$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft File: rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft (raw, json) Hash identifier: 1RKzm5WqITezNyjK3u1JWQ093ftLM6fI73qcXoJWe88= Subject key identifier: EC:BF:9C:F0:4D:48:A6:3F:CF:51:87:4C:B9:B2:F4:DC:F9:31:12:8F Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Certificate serial: 019A0892A2379636B6E3291331C0C764F5FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft Manifest number: 1730 Signing time: Tue 21 Oct 2025 21:00:18 +0000 Manifest this update: Tue 21 Oct 2025 21:00:18 +0000 Manifest next update: Wed 22 Oct 2025 21:00:18 +0000 Files and hashes: 1: 0ztpdIPZKD6tLdnP79sm1hMOXpI.roa (hash: V+undJDS0h8d8CYJ+c34sHP0OtxUuBa8a+o8Uohmb0E=) 2: 1oM3GP4XRi0mqDBcN0k0C4RTdHY.roa (hash: Eqko1gSCAK/Ec5hGsjBzpPB0Hmmto77uxcqKM6nkuos=) 3: 4rBl4Xgj-eyO-Qb6KkYRdP_q3yA.roa (hash: 9Fg4JBY24DsNxM7h9nmxlQnxm85kk0BWdXCDra924l8=) 4: 5s050sybnU_qDLTadTW4Cbc1oa4.roa (hash: ul22+y65UhFi/PV4KsevDJSKijOmKuUMMb7YcjmOBq0=) 5: AkuNATViTFoUsLRTBmxq5TZta1U.roa (hash: +ALe8BR6dBzO5s8AWGnd/n4M4kjwqZrGPKmd2bf8aB0=) 6: D-_QiVeAYymMyrqyEwwxZVlJ77w.roa (hash: pLHDIfQfn00HxVAd67SY9GUFCYPJH9fT0t4z495xhcU=) 7: I49sO32imbdn9nfJ0l-il2Ef_jY.roa (hash: k2Ksa8ZIkYwAdo7qnIBXutPiCFJfdjd5EjsrD8efaro=) 8: JWGGkRuJCVyXIJf7U_Tllx9GvLo.roa (hash: q2mwtM0pyYItD49ctwOqLjVJYv5g0mJ64QH0B7oRSCM=) 9: PQ4JRK_v8Rb4S6Y1Hjjg1mh8-RM.roa (hash: 6S6SDi+NoevpWtxjp+Phs+mUreAi/RCvfLId1bbLsWc=) 10: SHESx2HqUfWZxboQ6jP2hImYKmU.roa (hash: OlCdziBdwRc0FY5ejIFVQ8Nt867ISEKKLNxKfPnLzFA=) 11: TevPA31zpqIvq6GeQSDxtNa30UQ.roa (hash: 2nDbpMbvjKPaiiXiHqb4sCzw1FXoCOAaM9XlGLGbhC8=) 12: U2a4Mi5anG6MoVx-kSkOlCHuZ9U.roa (hash: WzVg8UcZ00h0mbpXiGBDaneFB3IZyzn0LFRbQNJ9OXc=) 13: UU4qmywXJeD0s-bEtA06YqQJbXY.roa (hash: U8vbKeUDnyxjI4tldoiMN64co7xQZg9nWw+wDHbmz3c=) 14: bicuo27VbekDKZ2baxGyIAeBOBw.roa (hash: SWEpCpnN+xzcUkxLs6Bt4xTFqOqzIoS1IpAm8o8Z7uw=) 15: cbX3FwOgi9rS1ENe_k5BLCxVdg4.roa (hash: 35j9cePlwM12en+EIoj2uwLnq2TReRAiO2SX/9vwgDk=) 16: icTWsoKn_xk3KExZZn417x-Qv84.roa (hash: o9OMiruJYKHV5Ad+C6iuA4/zkZ1aBjsbg8MEUFVbq0o=) 17: nwRRU278nZ-OoZkxunLEdDGvAcI.roa (hash: XtojZB9yoPUFiPBHYDNCJYd8iy1TyLCfmu2Ry8BmvwU=) 18: rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl (hash: oRq9MZ4r04cOEy1o4rS0dz1jQAx/7VyEC5rUZmbbq/s=) 19: ya7mSjgbQNkjSkwREdHvHfCPb0I.roa (hash: qGz6FzpRmDdb9Ho0LXX5sUlrsbd9atIt02hL0IbJ65M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 22 Oct 2025 14:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:08:92:a2:37:96:36:b6:e3:29:13:31:c0:c7:64:f5:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Validity Not Before: Oct 21 21:00:18 2025 GMT Not After : Oct 22 21:00:18 2025 GMT Subject: CN=ecbf9cf04d48a63fcf51874cb9b2f4dcf931128f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:80:1b:fe:36:f9:f0:c7:dc:3f:8a:22:e7:92: 85:2d:ab:2b:22:e1:d4:79:0b:1e:bf:41:e9:3d:6d: eb:70:2c:ea:66:fe:fc:d6:a6:7e:36:fe:8a:39:7a: 14:e0:c6:9f:d8:31:6b:d7:16:2d:d2:5d:fe:8b:5c: a7:7e:a1:a1:37:10:6d:8a:60:ce:a4:61:fb:bb:b6: 9e:af:09:fb:ea:98:b7:20:71:0f:30:c2:f0:71:02: 1e:dd:75:d2:1f:7f:e1:79:08:c9:8e:51:bb:df:ba: f7:de:dc:dc:16:81:fe:4c:bd:a6:0c:d0:e4:70:34: 62:6d:4f:fb:6f:46:9f:5f:d2:14:1b:85:e7:10:4b: 03:16:96:9c:c4:58:62:b7:f7:49:c4:0d:7f:31:9c: d6:f7:d2:40:b4:12:c8:8d:d1:81:86:03:c9:68:e3: 68:a2:46:54:7b:8f:8d:18:6f:6c:11:6c:29:aa:11: ee:4c:eb:d3:4e:d1:42:68:5a:80:62:e4:e2:6d:03: b5:a8:95:12:82:9f:de:19:95:6a:16:40:d5:5a:cb: 63:46:0a:70:be:60:eb:19:66:d8:19:e5:ae:6e:4d: 84:79:2a:e6:22:85:bb:13:f5:62:2b:2a:61:12:be: 8e:00:26:ad:60:b4:ff:3e:d0:8f:ea:43:3f:74:ef: e7:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:BF:9C:F0:4D:48:A6:3F:CF:51:87:4C:B9:B2:F4:DC:F9:31:12:8F X509v3 Authority Key Identifier: keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:9b:70:66:1b:7c:5c:71:ec:d5:b4:e0:fb:eb:6b:d1:c7:d8: 03:9d:b4:5e:cc:bb:07:00:15:c1:40:0b:e3:f8:ef:4e:b5:9f: d2:7c:07:af:30:97:4b:c4:c3:17:79:99:1b:89:cb:11:74:1c: ed:7a:02:2f:7b:a0:35:44:23:ed:af:46:d5:e9:72:fa:33:01: 1d:3f:5d:a4:5e:4c:de:47:9a:80:f9:7a:a8:b8:02:00:c7:57: 30:6b:50:42:70:f3:ac:32:d9:a5:e9:2a:24:91:0a:e1:b0:e2: a1:9b:78:3c:f2:99:58:fc:dd:2d:e7:12:38:7a:f2:3f:82:ee: a1:91:e1:90:ee:9c:a8:c7:30:58:97:f9:f2:d5:a8:ad:54:8f: 59:47:01:2b:5b:e4:d7:54:a6:67:a3:96:a1:28:e3:16:23:1e: c0:23:df:eb:5b:9d:67:0b:c8:d6:5c:07:92:5a:ef:2f:52:54: 42:d0:6a:f6:a9:24:1a:5e:06:e2:cd:4e:ed:75:74:ea:77:6b: da:07:cd:90:92:05:f2:d1:e0:43:aa:6b:60:1f:04:84:ec:7f: 9b:89:15:a2:26:71:7b:17:5f:47:1d:a5:71:f0:6e:b3:02:74: 2a:ab:8f:bc:e8:ae:34:f8:e3:2f:b6:1d:35:0b:d5:2d:d8:19: 8c:c9:f0:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZoIkqI3lja24ykTMcDHZPX9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMGRhNDNiNGE1ZDNkYjc4YmEzZjc3NGU1YjMxYjc3MDM3 MjAyZDUwHhcNMjUxMDIxMjEwMDE4WhcNMjUxMDIyMjEwMDE4WjAzMTEwLwYDVQQD EyhlY2JmOWNmMDRkNDhhNjNmY2Y1MTg3NGNiOWIyZjRkY2Y5MzExMjhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5YAb/jb58MfcP4oi55KFLasrIuHU eQsev0HpPW3rcCzqZv781qZ+Nv6KOXoU4Maf2DFr1xYt0l3+i1ynfqGhNxBtimDO pGH7u7aerwn76pi3IHEPMMLwcQIe3XXSH3/heQjJjlG737r33tzcFoH+TL2mDNDk cDRibU/7b0afX9IUG4XnEEsDFpacxFhit/dJxA1/MZzW99JAtBLIjdGBhgPJaONo okZUe4+NGG9sEWwpqhHuTOvTTtFCaFqAYuTibQO1qJUSgp/eGZVqFkDVWstjRgpw vmDrGWbYGeWubk2EeSrmIoW7E/ViKyphEr6OACatYLT/PtCP6kM/dO/newIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOy/nPBNSKY/z1GHTLmy9Nz5MRKPMB8GA1UdIwQY MBaAFK0NpDtKXT23i6P3dOWzG3cDcgLVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTct YzUxNWYzNTRjYzVhLzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTctYzUxNWYzNTRjYzVh LzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE5twZht8 XHHs1bTg++tr0cfYA520Xsy7BwAVwUAL4/jvTrWf0nwHrzCXS8TDF3mZG4nLEXQc 7XoCL3ugNUQj7a9G1ely+jMBHT9dpF5M3keagPl6qLgCAMdXMGtQQnDzrDLZpekq JJEK4bDioZt4PPKZWPzdLecSOHryP4LuoZHhkO6cqMcwWJf58tWorVSPWUcBK1vk 11SmZ6OWoSjjFiMewCPf61udZwvI1lwHklrvL1JUQtBq9qkkGl4G4s1O7XV06ndr 2gfNkJIF8tHgQ6prYB8EhOx/m4kVoiZxexdfRx2lcfBuswJ0KquPvOiuNPjjL7Yd NQvVLdgZjMnwJQ== -----END CERTIFICATE-----Generated at Tue Oct 21 23:37:57 2025 by rpki-client