$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft File: iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft (raw, json) Hash identifier: 1nudJ5Jw61vJAChOMYYY2+PMALGnyxr/U1YCmEyh+Xs= Subject key identifier: B1:33:B7:24:64:9F:07:1C:2B:D9:70:1F:1E:BD:5A:9E:1C:BD:A8:78 Authority key identifier: 89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08 Certificate issuer: /CN=896a82a725ed22bb46847ae568912078de25c108 Certificate serial: 019A251C91FD6C9B8CD9797B7E11F6F80280 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft Manifest number: 1705 Signing time: Mon 27 Oct 2025 10:00:20 +0000 Manifest this update: Mon 27 Oct 2025 10:00:20 +0000 Manifest next update: Tue 28 Oct 2025 10:00:20 +0000 Files and hashes: 1: 1DkWoYQm2CYL8NcPditLkUCz0lY.roa (hash: WyOC+C/qv1YH3uRFOHpvx69KEYldJQ9ngZYV7GVibxI=) 2: 6qHqGf1lu-fFKG9vb1_H15ADuJo.roa (hash: gDMApq50Y9wGQLSLp13vWrDWiuCmDUvoHVz6wC2AjEE=) 3: G-FIewDyYURdVBX87-3ph-Fu2uw.roa (hash: f7Fx/6OTf/ktcM8IxD8m+/K+/8kQL0F2zDEJFMd2eac=) 4: K-N36rOGMrajAoKgQRnFws3cYZQ.roa (hash: nuImM5LcJvcHXxZcDwo2uunodGLbKRgkWdkeXxE++0Y=) 5: LSo0XxjpXr0DzXCFwSii4YX0VQQ.roa (hash: 2mkDU8WQtOKRRgS6azU91vya8dzOKN960jNf5zxA1Jo=) 6: YaHy853da93BgH6RfguxUPJfVLo.roa (hash: 0j9KCyGYrKnVsUjih9K2QETrLLFsgZaBmann0nAUaSU=) 7: fRZWH_M0OyQ2q7C3l2YZBzviPzY.roa (hash: F07+RgoevJOf1u0ML2Jb2xCzFrPFpbtH07Gxnbmp3Hg=) 8: h5s-RrqHnVtybQpFRQ5VYLEm6yM.roa (hash: /wt/zGlyKyo5yBKQsxdlAjFg6RgIZkpoAWM7K7t2AFA=) 9: iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl (hash: 9mcaysVywfVPuwzxm7juLxLvDlBixLDfag3d1mA5ODg=) 10: kA7t86VhHLfxpZem9_pfnrfA8Jw.roa (hash: JdzmdB6Yw1EEixYlbi2OlJNyDFF6uk/A+LWmVNqQ7XY=) 11: w9tecX0WpG6EBeEQV6lN7pOizZM.roa (hash: r56/6xcnyNBLy2vRf5p/uK/JECPQgO4M3DafNXdoW0g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 28 Oct 2025 10:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:25:1c:91:fd:6c:9b:8c:d9:79:7b:7e:11:f6:f8:02:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=896a82a725ed22bb46847ae568912078de25c108 Validity Not Before: Oct 27 10:00:20 2025 GMT Not After : Oct 28 10:00:20 2025 GMT Subject: CN=b133b724649f071c2bd9701f1ebd5a9e1cbda878 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:38:45:2f:41:f0:0d:6e:a7:b6:a9:fd:96:5b: 80:c1:8f:16:09:d4:02:33:58:2f:a1:72:d6:27:15: 55:fa:df:e4:f2:71:ba:57:27:83:cf:6a:cd:fe:1b: f6:16:06:b3:58:e4:d2:23:5a:d4:f9:a7:26:ee:a0: 61:1e:d4:f3:c1:f1:ec:db:7f:e5:bd:77:d2:cc:2e: 28:1c:a2:87:84:0c:6f:09:e1:8f:3c:7c:a4:72:be: 26:ed:0d:72:d1:4e:7e:61:a9:bf:a3:bf:f1:6b:72: 02:a7:61:81:a6:8f:68:7f:4e:60:cf:e5:6d:6f:07: fe:50:93:c1:66:b4:6d:00:e1:44:b4:ca:ba:c2:27: da:bc:86:f9:22:49:fa:5c:fb:56:18:0a:80:63:0e: 8b:69:c2:65:49:4b:50:4e:4f:8a:43:2c:59:1b:ac: df:38:e3:e7:5c:e7:ed:ec:01:74:ce:ad:68:94:3b: 02:d3:93:ed:9c:7a:bc:99:f8:2b:83:7e:d2:cb:86: 4a:a8:53:0e:15:5d:df:2d:e5:ce:e2:c7:7b:8f:0a: e6:c8:64:16:2e:94:bb:b7:55:8b:68:8f:c1:e1:d9: 43:bf:ac:0f:58:73:c5:65:c5:a0:c8:17:7f:2e:d6: 59:1a:f4:87:6e:a3:7a:62:06:40:63:ab:b3:a5:ac: 3c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:33:B7:24:64:9F:07:1C:2B:D9:70:1F:1E:BD:5A:9E:1C:BD:A8:78 X509v3 Authority Key Identifier: keyid:89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:78:0b:f4:1a:55:a8:6c:5a:9b:7b:80:a7:9c:f2:49:7b:28: c8:71:cb:8b:01:1f:9a:c8:94:43:ea:53:73:76:dc:3a:5e:de: de:53:05:96:c3:d1:dd:bb:73:89:de:c7:3b:da:2a:da:af:45: 19:43:51:24:7c:25:cf:03:55:67:a3:03:f6:25:ae:c2:8c:71: 35:2b:26:97:2d:96:81:0a:f9:24:10:e1:87:f5:ef:10:98:ee: 45:08:39:07:4a:ef:c8:18:c1:0e:2f:61:f8:e5:45:68:01:93: ad:d7:8a:59:f8:f7:16:05:14:55:83:22:2c:85:a9:90:5d:f1: 10:9b:81:25:74:9f:82:a1:11:2f:2b:da:1a:17:5f:9b:e7:6e: c4:dc:aa:25:99:ae:1b:f8:41:a2:20:aa:60:c3:41:31:60:31: 6c:b9:c5:c6:5d:9a:42:8d:3f:08:ca:d1:fd:73:ed:ef:04:23: 1c:e8:c7:74:15:cd:db:24:62:5c:59:a3:5e:fa:aa:9d:f0:07: 04:46:3a:c8:8e:bd:53:f4:f4:a1:1b:5a:f8:15:3a:bc:be:d0: a8:b2:64:b3:ae:67:57:65:c5:57:ca:50:5d:83:27:9f:4c:47: f1:a3:53:15:f3:ef:89:08:d5:6d:7e:ff:c6:57:0f:cd:25:07: 72:43:dc:8d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZolHJH9bJuM2Xl7fhH2+AKAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5NmE4MmE3MjVlZDIyYmI0Njg0N2FlNTY4OTEyMDc4ZGUy NWMxMDgwHhcNMjUxMDI3MTAwMDIwWhcNMjUxMDI4MTAwMDIwWjAzMTEwLwYDVQQD EyhiMTMzYjcyNDY0OWYwNzFjMmJkOTcwMWYxZWJkNWE5ZTFjYmRhODc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApDhFL0HwDW6ntqn9lluAwY8WCdQC M1gvoXLWJxVV+t/k8nG6VyeDz2rN/hv2FgazWOTSI1rU+acm7qBhHtTzwfHs23/l vXfSzC4oHKKHhAxvCeGPPHykcr4m7Q1y0U5+Yam/o7/xa3ICp2GBpo9of05gz+Vt bwf+UJPBZrRtAOFEtMq6wifavIb5Ikn6XPtWGAqAYw6LacJlSUtQTk+KQyxZG6zf OOPnXOft7AF0zq1olDsC05PtnHq8mfgrg37Sy4ZKqFMOFV3fLeXO4sd7jwrmyGQW LpS7t1WLaI/B4dlDv6wPWHPFZcWgyBd/LtZZGvSHbqN6YgZAY6uzpaw8KwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLEztyRknwccK9lwHx69Wp4cvah4MB8GA1UdIwQY MBaAFIlqgqcl7SK7RoR65WiRIHjeJcEIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC8zZmM4ZGEtMzUxNS00MzRkLTlmMGUt MDQwMTI3MTAyMjA5LzEvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC8zZmM4ZGEtMzUxNS00MzRkLTlmMGUtMDQwMTI3MTAyMjA5 LzEvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcXgL9BpV qGxam3uAp5zySXsoyHHLiwEfmsiUQ+pTc3bcOl7e3lMFlsPR3btzid7HO9oq2q9F GUNRJHwlzwNVZ6MD9iWuwoxxNSsmly2WgQr5JBDhh/XvEJjuRQg5B0rvyBjBDi9h +OVFaAGTrdeKWfj3FgUUVYMiLIWpkF3xEJuBJXSfgqERLyvaGhdfm+duxNyqJZmu G/hBoiCqYMNBMWAxbLnFxl2aQo0/CMrR/XPt7wQjHOjHdBXN2yRiXFmjXvqqnfAH BEY6yI69U/T0oRta+BU6vL7QqLJks65nV2XFV8pQXYMnn0xH8aNTFfPviQjVbX7/ xlcPzSUHckPcjQ== -----END CERTIFICATE-----Generated at Mon Oct 27 20:06:41 2025 by rpki-client