$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft File: 520NqzR6OOK4e1oiovfJ4hwYybw.mft (raw, json) Hash identifier: ZIB5cv6/8uxlQNY0Rq7TyAp7OwQv43YERqoZd0Vdl54= Subject key identifier: F6:08:2C:7E:AD:A1:1B:85:4F:B6:6D:B4:FC:3F:3B:74:59:64:8C:05 Authority key identifier: E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC Certificate issuer: /CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Certificate serial: 019A0B5D1EA1C94C9D0646831E7BF04D3606 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft Manifest number: 11D7 Signing time: Wed 22 Oct 2025 10:00:43 +0000 Manifest this update: Wed 22 Oct 2025 10:00:43 +0000 Manifest next update: Thu 23 Oct 2025 10:00:43 +0000 Files and hashes: 1: 1-i_ESwYWDKjvxe-cLQFb33q5Qu0.roa (hash: MWN71QN/v297mIABIQi0BIqexEx6vQv3LxWHulQ1lh0=) 2: 3uMGCa1hGu4z3o3-_G7z4ipL-iU.roa (hash: W9UTR4UDUFmqfh0USMFmsobpW7zQlT5fd2b07I+b238=) 3: 520NqzR6OOK4e1oiovfJ4hwYybw.crl (hash: e22kh9SNqGq8fvl38ibSMNgNC1hR660UU7mNYlEGBoE=) 4: 53Cd6ksm6jJ9RlO5imUtuWj1rJA.roa (hash: cQll3lCbJxJtoxzsBZdQMm8ZJ1gmBBCp3yO2flYfKKU=) 5: 5aybWk2Ky5dF88Dl5BHsEFM1SO0.roa (hash: H+JwBN0SZWGViTYdzpWvA1lltG+ihuV8ot5mKPyc2Ag=) 6: D51k8Yufzem8ogKjVaG-BE3-N9Q.roa (hash: LfZnqpQQPapIc1GbVrcmd90U2aDXCgwED1y7JLo14nI=) 7: EEzCfGegHPEpdqTqvMRMlcFre1Y.roa (hash: uwoju1vAFdOs3H0Q+w/qT7aEQBJpMP98DiaXonyIQ9M=) 8: EQAhdlSS1FIFJlau-mazb3tbQD8.roa (hash: EYIWh35VYrIjFevk0wSjam09x/CTgAsspbJddnJMeDU=) 9: PLzlfTmqAL1rzlLN1TFrpHpYMVU.roa (hash: INujx6I3LZF9XIVr4zE9W5J6NHU6IlkfUKgf+j8aJrU=) 10: QCPaGZ8bi2Da50RQ4k8ya1w0dq4.roa (hash: UeTuehE3XWxqnHJAwNv7xL7hPz4xW2vyEJKj+BsbTow=) 11: aAu5S5IbLCTcHF2sjNSq_YvIkRs.roa (hash: Ofs8Vq4O2KmWTmDnq5aKJmZojKw/IVecQ8WTuC45ixk=) 12: fjY_g_wwgFPVt57q0tJYGzzoSDw.roa (hash: qq4Ldl54/taiWut/8vwq9PH71gezdeLMf1VMPmsHUe8=) 13: nOw141dLNmkj2u2FTqG2Wvc-gVM.roa (hash: CQnQRUA/+q6ZVbEZKZtps04sWUzpVEunbxRhthCLZIQ=) 14: pw1_qD5J6o76enPdGNTr_4Viub8.roa (hash: L6pLEncIISYEMGBKzu7DbyUXVYEOgT4kfh4modTEATA=) 15: qigZWtFurHaD054OcaOqq49am_w.roa (hash: Sa19eTl0ldE9k7oxfeYcou5g3EZnF3X8bF0Hbur3zdE=) 16: tRNXUlx68rKP9UOE-hhExB1kws8.roa (hash: +Hd3tIKng2pbogIxn1dcX/j1LNU33NvuDwSbS4tdpEA=) 17: ve2cUb4I36o88cUncaHeOHK5tGk.roa (hash: 6gTupRG97QR/JQvN8ay2tdbOI4Q3EMkpnACGQxjxniI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 23 Oct 2025 08:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:0b:5d:1e:a1:c9:4c:9d:06:46:83:1e:7b:f0:4d:36:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Validity Not Before: Oct 22 10:00:43 2025 GMT Not After : Oct 23 10:00:43 2025 GMT Subject: CN=f6082c7eada11b854fb66db4fc3f3b7459648c05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:fb:6b:f0:4e:86:92:12:4c:42:57:be:95:1b: e6:85:ef:21:f1:bf:6f:b7:ef:80:19:3e:7a:b9:8b: 65:72:3c:92:66:16:09:13:03:08:a2:6a:26:24:bd: c8:0d:94:7f:d2:a6:b2:cf:cd:7f:df:46:8a:17:22: 3c:9a:f4:37:23:03:be:59:7b:e3:c1:46:d2:f7:b6: 0e:9f:e9:b1:53:98:c7:7c:26:db:f4:4e:4d:d7:b7: d5:a4:52:af:c3:43:77:37:cd:39:4b:53:29:06:7b: 4b:78:f7:e1:11:fc:9c:0c:55:e1:e3:69:be:44:e8: 03:bd:1a:28:66:2c:da:8a:ee:ea:42:04:ad:df:8d: 91:d4:1e:34:c7:9e:9d:ce:02:e5:26:1e:16:ab:ad: 40:c5:f2:d9:59:cd:4b:d5:fa:6f:8d:be:c7:43:27: b8:c8:9a:f3:3d:92:33:ef:bd:85:8b:bd:71:9f:f4: 8e:31:56:7a:5d:d1:99:7e:2e:b2:4f:f2:e4:53:d6: 37:36:49:87:0a:af:0e:d4:d4:a6:e1:b6:f1:43:e3: c3:ef:c1:97:3f:a7:56:b7:6a:9c:97:5f:76:76:a3: 1c:37:bb:36:6e:eb:94:e8:53:78:8b:37:12:3a:b3: bc:9a:c0:fc:f9:08:55:be:8c:2e:c4:87:5a:8c:dd: c8:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:08:2C:7E:AD:A1:1B:85:4F:B6:6D:B4:FC:3F:3B:74:59:64:8C:05 X509v3 Authority Key Identifier: keyid:E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:62:5a:70:38:7a:8e:0d:de:fe:a6:17:fc:cb:7a:70:60:ef: 04:47:2d:c4:dd:39:cb:b9:62:8d:23:eb:cc:e9:9d:ba:b4:94: 18:cf:56:c7:d9:04:53:9f:80:79:97:fe:f5:03:98:39:58:38: c8:a3:15:42:85:b2:ed:56:27:fe:c1:9e:96:85:20:b6:e0:1d: a1:40:68:20:f5:83:90:01:03:36:29:10:8f:2e:20:6c:9a:89: d3:08:4c:fd:6a:5a:49:71:e0:6c:3f:da:c6:05:88:d2:eb:9a: 3f:fd:2f:84:a9:7a:86:db:28:bb:7e:5d:97:de:b7:b3:25:d7: 3f:20:d2:eb:ae:7a:4c:cd:c0:be:2c:61:f9:30:2d:ac:3b:58: fa:24:96:c6:b8:65:5b:e4:9e:64:0c:a9:b0:db:6b:26:72:1f: ff:a5:e3:e5:5c:79:cf:40:f1:9e:e3:e4:76:2e:2b:6f:2b:73: c2:f9:d1:ff:28:0d:ea:d8:9b:b3:33:22:50:58:1a:37:90:79: 44:16:32:87:a0:5d:f1:45:7a:bb:c0:32:89:ca:06:71:39:97: b2:6b:b7:77:a6:f3:42:f4:fa:47:7d:db:85:76:2f:08:b8:2e: 87:ae:0c:45:b4:18:4d:5a:33:7d:bb:48:48:fe:05:00:33:79: 17:ba:cc:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZoLXR6hyUydBkaDHnvwTTYGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3NmQwZGFiMzQ3YTM4ZTJiODdiNWEyMmEyZjdjOWUyMWMx OGM5YmMwHhcNMjUxMDIyMTAwMDQzWhcNMjUxMDIzMTAwMDQzWjAzMTEwLwYDVQQD EyhmNjA4MmM3ZWFkYTExYjg1NGZiNjZkYjRmYzNmM2I3NDU5NjQ4YzA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsPtr8E6GkhJMQle+lRvmhe8h8b9v t++AGT56uYtlcjySZhYJEwMIomomJL3IDZR/0qayz81/30aKFyI8mvQ3IwO+WXvj wUbS97YOn+mxU5jHfCbb9E5N17fVpFKvw0N3N805S1MpBntLePfhEfycDFXh42m+ ROgDvRooZizaiu7qQgSt342R1B40x56dzgLlJh4Wq61AxfLZWc1L1fpvjb7HQye4 yJrzPZIz772Fi71xn/SOMVZ6XdGZfi6yT/LkU9Y3NkmHCq8O1NSm4bbxQ+PD78GX P6dWt2qcl192dqMcN7s2buuU6FN4izcSOrO8msD8+QhVvowuxIdajN3IRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPYILH6toRuFT7ZttPw/O3RZZIwFMB8GA1UdIwQY MBaAFOdtDas0ejjiuHtaIqL3yeIcGMm8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDkt YmQzYmZjOTliZGE5LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDktYmQzYmZjOTliZGE5 LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR2JacDh6 jg3e/qYX/Mt6cGDvBEctxN05y7lijSPrzOmdurSUGM9Wx9kEU5+AeZf+9QOYOVg4 yKMVQoWy7VYn/sGeloUgtuAdoUBoIPWDkAEDNikQjy4gbJqJ0whM/WpaSXHgbD/a xgWI0uuaP/0vhKl6htsou35dl963syXXPyDS6656TM3Avixh+TAtrDtY+iSWxrhl W+SeZAypsNtrJnIf/6Xj5Vx5z0DxnuPkdi4rbytzwvnR/ygN6tibszMiUFgaN5B5 RBYyh6Bd8UV6u8AyicoGcTmXsmu3d6bzQvT6R33bhXYvCLguh64MRbQYTVozfbtI SP4FADN5F7rMzw== -----END CERTIFICATE-----Generated at Wed Oct 22 12:08:53 2025 by rpki-client