$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft File: JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft (raw, json) Hash identifier: P3/euydE/EafLsQkJASeM1VDkAXCTTKrk0rWNEk9F8Y= Subject key identifier: 93:89:3A:21:31:69:BE:EF:BE:60:06:C4:8A:5B:3B:09:E9:6B:7C:23 Authority key identifier: 25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04 Certificate issuer: /CN=255876412d20fbb6cab823481782ac47703b4404 Certificate serial: 019924B1BDB003641DCBFDAE83071ECF76E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft Manifest number: 0348 Signing time: Sun 07 Sep 2025 15:00:52 +0000 Manifest this update: Sun 07 Sep 2025 15:00:52 +0000 Manifest next update: Mon 08 Sep 2025 15:00:52 +0000 Files and hashes: 1: 8g-49_qQ3fcAAr8ogKNyJYRIsqM.roa (hash: YUM8nQydrUaGiZYWfH9e5CkG/0ZnMAVKiwEv7wrrmyU=) 2: HL_391YyhybjwJ74kNKee4Xme30.roa (hash: SKqvmhnXy6lVHKlIjthvO2Ffcm5YC3y5BAN0frkvak8=) 3: JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl (hash: UCW+OxtT1rzzej5cQffcY5Zz7HQYABKmK65mdXyx428=) 4: UFzq6HTzLsKXQDiIwbMVwsSvCKE.roa (hash: SkcdE34ZRnlvciguMZx89azOscHKjWKi4kmUM6ce2ek=) 5: Vf3C3nEL83KU-t7pLCkbgpiASsA.roa (hash: 6SosAmZB67F6Q5qUy5fWvfEJcjGr5qv93jKtlhRr2es=) 6: b37yA0vBw9z9NXOjP3ngOC-nsdQ.roa (hash: xnMkc8ma8YV2ulWTsjtILbYV33NvcPwQMYE2M0mdniE=) 7: evsBxqfpyH3zHvt0KdEDbPjJt40.roa (hash: vsA8eWY0hm6KpE4+4Kq5HkaUgEZIYMzjLRq48DP4yG4=) 8: hp0pLX_QGiWhiOhgc-g-g3McIzI.roa (hash: iRmxgVLqjy7bOiMWp10+U3a2wekQwe0YpGsmUpp/wOw=) 9: lwlNrqm3r8NOZc8muUo80fFlOeY.roa (hash: FfJzjpvXZQfdbT9Lc8mjBM1Q8TX5WkjUXsorwJal9Zo=) 10: pu4GRTEZI-DDS8alCpZhtqjD728.roa (hash: 4gymL9RPKKRX/UazcJNoKfCcQGjN640R8KkZ8YDasZ0=) 11: r6VOlpU6VgL1WVlEQKIIOdFJ6jc.roa (hash: qZ5211k3RJOzvqXcolh5rN4QAkWpCPQgoaSC1kNOR9w=) 12: zB7jZpVQ6_QohXb9Ts1uTCDa9vc.roa (hash: G92uGtD4p7P9jynyu17jJLaD0YzUsjPpS9i4T5WM4LU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 08 Sep 2025 15:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:24:b1:bd:b0:03:64:1d:cb:fd:ae:83:07:1e:cf:76:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=255876412d20fbb6cab823481782ac47703b4404 Validity Not Before: Sep 7 15:00:52 2025 GMT Not After : Sep 8 15:00:52 2025 GMT Subject: CN=93893a213169beefbe6006c48a5b3b09e96b7c23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:16:3b:f6:c1:be:f2:fa:ee:8e:28:75:2b:70: 0c:82:71:be:fd:32:6b:80:6c:5b:e8:41:c3:9a:7d: 8b:dc:5d:47:92:88:66:de:c3:6a:2a:a7:a3:c9:25: 76:1f:c8:07:40:08:d3:a4:f9:24:c3:1c:eb:1b:2d: 2f:38:a4:3d:e8:2b:ae:68:59:86:eb:56:be:90:ec: cc:8a:a8:3c:4a:36:94:23:b4:ba:cc:0a:7e:fd:fd: 03:b0:3e:6a:17:b1:08:30:9b:4a:01:a5:50:7f:46: fd:48:c1:14:85:9a:db:a6:82:12:df:ab:96:db:89: 54:e0:89:35:b6:d3:78:25:17:91:de:8b:34:77:77: 73:0c:30:6d:56:ed:98:a8:b1:ee:e0:8b:6d:5b:b8: 49:e0:f8:8f:45:d9:b8:09:85:8a:b4:29:17:cc:5b: 5c:e2:8f:20:49:7c:1f:f3:67:46:af:c6:55:fe:0b: 7c:27:a3:c2:a0:65:5f:92:ab:2d:cb:74:53:14:ab: cd:01:be:23:de:a4:2c:da:41:7e:71:f4:2c:fe:3c: 20:58:81:3f:ee:d7:37:ca:50:f7:03:78:57:52:0a: 63:ae:9a:9f:82:9b:fd:fa:38:9a:af:20:57:df:32: d9:8d:7b:29:55:41:69:a4:aa:09:9c:4a:75:17:0f: 23:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:89:3A:21:31:69:BE:EF:BE:60:06:C4:8A:5B:3B:09:E9:6B:7C:23 X509v3 Authority Key Identifier: keyid:25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:f6:6c:7c:cd:d3:a8:40:12:43:6e:a4:24:38:75:0b:12:3d: 67:0d:53:74:51:49:c9:b5:de:22:a8:02:a0:6a:7e:19:2c:06: 8c:97:73:ce:e9:ff:80:7f:76:3a:28:ef:0d:de:dd:14:a2:a9: d5:62:76:ac:7b:9c:76:39:6e:af:0f:65:18:fd:23:8b:0a:90: 97:cd:a9:6f:31:95:bf:32:35:f8:02:d1:ea:74:9e:6d:43:06: 78:0e:14:4f:bf:5c:b1:92:6d:c2:a9:6a:c0:65:bf:f4:4a:80: bd:61:04:26:d1:3a:32:8e:fa:48:e9:5d:6d:34:26:75:ed:d9: ac:a4:0a:1d:e1:39:52:f1:15:8f:96:f3:70:c9:23:06:30:ea: 42:d5:f0:b6:77:1e:1d:53:37:64:67:7f:70:cb:f4:40:91:d3: 61:17:a2:ef:6e:5f:ca:c4:e3:02:36:23:2c:bd:f7:5a:15:74: 0e:70:8f:33:47:d0:7d:b9:5f:50:71:7f:35:56:1f:bb:85:bb: 72:68:9a:33:c8:1d:71:6f:b9:c4:6b:66:40:22:f8:e1:ca:e6: 52:6c:12:56:fe:ca:b5:22:35:81:33:42:33:e9:07:63:ea:ea: 62:f2:75:e2:ef:f5:23:d1:86:cf:1b:e3:8a:a6:03:2f:6a:a6: a7:64:71:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZkksb2wA2Qdy/2ugwcez3bgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1NTg3NjQxMmQyMGZiYjZjYWI4MjM0ODE3ODJhYzQ3NzAz YjQ0MDQwHhcNMjUwOTA3MTUwMDUyWhcNMjUwOTA4MTUwMDUyWjAzMTEwLwYDVQQD Eyg5Mzg5M2EyMTMxNjliZWVmYmU2MDA2YzQ4YTViM2IwOWU5NmI3YzIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvRY79sG+8vrujih1K3AMgnG+/TJr gGxb6EHDmn2L3F1Hkohm3sNqKqejySV2H8gHQAjTpPkkwxzrGy0vOKQ96CuuaFmG 61a+kOzMiqg8SjaUI7S6zAp+/f0DsD5qF7EIMJtKAaVQf0b9SMEUhZrbpoIS36uW 24lU4Ik1ttN4JReR3os0d3dzDDBtVu2YqLHu4IttW7hJ4PiPRdm4CYWKtCkXzFtc 4o8gSXwf82dGr8ZV/gt8J6PCoGVfkqsty3RTFKvNAb4j3qQs2kF+cfQs/jwgWIE/ 7tc3ylD3A3hXUgpjrpqfgpv9+jiaryBX3zLZjXspVUFppKoJnEp1Fw8jBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJOJOiExab7vvmAGxIpbOwnpa3wjMB8GA1UdIwQY MBaAFCVYdkEtIPu2yrgjSBeCrEdwO0QEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEt ODc2YzdmY2E0YjM0LzEvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEtODc2YzdmY2E0YjM0 LzEvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZvZsfM3T qEASQ26kJDh1CxI9Zw1TdFFJybXeIqgCoGp+GSwGjJdzzun/gH92OijvDd7dFKKp 1WJ2rHucdjlurw9lGP0jiwqQl82pbzGVvzI1+ALR6nSebUMGeA4UT79csZJtwqlq wGW/9EqAvWEEJtE6Mo76SOldbTQmde3ZrKQKHeE5UvEVj5bzcMkjBjDqQtXwtnce HVM3ZGd/cMv0QJHTYRei725fysTjAjYjLL33WhV0DnCPM0fQfblfUHF/NVYfu4W7 cmiaM8gdcW+5xGtmQCL44crmUmwSVv7KtSI1gTNCM+kHY+rqYvJ14u/1I9GGzxvj iqYDL2qmp2RxVw== -----END CERTIFICATE-----Generated at Mon Sep 8 00:12:07 2025 by rpki-client