$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft File: dOPDNpcglLGowT1BgWhX0Zejquk.mft (raw, json) Hash identifier: a+utekhUFs/EEphrN2UIF7TC2/E5+hlEoqdtc7uyiRc= Subject key identifier: 77:2E:92:71:CA:09:7B:09:5A:0C:17:74:5C:AA:E1:04:E6:35:4C:DB Authority key identifier: 74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9 Certificate issuer: /CN=74e3c336972094b1a8c13d41816857d197a3aae9 Certificate serial: 01993794EAB8A783D8431C61152F10A22D50 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft Manifest number: 13A1 Signing time: Thu 11 Sep 2025 07:02:10 +0000 Manifest this update: Thu 11 Sep 2025 07:02:10 +0000 Manifest next update: Fri 12 Sep 2025 07:02:10 +0000 Files and hashes: 1: 1jpCyAps9bajWpTTNjuuJqkvGNw.roa (hash: QdNF4dszmqN93C6OMT7lYcdmskEQt8kQtHTCFEeRLK4=) 2: 5TFH_eW2qIWRYXLPVqdNkYBm8RY.roa (hash: NHd1FZ0Cj9dSpCZXcpxcSuivwawk/XLiDV5hFVcK8gs=) 3: B-IzhwSKXhHkz88nSETOGD9yRG4.roa (hash: YnLpp9fGmyMsduAjb3ebFR0Lsy/94n7A+dxRiyz9BXo=) 4: LfVA7yFSUE0qhq_HYTK38H6PAlY.roa (hash: Kppg3VjpkBzGqtZq9DRkl+9W1VehTNUgM7T4eg/Jh/E=) 5: OI1U9tyTexI3zFMxN2_p-wXJb6Q.roa (hash: jEa8AhX1E/rcgU1N48+cRpXUd91VJFk6ahzuPB4XKow=) 6: UWwzSZwnxpR_r3Y4D6vttKdBBVs.roa (hash: 7svZa4xV7+uz3XJCftME26l72YGSUBkSe+OkDk5Vluk=) 7: VJ6MDr9v2VTJjopln-NK2ojxFwc.roa (hash: aCjSF+Bt+cDnTvcdibhV9s05hQuvY9LCYp3eMrgD2Ks=) 8: YOcpXFVJRTJW2caFAPTppkNQBuk.roa (hash: bsMm8G8+2Vegzn+c1SqEObi1wuYbeOXaQ994ZEYf674=) 9: a1U9llCdwrEqU4GkcwBsuwGny80.roa (hash: x9+7kA4QQzpZS4+gdNTWeXV2Ehq7i5FwV0w3Ws0zS7A=) 10: bilxvgHa_ortWdZiJoCPu9q2EO4.roa (hash: l/1X47j3OP5z+Rp05LuTXjyl7yZpgOm/aXT90ziTHDc=) 11: btX-zAe_zEJQ3ltM7sZKTKWNtzU.roa (hash: FXQNguGpvehosedHQRjCf06rJkvh5KY35ySN2Wig1dE=) 12: dOPDNpcglLGowT1BgWhX0Zejquk.crl (hash: WIZV4R8DD6w/Sf8EwfXXF8mCmzYkZr77+vyE1o1xjZM=) 13: leLN7dUwqNQXTkicjPodaPNaHrA.roa (hash: /TZBYmyqPdbIBcWc+Ubi8mL2e3Sg1zgKUo/8XZMZsK8=) 14: ltEUPJ59iMmxTdNEYLGbM1Yq6jY.roa (hash: 4OyHOUV/gpG2mHKMCDQGjjKuCFHSFtOInlqympBF1Os=) 15: pzyfVcqGqM8oIh9yspKnplAOyo4.roa (hash: hsiUYyCYakxAYsQctvaT1faoOH457ARGeeeeMVZVUZk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Sep 2025 05:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:37:94:ea:b8:a7:83:d8:43:1c:61:15:2f:10:a2:2d:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74e3c336972094b1a8c13d41816857d197a3aae9 Validity Not Before: Sep 11 07:02:10 2025 GMT Not After : Sep 12 07:02:10 2025 GMT Subject: CN=772e9271ca097b095a0c17745caae104e6354cdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:76:3e:ac:c7:ec:7b:9a:d0:b1:3a:b3:6c:54: 76:e5:a0:ea:e3:ae:3e:68:e1:1e:3d:0f:4b:53:98: c5:53:cc:4e:88:1d:ba:57:a9:d5:d2:6f:28:52:ea: ea:fd:01:c6:93:c5:21:69:ee:4d:a0:47:de:c9:cb: 32:b5:26:d2:15:b8:76:97:03:41:78:85:63:6a:51: 4e:26:4f:16:02:56:f5:3d:33:79:8a:a6:74:47:3b: 13:ed:71:2e:19:90:ba:b0:bf:7f:c8:8b:e9:c3:61: 61:33:5b:71:f5:ca:ec:4c:54:a6:04:a7:7f:39:e1: 62:1f:66:9a:8a:78:2f:76:66:3a:42:eb:81:3c:4b: 2b:b4:c4:81:9f:99:4d:40:b8:7a:f3:02:06:49:20: bc:c9:67:36:33:25:33:0f:96:dc:c7:70:c8:ce:cd: 09:77:5d:ac:8d:0f:19:be:36:26:e7:cd:cd:2f:8e: 0d:86:e8:79:1c:6d:2f:8a:65:ee:f8:5e:01:bc:5f: 46:ae:0e:18:b4:e7:07:b4:b8:85:cc:0c:04:fc:f7: 89:64:62:48:c0:b4:b3:63:d6:ce:26:43:66:6d:fd: 80:a2:ff:27:a3:5e:6f:72:93:81:1a:3b:62:19:2f: 6d:3e:8c:30:ea:e1:fe:6c:2c:8c:b5:a2:3a:aa:df: 1e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:2E:92:71:CA:09:7B:09:5A:0C:17:74:5C:AA:E1:04:E6:35:4C:DB X509v3 Authority Key Identifier: keyid:74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d6:6f:93:a6:a8:27:33:6a:c2:ba:e4:0f:dc:4c:52:36:c3:79: b2:55:db:2f:7d:ec:97:b9:c1:b7:94:f6:bf:d8:de:ee:e6:95: ee:21:06:6b:49:77:92:e5:12:c3:d8:a6:8b:fa:11:17:da:c3: ec:fc:f9:fd:06:89:24:62:5f:48:bc:c5:0e:db:eb:35:42:83: d1:9d:d0:e6:29:78:23:71:88:c8:13:90:0c:e4:0d:2d:2b:b1: fe:40:9a:f9:3d:4e:7b:cb:a2:8c:8c:20:c1:62:2f:39:74:5a: 00:9c:f3:0d:5b:b1:4c:dc:08:ac:f7:fc:4a:6d:45:85:6b:c0: 3e:56:30:1d:43:31:a7:ef:50:37:64:08:b1:4a:23:97:91:76: 7f:bc:97:3b:9a:de:23:f9:b2:ac:57:7e:c6:26:41:33:ba:ed: 5b:bd:04:8d:66:9d:bf:0a:41:a5:06:40:f7:c0:15:4c:f6:3a: 2e:75:3b:0e:f7:46:68:01:0e:15:bc:09:ee:89:2f:cb:a7:e4: 76:de:14:0b:f9:cb:45:1f:31:3a:29:09:7d:1b:a5:47:d1:86: 3e:fe:1f:ff:66:d1:92:da:19:30:07:d4:0a:2b:f7:c0:c2:39: b7:85:77:14:18:01:35:fd:a4:65:d5:df:a9:69:b6:c7:29:7b: 35:c6:97:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZk3lOq4p4PYQxxhFS8Qoi1QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0ZTNjMzM2OTcyMDk0YjFhOGMxM2Q0MTgxNjg1N2QxOTdh M2FhZTkwHhcNMjUwOTExMDcwMjEwWhcNMjUwOTEyMDcwMjEwWjAzMTEwLwYDVQQD Eyg3NzJlOTI3MWNhMDk3YjA5NWEwYzE3NzQ1Y2FhZTEwNGU2MzU0Y2RiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwHY+rMfse5rQsTqzbFR25aDq464+ aOEePQ9LU5jFU8xOiB26V6nV0m8oUurq/QHGk8Uhae5NoEfeycsytSbSFbh2lwNB eIVjalFOJk8WAlb1PTN5iqZ0RzsT7XEuGZC6sL9/yIvpw2FhM1tx9crsTFSmBKd/ OeFiH2aaingvdmY6QuuBPEsrtMSBn5lNQLh68wIGSSC8yWc2MyUzD5bcx3DIzs0J d12sjQ8ZvjYm583NL44Nhuh5HG0vimXu+F4BvF9Grg4YtOcHtLiFzAwE/PeJZGJI wLSzY9bOJkNmbf2Aov8no15vcpOBGjtiGS9tPoww6uH+bCyMtaI6qt8e9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHcuknHKCXsJWgwXdFyq4QTmNUzbMB8GA1UdIwQY MBaAFHTjwzaXIJSxqME9QYFoV9GXo6rpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZE9QRE5wY2dsTEdvd1QxQmdXaFgwWmVqcXVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8xOGM0OTgtMjE3MS00ZTFjLThkODAt YTZjNDllYjI4Mjg3LzEvZE9QRE5wY2dsTEdvd1QxQmdXaFgwWmVqcXVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi8xOGM0OTgtMjE3MS00ZTFjLThkODAtYTZjNDllYjI4Mjg3 LzEvZE9QRE5wY2dsTEdvd1QxQmdXaFgwWmVqcXVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1m+Tpqgn M2rCuuQP3ExSNsN5slXbL33sl7nBt5T2v9je7uaV7iEGa0l3kuUSw9imi/oRF9rD 7Pz5/QaJJGJfSLzFDtvrNUKD0Z3Q5il4I3GIyBOQDOQNLSux/kCa+T1Oe8uijIwg wWIvOXRaAJzzDVuxTNwIrPf8Sm1FhWvAPlYwHUMxp+9QN2QIsUojl5F2f7yXO5re I/myrFd+xiZBM7rtW70EjWadvwpBpQZA98AVTPY6LnU7DvdGaAEOFbwJ7okvy6fk dt4UC/nLRR8xOikJfRulR9GGPv4f/2bRktoZMAfUCiv3wMI5t4V3FBgBNf2kZdXf qWm2xyl7NcaXmw== -----END CERTIFICATE-----Generated at Thu Sep 11 14:51:28 2025 by rpki-client