$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft File: X32laK0Ce54knBPiI9MidpiBop8.mft (raw, json) Hash identifier: GGHF4dJ6NiYfE/+mo5AOIujxx9MSx73HQPhv7MQUc7A= Subject key identifier: 3B:81:5D:8A:22:C3:41:A8:22:5F:68:B3:FD:09:14:49:33:F0:C6:8A Authority key identifier: 5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F Certificate issuer: /CN=5f7da568ad027b9e249c13e223d322769881a29f Certificate serial: 01984889C325D19136A8868163C52166EB23 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft Manifest number: 0B78 Signing time: Sat 26 Jul 2025 21:00:44 +0000 Manifest this update: Sat 26 Jul 2025 21:00:44 +0000 Manifest next update: Sun 27 Jul 2025 21:00:44 +0000 Files and hashes: 1: Dhg938LLNxihNYriqStR3oqs6Jg.roa (hash: Aj+6lvIDsodEZ6I55Us8ZFj5GtVjSmfFFjL8I/MfYqo=) 2: FuntCXoBht24QvgtEtbVZEuCdp0.roa (hash: JUPlc/PvxJjzfETFQC1BU7Iej8ynSg/XdYSUf902Tpo=) 3: OSozPCauqZRrj5FYZCZShQYan60.roa (hash: gJTuyuPcePva2Pf/4Z3V1y7VTQjYV+P6FusXSLPZfSw=) 4: X32laK0Ce54knBPiI9MidpiBop8.crl (hash: e6BXPV6PPPixI+ELcyKZUKDqG1PTNbr0vB+o31aXhuU=) 5: XjVu2IyXljFzhSvYma_h3-clfVU.roa (hash: nT21YokFB5zQvbm3JPkkRJDjEHGU38C24xQDpQHQGAI=) 6: ZkkDzXmdTsLG1oQnHCXCpjMrN0c.roa (hash: vhxQZdTakyknsbSaFbQwA3rjVR03VcM9s8jNMsMZ03E=) 7: jUQ_fZXFaYGd4zaZnSgAlOdWse0.roa (hash: TxGng+dp5AKM1yJ/Crw7UDMDcGHP31uzC9AJJeqBDMA=) 8: oSGRjgd5g7uxmIyMg55GeDp1lcQ.roa (hash: yVVI9w+n8DQ5LZ0pU0EZPfP/S8D3Imwu6pg6ds8XII0=) 9: s84uwW_-i_SHLp2X5wNbbXCbos0.roa (hash: XmZwP1Dphpy/OpROhUP0RXS2PeMw5xbgxdsjXIheFhc=) 10: ztzJ9WkVuGW2KUZ-NYOffXMn-mU.roa (hash: 0aNwIJcWE8BWdRRapb0b1h0he6NRcvrOvXa3hI/Nxv4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 27 Jul 2025 20:00:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:48:89:c3:25:d1:91:36:a8:86:81:63:c5:21:66:eb:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f7da568ad027b9e249c13e223d322769881a29f Validity Not Before: Jul 26 21:00:44 2025 GMT Not After : Jul 27 21:00:44 2025 GMT Subject: CN=3b815d8a22c341a8225f68b3fd09144933f0c68a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d2:aa:d0:17:18:11:2d:ff:c5:8a:66:5d:ab: 24:d0:bf:e7:19:bf:e7:21:d0:5c:85:b2:2e:e8:c2: e0:74:b2:f4:dd:3c:de:43:ba:8c:13:3d:ae:f3:b6: 8a:df:98:e6:16:3e:2d:56:d7:70:7d:63:16:ec:2f: eb:b2:15:6d:44:5b:9a:4f:52:e7:ab:f9:14:4f:7c: e7:91:4e:cf:a6:68:9e:40:32:78:4f:10:be:b4:f8: 0a:15:0e:c8:17:e8:05:4c:bc:07:76:f0:89:af:b7: 8f:7c:4f:2d:d1:a9:28:ea:ca:45:24:08:6f:44:bf: 11:38:cf:ca:67:e7:0a:2f:b7:04:1a:f4:72:c2:f8: 5e:bd:79:e0:62:ac:13:03:da:e1:08:5f:bb:99:e6: 0d:2e:87:54:11:a3:0e:28:41:3d:e1:6a:29:73:98: 6a:9e:39:63:a4:97:c6:b2:22:43:80:66:d5:93:e1: 97:48:57:c5:19:05:7b:11:04:e3:5c:54:3a:96:08: 07:2d:c7:85:35:e2:59:19:59:7b:2a:c2:29:95:e4: 8b:f9:1d:c9:e2:50:29:4d:f7:63:02:8a:78:f0:fb: 90:b9:d7:a5:42:3c:28:a9:1a:89:34:6f:4d:b3:1c: 13:45:16:80:29:13:85:fc:25:bb:b1:d5:d8:09:01: 90:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:81:5D:8A:22:C3:41:A8:22:5F:68:B3:FD:09:14:49:33:F0:C6:8A X509v3 Authority Key Identifier: keyid:5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:54:3a:8a:12:12:20:5e:56:80:32:a9:23:17:5b:ad:d2:84: 9c:00:77:0b:e1:93:fc:bf:99:0e:f1:0b:3f:f4:6e:4a:93:9b: 43:3a:f5:3f:51:21:40:8c:0b:02:e8:03:b0:0c:47:b1:16:48: 60:1c:8b:9f:85:dd:76:e1:b6:f9:30:3b:05:66:d4:ca:ca:76: 9f:14:32:f0:89:44:e9:18:29:bf:13:90:9d:53:1f:f1:b8:0b: 73:68:ed:54:3e:52:88:71:06:15:05:2d:2c:b3:98:74:5a:90: bd:8b:dd:2d:13:8c:44:77:21:1c:d4:8b:72:2a:6d:0c:c6:ce: 16:96:8b:1e:ac:f8:08:b8:76:a2:50:23:00:6e:3b:17:a7:b2: 56:b1:59:5f:13:ce:47:28:1d:10:2c:c1:45:a9:7c:d1:cd:3f: ae:98:e7:bf:01:c6:82:1d:c2:8f:a7:58:4b:e6:52:0f:a1:f3: 54:bd:3e:89:7f:dc:78:8b:f5:b9:c1:c4:ab:0b:34:1b:28:ac: b7:3c:6d:6b:c5:61:ad:17:2f:87:d3:64:fb:76:e6:11:63:d8: 62:d1:05:32:22:7c:e8:48:73:ab:f8:05:d5:f1:9f:af:e9:9a: cd:6a:2d:7f:1b:c1:90:21:e4:18:02:d2:5f:4d:c4:74:ec:77: 3c:0a:21:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZhIicMl0ZE2qIaBY8UhZusjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmN2RhNTY4YWQwMjdiOWUyNDljMTNlMjIzZDMyMjc2OTg4 MWEyOWYwHhcNMjUwNzI2MjEwMDQ0WhcNMjUwNzI3MjEwMDQ0WjAzMTEwLwYDVQQD EygzYjgxNWQ4YTIyYzM0MWE4MjI1ZjY4YjNmZDA5MTQ0OTMzZjBjNjhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnNKq0BcYES3/xYpmXask0L/nGb/n IdBchbIu6MLgdLL03TzeQ7qMEz2u87aK35jmFj4tVtdwfWMW7C/rshVtRFuaT1Ln q/kUT3znkU7PpmieQDJ4TxC+tPgKFQ7IF+gFTLwHdvCJr7ePfE8t0ako6spFJAhv RL8ROM/KZ+cKL7cEGvRywvhevXngYqwTA9rhCF+7meYNLodUEaMOKEE94Wopc5hq njljpJfGsiJDgGbVk+GXSFfFGQV7EQTjXFQ6lggHLceFNeJZGVl7KsIpleSL+R3J 4lApTfdjAop48PuQudelQjwoqRqJNG9NsxwTRRaAKROF/CW7sdXYCQGQ7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDuBXYoiw0GoIl9os/0JFEkz8MaKMB8GA1UdIwQY MBaAFF99pWitAnueJJwT4iPTInaYgaKfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWDMybGFLMENlNTRrbkJQaUk5TWlkcGlCb3A4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS8wNTQ4OGYtZjRlMC00ZTZjLTk0ZjUt Mzc1NzUzOWMyYWM5LzEvWDMybGFLMENlNTRrbkJQaUk5TWlkcGlCb3A4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS8wNTQ4OGYtZjRlMC00ZTZjLTk0ZjUtMzc1NzUzOWMyYWM5 LzEvWDMybGFLMENlNTRrbkJQaUk5TWlkcGlCb3A4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk1Q6ihIS IF5WgDKpIxdbrdKEnAB3C+GT/L+ZDvELP/RuSpObQzr1P1EhQIwLAugDsAxHsRZI YByLn4XdduG2+TA7BWbUysp2nxQy8IlE6RgpvxOQnVMf8bgLc2jtVD5SiHEGFQUt LLOYdFqQvYvdLROMRHchHNSLciptDMbOFpaLHqz4CLh2olAjAG47F6eyVrFZXxPO RygdECzBRal80c0/rpjnvwHGgh3Cj6dYS+ZSD6HzVL0+iX/ceIv1ucHEqws0Gyis tzxta8VhrRcvh9Nk+3bmEWPYYtEFMiJ86Ehzq/gF1fGfr+mazWotfxvBkCHkGALS X03EdOx3PAoh0A== -----END CERTIFICATE-----Generated at Sun Jul 27 05:24:53 2025 by rpki-client