$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft File: iawKy_23onTvNsFvWGCtoqJHBpc.mft (raw, json) Hash identifier: eWK8s0+/oh8YPrV9D5p4yHFFoIpv4c5iEY5n4tp+HBA= Subject key identifier: 4F:24:FB:8B:5D:5D:B4:50:32:48:F4:EB:AC:DA:41:21:4B:0F:EF:AE Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97 Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697 Certificate serial: 019A21AD697236113B8CA3E6A14005286F86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft Manifest number: 16E5 Signing time: Sun 26 Oct 2025 18:00:04 +0000 Manifest this update: Sun 26 Oct 2025 18:00:04 +0000 Manifest next update: Mon 27 Oct 2025 18:00:04 +0000 Files and hashes: 1: 5WLg_OQ77v-fOT9qxALPiv6xIJU.roa (hash: Of5ILIgkLOFeAYv4HvRO9bh/m8O2gTiP63LRrjsXyCc=) 2: AbKOh9gpXgwFSloJdXfaWSLCFyg.roa (hash: Q+kVnk5rKEmbqNEXqZoiJZUiyaqs6rvEUwmrzWgFMQI=) 3: JyckXigwYGV__68AUCYD52rnXo0.roa (hash: SbkH6tPWhWrW/o78zmYE9oC7rLfxWmyocNFH2s//I5E=) 4: LZXNMAIh5rxJ27RzY3-HOC44ze8.roa (hash: a//LkQjUfY/J/vByRTwCkOeaTuhCCphW4WYvKNJGdac=) 5: NCM3clu2kUX1FywCV-rdbSiyAwg.roa (hash: lqUVwqTm2F0EVVgAq9uFKVlQ5ZkdzUvkJ/HuRhL+GWA=) 6: dJyo5maMFYG06CB60KewP8-LNEc.roa (hash: LO26kgSXxCz0IxFKcAaH1ZYq5V5rRxtBlLjShWu3YvU=) 7: iawKy_23onTvNsFvWGCtoqJHBpc.crl (hash: GAfjXEIfLuFHJpLxd2qziDjX6gXpVMhDwfbVS/rxlC0=) 8: kALeFOqdoUlsrrEA4gEeCsqdb7U.roa (hash: CGGNVlWIfGNVOdkVdR2nL+rohybhJ6hPwgX68rdZVTI=) 9: kGDG-UIYc6E6yuKmUj9Iy9r4a6I.roa (hash: 1OvwxxMvp2ezbTpQpiEO0qvhRS4iGyD5k7iDnUXEkCY=) 10: q9-vuUKVR4izeN3aoSM_0PGlTLE.roa (hash: 7uTxuawjanQAcGsc+vt8tq396KLmeaMaL6YYUmFethI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 27 Oct 2025 18:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:21:ad:69:72:36:11:3b:8c:a3:e6:a1:40:05:28:6f:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697 Validity Not Before: Oct 26 18:00:04 2025 GMT Not After : Oct 27 18:00:04 2025 GMT Subject: CN=4f24fb8b5d5db4503248f4ebacda41214b0fefae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3c:33:47:4b:3b:ca:d8:05:96:29:bc:52:ce: 00:3a:91:7b:c9:32:1c:eb:c6:d9:82:d0:fc:41:21: 13:db:d3:11:cc:f2:e8:50:45:db:6f:74:ce:ed:36: 41:85:11:a7:2e:d7:a6:4e:62:15:15:fe:22:ac:0d: 3e:79:19:aa:bf:88:b2:f1:98:a7:cb:48:7a:fc:86: e2:70:e8:65:51:5c:4c:53:10:b8:d6:c5:d2:3d:3e: db:37:62:01:04:81:b0:60:69:6c:3f:8b:ef:65:b9: 67:95:bf:aa:85:56:ec:d7:9e:4c:d6:0b:ab:d9:cb: 8c:de:c2:a0:33:70:fc:cd:45:c8:ca:7b:2a:2a:fe: f5:9f:d8:69:fc:10:a1:6d:15:29:e4:d5:89:7d:76: e4:ac:df:e5:d8:eb:65:18:21:b0:16:3d:55:70:9a: 95:a1:13:42:e9:74:fd:f8:32:5a:aa:7f:b4:7b:d6: 16:46:3b:f2:9e:f4:80:9c:fb:da:32:6b:a6:cd:07: 67:5a:98:39:0b:ce:f3:9f:a5:ae:52:06:99:54:86: 66:69:d3:57:58:7d:af:f7:f6:ed:3c:bd:3a:5c:e1: 25:19:12:91:fc:93:ce:39:ee:fa:0f:95:f9:89:ac: ec:0b:15:14:17:b5:44:e6:b4:cb:4c:0e:50:0b:ce: ea:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:24:FB:8B:5D:5D:B4:50:32:48:F4:EB:AC:DA:41:21:4B:0F:EF:AE X509v3 Authority Key Identifier: keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:cb:fa:b1:14:22:f1:f7:74:c2:29:89:e5:7e:a2:69:ac:be: 8c:cb:75:ad:51:52:10:2b:fb:22:6a:16:04:dc:e8:69:07:c8: f2:e7:93:d1:b1:4b:4f:3a:04:c7:e4:a2:c3:17:57:90:62:3f: 75:1c:3b:4c:76:07:bc:59:e6:0e:54:4b:94:4f:40:98:11:c0: da:33:33:74:91:50:29:08:30:e0:3f:ba:6a:99:3c:7b:72:b4: fd:5c:0b:de:25:d3:cf:8b:c3:f3:8f:cf:87:c9:9f:52:c6:9c: 8f:03:3d:29:79:69:a9:8d:1c:89:00:05:2b:8f:48:c7:47:bb: bc:b9:00:82:40:de:23:10:85:2c:5d:c9:55:e4:06:0b:3b:42: 33:b3:b6:86:ac:cb:55:c8:40:05:88:1d:0e:08:b1:09:f5:e3: 51:3f:f0:39:bf:b0:76:1d:55:59:b8:aa:0d:15:02:fd:b0:ab: 58:e1:91:72:95:14:e5:93:88:1d:f0:c1:e3:9c:f8:0a:5f:4f: 51:82:80:8a:37:b5:4b:be:56:87:2b:4b:e3:70:bc:aa:d6:3d: 20:9d:67:db:8e:3f:d4:5f:f2:16:f9:80:46:5a:88:85:47:5d: 97:09:a9:97:11:be:25:37:19:75:cd:80:42:51:5a:73:ce:d4: 89:05:2a:62 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZohrWlyNhE7jKPmoUAFKG+GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5YWMwYWNiZmRiN2EyNzRlZjM2YzE2ZjU4NjBhZGEyYTI0 NzA2OTcwHhcNMjUxMDI2MTgwMDA0WhcNMjUxMDI3MTgwMDA0WjAzMTEwLwYDVQQD Eyg0ZjI0ZmI4YjVkNWRiNDUwMzI0OGY0ZWJhY2RhNDEyMTRiMGZlZmFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArDwzR0s7ytgFlim8Us4AOpF7yTIc 68bZgtD8QSET29MRzPLoUEXbb3TO7TZBhRGnLtemTmIVFf4irA0+eRmqv4iy8Zin y0h6/IbicOhlUVxMUxC41sXSPT7bN2IBBIGwYGlsP4vvZblnlb+qhVbs155M1gur 2cuM3sKgM3D8zUXIynsqKv71n9hp/BChbRUp5NWJfXbkrN/l2OtlGCGwFj1VcJqV oRNC6XT9+DJaqn+0e9YWRjvynvSAnPvaMmumzQdnWpg5C87zn6WuUgaZVIZmadNX WH2v9/btPL06XOElGRKR/JPOOe76D5X5iazsCxUUF7VE5rTLTA5QC87qJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE8k+4tdXbRQMkj066zaQSFLD++uMB8GA1UdIwQY MBaAFImsCsv9t6J07zbBb1hgraKiRwaXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWF3S3lfMjNvblR2TnNGdldHQ3RvcUpIQnBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS85M2E3NjgtMjY3Ny00OGQ2LTkxNGMt ZDRkYmY3MDY2ZmQzLzEvaWF3S3lfMjNvblR2TnNGdldHQ3RvcUpIQnBjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS85M2E3NjgtMjY3Ny00OGQ2LTkxNGMtZDRkYmY3MDY2ZmQz LzEvaWF3S3lfMjNvblR2TnNGdldHQ3RvcUpIQnBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh8v6sRQi 8fd0wimJ5X6iaay+jMt1rVFSECv7ImoWBNzoaQfI8ueT0bFLTzoEx+SiwxdXkGI/ dRw7THYHvFnmDlRLlE9AmBHA2jMzdJFQKQgw4D+6apk8e3K0/VwL3iXTz4vD84/P h8mfUsacjwM9KXlpqY0ciQAFK49Ix0e7vLkAgkDeIxCFLF3JVeQGCztCM7O2hqzL VchABYgdDgixCfXjUT/wOb+wdh1VWbiqDRUC/bCrWOGRcpUU5ZOIHfDB45z4Cl9P UYKAije1S75WhytL43C8qtY9IJ1n244/1F/yFvmARlqIhUddlwmplxG+JTcZdc2A QlFac87UiQUqYg== -----END CERTIFICATE-----Generated at Mon Oct 27 01:46:46 2025 by rpki-client