$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft File: Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft (raw, json) Hash identifier: M/4Q3oc+J4bLgRKnSrC5Z9ZBLQGTJRJoMl6yG6ogR+k= Subject key identifier: DD:15:A2:FC:74:7F:07:80:30:5C:C7:48:51:64:0F:78:0B:BD:5B:E0 Authority key identifier: 43:54:A4:19:22:5D:5D:79:F4:A1:AE:15:20:A3:B1:A5:6D:45:26:8C Certificate issuer: /CN=4354a419225d5d79f4a1ae1520a3b1a56d45268c Certificate serial: 019750B40CCA126C0822EF51B416675F02AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft Manifest number: 08F3 Signing time: Sun 08 Jun 2025 18:01:06 +0000 Manifest this update: Sun 08 Jun 2025 18:01:06 +0000 Manifest next update: Mon 09 Jun 2025 18:01:06 +0000 Files and hashes: 1: 0pA9jqxxzLz7rK77xH9_gAV2Ddc.roa (hash: kuW3cMupmnzRroMZH+onX29Wp3xp+NRO+gRxYcXjYi4=) 2: 2TnqZvmmysxhyiNZrk30acF9SlI.roa (hash: WiwIIXJhkAErUqVwl7rpQhJM1V3EKt+e61vZ4TyGts0=) 3: Dw3X8fWhKPYb3Mn-3k0h1r_9KbU.roa (hash: TMxwGgTVPG6mIC+cdCWlxe1kZRGY132KC9x3rO2T5lU=) 4: DwPcfSHFXNqM7rUhdUmfwPDUgE4.roa (hash: TJWMP4o9L/gCTxpzvrb7aiWTaCJtkInjMyTtZ8ZQv6w=) 5: I0so05T8WJ0IrbDuX6UjLySLqmI.roa (hash: dR+mdnDCO20UWtvzil7AKdca65/eFTAOBYqBvQ7au8Y=) 6: Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl (hash: Jk/G3FtKM3OHMswrYaR6SI2iwr8YI26w5Ei8BqoBmyQ=) 7: SFaGChEcecBfMkYfUdNCUJpmOZs.roa (hash: urAyNSsYssS08ZQ9VO9nXj8k0R3NhqQ1uecoM5zn4Xg=) 8: VdXHdlxLvSXMtikY4Tkq1ivw7b0.roa (hash: d4XyYarFCX7iHNvauLVhaF+5yte4Mx2+kXf0dxCZBfg=) 9: VzB0p7pCZsQMiGHUlZc1UelTzYY.roa (hash: BzzAqeicP4DohtRLpuezZoWn//Z3/wAyEJHVc5sVYtU=) 10: XkP13qdKiUI4ksMyPnhV_Dq7ZH8.roa (hash: YloS2aXtag5qQ1JTIqYqkyKRVfkw4jImfuhbP08yNwU=) 11: _okwze0rSlq8LhXlB7FWi8OlsK4.roa (hash: 3wzhS+5DOCgktIdxwao39vX+OQv7jnEn/glBS5LioaY=) 12: aaPCQ3vYc10mi-8M5KP_x-4UjqI.roa (hash: k87j6NF+EKH8P+VssVknz/tteS+89PmRGUWHWReOd5U=) 13: keRc_cuZtJ4i5Jvsc90Pj2Jghdg.roa (hash: gciROLJg7+/w52qQUKA87ZvQS+qeyeOp3E1ngvwPEK4=) 14: mReJXjEFw2vH3gsylG3516bpkxI.roa (hash: orfciGxm8QNpQKbu93OyqVEi/aKCukxyiFS74rnLbXg=) 15: t2p4-i0-AMgrPWWbLPjsZticI0E.roa (hash: /e/8T+eYaFYAkJQaQBKZKZelhBajXo5oP/zmVdgWK8A=) 16: wXmD77ivrLBnzkfNVUx9GVYS9fw.roa (hash: tE/07N+y9ScJvAqYYnDp5CmkVEB1T6atwgfCQwskaeM=) 17: xzcqcrFf-ra6k9gJVEfYsUOL7r0.roa (hash: tLEmQ4Ip0nJAlYr4VF0AY9UERYkLlEbUUc3k5bIYBQM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 09 Jun 2025 17:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:50:b4:0c:ca:12:6c:08:22:ef:51:b4:16:67:5f:02:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4354a419225d5d79f4a1ae1520a3b1a56d45268c Validity Not Before: Jun 8 18:01:06 2025 GMT Not After : Jun 9 18:01:06 2025 GMT Subject: CN=dd15a2fc747f0780305cc74851640f780bbd5be0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b8:69:11:10:79:31:96:9a:b5:d0:4d:8a:f8: 5d:c4:8d:e4:2e:1b:1a:9d:b0:a1:11:cd:ce:51:51: 8c:70:af:1a:b6:44:b4:bb:55:81:58:5c:99:a8:c0: a4:28:3c:a7:a7:bc:72:f3:40:29:1e:37:84:09:0e: 41:4f:f1:d2:7d:bd:a5:09:17:73:38:57:6c:01:ca: 3c:de:bb:24:37:88:2f:46:c6:9c:cd:e4:07:34:4f: 36:aa:2d:21:7c:06:e7:95:ab:f3:75:c8:55:57:b9: 96:a6:d0:6a:bc:68:ee:2f:36:91:d8:ee:2a:d2:2d: b2:d0:96:37:cf:ce:b8:db:2e:86:a5:d2:0f:41:00: be:20:41:e4:a3:57:9a:e5:1f:53:5a:6d:89:01:c7: b2:f6:66:50:7c:19:37:27:fd:13:32:8e:fa:f0:d9: 6b:cb:ea:68:5a:55:a3:3c:61:aa:29:c6:72:4c:48: a2:de:da:e6:36:9b:58:93:ed:f3:cf:fd:13:4f:63: 5c:e1:31:a9:91:3c:76:58:c3:51:c0:23:4c:56:03: af:a1:d7:e6:d3:07:0c:2d:f1:f4:09:08:ef:84:fb: 8c:15:9b:7d:5f:24:d2:f2:ee:52:af:01:da:a3:6b: b6:cc:22:4d:c9:f9:34:ef:38:db:0f:ee:f6:db:b4: 9a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:15:A2:FC:74:7F:07:80:30:5C:C7:48:51:64:0F:78:0B:BD:5B:E0 X509v3 Authority Key Identifier: keyid:43:54:A4:19:22:5D:5D:79:F4:A1:AE:15:20:A3:B1:A5:6D:45:26:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:1f:a4:a2:ee:3d:22:25:e1:a5:3e:3f:90:0e:f9:41:1a:bd: 90:87:d8:9e:4a:24:f1:31:33:63:e6:df:26:a1:ce:d5:62:39: 5c:8a:88:fa:f8:15:83:87:9f:0d:bc:39:ca:b6:a2:00:5a:65: c4:59:4f:6f:5e:2c:5f:f3:ab:b5:57:06:1d:dc:68:a1:7a:b2: 5f:61:d5:15:89:42:c1:5c:82:fd:90:cd:62:21:d0:19:84:ed: 6f:67:cf:11:67:89:fc:1e:ac:9a:d4:89:de:45:f4:4e:25:03: cb:d8:92:19:68:14:fa:e2:33:2e:ad:ce:8b:a7:f1:8b:e1:26: 3c:7d:c8:e4:95:6a:2c:a4:73:cd:ec:7f:01:9c:65:e8:14:ca: 34:18:93:57:46:e1:89:e2:5c:8e:f8:b5:c2:1e:36:6d:7b:46: fe:da:f5:98:9e:a9:23:c8:aa:a8:3e:74:99:f6:ce:82:51:89: c4:4d:67:c0:f5:60:c5:aa:81:6e:eb:19:27:af:c3:93:42:17: 90:fc:ac:94:6d:4d:59:be:0c:c7:1c:05:46:11:42:70:44:e9: 91:4f:77:53:5b:c3:5c:4e:b5:fd:4b:2b:87:45:25:c7:f0:e7: 6b:ff:97:02:b6:3c:f1:33:db:7f:74:f7:75:39:f9:ce:80:9f: 1c:95:bb:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdQtAzKEmwIIu9RtBZnXwKrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzNTRhNDE5MjI1ZDVkNzlmNGExYWUxNTIwYTNiMWE1NmQ0 NTI2OGMwHhcNMjUwNjA4MTgwMTA2WhcNMjUwNjA5MTgwMTA2WjAzMTEwLwYDVQQD EyhkZDE1YTJmYzc0N2YwNzgwMzA1Y2M3NDg1MTY0MGY3ODBiYmQ1YmUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnbhpERB5MZaatdBNivhdxI3kLhsa nbChEc3OUVGMcK8atkS0u1WBWFyZqMCkKDynp7xy80ApHjeECQ5BT/HSfb2lCRdz OFdsAco83rskN4gvRsaczeQHNE82qi0hfAbnlavzdchVV7mWptBqvGjuLzaR2O4q 0i2y0JY3z8642y6GpdIPQQC+IEHko1ea5R9TWm2JAcey9mZQfBk3J/0TMo768Nlr y+poWlWjPGGqKcZyTEii3trmNptYk+3zz/0TT2Nc4TGpkTx2WMNRwCNMVgOvodfm 0wcMLfH0CQjvhPuMFZt9XyTS8u5SrwHao2u2zCJNyfk07zjbD+7227Sa2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN0Vovx0fweAMFzHSFFkD3gLvVvgMB8GA1UdIwQY MBaAFENUpBkiXV159KGuFSCjsaVtRSaMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTFTa0dTSmRYWG4wb2E0VklLT3hwVzFGSm93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny8wZmRkZjAtOGJiZi00MzUwLWJmZmEt Njg4ZDUxYTQ0NDQ4LzEvUTFTa0dTSmRYWG4wb2E0VklLT3hwVzFGSm93Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny8wZmRkZjAtOGJiZi00MzUwLWJmZmEtNjg4ZDUxYTQ0NDQ4 LzEvUTFTa0dTSmRYWG4wb2E0VklLT3hwVzFGSm93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfR+kou49 IiXhpT4/kA75QRq9kIfYnkok8TEzY+bfJqHO1WI5XIqI+vgVg4efDbw5yraiAFpl xFlPb14sX/OrtVcGHdxooXqyX2HVFYlCwVyC/ZDNYiHQGYTtb2fPEWeJ/B6smtSJ 3kX0TiUDy9iSGWgU+uIzLq3Oi6fxi+EmPH3I5JVqLKRzzex/AZxl6BTKNBiTV0bh ieJcjvi1wh42bXtG/tr1mJ6pI8iqqD50mfbOglGJxE1nwPVgxaqBbusZJ6/Dk0IX kPyslG1NWb4MxxwFRhFCcETpkU93U1vDXE61/Usrh0Ulx/Dna/+XArY88TPbf3T3 dTn5zoCfHJW7Og== -----END CERTIFICATE-----Generated at Sun Jun 8 23:13:50 2025 by rpki-client