$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft File: dOPDNpcglLGowT1BgWhX0Zejquk.mft (raw, json) Hash identifier: VXqMWzjoNWKLZ0bCERvv6/Zi9f5iage49fRR/4/Lzi0= Subject key identifier: ED:6F:5F:AC:00:E8:30:AE:DB:B7:41:EB:D6:35:B4:B0:FC:0F:D0:49 Authority key identifier: 74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9 Certificate issuer: /CN=74e3c336972094b1a8c13d41816857d197a3aae9 Certificate serial: 019A214014B86D0E9726431ADB1D1CF9C9B6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft Manifest number: 141A Signing time: Sun 26 Oct 2025 16:00:38 +0000 Manifest this update: Sun 26 Oct 2025 16:00:38 +0000 Manifest next update: Mon 27 Oct 2025 16:00:38 +0000 Files and hashes: 1: 1jpCyAps9bajWpTTNjuuJqkvGNw.roa (hash: QdNF4dszmqN93C6OMT7lYcdmskEQt8kQtHTCFEeRLK4=) 2: 5TFH_eW2qIWRYXLPVqdNkYBm8RY.roa (hash: NHd1FZ0Cj9dSpCZXcpxcSuivwawk/XLiDV5hFVcK8gs=) 3: B-IzhwSKXhHkz88nSETOGD9yRG4.roa (hash: YnLpp9fGmyMsduAjb3ebFR0Lsy/94n7A+dxRiyz9BXo=) 4: LfVA7yFSUE0qhq_HYTK38H6PAlY.roa (hash: Kppg3VjpkBzGqtZq9DRkl+9W1VehTNUgM7T4eg/Jh/E=) 5: OI1U9tyTexI3zFMxN2_p-wXJb6Q.roa (hash: jEa8AhX1E/rcgU1N48+cRpXUd91VJFk6ahzuPB4XKow=) 6: UWwzSZwnxpR_r3Y4D6vttKdBBVs.roa (hash: 7svZa4xV7+uz3XJCftME26l72YGSUBkSe+OkDk5Vluk=) 7: VJ6MDr9v2VTJjopln-NK2ojxFwc.roa (hash: aCjSF+Bt+cDnTvcdibhV9s05hQuvY9LCYp3eMrgD2Ks=) 8: YOcpXFVJRTJW2caFAPTppkNQBuk.roa (hash: bsMm8G8+2Vegzn+c1SqEObi1wuYbeOXaQ994ZEYf674=) 9: a1U9llCdwrEqU4GkcwBsuwGny80.roa (hash: x9+7kA4QQzpZS4+gdNTWeXV2Ehq7i5FwV0w3Ws0zS7A=) 10: bilxvgHa_ortWdZiJoCPu9q2EO4.roa (hash: l/1X47j3OP5z+Rp05LuTXjyl7yZpgOm/aXT90ziTHDc=) 11: btX-zAe_zEJQ3ltM7sZKTKWNtzU.roa (hash: FXQNguGpvehosedHQRjCf06rJkvh5KY35ySN2Wig1dE=) 12: dOPDNpcglLGowT1BgWhX0Zejquk.crl (hash: m/BWMvaU7hPj1tGuqdhIgO86BxCTaGm8EnrAWzAuDfw=) 13: leLN7dUwqNQXTkicjPodaPNaHrA.roa (hash: /TZBYmyqPdbIBcWc+Ubi8mL2e3Sg1zgKUo/8XZMZsK8=) 14: ltEUPJ59iMmxTdNEYLGbM1Yq6jY.roa (hash: 4OyHOUV/gpG2mHKMCDQGjjKuCFHSFtOInlqympBF1Os=) 15: pzyfVcqGqM8oIh9yspKnplAOyo4.roa (hash: hsiUYyCYakxAYsQctvaT1faoOH457ARGeeeeMVZVUZk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 27 Oct 2025 16:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:21:40:14:b8:6d:0e:97:26:43:1a:db:1d:1c:f9:c9:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74e3c336972094b1a8c13d41816857d197a3aae9 Validity Not Before: Oct 26 16:00:38 2025 GMT Not After : Oct 27 16:00:38 2025 GMT Subject: CN=ed6f5fac00e830aedbb741ebd635b4b0fc0fd049 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:74:d3:74:6a:85:16:d0:0a:5f:3a:76:02:3c: 9e:6d:75:a7:9c:f3:a0:df:dc:7c:41:06:91:72:ea: 5c:39:90:f3:4e:64:7d:e2:ea:fd:42:b1:d9:6c:d5: 3e:44:9a:64:41:02:40:01:2e:b8:0e:77:33:56:5b: f7:e3:9b:0f:39:e9:5e:a3:87:4f:fa:7f:24:e8:d6: 0d:42:7c:fc:50:76:d7:0f:1a:27:37:bd:8d:62:c1: 76:d8:ec:8f:3f:b0:50:51:67:e7:f5:be:f0:7a:10: ff:0b:16:40:a9:3c:65:e3:22:01:88:31:4a:d0:89: c0:d6:18:28:bb:22:e0:c6:ea:c3:69:dc:7d:25:fa: ac:82:77:63:f7:c3:4b:02:0f:b2:35:ae:dd:25:76: c2:96:e3:1e:0b:4c:27:ad:7e:fe:2a:08:16:4b:23: 42:ff:f5:36:87:c9:f8:ad:a2:a9:7f:53:7b:65:06: fc:7c:57:ff:02:aa:a9:78:9e:0f:2a:5f:2d:14:0f: 55:55:28:ae:18:95:ed:98:d0:da:d3:ed:0c:93:6d: 17:d5:e8:16:e5:37:b4:b3:c8:49:d2:cd:ad:3e:72: e1:86:ca:5c:bc:f1:ca:ac:70:8f:48:8d:96:49:f1: 36:8c:c4:94:b9:3f:1c:67:05:a6:cd:c9:3a:94:46: 1c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:6F:5F:AC:00:E8:30:AE:DB:B7:41:EB:D6:35:B4:B0:FC:0F:D0:49 X509v3 Authority Key Identifier: keyid:74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:f9:27:e7:ff:a4:d9:06:3b:33:3e:e8:fb:e4:04:a9:29:8c: 51:0f:4c:66:15:3f:9e:32:18:db:fb:25:49:74:73:ae:15:f4: 5b:e3:32:56:70:9f:24:ad:e2:0b:3a:93:27:86:7a:f1:4e:19: 3e:8e:e7:8c:47:ff:2b:7c:48:2e:9c:6a:18:d3:d9:c7:f7:55: 03:17:c2:7e:49:d0:19:94:4f:91:47:9d:af:46:f3:f0:55:e0: 11:83:e0:25:b7:ed:76:7f:85:54:95:4c:17:d3:40:88:05:80: 07:e4:9b:4a:64:ed:c4:4c:af:c5:0c:e4:13:4b:6b:b8:8d:a6: f3:e9:6e:7e:ef:13:20:8f:26:18:7e:45:9e:ee:85:bd:c0:f5: 90:5e:c1:62:ec:19:27:5c:4f:6f:a5:00:91:ea:6a:87:d9:7e: 55:21:54:0a:31:67:5f:9f:28:7a:31:67:c7:18:0a:c8:53:a1: cf:1d:a8:a5:b0:5c:91:1f:9e:7b:e8:08:93:e5:d9:d3:42:89: 27:bb:07:0e:b3:f3:c5:ea:ae:c4:5e:25:b0:f1:4e:e4:f9:a5: 83:d1:76:ff:3a:16:c0:98:c7:2e:9f:48:2a:e1:e7:85:e2:a1: ce:42:be:91:3d:c0:09:1f:8d:d2:f0:74:71:62:11:59:61:19: ce:9f:04:e1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZohQBS4bQ6XJkMa2x0c+cm2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0ZTNjMzM2OTcyMDk0YjFhOGMxM2Q0MTgxNjg1N2QxOTdh M2FhZTkwHhcNMjUxMDI2MTYwMDM4WhcNMjUxMDI3MTYwMDM4WjAzMTEwLwYDVQQD EyhlZDZmNWZhYzAwZTgzMGFlZGJiNzQxZWJkNjM1YjRiMGZjMGZkMDQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxnTTdGqFFtAKXzp2AjyebXWnnPOg 39x8QQaRcupcOZDzTmR94ur9QrHZbNU+RJpkQQJAAS64DnczVlv345sPOeleo4dP +n8k6NYNQnz8UHbXDxonN72NYsF22OyPP7BQUWfn9b7wehD/CxZAqTxl4yIBiDFK 0InA1hgouyLgxurDadx9Jfqsgndj98NLAg+yNa7dJXbCluMeC0wnrX7+KggWSyNC //U2h8n4raKpf1N7ZQb8fFf/AqqpeJ4PKl8tFA9VVSiuGJXtmNDa0+0Mk20X1egW 5Te0s8hJ0s2tPnLhhspcvPHKrHCPSI2WSfE2jMSUuT8cZwWmzck6lEYcaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO1vX6wA6DCu27dB69Y1tLD8D9BJMB8GA1UdIwQY MBaAFHTjwzaXIJSxqME9QYFoV9GXo6rpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZE9QRE5wY2dsTEdvd1QxQmdXaFgwWmVqcXVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8xOGM0OTgtMjE3MS00ZTFjLThkODAt YTZjNDllYjI4Mjg3LzEvZE9QRE5wY2dsTEdvd1QxQmdXaFgwWmVqcXVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi8xOGM0OTgtMjE3MS00ZTFjLThkODAtYTZjNDllYjI4Mjg3 LzEvZE9QRE5wY2dsTEdvd1QxQmdXaFgwWmVqcXVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqfkn5/+k 2QY7Mz7o++QEqSmMUQ9MZhU/njIY2/slSXRzrhX0W+MyVnCfJK3iCzqTJ4Z68U4Z Po7njEf/K3xILpxqGNPZx/dVAxfCfknQGZRPkUedr0bz8FXgEYPgJbftdn+FVJVM F9NAiAWAB+SbSmTtxEyvxQzkE0truI2m8+lufu8TII8mGH5Fnu6FvcD1kF7BYuwZ J1xPb6UAkepqh9l+VSFUCjFnX58oejFnxxgKyFOhzx2opbBckR+ee+gIk+XZ00KJ J7sHDrPzxequxF4lsPFO5Pmlg9F2/zoWwJjHLp9IKuHnheKhzkK+kT3ACR+N0vB0 cWIRWWEZzp8E4Q== -----END CERTIFICATE-----Generated at Mon Oct 27 01:39:19 2025 by rpki-client