$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft File: 520NqzR6OOK4e1oiovfJ4hwYybw.mft (raw, json) Hash identifier: S0nHrWt5IJU7WHVwPajTJzloknzv0+kSSp95ApzQcKI= Subject key identifier: 32:F7:F9:44:F7:AF:20:CD:24:94:13:32:DD:A8:03:59:80:5B:47:91 Authority key identifier: E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC Certificate issuer: /CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Certificate serial: 019921B191E2D4464371D262037F0D8C8EC6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft Manifest number: 115E Signing time: Sun 07 Sep 2025 01:01:49 +0000 Manifest this update: Sun 07 Sep 2025 01:01:49 +0000 Manifest next update: Mon 08 Sep 2025 01:01:49 +0000 Files and hashes: 1: 1-i_ESwYWDKjvxe-cLQFb33q5Qu0.roa (hash: MWN71QN/v297mIABIQi0BIqexEx6vQv3LxWHulQ1lh0=) 2: 3uMGCa1hGu4z3o3-_G7z4ipL-iU.roa (hash: W9UTR4UDUFmqfh0USMFmsobpW7zQlT5fd2b07I+b238=) 3: 520NqzR6OOK4e1oiovfJ4hwYybw.crl (hash: fzSSwUk/zVJpdUvAGocGUsDwwNlTyC79UMl3ddJwmGc=) 4: 53Cd6ksm6jJ9RlO5imUtuWj1rJA.roa (hash: cQll3lCbJxJtoxzsBZdQMm8ZJ1gmBBCp3yO2flYfKKU=) 5: 5aybWk2Ky5dF88Dl5BHsEFM1SO0.roa (hash: H+JwBN0SZWGViTYdzpWvA1lltG+ihuV8ot5mKPyc2Ag=) 6: D51k8Yufzem8ogKjVaG-BE3-N9Q.roa (hash: LfZnqpQQPapIc1GbVrcmd90U2aDXCgwED1y7JLo14nI=) 7: EEzCfGegHPEpdqTqvMRMlcFre1Y.roa (hash: uwoju1vAFdOs3H0Q+w/qT7aEQBJpMP98DiaXonyIQ9M=) 8: EQAhdlSS1FIFJlau-mazb3tbQD8.roa (hash: EYIWh35VYrIjFevk0wSjam09x/CTgAsspbJddnJMeDU=) 9: PLzlfTmqAL1rzlLN1TFrpHpYMVU.roa (hash: INujx6I3LZF9XIVr4zE9W5J6NHU6IlkfUKgf+j8aJrU=) 10: QCPaGZ8bi2Da50RQ4k8ya1w0dq4.roa (hash: UeTuehE3XWxqnHJAwNv7xL7hPz4xW2vyEJKj+BsbTow=) 11: aAu5S5IbLCTcHF2sjNSq_YvIkRs.roa (hash: Ofs8Vq4O2KmWTmDnq5aKJmZojKw/IVecQ8WTuC45ixk=) 12: fjY_g_wwgFPVt57q0tJYGzzoSDw.roa (hash: qq4Ldl54/taiWut/8vwq9PH71gezdeLMf1VMPmsHUe8=) 13: nOw141dLNmkj2u2FTqG2Wvc-gVM.roa (hash: CQnQRUA/+q6ZVbEZKZtps04sWUzpVEunbxRhthCLZIQ=) 14: pw1_qD5J6o76enPdGNTr_4Viub8.roa (hash: L6pLEncIISYEMGBKzu7DbyUXVYEOgT4kfh4modTEATA=) 15: qigZWtFurHaD054OcaOqq49am_w.roa (hash: Sa19eTl0ldE9k7oxfeYcou5g3EZnF3X8bF0Hbur3zdE=) 16: tRNXUlx68rKP9UOE-hhExB1kws8.roa (hash: +Hd3tIKng2pbogIxn1dcX/j1LNU33NvuDwSbS4tdpEA=) 17: ve2cUb4I36o88cUncaHeOHK5tGk.roa (hash: 6gTupRG97QR/JQvN8ay2tdbOI4Q3EMkpnACGQxjxniI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Sep 2025 22:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:21:b1:91:e2:d4:46:43:71:d2:62:03:7f:0d:8c:8e:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Validity Not Before: Sep 7 01:01:49 2025 GMT Not After : Sep 8 01:01:49 2025 GMT Subject: CN=32f7f944f7af20cd24941332dda80359805b4791 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:c1:b2:40:7e:63:3a:5f:b7:2b:b8:7e:0a:d6: 41:7f:02:86:a8:da:7a:8c:a0:ee:8e:50:74:32:38: 6b:ef:27:14:80:6f:0a:2d:92:82:6d:1f:06:ec:7d: de:a0:3d:b9:34:05:ff:61:0d:34:d0:4d:e9:2a:4c: 0b:c4:8f:a1:96:11:de:30:67:07:6c:e1:9d:3c:a4: 8b:67:ba:be:dc:95:8b:38:df:fb:f8:23:4b:b7:a2: d7:22:ad:c9:0b:d3:66:dd:59:35:10:da:81:4b:f3: 39:d8:c2:77:d4:f1:43:5c:5d:2f:94:1b:4c:dd:1f: 66:41:f5:93:3d:46:29:ba:ee:48:12:16:bb:1d:9e: 85:07:03:d8:0f:7f:50:ac:3a:19:3b:73:3a:78:ef: 50:e7:2c:2f:a6:b9:0e:94:c7:59:37:11:8f:b4:70: 57:3d:d9:7b:5f:32:49:ad:37:7a:72:82:7e:95:39: bd:a8:6d:4e:cb:f2:4c:78:2e:74:00:70:50:9e:21: 6b:29:dd:7f:7a:37:d7:ed:de:ad:9f:87:9f:0a:fe: ba:a9:02:1c:43:9c:04:70:58:09:f9:0a:65:ac:50: 4d:ab:7a:2a:1e:d5:89:d7:66:23:f6:b7:54:19:eb: f5:c9:e6:a4:16:58:b7:58:97:a1:da:4b:21:6a:ba: 9f:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:F7:F9:44:F7:AF:20:CD:24:94:13:32:DD:A8:03:59:80:5B:47:91 X509v3 Authority Key Identifier: keyid:E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:06:f2:59:41:b0:e3:c8:a5:ce:88:86:af:f1:6b:91:56:c2: bd:d4:52:c7:8e:f1:c9:5d:38:11:ad:c5:cf:d5:77:5f:44:8c: 1c:d0:f7:38:62:ec:81:a0:59:f0:1a:c4:39:da:c5:9a:5b:e7: 05:36:79:75:f5:10:d7:ce:36:3f:33:05:9d:48:37:f7:32:1b: 84:2c:fa:58:72:9a:5e:1b:14:4c:e0:ce:11:f1:81:28:9b:00: bd:11:e8:1c:1b:f4:17:ce:a0:bb:cd:ef:cd:b7:c4:8e:7c:2d: b6:69:b9:b5:39:b7:1f:9c:3d:e9:2c:e2:3d:d1:13:b5:fc:87: 1f:51:87:42:de:40:ab:90:d8:f8:8a:0b:ff:d3:b4:f3:02:9f: 8d:9a:47:64:b3:30:63:67:f5:81:60:e9:04:8b:1a:45:b4:57: 9c:21:86:c9:aa:9e:7d:9d:b5:e9:1b:07:c7:8e:61:e1:35:e6: a7:e6:b6:b4:73:ca:24:f4:ae:e1:7f:a9:1e:68:64:3d:ea:11: dc:38:ab:10:8c:30:02:77:53:73:6e:1c:5f:25:8b:c0:3c:af: bb:1c:ee:f8:b5:bb:69:72:6d:9a:63:ba:62:5d:4d:d1:46:8b: 78:03:9c:a6:32:a7:9c:a1:4a:39:07:a1:29:ef:a8:a1:30:61: 06:51:0c:04 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZkhsZHi1EZDcdJiA38NjI7GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3NmQwZGFiMzQ3YTM4ZTJiODdiNWEyMmEyZjdjOWUyMWMx OGM5YmMwHhcNMjUwOTA3MDEwMTQ5WhcNMjUwOTA4MDEwMTQ5WjAzMTEwLwYDVQQD EygzMmY3Zjk0NGY3YWYyMGNkMjQ5NDEzMzJkZGE4MDM1OTgwNWI0NzkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7MGyQH5jOl+3K7h+CtZBfwKGqNp6 jKDujlB0Mjhr7ycUgG8KLZKCbR8G7H3eoD25NAX/YQ000E3pKkwLxI+hlhHeMGcH bOGdPKSLZ7q+3JWLON/7+CNLt6LXIq3JC9Nm3Vk1ENqBS/M52MJ31PFDXF0vlBtM 3R9mQfWTPUYpuu5IEha7HZ6FBwPYD39QrDoZO3M6eO9Q5ywvprkOlMdZNxGPtHBX Pdl7XzJJrTd6coJ+lTm9qG1Oy/JMeC50AHBQniFrKd1/ejfX7d6tn4efCv66qQIc Q5wEcFgJ+QplrFBNq3oqHtWJ12Yj9rdUGev1yeakFli3WJeh2ksharqfnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDL3+UT3ryDNJJQTMt2oA1mAW0eRMB8GA1UdIwQY MBaAFOdtDas0ejjiuHtaIqL3yeIcGMm8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDkt YmQzYmZjOTliZGE5LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDktYmQzYmZjOTliZGE5 LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdgbyWUGw 48ilzoiGr/FrkVbCvdRSx47xyV04Ea3Fz9V3X0SMHND3OGLsgaBZ8BrEOdrFmlvn BTZ5dfUQ1842PzMFnUg39zIbhCz6WHKaXhsUTODOEfGBKJsAvRHoHBv0F86gu83v zbfEjnwttmm5tTm3H5w96SziPdETtfyHH1GHQt5Aq5DY+IoL/9O08wKfjZpHZLMw Y2f1gWDpBIsaRbRXnCGGyaqefZ216RsHx45h4TXmp+a2tHPKJPSu4X+pHmhkPeoR 3DirEIwwAndTc24cXyWLwDyvuxzu+LW7aXJtmmO6Yl1N0UaLeAOcpjKnnKFKOQeh Ke+ooTBhBlEMBA== -----END CERTIFICATE-----Generated at Sun Sep 7 08:15:00 2025 by rpki-client