$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft File: BpLF8WMTZTQlvEZxBYdeOil8_5s.mft (raw, json) Hash identifier: akh71PfQSxKyKYt9DoeVbRbRUWM5A2IjKpLPBDXIk50= Subject key identifier: F3:6B:6D:2B:86:33:05:05:4C:9B:D0:A8:A0:08:42:6F:11:AB:C3:24 Authority key identifier: 06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B Certificate issuer: /CN=0692c5f16313653425bc467105875e3a297cff9b Certificate serial: 01995AC46829AFFB4A573FA0785D3B1D8150 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft Manifest number: 0965 Signing time: Thu 18 Sep 2025 03:00:45 +0000 Manifest this update: Thu 18 Sep 2025 03:00:45 +0000 Manifest next update: Fri 19 Sep 2025 03:00:45 +0000 Files and hashes: 1: 6m4iBU1uV9OjtT-yI0kHDyi4gLg.roa (hash: N5jGzrk7sta0axX9QvqTjHgaFwV4arIObuPbt2KJNnM=) 2: 7tTZk2wCmakp5M5T1YuiU8TuWxw.roa (hash: 8JeqZuwRL8gNhmaq+aEKdQ907Eg7DEpF3/RheOxRpLQ=) 3: 84TrX0qs1Y4yZ95W-q51Grc9rH0.roa (hash: sAIYXtIgwoe7qa6SiMh9Mq7V0vDYEf6NPqM5EjqisbM=) 4: BpLF8WMTZTQlvEZxBYdeOil8_5s.crl (hash: wne8yBa+5QqodDuY2Dev6Ak8fqe810RKlffTWUqwc+U=) 5: DH2KmHptf0XCrxVYDl8SWJ6n_OU.roa (hash: 1p3/Uw0Hzg9UQAF7EIOu+m40aaRU5MBeT7UYxTAJl5M=) 6: I0lZ-wnGmJHIeWk4JSccdYLGI-0.roa (hash: LnR75ICh/pu9YTgE61/TkYN/sNwF0ls7eWnRXUdZNeI=) 7: Qgkw5GtNRcsOFSShf-z0xF_tI6I.roa (hash: mZ0NWqp/jNCXFtNZo5WbQ6xy8wKTYFTecNdM8OwQcds=) 8: ZuApx1lJ6PZTaa1PSofxEZnETW8.roa (hash: i6ZjtL8jp8h1GWVt1Wew7Qku5Nc6QBUB0tBwDCSGXU8=) 9: _6aivCsAWH-kqctPZhR5amDxfsA.roa (hash: nWAJSN6GSWrgvbg0VuNNKDg0OVs+juuAy8NmC7uqE34=) 10: acXjyXZbDzNfFna5ZWRHDz6K5YE.roa (hash: sm9lkJZIavBC2tJvS1A50JKwZEAycxeog0lweVtHcXM=) 11: e31KG_8dad-8ny4PFtbT297H7Sw.roa (hash: GQmunQnH91NAJBx06ug5Vq/w7qs39J3e7sMnlc2OutE=) 12: ej-rBCJmnu-miAXBE5PIqlt8TFo.roa (hash: Z10wztRjBSEGOvVc7tXz4TILdxZp89J4+J08gFrTvVU=) 13: gcpaoxI47uAbfYR_M1Dl9LctMNk.roa (hash: hG0WyItsQE7UjKos3HOIuobdbMTAqgbbv6pzl/cN/6g=) 14: pSbX-PyBbCbb6sLnIu1jAWYX5ak.roa (hash: GoC5K97gl9mRDyYEwiwyowaJojmTfgrX+bjBIRbHQpg=) 15: xe-KS40JXwA4DSnnilL2aYekU18.roa (hash: trUq9aYHMLBwRD59FTvYVzHcchsIZi2f2vJplQh7+rM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Sep 2025 21:38:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:5a:c4:68:29:af:fb:4a:57:3f:a0:78:5d:3b:1d:81:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0692c5f16313653425bc467105875e3a297cff9b Validity Not Before: Sep 18 03:00:45 2025 GMT Not After : Sep 19 03:00:45 2025 GMT Subject: CN=f36b6d2b863305054c9bd0a8a008426f11abc324 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:19:4d:50:b7:ff:8c:cd:fe:44:ae:4f:8c:07: 3c:cd:a5:16:26:05:3b:32:7f:1b:97:28:bd:61:9d: 64:96:52:74:96:e1:39:d9:9f:4a:df:32:38:a1:9c: 4f:c2:f1:9e:31:24:46:78:62:80:90:d2:23:d6:38: 81:eb:86:32:5e:f5:35:db:08:47:d8:29:81:2a:00: b6:49:91:e6:76:f0:61:33:6e:e7:46:15:3c:d2:d4: 7e:a3:1e:03:dc:f0:2f:50:d1:7b:6b:38:46:ff:ab: f1:91:a6:07:08:57:85:bd:ed:f6:c2:33:17:1a:85: d3:3f:59:6f:05:e3:ea:80:55:8f:60:9e:d5:3c:20: e9:60:d0:1e:61:76:e4:77:3a:5f:9a:62:e5:c0:3a: 3d:f6:e8:ee:32:a8:69:55:e7:7f:a5:1c:38:ad:4d: ff:05:2d:54:5f:03:0e:37:c3:bb:f0:9f:36:b5:8e: 2a:cf:69:c9:45:1f:6f:a3:c2:b9:2c:64:5f:38:f7: 81:53:da:57:17:d8:99:4a:a8:75:42:45:86:d5:9f: b7:27:3b:30:29:15:15:d5:eb:7e:24:c7:2e:bd:00: fb:33:47:d0:3d:99:65:3c:a6:1a:2c:fc:65:92:fb: 4d:53:28:14:af:e3:4b:30:24:4b:7c:9f:0d:53:30: cd:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:6B:6D:2B:86:33:05:05:4C:9B:D0:A8:A0:08:42:6F:11:AB:C3:24 X509v3 Authority Key Identifier: keyid:06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:a8:69:d4:96:9a:85:27:ce:7a:2c:88:13:2d:3f:bc:c5:15: bc:5a:28:c8:53:3f:54:93:70:58:c7:9d:89:d7:d1:e4:25:5c: a1:54:80:d3:ac:7c:b0:9b:2d:e7:e3:cd:67:8b:85:92:53:45: f3:60:00:d3:0e:9e:ac:a9:d5:c2:d0:a8:ff:c2:26:2e:5e:86: 4e:87:b1:14:61:2f:33:8f:64:e8:d3:66:ef:10:4d:3f:08:07: 6c:b8:ff:57:37:41:68:73:59:4c:5f:4c:6e:f9:b1:a2:e3:47: 6a:6d:59:e1:e4:24:c6:5d:77:ad:5f:23:d2:2f:b4:9e:6c:00: 4b:34:ae:f0:e8:f9:8e:34:1a:75:d4:b5:7e:4d:56:96:83:b5: da:56:68:b7:86:57:82:e4:cf:71:b0:20:95:61:f2:6e:ce:4e: 52:22:e9:a4:6f:24:25:87:84:2d:2e:0b:e4:2f:3c:b7:03:d9: ac:3b:a5:5d:0c:43:fa:02:ad:3c:3f:c2:4b:2a:34:8d:a2:d1: df:10:61:35:d1:a3:26:47:17:d1:e8:0a:61:2c:82:66:a3:0c: 1d:08:cb:05:bb:d3:f9:29:2f:fe:48:1c:02:d6:36:2e:d5:6d: 8d:13:90:ec:4d:83:e1:b5:d4:62:30:6b:0c:29:3d:7a:4f:31: 9a:2c:e0:34 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZlaxGgpr/tKVz+geF07HYFQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2OTJjNWYxNjMxMzY1MzQyNWJjNDY3MTA1ODc1ZTNhMjk3 Y2ZmOWIwHhcNMjUwOTE4MDMwMDQ1WhcNMjUwOTE5MDMwMDQ1WjAzMTEwLwYDVQQD EyhmMzZiNmQyYjg2MzMwNTA1NGM5YmQwYThhMDA4NDI2ZjExYWJjMzI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAixlNULf/jM3+RK5PjAc8zaUWJgU7 Mn8blyi9YZ1kllJ0luE52Z9K3zI4oZxPwvGeMSRGeGKAkNIj1jiB64YyXvU12whH 2CmBKgC2SZHmdvBhM27nRhU80tR+ox4D3PAvUNF7azhG/6vxkaYHCFeFve32wjMX GoXTP1lvBePqgFWPYJ7VPCDpYNAeYXbkdzpfmmLlwDo99ujuMqhpVed/pRw4rU3/ BS1UXwMON8O78J82tY4qz2nJRR9vo8K5LGRfOPeBU9pXF9iZSqh1QkWG1Z+3Jzsw KRUV1et+JMcuvQD7M0fQPZllPKYaLPxlkvtNUygUr+NLMCRLfJ8NUzDNRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPNrbSuGMwUFTJvQqKAIQm8Rq8MkMB8GA1UdIwQY MBaAFAaSxfFjE2U0JbxGcQWHXjopfP+bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQnBMRjhXTVRaVFFsdkVaeEJZZGVPaWw4XzVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS83Nzk5MjgtODgxYy00MzNhLWIyNDMt YzlmNTdlOTU5ZWYxLzEvQnBMRjhXTVRaVFFsdkVaeEJZZGVPaWw4XzVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS83Nzk5MjgtODgxYy00MzNhLWIyNDMtYzlmNTdlOTU5ZWYx LzEvQnBMRjhXTVRaVFFsdkVaeEJZZGVPaWw4XzVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi6hp1Jaa hSfOeiyIEy0/vMUVvFooyFM/VJNwWMedidfR5CVcoVSA06x8sJst5+PNZ4uFklNF 82AA0w6erKnVwtCo/8ImLl6GToexFGEvM49k6NNm7xBNPwgHbLj/VzdBaHNZTF9M bvmxouNHam1Z4eQkxl13rV8j0i+0nmwASzSu8Oj5jjQaddS1fk1WloO12lZot4ZX guTPcbAglWHybs5OUiLppG8kJYeELS4L5C88twPZrDulXQxD+gKtPD/CSyo0jaLR 3xBhNdGjJkcX0egKYSyCZqMMHQjLBbvT+Skv/kgcAtY2LtVtjROQ7E2D4bXUYjBr DCk9ek8xmizgNA== -----END CERTIFICATE-----Generated at Thu Sep 18 04:14:57 2025 by rpki-client