$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft File: Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft (raw, json) Hash identifier: UTsxp2KdIZtSzYSs2XOgkPwANTevICGI0zXRh72/6/k= Subject key identifier: BE:44:99:9C:1D:3A:4C:11:E4:A8:8C:19:22:46:2A:85:7D:1E:C5:13 Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65 Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65 Certificate serial: 019A085BEC8DB23CB71939390AF48A8B76BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft Manifest number: 0A46 Signing time: Tue 21 Oct 2025 20:00:33 +0000 Manifest this update: Tue 21 Oct 2025 20:00:33 +0000 Manifest next update: Wed 22 Oct 2025 20:00:33 +0000 Files and hashes: 1: 0UnS-IxSrSbJu0LMwZGgrlOMQaY.roa (hash: RlE1mBt+QrDUuTHvHAH0++Dmsi2Z+uRQ/Byv5g9xWBY=) 2: 1-MsC5JIxdLnLZFyHuf6RgL5WGhc.roa (hash: pKBlmn1z+pps27wu7UmvO8rAolauod4xSkZZnJ9W1vs=) 3: 5iTlOOubPJODXH7vsUI7Wpq0ba8.roa (hash: VCwAilQGOK0VnPyRzIvdM0YYC7WGdN3kdeSa5Bw3IAA=) 4: AcjZPvLVEctq4aWtM9Se4g1Hez4.roa (hash: m4DjUNQ10CarUgcdKKVdQWZBHX6pVTG/J1Gv/VX/MoI=) 5: AiVYsQDnBrNXVZNQHb1QG3ejhWs.roa (hash: MeOMNj8M3otSolym8ILgKTUapqaRLBLDFhuT2M87Jfs=) 6: CNNo6sJtcsVyHQty59h4qZzMc2Y.roa (hash: xoDyTFUhZm+5tdI2D1IzKY3vd2lTLUJ1UzcZ28pMODY=) 7: FMB-bLkFzuyKrNP2ugJeFR5FvcA.roa (hash: b4QarnLE9DJEtGHI3hEpn5pxBgsxCwePllqAAi4lx4c=) 8: Pd7_BuMRngySvCOEXZzIMz9jyRk.roa (hash: sixeKX7UtbFferQNxLx2jnfuNmnIKZsouzMYORIygXY=) 9: RkzLHfWs_BL956tVkCeC3dIaNec.roa (hash: wKD0RAlNUVNkdZZ5vl809Igsg9tUDfvk8Sh/yVsSt8s=) 10: T9T4J6edlfy_i5-slOG4aV_QdIQ.roa (hash: eu2IweeoPyVHQt7dr15SgVjejr4+xNgXU9dFpcwWirI=) 11: U-0XoRYDV1K8NeLT79sQu_iy4t8.roa (hash: QAJ2fJtDmsN9XNVxW3a/dJEvqFcETnDiO1SCagG2pSk=) 12: X9nzYcXU9EgIVl_7ZZWxlGNl4g4.roa (hash: wL/WH3TZ58EyBKIgJ0ej+sAXqdnuotdQ0gWq1xiVtwU=) 13: Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl (hash: JQKXL/7DiDtgCa/9nO8AEDTYj7NaqQ9GfrBfL+b5juQ=) 14: aQ7JsCHnSB2G4dfY_3yHXhj3Wo8.roa (hash: jc74/wQHOsinC7epcPYWAUkOMi5kreIozg0B86UPDDA=) 15: a_6EfM_eUhmEh3H7meW3ObA4-Go.roa (hash: NcCAQGLpBENo3heEl3G42fQyl7X50upMygvTrvmVy/A=) 16: bXxx-llWekyrtBewA8UESiAygSk.roa (hash: CVAUCXJbLgxcc/u+sDImVr2cGi4Am9sXCXZAdGDnVHY=) 17: e7z0oRKCehd6Ea7tsIDH_CrT8g0.roa (hash: rqMdlglqnoJd6sqLsXF+uIqk3nINirrRe1Hs5mOfPEU=) 18: iCveD-Xjd5JabG_WX6frr5x6in0.roa (hash: 95l1uR3aj9xTQRq9TbMrNh9RKHM6w6gjilx0WBwNahE=) 19: lO_bhdVoi0rApHqZUYrR4e0dET0.roa (hash: L6ri99HTG/n8zl4aG6bBJmgMqEKOzJ8HTJ12NQEy2Ow=) 20: qOlRf_FFYvzJtrv5C1ObqUNVUzk.roa (hash: EfOedSZueUJgPg3V0RQ+mS3lngajdnN3iZ8o0TSNE3A=) 21: yH-qgMAP1a-ONlIbLyS-3YiA-v8.roa (hash: 5ALF18aBSR3V/0UBc56QwyH3CpaKIq6eI34/1+3sXLg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 22 Oct 2025 19:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:08:5b:ec:8d:b2:3c:b7:19:39:39:0a:f4:8a:8b:76:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67499595a65aab0b53768def08091e31061e9e65 Validity Not Before: Oct 21 20:00:33 2025 GMT Not After : Oct 22 20:00:33 2025 GMT Subject: CN=be44999c1d3a4c11e4a88c1922462a857d1ec513 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:3b:27:18:6d:d6:a7:90:5b:2f:26:e8:ba:72: 4f:bc:b3:bf:15:6b:45:a1:23:a0:cc:94:bc:85:f5: 88:06:f4:e3:1d:40:db:19:00:c9:67:7b:38:4c:8a: 3f:c2:17:81:c1:5b:e4:4c:7e:dc:e7:1c:e5:00:f4: 59:a9:19:1a:01:0a:dc:5f:5d:1b:61:2b:5a:4a:ed: 52:33:81:93:88:36:d2:dc:b1:b7:6c:0a:27:3d:0b: ca:4d:0d:a3:25:ac:23:a1:97:51:d1:68:d7:e0:ec: 21:89:4e:5a:86:d2:97:ad:b4:e6:9f:08:08:93:18: 4a:47:0c:0b:5c:a4:28:21:1b:10:50:dc:24:47:6d: c5:c8:2f:b0:a2:a9:a5:3f:3a:b4:2a:f6:40:44:a5: f9:6b:bf:5e:74:c3:f9:13:f9:e1:2e:3b:a4:55:5b: d9:d8:a8:f8:14:e4:59:b1:cb:75:3b:97:f3:31:79: 87:f9:c6:9a:cb:fd:9f:1d:98:b5:7a:cb:87:6d:1d: 6e:c9:63:d4:f0:62:4b:13:5c:ec:d5:41:72:3b:cf: de:cb:63:29:d2:7d:e5:ac:ab:b9:ea:fa:7e:83:88: ad:03:b2:d7:09:82:84:44:24:a7:c0:a1:6a:2d:52: 43:e8:be:92:23:d7:4a:cd:b5:a8:bd:1d:22:b5:67: ce:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:44:99:9C:1D:3A:4C:11:E4:A8:8C:19:22:46:2A:85:7D:1E:C5:13 X509v3 Authority Key Identifier: keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:cd:46:94:68:55:d0:86:65:a3:d7:fa:c9:71:d7:7e:59:b4: c5:b3:79:9f:92:eb:6c:b3:eb:b5:ac:62:6e:5b:52:82:85:f8: 33:37:4d:76:26:4a:02:5e:f9:85:bd:19:fc:a4:b0:f4:88:7b: 7a:3b:62:aa:b2:7a:64:c9:03:67:8a:16:5f:22:19:07:61:38: ef:30:ca:c5:5d:62:c6:c1:14:22:ef:0d:8f:d7:7a:37:9e:42: d3:9f:22:8b:44:06:5f:15:96:cf:45:13:49:b3:52:19:c6:61: 52:ba:7e:ab:93:0d:8d:65:30:e7:0f:a1:8f:97:a6:09:8f:a6: 2e:bf:c9:f6:c9:d2:b7:4e:74:f0:a5:d5:b5:53:7b:dc:f5:b1: 1e:97:cc:73:55:e2:d0:73:c2:01:d8:de:df:e4:9b:74:a1:d3: 06:a8:e9:d0:73:5b:e6:52:d4:69:61:b5:c2:15:f7:95:ba:a0: 4a:a3:58:78:6b:9f:a3:fe:bf:f7:92:fc:78:50:77:3c:f3:8b: d9:74:b9:ca:3f:92:70:e2:92:e5:88:91:5d:01:95:f6:14:87: 01:84:e4:ff:22:5a:3e:c4:55:73:89:72:13:82:c5:8c:f6:d0: 1e:2a:54:29:28:11:f0:69:64:68:76:b5:6e:d1:6a:d9:ed:0c: cb:ea:b0:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZoIW+yNsjy3GTk5CvSKi3a/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3NDk5NTk1YTY1YWFiMGI1Mzc2OGRlZjA4MDkxZTMxMDYx ZTllNjUwHhcNMjUxMDIxMjAwMDMzWhcNMjUxMDIyMjAwMDMzWjAzMTEwLwYDVQQD EyhiZTQ0OTk5YzFkM2E0YzExZTRhODhjMTkyMjQ2MmE4NTdkMWVjNTEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojsnGG3Wp5BbLybounJPvLO/FWtF oSOgzJS8hfWIBvTjHUDbGQDJZ3s4TIo/wheBwVvkTH7c5xzlAPRZqRkaAQrcX10b YStaSu1SM4GTiDbS3LG3bAonPQvKTQ2jJawjoZdR0WjX4OwhiU5ahtKXrbTmnwgI kxhKRwwLXKQoIRsQUNwkR23FyC+woqmlPzq0KvZARKX5a79edMP5E/nhLjukVVvZ 2Kj4FORZsct1O5fzMXmH+caay/2fHZi1esuHbR1uyWPU8GJLE1zs1UFyO8/ey2Mp 0n3lrKu56vp+g4itA7LXCYKERCSnwKFqLVJD6L6SI9dKzbWovR0itWfOYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL5EmZwdOkwR5KiMGSJGKoV9HsUTMB8GA1UdIwQY MBaAFGdJlZWmWqsLU3aN7wgJHjEGHp5lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTct MzU1MDgwNDE2NTJkLzEvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTctMzU1MDgwNDE2NTJk LzEvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAec1GlGhV 0IZlo9f6yXHXflm0xbN5n5LrbLPrtaxibltSgoX4MzdNdiZKAl75hb0Z/KSw9Ih7 ejtiqrJ6ZMkDZ4oWXyIZB2E47zDKxV1ixsEUIu8Nj9d6N55C058ii0QGXxWWz0UT SbNSGcZhUrp+q5MNjWUw5w+hj5emCY+mLr/J9snSt0508KXVtVN73PWxHpfMc1Xi 0HPCAdje3+SbdKHTBqjp0HNb5lLUaWG1whX3lbqgSqNYeGufo/6/95L8eFB3PPOL 2XS5yj+ScOKS5YiRXQGV9hSHAYTk/yJaPsRVc4lyE4LFjPbQHipUKSgR8GlkaHa1 btFq2e0My+qwsg== -----END CERTIFICATE-----Generated at Wed Oct 22 01:39:04 2025 by rpki-client