$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.mft File: TuhDqF3WZOncAxCJK9fdnOUlkcc.mft (raw, json) Hash identifier: SMA+dmZc9TniKODPpp0Q4QvnE9iiH8IAESpSPPo8E2g= Subject key identifier: 62:45:51:5F:42:39:2C:C2:1C:DB:45:DC:2A:CA:C0:70:C4:F8:09:39 Authority key identifier: 4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7 Certificate issuer: /CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7 Certificate serial: 01992AB3A90E5EE81EAD095F67F740941CE3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.mft Manifest number: 1686 Signing time: Mon 08 Sep 2025 19:00:41 +0000 Manifest this update: Mon 08 Sep 2025 19:00:41 +0000 Manifest next update: Tue 09 Sep 2025 19:00:41 +0000 Files and hashes: 1: C0z6DdMKY0011CEMg0brREHft8I.roa (hash: +dbFWwxBIyFnN27a31OlolUnKb6JKZSNaPcmvgDSLGs=) 2: HGF0XnEulxWULqSPMu5rErMyWs8.roa (hash: 00NcZYCZGF+IaFRnbk/Q2PKjg8CgZv2ruaoed5i5QAU=) 3: Jf9tWqpPm8b_qtBGjgHB3JrayvI.roa (hash: F+vaHx2nXHjw+peb75MX84DsisidlKe5+WsqVxKmiwg=) 4: KscvLVMtZmBkxarHMZjKvBgfLfk.roa (hash: LHSFj6xYYHfALWFv5ULF2z+mFPohWH8M77+ifjvdIiM=) 5: QKwROlQM-_7u8gKJ-Lg37KQ_boU.roa (hash: Fa0oIDfIQnPmvyxAKLNkB0kAHP+b9oUKAQ9IQ1FgP5k=) 6: RMcCzrlu2sJ4XSxYoo8m_7o27EI.roa (hash: nNPJHMZXA57YTnbJiFW2Eg774bTCKrqipOlc615iB9U=) 7: T5IqxO0s3d3X9Y1GttHlSthoJkA.roa (hash: jGjUBiUWn1NYJl7CNkq/qe+4X44OgJIbeG2hNg3nO48=) 8: TuhDqF3WZOncAxCJK9fdnOUlkcc.crl (hash: Jnov1AQJwI+8AEktvkTyf6CI/MghwzxoRGdQ8Ksvf1s=) 9: UM40IJoMbmC2E6_NVNk7myz37CE.roa (hash: ho6wywXgZcMzdgmZ/BHVUcsSpC5snRTwoXFhr5WOwMg=) 10: d2OIjSeYBVWvYxP4n_ODfkSTTf4.roa (hash: be0M2z23DoEhwT4FhHP2BW24O0nYk4oyMfhX4PQ+pRo=) 11: k0c655RtHVAv5VenJ67F29SWhuc.roa (hash: hr75P5l79VgHodFxnHOuC7mIYeQ5S0TGyQcgAwawdyM=) 12: r-swhppIcOXVOL-qulJXjDeie58.roa (hash: tLe4aQVO3I/Ibbb/ytDDCDyBYPXI1bQa/rhwVMn9mk0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.mft rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 09 Sep 2025 19:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:2a:b3:a9:0e:5e:e8:1e:ad:09:5f:67:f7:40:94:1c:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7 Validity Not Before: Sep 8 19:00:41 2025 GMT Not After : Sep 9 19:00:41 2025 GMT Subject: CN=6245515f42392cc21cdb45dc2acac070c4f80939 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9c:f0:65:9f:22:75:bb:34:95:50:d4:9d:0a: b2:36:b5:fb:5e:cd:b1:a9:8a:3c:42:dd:0b:f7:47: 1a:63:88:86:5f:7f:a7:42:d3:5e:6b:5d:8e:1b:3e: 4d:dc:24:11:71:37:34:3d:16:63:05:07:75:59:81: d4:98:e8:49:c1:92:7a:0e:de:a3:ce:fc:92:f2:86: e8:93:38:fe:e4:22:c2:61:d6:39:bf:6c:51:e2:5a: 69:6b:3a:c2:67:8e:32:dc:e1:2a:a2:7e:4f:6a:61: 99:31:fe:87:3f:60:45:3e:71:93:bc:b3:2b:db:ee: f6:bc:59:90:f1:34:be:8b:05:bb:e7:ba:6d:2e:54: f2:7b:e2:40:68:4f:de:80:eb:d3:cc:51:e5:3f:9d: f7:b0:f7:cf:82:76:e6:5c:4e:95:8b:e6:7a:2b:a7: 3d:e1:9b:45:e1:90:04:70:45:48:8a:c7:fe:58:8e: 1f:7e:bd:40:ab:ab:a0:44:70:fc:f4:a6:28:95:73: 82:d1:50:dc:92:88:85:17:86:a3:a3:bb:0f:5f:64: 7a:33:2b:18:6d:10:21:52:1f:4d:32:02:ac:4e:6c: 76:19:9c:5d:43:9d:83:72:f2:4f:77:cd:33:e3:f7: ca:8a:b7:4e:11:6e:18:1a:dd:13:18:5c:63:2e:ce: dc:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:45:51:5F:42:39:2C:C2:1C:DB:45:DC:2A:CA:C0:70:C4:F8:09:39 X509v3 Authority Key Identifier: keyid:4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:55:68:19:4a:30:69:f8:21:6b:4a:45:61:ba:11:de:60:cc: fd:2f:96:6c:35:cc:e0:cf:0a:e5:19:a8:df:3f:a6:c7:45:8e: 66:22:d9:23:f3:a8:4b:cb:7c:ce:04:eb:84:29:0b:ea:91:80: 38:ee:86:64:e7:71:13:be:22:0f:78:12:e5:b9:f6:10:75:ad: 6a:a1:75:90:14:1e:49:00:f9:42:8b:a6:95:6b:de:41:80:cc: eb:8d:20:00:b5:e5:90:e3:f0:6d:53:b3:dc:7d:18:14:a9:fa: 1b:e1:42:78:13:78:15:68:0b:9b:f6:78:41:15:62:88:52:a9: da:17:3d:3c:41:07:f5:8b:d7:3f:6e:1f:6e:60:60:2d:21:3a: 0d:aa:48:de:08:a6:39:45:e0:b4:a1:5f:56:aa:20:f9:b9:aa: 95:07:ad:13:a1:9a:b8:83:33:be:b7:76:b8:95:57:22:16:ff: 7e:71:e6:9d:e4:a7:bf:16:07:37:d9:1b:64:20:17:d3:98:20: 5c:b6:f0:b9:8f:20:5f:9e:e9:b9:cf:63:09:7f:29:36:95:2d: 7a:27:e9:3b:33:b0:cb:ca:ae:a0:0a:62:cc:fe:0a:5c:f2:0a: b5:3f:b4:c1:e1:83:e5:69:c5:dd:03:8c:41:b6:bd:43:8a:5c: a3:e0:d8:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZkqs6kOXugerQlfZ/dAlBzjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlZTg0M2E4NWRkNjY0ZTlkYzAzMTA4OTJiZDdkZDljZTUy NTkxYzcwHhcNMjUwOTA4MTkwMDQxWhcNMjUwOTA5MTkwMDQxWjAzMTEwLwYDVQQD Eyg2MjQ1NTE1ZjQyMzkyY2MyMWNkYjQ1ZGMyYWNhYzA3MGM0ZjgwOTM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJzwZZ8idbs0lVDUnQqyNrX7Xs2x qYo8Qt0L90caY4iGX3+nQtNea12OGz5N3CQRcTc0PRZjBQd1WYHUmOhJwZJ6Dt6j zvyS8obokzj+5CLCYdY5v2xR4lppazrCZ44y3OEqon5PamGZMf6HP2BFPnGTvLMr 2+72vFmQ8TS+iwW757ptLlTye+JAaE/egOvTzFHlP533sPfPgnbmXE6Vi+Z6K6c9 4ZtF4ZAEcEVIisf+WI4ffr1Aq6ugRHD89KYolXOC0VDckoiFF4ajo7sPX2R6MysY bRAhUh9NMgKsTmx2GZxdQ52DcvJPd80z4/fKirdOEW4YGt0TGFxjLs7cMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGJFUV9COSzCHNtF3CrKwHDE+Ak5MB8GA1UdIwQY MBaAFE7oQ6hd1mTp3AMQiSvX3ZzlJZHHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHVoRHFGM1daT25jQXhDSks5ZmRuT1Vsa2NjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9hZGFkMjAtYzUxMi00ZmIwLWExMjct NDhjZjQxMmIzODdiLzEvVHVoRHFGM1daT25jQXhDSks5ZmRuT1Vsa2NjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC9hZGFkMjAtYzUxMi00ZmIwLWExMjctNDhjZjQxMmIzODdi LzEvVHVoRHFGM1daT25jQXhDSks5ZmRuT1Vsa2NjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAElVoGUow afgha0pFYboR3mDM/S+WbDXM4M8K5Rmo3z+mx0WOZiLZI/OoS8t8zgTrhCkL6pGA OO6GZOdxE74iD3gS5bn2EHWtaqF1kBQeSQD5QoumlWveQYDM640gALXlkOPwbVOz 3H0YFKn6G+FCeBN4FWgLm/Z4QRViiFKp2hc9PEEH9YvXP24fbmBgLSE6DapI3gim OUXgtKFfVqog+bmqlQetE6GauIMzvrd2uJVXIhb/fnHmneSnvxYHN9kbZCAX05gg XLbwuY8gX57puc9jCX8pNpUteifpOzOwy8quoApizP4KXPIKtT+0weGD5WnF3QOM Qba9Q4pco+DYRw== -----END CERTIFICATE-----Generated at Tue Sep 9 01:39:18 2025 by rpki-client