generated at Tue Oct 21 21:28:24 2025 by rpki-client