$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft File: BpLF8WMTZTQlvEZxBYdeOil8_5s.mft (raw, json) Hash identifier: TEKeZu4Ry3HssUTp0q+sa3GzzU1J31Lf0NfR5GLGtCE= Subject key identifier: E6:72:30:50:CD:E3:A7:5F:92:AF:74:63:99:19:31:50:54:2E:4A:C7 Authority key identifier: 06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B Certificate issuer: /CN=0692c5f16313653425bc467105875e3a297cff9b Certificate serial: 019A4C2A5B9FA4A91ACD25E0D23F6A7004D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft Manifest number: 09E2 Signing time: Tue 04 Nov 2025 00:00:35 +0000 Manifest this update: Tue 04 Nov 2025 00:00:35 +0000 Manifest next update: Wed 05 Nov 2025 00:00:35 +0000 Files and hashes: 1: 6m4iBU1uV9OjtT-yI0kHDyi4gLg.roa (hash: N5jGzrk7sta0axX9QvqTjHgaFwV4arIObuPbt2KJNnM=) 2: 7tTZk2wCmakp5M5T1YuiU8TuWxw.roa (hash: 8JeqZuwRL8gNhmaq+aEKdQ907Eg7DEpF3/RheOxRpLQ=) 3: 84TrX0qs1Y4yZ95W-q51Grc9rH0.roa (hash: sAIYXtIgwoe7qa6SiMh9Mq7V0vDYEf6NPqM5EjqisbM=) 4: BpLF8WMTZTQlvEZxBYdeOil8_5s.crl (hash: 7zo9UwkWOXzO5yIsl121/vbvBubaPVetGtsRV3j2MBM=) 5: DH2KmHptf0XCrxVYDl8SWJ6n_OU.roa (hash: 1p3/Uw0Hzg9UQAF7EIOu+m40aaRU5MBeT7UYxTAJl5M=) 6: I0lZ-wnGmJHIeWk4JSccdYLGI-0.roa (hash: LnR75ICh/pu9YTgE61/TkYN/sNwF0ls7eWnRXUdZNeI=) 7: Qgkw5GtNRcsOFSShf-z0xF_tI6I.roa (hash: mZ0NWqp/jNCXFtNZo5WbQ6xy8wKTYFTecNdM8OwQcds=) 8: ZuApx1lJ6PZTaa1PSofxEZnETW8.roa (hash: i6ZjtL8jp8h1GWVt1Wew7Qku5Nc6QBUB0tBwDCSGXU8=) 9: _6aivCsAWH-kqctPZhR5amDxfsA.roa (hash: nWAJSN6GSWrgvbg0VuNNKDg0OVs+juuAy8NmC7uqE34=) 10: acXjyXZbDzNfFna5ZWRHDz6K5YE.roa (hash: sm9lkJZIavBC2tJvS1A50JKwZEAycxeog0lweVtHcXM=) 11: e31KG_8dad-8ny4PFtbT297H7Sw.roa (hash: GQmunQnH91NAJBx06ug5Vq/w7qs39J3e7sMnlc2OutE=) 12: ej-rBCJmnu-miAXBE5PIqlt8TFo.roa (hash: Z10wztRjBSEGOvVc7tXz4TILdxZp89J4+J08gFrTvVU=) 13: gcpaoxI47uAbfYR_M1Dl9LctMNk.roa (hash: hG0WyItsQE7UjKos3HOIuobdbMTAqgbbv6pzl/cN/6g=) 14: pSbX-PyBbCbb6sLnIu1jAWYX5ak.roa (hash: GoC5K97gl9mRDyYEwiwyowaJojmTfgrX+bjBIRbHQpg=) 15: xe-KS40JXwA4DSnnilL2aYekU18.roa (hash: trUq9aYHMLBwRD59FTvYVzHcchsIZi2f2vJplQh7+rM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 00:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:4c:2a:5b:9f:a4:a9:1a:cd:25:e0:d2:3f:6a:70:04:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0692c5f16313653425bc467105875e3a297cff9b Validity Not Before: Nov 4 00:00:35 2025 GMT Not After : Nov 5 00:00:35 2025 GMT Subject: CN=e6723050cde3a75f92af746399193150542e4ac7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c4:36:5a:a8:b6:8a:32:18:9c:24:39:78:ef: 03:2a:34:0c:31:7c:46:2c:ea:22:cb:49:db:e4:74: 1d:8e:7a:79:c3:b1:58:65:25:96:dc:63:70:66:30: 7a:6c:a0:2d:31:9b:5a:2e:4b:47:d2:ea:42:18:8e: 60:b0:b5:4a:07:81:60:48:e3:29:47:64:cf:4f:b9: da:9f:5c:79:28:d0:f6:48:23:1e:f2:46:ea:12:e3: 8b:86:cf:1d:5e:c2:fb:54:e1:13:0c:d1:26:cc:c7: b6:1e:94:e7:2d:70:87:16:a7:4e:4d:49:4a:4a:20: 11:91:e3:d6:24:b8:3a:23:cd:99:11:8f:d9:6d:cb: 57:81:d3:97:f7:d4:03:e4:eb:43:7c:34:b6:8a:54: b4:6e:7c:65:30:47:db:e0:2c:d3:95:ac:d4:54:87: 86:e2:80:59:e3:b5:cd:4b:f5:6f:1d:93:62:6c:3b: 6c:7a:e8:2d:12:92:5c:ec:95:d4:6e:de:04:92:9b: de:b4:e8:a2:14:66:2e:0c:8b:87:d7:45:db:bc:7d: 93:93:aa:8b:4f:9f:78:62:54:77:c0:01:56:47:55: 3f:69:27:24:6d:9b:87:7a:c0:a2:90:63:87:6e:a6: a9:1d:fd:28:1c:01:c4:b6:51:0a:67:f8:da:9c:2e: 1c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:72:30:50:CD:E3:A7:5F:92:AF:74:63:99:19:31:50:54:2E:4A:C7 X509v3 Authority Key Identifier: keyid:06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:e1:1b:dc:ae:fe:e5:40:b4:e6:ef:66:8f:da:85:80:05:37: 7d:da:9a:d4:11:1a:c5:29:ec:b8:39:51:6b:fa:95:fa:71:a1: 53:64:4d:5a:fd:9c:04:45:38:5d:f9:5a:f2:ee:13:c7:b6:79: b6:4e:1d:bd:72:f1:04:c3:54:60:d1:93:bc:69:ab:ef:a0:0f: c1:66:4b:fe:33:00:51:a7:2c:9a:f7:ee:b3:ea:23:b3:ba:5a: 4d:81:99:8c:04:60:27:ae:fd:73:86:e9:e2:04:f8:6d:53:40: 13:a6:60:1f:49:9c:79:d5:95:b2:7c:e1:dc:7f:33:b0:48:ca: 26:f7:94:cc:f6:2b:b2:bc:22:02:49:89:53:78:50:50:d9:c7: b9:e6:00:9c:93:88:94:94:ab:49:82:79:36:e0:b3:c8:c7:60: f9:08:a9:14:08:bb:5a:dd:0d:a6:a6:7a:b6:1d:33:8a:98:39: 0a:8b:9a:a1:5a:24:ba:1f:80:cc:e3:30:3b:55:da:fa:23:37: 11:4f:c0:a1:d1:ed:2d:7b:6b:49:1b:6a:27:6e:ab:66:fc:19: 80:c5:52:d2:b9:37:b6:2c:cd:33:4c:50:0e:06:09:65:22:a1: a6:09:48:61:97:31:09:c7:c5:d9:11:b8:4e:d4:27:0b:c2:86: 3b:28:d0:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZpMKlufpKkazSXg0j9qcATVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2OTJjNWYxNjMxMzY1MzQyNWJjNDY3MTA1ODc1ZTNhMjk3 Y2ZmOWIwHhcNMjUxMTA0MDAwMDM1WhcNMjUxMTA1MDAwMDM1WjAzMTEwLwYDVQQD EyhlNjcyMzA1MGNkZTNhNzVmOTJhZjc0NjM5OTE5MzE1MDU0MmU0YWM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0cQ2Wqi2ijIYnCQ5eO8DKjQMMXxG LOoiy0nb5HQdjnp5w7FYZSWW3GNwZjB6bKAtMZtaLktH0upCGI5gsLVKB4FgSOMp R2TPT7nan1x5KND2SCMe8kbqEuOLhs8dXsL7VOETDNEmzMe2HpTnLXCHFqdOTUlK SiARkePWJLg6I82ZEY/ZbctXgdOX99QD5OtDfDS2ilS0bnxlMEfb4CzTlazUVIeG 4oBZ47XNS/VvHZNibDtseugtEpJc7JXUbt4EkpvetOiiFGYuDIuH10XbvH2Tk6qL T594YlR3wAFWR1U/aSckbZuHesCikGOHbqapHf0oHAHEtlEKZ/janC4csQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOZyMFDN46dfkq90Y5kZMVBULkrHMB8GA1UdIwQY MBaAFAaSxfFjE2U0JbxGcQWHXjopfP+bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQnBMRjhXTVRaVFFsdkVaeEJZZGVPaWw4XzVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS83Nzk5MjgtODgxYy00MzNhLWIyNDMt YzlmNTdlOTU5ZWYxLzEvQnBMRjhXTVRaVFFsdkVaeEJZZGVPaWw4XzVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS83Nzk5MjgtODgxYy00MzNhLWIyNDMtYzlmNTdlOTU5ZWYx LzEvQnBMRjhXTVRaVFFsdkVaeEJZZGVPaWw4XzVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY+Eb3K7+ 5UC05u9mj9qFgAU3fdqa1BEaxSnsuDlRa/qV+nGhU2RNWv2cBEU4Xfla8u4Tx7Z5 tk4dvXLxBMNUYNGTvGmr76APwWZL/jMAUacsmvfus+ojs7paTYGZjARgJ679c4bp 4gT4bVNAE6ZgH0mcedWVsnzh3H8zsEjKJveUzPYrsrwiAkmJU3hQUNnHueYAnJOI lJSrSYJ5NuCzyMdg+QipFAi7Wt0NpqZ6th0zipg5CouaoVokuh+AzOMwO1Xa+iM3 EU/AodHtLXtrSRtqJ26rZvwZgMVS0rk3tizNM0xQDgYJZSKhpglIYZcxCcfF2RG4 TtQnC8KGOyjQhA== -----END CERTIFICATE-----Generated at Tue Nov 4 09:08:36 2025 by rpki-client