$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft File: AOT2p3Not87P5nIgtDZXax4Aiuw.mft (raw, json) Hash identifier: 969TlQeoudO/AshMb4XLh8+C6qMs98ouOuf9VAlxJp8= Subject key identifier: 85:62:28:CF:CA:2D:32:B8:A5:93:8D:37:79:C2:35:A4:F2:C7:5B:E2 Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec Certificate serial: 019953AF501B78D6AA81835AE2DF81C0FFB9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft Manifest number: 1782 Signing time: Tue 16 Sep 2025 18:00:22 +0000 Manifest this update: Tue 16 Sep 2025 18:00:22 +0000 Manifest next update: Wed 17 Sep 2025 18:00:22 +0000 Files and hashes: 1: 9T56n42qcdDdN0gF0u82-0VAGAQ.roa (hash: uBMriIGAK+N61tGdoiuf0CM9PKKxee+sm/hbz3LttmE=) 2: AOT2p3Not87P5nIgtDZXax4Aiuw.crl (hash: tEQauQHS26Jfx7T4GmVTN5nMX5b8R+FCyszJ/KS5mqM=) 3: BY6vuao8dzcdWvFAFv0TrK8gbcs.roa (hash: ZDN7wXgq4/TF65FlyVO+h6CqqGxfq850Jit0suO59Nc=) 4: Fx5duu0Ld8OdzLL9KF_NytqnjQA.roa (hash: 1whwQcv4ojRdYkBS0qo2bjfiBAmUfpQ+IDeYrF1v1/0=) 5: Svvhgo8X1drpMq_QokkBFa4W80w.roa (hash: eEM6GVW64ZPHTJr6mZ27nOJM8iax+cOishqtH69OQFE=) 6: USyW0O_6fcBP2bF0PoHV0RL6-Y8.roa (hash: rYcvR45gztdgTjrFLAUTrj+3T6dDm1wWFyZUivL/lkQ=) 7: UqESFWwPTzjbApEAfUlqEqe0RQE.roa (hash: s8ahaYu2umakIkOHunLEsrzEdAIsc7vrgdaPFAJX/B0=) 8: UwuhHIRc9qSfEX6XGunAr85dyEA.roa (hash: v6KOr1rmHDt+GxwNeTG+w6jxSzGnr+bSVua9Q4OO8C0=) 9: VkkvGMtenz96Ubj3KDzXyym1LzY.roa (hash: E/GDo41oktFV73vvuiDk3fNXk8LkaX2ghEwTcizgkaw=) 10: kLCDMTUTRbJeJajr_KP2p663xqk.roa (hash: Cd9LBaXNUzFq1myVM5COYVtjKiIjTzwaQ7rIDyhpbzE=) 11: mS1g5aNaOIe32m5_FgfjTc6VbP4.roa (hash: DRqrjZnRKpeQWBmj82tLSsN99MhvkwnNbbxykbvBnVg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Sep 2025 13:46:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:53:af:50:1b:78:d6:aa:81:83:5a:e2:df:81:c0:ff:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec Validity Not Before: Sep 16 18:00:22 2025 GMT Not After : Sep 17 18:00:22 2025 GMT Subject: CN=856228cfca2d32b8a5938d3779c235a4f2c75be2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c7:3a:08:02:40:84:8f:27:1f:90:9b:c2:ea: 4c:45:4f:5f:07:01:03:7d:89:3f:93:0f:9a:23:17: cc:79:d0:65:d3:58:6e:31:ed:b4:51:ac:50:7a:9b: 5f:51:f3:48:7a:ab:8d:7f:e0:69:c8:92:e0:73:85: bf:00:49:a9:40:11:58:be:0e:90:b3:d0:0f:b9:9b: 96:38:92:db:06:fa:ff:7e:dc:b4:33:37:ef:ff:4c: 7d:c5:16:82:0d:81:3b:81:b1:c1:db:27:ef:97:b1: 3c:98:07:26:70:dc:2b:9d:24:b6:4c:b8:81:28:93: 51:d7:ec:f1:3e:b9:94:49:f8:70:00:51:6b:d2:cd: 9f:00:1b:bf:89:8d:93:97:0b:39:a1:82:cc:1c:ba: 68:35:4e:d2:40:84:97:d4:c4:36:1c:c1:51:04:8c: 1f:d7:51:8b:c9:23:db:5d:ef:61:cf:d5:bc:10:77: cb:3b:2c:9b:7a:1f:ce:a2:bc:7c:54:c1:58:c4:70: c9:14:c7:e4:04:0c:c2:36:7d:07:7e:b8:ce:19:57: c8:bf:cf:c5:76:bf:c0:cc:b0:1a:30:18:fa:07:b4: 4d:b6:05:a0:7b:68:f9:cf:db:1b:1e:fb:0b:58:8a: 8d:fd:60:f3:6f:b6:55:67:2e:00:f7:15:56:f4:25: b9:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:62:28:CF:CA:2D:32:B8:A5:93:8D:37:79:C2:35:A4:F2:C7:5B:E2 X509v3 Authority Key Identifier: keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:7e:3d:d1:b6:2a:f2:fe:a4:f1:03:91:f8:35:ff:d6:06:ee: 98:8b:e3:4c:2c:31:da:c4:e4:bf:9e:b7:95:ba:ef:71:08:d7: bd:19:82:82:5c:07:1d:89:9e:b6:c5:cb:40:c1:81:08:da:e8: f3:4e:05:51:77:7b:ac:82:98:dd:41:1b:dc:37:8b:76:a9:c4: 84:f9:12:db:d2:79:99:51:e3:aa:53:e0:5b:d2:ba:0b:06:4a: f8:2a:8d:40:3b:c2:4b:4d:e3:68:ba:40:5a:80:48:24:36:54: 57:d0:21:82:bb:57:6a:f3:a1:2b:36:26:38:71:57:9c:17:b9: 80:bd:69:8d:5d:82:00:94:f3:9a:5f:a7:58:98:5f:c8:40:43: 5c:d7:4c:76:ae:14:e5:d8:33:95:1c:ca:15:43:dd:f0:ef:6a: 1d:fa:f0:37:cc:72:72:31:09:c2:84:4e:41:40:32:cb:58:28: 49:82:25:4d:88:ac:1d:3b:06:c9:1f:99:3c:df:5d:89:96:cc: 03:72:69:f7:a7:44:ce:fd:17:54:c2:d8:8e:8d:cd:f8:e0:f0: 6f:4f:a2:50:e6:e4:eb:26:6b:0e:1b:5d:4f:42:d5:cf:c9:28: 6e:e8:da:39:51:42:9a:d0:f7:a5:72:62:66:95:e5:ca:fe:33: e4:35:91:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZlTr1AbeNaqgYNa4t+BwP+5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZTRmNmE3NzM2OGI3Y2VjZmU2NzIyMGI0MzY1NzZiMWUw MDhhZWMwHhcNMjUwOTE2MTgwMDIyWhcNMjUwOTE3MTgwMDIyWjAzMTEwLwYDVQQD Eyg4NTYyMjhjZmNhMmQzMmI4YTU5MzhkMzc3OWMyMzVhNGYyYzc1YmUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAssc6CAJAhI8nH5CbwupMRU9fBwED fYk/kw+aIxfMedBl01huMe20UaxQeptfUfNIequNf+BpyJLgc4W/AEmpQBFYvg6Q s9APuZuWOJLbBvr/fty0Mzfv/0x9xRaCDYE7gbHB2yfvl7E8mAcmcNwrnSS2TLiB KJNR1+zxPrmUSfhwAFFr0s2fABu/iY2Tlws5oYLMHLpoNU7SQISX1MQ2HMFRBIwf 11GLySPbXe9hz9W8EHfLOyybeh/Oorx8VMFYxHDJFMfkBAzCNn0HfrjOGVfIv8/F dr/AzLAaMBj6B7RNtgWge2j5z9sbHvsLWIqN/WDzb7ZVZy4A9xVW9CW5wQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIViKM/KLTK4pZONN3nCNaTyx1viMB8GA1UdIwQY MBaAFADk9qdzaLfOz+ZyILQ2V2seAIrsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMt YjA3ZDg0MTZhZTRhLzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMtYjA3ZDg0MTZhZTRh LzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQn490bYq 8v6k8QOR+DX/1gbumIvjTCwx2sTkv563lbrvcQjXvRmCglwHHYmetsXLQMGBCNro 804FUXd7rIKY3UEb3DeLdqnEhPkS29J5mVHjqlPgW9K6CwZK+CqNQDvCS03jaLpA WoBIJDZUV9AhgrtXavOhKzYmOHFXnBe5gL1pjV2CAJTzml+nWJhfyEBDXNdMdq4U 5dgzlRzKFUPd8O9qHfrwN8xycjEJwoROQUAyy1goSYIlTYisHTsGyR+ZPN9diZbM A3Jp96dEzv0XVMLYjo3N+ODwb0+iUObk6yZrDhtdT0LVz8kobujaOVFCmtD3pXJi ZpXlyv4z5DWR6g== -----END CERTIFICATE-----Generated at Tue Sep 16 20:20:43 2025 by rpki-client