$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft File: 9dmpKCydJUfFZmNPO6zMvPJYiCc.mft (raw, json) Hash identifier: kKD/QybSbzlvdNqX8p/n7i47S1lQbfW3cl/KIWJdOfo= Subject key identifier: EE:99:60:4F:52:D3:6F:C9:B1:FB:90:DD:B6:C2:C5:AE:CD:A4:A3:03 Authority key identifier: F5:D9:A9:28:2C:9D:25:47:C5:66:63:4F:3B:AC:CC:BC:F2:58:88:27 Certificate issuer: /CN=f5d9a9282c9d2547c566634f3bacccbcf2588827 Certificate serial: 019A3EDC9E118223FC2F9AE1A09EE4080643 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft Manifest number: 0D25 Signing time: Sat 01 Nov 2025 10:00:37 +0000 Manifest this update: Sat 01 Nov 2025 10:00:37 +0000 Manifest next update: Sun 02 Nov 2025 10:00:37 +0000 Files and hashes: 1: 2fQddCIl-7Oq1WuhVFDb_ItwFWs.roa (hash: G5bUTFThyurFxXPOBBEBFBWKjBkZ0p5sb4xbB9qr44M=) 2: 37QCkG1k9gzLrRMVOTELOapS-4Y.roa (hash: fObIS1yLlqyANULO1cGplwcB5m0pXnjdZmigUly+6NA=) 3: 9dmpKCydJUfFZmNPO6zMvPJYiCc.crl (hash: azlzw7GZQhsLiIn22jtiv8wzPFeIJDQSGRcxZCTjSSA=) 4: C8rZpiwRRKp7HiBYnxrXRCtzNP4.roa (hash: /a2qXNrKqG5G3jKSkvjhWWJd/4eBrgaawytg7M/VZPQ=) 5: LSwSqqfM6NE3bwsbhZVRM0BePVo.roa (hash: QYxJg9ZEhl4RnY/Twn9fuIOL/2nBIyTko4sjPdP5IhA=) 6: SyqNMF-ydxJR2kxngWZW5-SrEy0.roa (hash: KeocIUb7cPGt5yIgR1YWAUH1gGZjpJ9norLt8H3zU6Q=) 7: gAIi2RzKXjXCtYGsVRw03pRZYeU.roa (hash: PvQsJF0P/z+mLUrW2+GtvSyLdhymARBFgfCdxNsU3JE=) 8: hkqOX4mECokeZ3ChLO-NkzoKVG0.roa (hash: jDSI0Vi3uJHnivxkTcLJyUGbXo6jl9OF+5YD1t9wHog=) 9: xEaq7kolhQn1OmIod6QQM1Gthtk.roa (hash: IC+2lUW0/0ySDq3Q6puBeGjrJpCDJAXfXz5IauHoRHE=) 10: yZE684PU1B3lT-aKA30arKwyTEI.roa (hash: isFNdgWP0HVp5O76X23OI/gh9YCy0xYVcwqK0QPMZ60=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.crl rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 02 Nov 2025 10:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:3e:dc:9e:11:82:23:fc:2f:9a:e1:a0:9e:e4:08:06:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f5d9a9282c9d2547c566634f3bacccbcf2588827 Validity Not Before: Nov 1 10:00:37 2025 GMT Not After : Nov 2 10:00:37 2025 GMT Subject: CN=ee99604f52d36fc9b1fb90ddb6c2c5aecda4a303 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:fc:d0:7a:b4:00:f4:01:b0:91:15:f5:02:21: 6f:eb:3c:e2:66:15:88:ff:f6:3b:29:01:8d:a2:a3: 5a:e1:dc:27:d9:36:82:38:d0:ed:be:b3:b1:54:8f: 55:8d:ff:93:d6:78:40:04:d3:a1:46:df:90:b0:7f: 7c:a2:5b:9b:c0:ba:ab:85:a1:fd:8d:bc:9d:08:6a: 85:ec:91:8d:70:ab:13:47:82:23:d9:a9:ef:dd:29: 38:1c:4e:b8:07:58:37:0d:1d:ac:57:22:4a:23:67: 18:df:2f:f0:c2:82:fb:48:11:e8:22:d3:86:df:ed: a6:86:48:33:3f:89:5b:43:3c:9f:f4:85:d1:26:10: 4a:cf:b6:76:ce:b4:2f:71:e6:78:42:27:b2:a8:63: db:32:6e:2e:22:28:f1:8d:f0:5e:2f:d4:a6:5d:31: 4b:2b:fc:cd:d5:ef:5a:26:c0:a7:42:3e:f3:cf:48: 2c:70:1c:67:45:ad:e6:6f:07:c3:57:45:6a:70:fc: b7:cd:9a:98:80:c0:63:60:37:bd:83:5c:02:d8:cc: 5f:19:d0:7e:78:20:83:9b:a8:66:98:4f:7d:50:4e: 3d:7f:4e:5b:58:8e:27:fb:78:83:a7:4c:74:f6:42: 1f:0c:69:4d:c8:07:45:7f:c6:9d:95:74:0f:48:e5: 61:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:99:60:4F:52:D3:6F:C9:B1:FB:90:DD:B6:C2:C5:AE:CD:A4:A3:03 X509v3 Authority Key Identifier: keyid:F5:D9:A9:28:2C:9D:25:47:C5:66:63:4F:3B:AC:CC:BC:F2:58:88:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:62:31:a2:5e:1e:cf:f5:7e:3a:76:6d:67:15:ed:17:6c:5a: 7e:f9:ab:12:87:19:3b:5b:bd:af:02:e8:4f:16:83:49:41:34: 9b:7b:40:82:8f:52:34:55:46:95:e5:08:5a:7c:1b:00:77:4a: 5d:21:a8:44:27:b5:83:fc:35:94:00:a6:a4:51:35:cc:1c:5f: 6c:9d:d5:e7:88:91:2a:53:41:f6:d6:ff:cb:84:78:c3:8b:bb: 36:c2:bb:5c:e2:d1:63:71:42:f1:62:03:81:8c:0f:fd:c3:14: 2c:3b:7d:a2:dc:87:9c:3e:d6:45:24:8e:fb:21:59:5d:e5:0c: f6:87:d7:f0:b3:d8:71:40:f3:81:45:6a:cc:10:c2:35:d7:7f: e5:47:79:da:38:dd:ef:47:ad:10:1d:8a:33:38:74:ee:3b:4a: 1c:83:55:a3:b9:aa:ac:20:34:e4:cc:37:05:bd:d3:3e:52:3c: d6:86:57:14:4e:cb:26:ae:92:14:fc:84:cf:eb:aa:09:9e:1e: e8:66:8c:4a:01:37:db:6a:ab:8d:c6:ab:35:ef:b6:f8:a2:20: d3:1d:55:41:e8:85:9d:ff:f9:e2:05:09:70:da:90:c3:52:83: 9c:43:e4:91:71:df:35:6a:95:23:71:b7:aa:99:b7:a9:66:b7: e1:1a:c3:15 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZo+3J4RgiP8L5rhoJ7kCAZDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY1ZDlhOTI4MmM5ZDI1NDdjNTY2NjM0ZjNiYWNjY2JjZjI1 ODg4MjcwHhcNMjUxMTAxMTAwMDM3WhcNMjUxMTAyMTAwMDM3WjAzMTEwLwYDVQQD EyhlZTk5NjA0ZjUyZDM2ZmM5YjFmYjkwZGRiNmMyYzVhZWNkYTRhMzAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfzQerQA9AGwkRX1AiFv6zziZhWI //Y7KQGNoqNa4dwn2TaCONDtvrOxVI9Vjf+T1nhABNOhRt+QsH98olubwLqrhaH9 jbydCGqF7JGNcKsTR4Ij2anv3Sk4HE64B1g3DR2sVyJKI2cY3y/wwoL7SBHoItOG 3+2mhkgzP4lbQzyf9IXRJhBKz7Z2zrQvceZ4QieyqGPbMm4uIijxjfBeL9SmXTFL K/zN1e9aJsCnQj7zz0gscBxnRa3mbwfDV0VqcPy3zZqYgMBjYDe9g1wC2MxfGdB+ eCCDm6hmmE99UE49f05bWI4n+3iDp0x09kIfDGlNyAdFf8adlXQPSOVhEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO6ZYE9S02/JsfuQ3bbCxa7NpKMDMB8GA1UdIwQY MBaAFPXZqSgsnSVHxWZjTzuszLzyWIgnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOWRtcEtDeWRKVWZGWm1OUE82ek12UEpZaUNjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8wZDA3NTUtMTg5Ny00N2VmLThkZjct OGNmNDFjYWZkY2UyLzEvOWRtcEtDeWRKVWZGWm1OUE82ek12UEpZaUNjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy8wZDA3NTUtMTg5Ny00N2VmLThkZjctOGNmNDFjYWZkY2Uy LzEvOWRtcEtDeWRKVWZGWm1OUE82ek12UEpZaUNjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACGIxol4e z/V+OnZtZxXtF2xafvmrEocZO1u9rwLoTxaDSUE0m3tAgo9SNFVGleUIWnwbAHdK XSGoRCe1g/w1lACmpFE1zBxfbJ3V54iRKlNB9tb/y4R4w4u7NsK7XOLRY3FC8WID gYwP/cMULDt9otyHnD7WRSSO+yFZXeUM9ofX8LPYcUDzgUVqzBDCNdd/5Ud52jjd 70etEB2KMzh07jtKHINVo7mqrCA05Mw3Bb3TPlI81oZXFE7LJq6SFPyEz+uqCZ4e 6GaMSgE322qrjcarNe+2+KIg0x1VQeiFnf/54gUJcNqQw1KDnEPkkXHfNWqVI3G3 qpm3qWa34RrDFQ== -----END CERTIFICATE-----Generated at Sat Nov 1 19:50:17 2025 by rpki-client