$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft File: JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft (raw, json) Hash identifier: n3ymsveUCpXPIdEdR0AFummS45vIOHGeHO+xXlf+ql0= Subject key identifier: 27:5F:52:89:1F:96:94:10:59:4E:E7:5B:3E:F0:49:32:8F:E8:CB:D9 Authority key identifier: 25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04 Certificate issuer: /CN=255876412d20fbb6cab823481782ac47703b4404 Certificate serial: 019A18062377FC6EF1892674049C2D922CEF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft Manifest number: 03C6 Signing time: Fri 24 Oct 2025 21:00:46 +0000 Manifest this update: Fri 24 Oct 2025 21:00:46 +0000 Manifest next update: Sat 25 Oct 2025 21:00:46 +0000 Files and hashes: 1: 8g-49_qQ3fcAAr8ogKNyJYRIsqM.roa (hash: YUM8nQydrUaGiZYWfH9e5CkG/0ZnMAVKiwEv7wrrmyU=) 2: HL_391YyhybjwJ74kNKee4Xme30.roa (hash: SKqvmhnXy6lVHKlIjthvO2Ffcm5YC3y5BAN0frkvak8=) 3: JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl (hash: m8odsUJSYVPLkTopw+V2JGbcjyT0QEg/r5NnEfj/m90=) 4: UFzq6HTzLsKXQDiIwbMVwsSvCKE.roa (hash: SkcdE34ZRnlvciguMZx89azOscHKjWKi4kmUM6ce2ek=) 5: Vf3C3nEL83KU-t7pLCkbgpiASsA.roa (hash: 6SosAmZB67F6Q5qUy5fWvfEJcjGr5qv93jKtlhRr2es=) 6: b37yA0vBw9z9NXOjP3ngOC-nsdQ.roa (hash: xnMkc8ma8YV2ulWTsjtILbYV33NvcPwQMYE2M0mdniE=) 7: evsBxqfpyH3zHvt0KdEDbPjJt40.roa (hash: vsA8eWY0hm6KpE4+4Kq5HkaUgEZIYMzjLRq48DP4yG4=) 8: hp0pLX_QGiWhiOhgc-g-g3McIzI.roa (hash: iRmxgVLqjy7bOiMWp10+U3a2wekQwe0YpGsmUpp/wOw=) 9: lwlNrqm3r8NOZc8muUo80fFlOeY.roa (hash: FfJzjpvXZQfdbT9Lc8mjBM1Q8TX5WkjUXsorwJal9Zo=) 10: pu4GRTEZI-DDS8alCpZhtqjD728.roa (hash: 4gymL9RPKKRX/UazcJNoKfCcQGjN640R8KkZ8YDasZ0=) 11: r6VOlpU6VgL1WVlEQKIIOdFJ6jc.roa (hash: qZ5211k3RJOzvqXcolh5rN4QAkWpCPQgoaSC1kNOR9w=) 12: zB7jZpVQ6_QohXb9Ts1uTCDa9vc.roa (hash: G92uGtD4p7P9jynyu17jJLaD0YzUsjPpS9i4T5WM4LU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 25 Oct 2025 21:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:18:06:23:77:fc:6e:f1:89:26:74:04:9c:2d:92:2c:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=255876412d20fbb6cab823481782ac47703b4404 Validity Not Before: Oct 24 21:00:46 2025 GMT Not After : Oct 25 21:00:46 2025 GMT Subject: CN=275f52891f969410594ee75b3ef049328fe8cbd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:22:a2:c8:4e:27:cf:90:20:d8:39:ac:87:ba: c5:f1:86:44:ef:5a:62:6d:67:4f:10:aa:1f:8e:5f: 10:74:d3:e1:aa:39:55:54:30:ce:5e:a9:c4:ec:d5: 35:a8:d4:78:e0:37:88:54:78:08:82:57:e1:d5:a1: a6:56:bf:70:d8:b7:f3:5d:31:93:cb:95:a9:a4:d8: c3:8f:59:31:74:20:ff:49:55:18:41:2a:b0:02:4b: 8e:42:5c:2e:be:40:23:ad:9f:40:9f:16:92:51:30: ab:e7:fd:23:8b:04:0a:c8:d9:b8:2e:b8:d4:27:2f: 35:56:2c:df:b4:a0:75:78:52:2e:0f:f2:fc:04:5b: fc:2e:8d:51:63:2c:6a:33:da:a7:43:7e:1c:50:db: 7d:c7:7b:1c:62:6e:1f:41:45:f0:ce:6a:cb:3a:0a: 76:df:21:b8:13:57:a5:80:e7:4d:bd:f7:4f:37:91: 73:00:b6:15:5e:00:17:03:d6:d3:0d:aa:04:6f:e6: bf:01:d8:55:bd:6f:50:80:5b:5f:95:9f:c4:70:c7: 8b:23:57:97:aa:0e:0d:35:88:3d:47:27:db:18:36: b6:a7:e3:a5:7c:a7:9b:51:32:63:9d:e9:58:41:ce: fe:96:4e:66:d1:6e:39:29:38:9c:a0:27:dd:ff:3b: 13:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:5F:52:89:1F:96:94:10:59:4E:E7:5B:3E:F0:49:32:8F:E8:CB:D9 X509v3 Authority Key Identifier: keyid:25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:de:da:db:f6:65:0c:c7:1b:98:90:41:67:bb:c8:88:21:e9: 78:5e:23:7e:ca:6a:23:93:c7:16:f5:94:99:a6:1b:d5:2b:3c: c0:19:6e:cd:3f:e3:af:df:2b:fc:a2:4b:cf:c9:5a:8e:da:55: ef:ca:9c:38:d7:dc:fd:9c:a1:d8:34:c3:b6:73:b4:ba:f3:42: 5c:7d:b0:7c:fe:30:07:59:4e:c2:71:6f:46:09:90:e5:29:1e: 7d:6b:08:62:95:c3:4a:ce:c6:e9:c9:77:a3:9a:bd:9d:be:74: 96:54:4a:30:5c:c6:5e:4c:dd:3e:77:ee:07:33:2f:1c:c1:0c: be:8e:c2:bf:ee:16:5b:81:71:56:06:d1:3c:31:86:f3:10:6b: c8:4b:22:1a:94:16:a1:5c:f0:67:95:17:64:97:54:49:58:07: 91:73:03:06:2e:26:73:d5:f2:59:73:d9:bc:64:9f:94:fa:48: c1:b3:aa:28:f6:2b:f3:b2:92:f0:5c:8c:04:3c:ef:63:12:4d: ce:14:ca:37:d4:fb:71:d5:43:30:f0:c5:05:98:46:9b:df:1c: 69:dc:53:a1:b4:08:d5:53:bc:62:09:f3:63:bf:d8:e4:15:50: 1e:ff:c5:df:a9:e4:d9:fd:36:5b:82:88:74:9b:83:09:42:c2: 66:0f:4f:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZoYBiN3/G7xiSZ0BJwtkizvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1NTg3NjQxMmQyMGZiYjZjYWI4MjM0ODE3ODJhYzQ3NzAz YjQ0MDQwHhcNMjUxMDI0MjEwMDQ2WhcNMjUxMDI1MjEwMDQ2WjAzMTEwLwYDVQQD EygyNzVmNTI4OTFmOTY5NDEwNTk0ZWU3NWIzZWYwNDkzMjhmZThjYmQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5SKiyE4nz5Ag2Dmsh7rF8YZE71pi bWdPEKofjl8QdNPhqjlVVDDOXqnE7NU1qNR44DeIVHgIglfh1aGmVr9w2LfzXTGT y5WppNjDj1kxdCD/SVUYQSqwAkuOQlwuvkAjrZ9AnxaSUTCr5/0jiwQKyNm4LrjU Jy81VizftKB1eFIuD/L8BFv8Lo1RYyxqM9qnQ34cUNt9x3scYm4fQUXwzmrLOgp2 3yG4E1elgOdNvfdPN5FzALYVXgAXA9bTDaoEb+a/AdhVvW9QgFtflZ/EcMeLI1eX qg4NNYg9RyfbGDa2p+OlfKebUTJjnelYQc7+lk5m0W45KTicoCfd/zsTBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCdfUokflpQQWU7nWz7wSTKP6MvZMB8GA1UdIwQY MBaAFCVYdkEtIPu2yrgjSBeCrEdwO0QEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEt ODc2YzdmY2E0YjM0LzEvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEtODc2YzdmY2E0YjM0 LzEvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIt7a2/Zl DMcbmJBBZ7vIiCHpeF4jfspqI5PHFvWUmaYb1Ss8wBluzT/jr98r/KJLz8lajtpV 78qcONfc/Zyh2DTDtnO0uvNCXH2wfP4wB1lOwnFvRgmQ5SkefWsIYpXDSs7G6cl3 o5q9nb50llRKMFzGXkzdPnfuBzMvHMEMvo7Cv+4WW4FxVgbRPDGG8xBryEsiGpQW oVzwZ5UXZJdUSVgHkXMDBi4mc9XyWXPZvGSflPpIwbOqKPYr87KS8FyMBDzvYxJN zhTKN9T7cdVDMPDFBZhGm98cadxTobQI1VO8YgnzY7/Y5BVQHv/F36nk2f02W4KI dJuDCULCZg9Ptw== -----END CERTIFICATE-----Generated at Sat Oct 25 04:24:27 2025 by rpki-client