$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft File: iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft (raw, json) Hash identifier: Mg4g0UPj4J/cPueoV1/4r+qzLYYMDPv+DP1SlCbrhgA= Subject key identifier: 3F:F0:BF:91:DE:91:77:36:EA:FF:49:26:B9:DF:45:73:62:67:DE:63 Authority key identifier: 89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08 Certificate issuer: /CN=896a82a725ed22bb46847ae568912078de25c108 Certificate serial: 01992E9092A9CDDCF20407DFAB9576784206 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft Manifest number: 1685 Signing time: Tue 09 Sep 2025 13:00:50 +0000 Manifest this update: Tue 09 Sep 2025 13:00:50 +0000 Manifest next update: Wed 10 Sep 2025 13:00:50 +0000 Files and hashes: 1: 1DkWoYQm2CYL8NcPditLkUCz0lY.roa (hash: WyOC+C/qv1YH3uRFOHpvx69KEYldJQ9ngZYV7GVibxI=) 2: 4Zct-UA2loSt3irTG6EROEOgPVU.roa (hash: NLd8vf2slw/QIb/HBdVGn4XmU0dDovssu3lZU415Pao=) 3: 6qHqGf1lu-fFKG9vb1_H15ADuJo.roa (hash: gDMApq50Y9wGQLSLp13vWrDWiuCmDUvoHVz6wC2AjEE=) 4: G-FIewDyYURdVBX87-3ph-Fu2uw.roa (hash: f7Fx/6OTf/ktcM8IxD8m+/K+/8kQL0F2zDEJFMd2eac=) 5: LSo0XxjpXr0DzXCFwSii4YX0VQQ.roa (hash: 2mkDU8WQtOKRRgS6azU91vya8dzOKN960jNf5zxA1Jo=) 6: YaHy853da93BgH6RfguxUPJfVLo.roa (hash: 0j9KCyGYrKnVsUjih9K2QETrLLFsgZaBmann0nAUaSU=) 7: fRZWH_M0OyQ2q7C3l2YZBzviPzY.roa (hash: F07+RgoevJOf1u0ML2Jb2xCzFrPFpbtH07Gxnbmp3Hg=) 8: h5s-RrqHnVtybQpFRQ5VYLEm6yM.roa (hash: /wt/zGlyKyo5yBKQsxdlAjFg6RgIZkpoAWM7K7t2AFA=) 9: iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl (hash: hrdOGw/xU6svtyO2aDtW8r4XlXb2nsW9kvha/MLs53A=) 10: kA7t86VhHLfxpZem9_pfnrfA8Jw.roa (hash: JdzmdB6Yw1EEixYlbi2OlJNyDFF6uk/A+LWmVNqQ7XY=) 11: w9tecX0WpG6EBeEQV6lN7pOizZM.roa (hash: r56/6xcnyNBLy2vRf5p/uK/JECPQgO4M3DafNXdoW0g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 10 Sep 2025 13:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:2e:90:92:a9:cd:dc:f2:04:07:df:ab:95:76:78:42:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=896a82a725ed22bb46847ae568912078de25c108 Validity Not Before: Sep 9 13:00:50 2025 GMT Not After : Sep 10 13:00:50 2025 GMT Subject: CN=3ff0bf91de917736eaff4926b9df45736267de63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b7:d4:6f:bd:24:09:7e:35:80:d6:02:94:9d: 49:2d:f7:ca:b3:ef:46:c2:4d:66:48:f0:9f:80:ec: 52:1e:05:25:22:fb:34:d9:45:2e:d3:9d:8a:49:d8: f1:99:17:ea:b8:fe:39:95:e8:b1:2d:ec:d0:ca:fc: d6:40:4f:83:68:4f:d1:55:24:fd:10:a0:79:fa:55: fa:1a:1e:33:40:80:08:c8:e5:b8:76:22:6f:df:95: be:66:28:c6:3c:1c:be:8d:84:01:d8:3f:f8:86:3a: b0:1a:af:c0:82:3d:c7:ca:ac:f9:34:f9:91:c0:c3: b6:c2:5d:b9:93:ff:32:62:43:cb:e0:c2:eb:d1:e9: 34:b8:b9:30:a4:2f:62:f2:2c:13:76:71:28:79:1e: 4d:49:c1:13:37:dd:f2:ac:68:48:a3:df:74:dc:00: 88:7a:b8:cb:8b:e1:9d:a6:69:f0:e3:74:91:67:f4: c4:50:51:4c:3d:28:c9:ac:14:0f:2d:f5:49:4f:c5: e2:f6:c4:ac:ec:11:0c:b6:6e:f4:a5:9b:4d:e5:e5: ab:03:42:87:82:07:1e:00:8e:1a:23:32:fe:82:bd: 6d:35:a7:bb:34:a5:34:6f:7e:dc:a1:b2:d5:48:43: ad:fd:25:f2:41:d6:16:6d:90:a1:50:73:82:14:b4: b3:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:F0:BF:91:DE:91:77:36:EA:FF:49:26:B9:DF:45:73:62:67:DE:63 X509v3 Authority Key Identifier: keyid:89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:4c:bb:50:93:04:91:3d:88:7d:bd:55:cd:ad:f8:28:59:ef: a9:dd:63:6a:6b:a1:fa:6f:ce:4d:10:27:58:03:96:4d:0e:32: 31:2e:aa:68:cb:b2:87:d4:ab:5e:28:d4:a2:ed:15:82:b7:35: a8:05:f8:1c:a2:cf:c5:25:b7:9a:f3:96:94:8c:08:b4:51:cf: 5f:b3:77:f3:33:09:ce:f0:07:0f:e4:36:2b:71:b7:e7:af:c3: 04:3f:32:85:de:20:bc:46:33:7e:77:b5:74:bb:ae:de:9b:25: c6:98:f2:a6:93:1f:64:50:de:10:b6:b9:06:82:15:99:1b:0a: 7a:28:b9:d1:5a:6b:8e:7a:13:23:94:03:e5:3d:02:31:05:18: 00:8e:ec:2c:98:4f:d6:0a:52:f5:3e:17:45:6c:8b:5d:1d:f5: 18:f9:06:a0:ae:98:6f:01:c2:a3:47:9c:75:9f:51:3b:57:2c: 06:1b:58:22:07:e5:1f:95:2b:88:1e:af:9c:eb:e7:89:5f:df: 57:d1:41:4d:46:f9:fb:7b:68:7d:9d:72:92:83:89:1a:85:eb: 49:21:73:16:92:b3:20:d1:18:fd:9d:67:54:0c:d5:d3:bf:b7: 37:7c:98:f1:d1:da:c8:1b:4a:8b:58:24:14:72:62:16:5b:a7: 14:6b:b3:86 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZkukJKpzdzyBAffq5V2eEIGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5NmE4MmE3MjVlZDIyYmI0Njg0N2FlNTY4OTEyMDc4ZGUy NWMxMDgwHhcNMjUwOTA5MTMwMDUwWhcNMjUwOTEwMTMwMDUwWjAzMTEwLwYDVQQD EygzZmYwYmY5MWRlOTE3NzM2ZWFmZjQ5MjZiOWRmNDU3MzYyNjdkZTYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyLfUb70kCX41gNYClJ1JLffKs+9G wk1mSPCfgOxSHgUlIvs02UUu052KSdjxmRfquP45leixLezQyvzWQE+DaE/RVST9 EKB5+lX6Gh4zQIAIyOW4diJv35W+ZijGPBy+jYQB2D/4hjqwGq/Agj3Hyqz5NPmR wMO2wl25k/8yYkPL4MLr0ek0uLkwpC9i8iwTdnEoeR5NScETN93yrGhIo9903ACI erjLi+Gdpmnw43SRZ/TEUFFMPSjJrBQPLfVJT8Xi9sSs7BEMtm70pZtN5eWrA0KH ggceAI4aIzL+gr1tNae7NKU0b37cobLVSEOt/SXyQdYWbZChUHOCFLSziQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD/wv5HekXc26v9JJrnfRXNiZ95jMB8GA1UdIwQY MBaAFIlqgqcl7SK7RoR65WiRIHjeJcEIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC8zZmM4ZGEtMzUxNS00MzRkLTlmMGUt MDQwMTI3MTAyMjA5LzEvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC8zZmM4ZGEtMzUxNS00MzRkLTlmMGUtMDQwMTI3MTAyMjA5 LzEvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANUy7UJME kT2Ifb1Vza34KFnvqd1jamuh+m/OTRAnWAOWTQ4yMS6qaMuyh9SrXijUou0Vgrc1 qAX4HKLPxSW3mvOWlIwItFHPX7N38zMJzvAHD+Q2K3G356/DBD8yhd4gvEYzfne1 dLuu3pslxpjyppMfZFDeELa5BoIVmRsKeii50VprjnoTI5QD5T0CMQUYAI7sLJhP 1gpS9T4XRWyLXR31GPkGoK6YbwHCo0ecdZ9RO1csBhtYIgflH5UriB6vnOvniV/f V9FBTUb5+3tofZ1ykoOJGoXrSSFzFpKzINEY/Z1nVAzV07+3N3yY8dHayBtKi1gk FHJiFlunFGuzhg== -----END CERTIFICATE-----Generated at Tue Sep 9 18:43:20 2025 by rpki-client