$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft File: ZbfWaZg1v-moCB38EU3xv20hXac.mft (raw, json) Hash identifier: AH/JIvqEcCm+vDlvJgZkY7l4i4oJsgC1sKF8N2TnP9c= Subject key identifier: C0:FF:22:26:7E:06:A5:99:F1:75:C9:DF:3F:79:B8:36:93:25:6E:7E Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7 Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7 Certificate serial: 0199180A4E57500C03E51419999DFB8E3737 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft Manifest number: 1703 Signing time: Fri 05 Sep 2025 04:02:32 +0000 Manifest this update: Fri 05 Sep 2025 04:02:32 +0000 Manifest next update: Sat 06 Sep 2025 04:02:32 +0000 Files and hashes: 1: 0Xu9MwyoHkfp7GLAOKKRl3-RnUQ.roa (hash: VyIx7EHEZctcI6C3p3OjyiQ9ZrYWF3YW1EKBVSDH0tQ=) 2: 1-YvEReZaLsTO0jjKZ78pRhHRfsQ.roa (hash: zdufkDo+ZHpmPAX/tYX0aFypSlJTt9HUATtQVpaRiJ0=) 3: 15zRjTXVNBGuDrUDEqN5UuwIids.roa (hash: FwYZwxMG1QLtJeFhKkER9dDPt8BpPk0Q+1jXXZv9EiM=) 4: 18sxOB5Kpihtussm1nLKSIGMFSE.roa (hash: b7X7RSJm4cnyNvUC/xqU2kCOGFYxn6Od5qlq/zQq/DM=) 5: 2SAQLA7QMTW3rJ2MPjCOahlOsgA.roa (hash: YQiN3iKo5zTaytwvVXkZsjdfMdlDibNqV0v4+CZFgPw=) 6: 4ugbCy83DcO9TYhxoGqg3xYqKBI.roa (hash: uW7VWLBw91JN4k11JcZFpOcPQ5HtPfwoG25WkIgbLeQ=) 7: 9_6Qgvz8x0xmVgbjQq9RZaCrzwI.roa (hash: XDjG9XViYUZoXuJfh57cLMJxvVfFwPpTj7Ylh+rpLA4=) 8: 9la_AU58bMd-3pCNHt8w31jQCl4.roa (hash: E9TsWgVQ3BFPUDXwzoZMZ0b6bAsHWFerURHLZ/QkqCc=) 9: C6-YTlrCM1gie4Fio5ZDAzjrAsw.roa (hash: wPQWprVQswwSy5xTXeYKqV2fnuyS8659zgMoKY2VdDA=) 10: CCpeBz282waZWIp6wfY2xNGCC9E.roa (hash: vV/uCDu7bu0Kj5ZjmV2IVmbVX66D/TiH8HiOBPDsfV4=) 11: CjeSZR86nfS6K8sFUbh397KLlSg.roa (hash: VvUNYRmECbisLlM1k5o1a+U0OGBTt8KDFsxxt+vB35I=) 12: IGXep-Sp1xTx1rwpzVruBZRjNug.roa (hash: cujh35boqOnCbI1nKqG05ttKtrmdk5otJzYosXhUDII=) 13: LHhc_a5ROGSUtw6wcT-sPhDhr1M.roa (hash: p/vM2J4TZw167L9VNt16GhD88WXBue8q+Ndc+jHHLFs=) 14: LdSX0TNAWu1GANikgGHJZKbN5ts.roa (hash: XzH2guM8uD41A2haqYmLeH+1CfMtNp2yUb4pKTWFFOk=) 15: LwiKFQb5NXEk7Oaggp_P4meqxSY.roa (hash: gSctbJTrUeV/PjIbJWVbdhLqycF/J2VYj2W1aXj1i7s=) 16: NNPkTDbtxCjIv0T_rkcglbIHKsI.roa (hash: IKxplvCU83AT08NdV5QMZT2pNZspbe6MXkpY4tcztgc=) 17: Olvba8b0LQ3XYjmweIYYCWlaL24.roa (hash: Wj2tE5RhOaTBOgwtpy7j+LlliXQCV/ipn4kpk6MvU1M=) 18: PTy298-nUrNtL6XANPxlJ7TyOo8.roa (hash: xKKmkxhyHB8ISDXmYkZq+hQ/caVLmzK9MfNxnz4PSO8=) 19: WO5iMFxx-F4JF78W9Ca0mfMOiYc.roa (hash: uBIHUV8mnwau9Fyw3ey0VTaOO0smiERX1iJx5QMdF/M=) 20: YVwxp9vRo78D3Zkq4PWUJjvh2ys.roa (hash: 6SWi7F6i8jnqxlALTm3akUKfwciw3a80Vo8UDIGTBq0=) 21: ZbfWaZg1v-moCB38EU3xv20hXac.crl (hash: fWj7py5hxdusQ/QQ+te7T4NWegmBh0YaLcyzNOqBWLI=) 22: iEpDEVUAC0FqyMEjeItbSe6hHhw.roa (hash: uIxiBqhS0laFOTljS8IeUdTLfRVqc/6t1ILn5Hh8PqE=) 23: llk4ofXvRzHEH-qWue__dsHka_s.roa (hash: K2BZhTog7Vh0tYt+YbAIQfdPEsZY55aQG6EI2WxH2g8=) 24: qWpzvRDGfVICOAas6EpA5TLROBI.roa (hash: 0F40XY0fiwK+HQCyTtXfsCoNfyawPos3cmHr8KSTvbw=) 25: wCb4vbrgGFRhU-Cc5NMZl-jzWqo.roa (hash: zpBJ6kRrehBfcMMd+SMf9RfgRe0zUoI1wInwbsH+nsg=) 26: z3lPRmyZVa0AhSF1xvxZacOT-_Y.roa (hash: 4ZI2CK9RanGXlpJndY14l4cAiHVOnZTCRT+JSh1an14=) 27: z9Z9t7kfWwit4I9_Rt9Xt7bo-ms.roa (hash: xjQ2gHL1Jh7hwOv5Vlv0kGkojGyyO/DQzH561lm74tc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Sep 2025 04:02:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:18:0a:4e:57:50:0c:03:e5:14:19:99:9d:fb:8e:37:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7 Validity Not Before: Sep 5 04:02:32 2025 GMT Not After : Sep 6 04:02:32 2025 GMT Subject: CN=c0ff22267e06a599f175c9df3f79b83693256e7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:1e:28:c9:54:2c:e4:65:5c:ce:0f:cf:32:e1: 07:b3:13:13:0b:e8:b3:d1:5f:43:34:f0:f5:e2:94: 65:48:96:7d:dc:74:aa:6d:fd:8c:9d:f6:60:47:26: 36:f3:0d:7c:53:8f:2a:bf:2d:79:6c:ee:91:79:b1: be:3c:cd:8c:f7:db:dc:fa:c3:5b:65:47:99:58:20: 42:8c:93:65:5c:ae:b2:8c:5d:aa:df:61:5a:34:42: 2d:b0:29:69:db:18:77:ce:78:90:b6:af:7d:3f:5b: ca:3d:ec:71:45:bd:8d:89:ba:95:5d:ee:1e:64:9f: 8f:a4:41:e0:78:2b:94:03:7c:a1:fc:c0:d1:8f:92: af:ac:0d:96:eb:c2:a8:e4:18:78:d8:81:b1:cc:cc: 1d:21:4d:17:6d:fa:8b:22:96:ab:69:80:ba:7d:61: 8f:f5:11:41:1e:e0:40:ad:63:f7:71:3b:90:0a:de: 09:de:0b:11:31:32:8f:7d:e5:cb:72:bd:9d:79:85: 66:e1:f1:96:ed:59:92:9b:f1:15:1a:a9:f5:34:fb: 40:d5:51:5b:89:77:c3:65:87:bf:c1:97:2d:1c:c0: 57:5b:c3:ae:0a:82:d7:4f:aa:15:3d:25:93:12:93: ed:fb:df:7c:c7:12:49:e0:a7:6d:1d:f5:cb:0e:d1: 90:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:FF:22:26:7E:06:A5:99:F1:75:C9:DF:3F:79:B8:36:93:25:6E:7E X509v3 Authority Key Identifier: keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:f5:7b:9e:ff:96:4e:da:61:3c:57:2f:b2:8b:3b:66:a0:52: dd:30:c6:8a:c3:62:34:1d:68:e6:3d:e4:49:85:9b:b9:dc:19: 9e:ed:2e:28:50:32:cf:c7:01:2b:ca:67:60:bd:82:fe:94:c4: e2:7b:df:d5:91:c4:a1:57:88:4c:f6:40:d9:2d:eb:f3:3a:bd: d2:39:a2:8c:1e:53:b9:4a:c6:73:c2:f1:49:12:69:51:02:34: 7e:d9:88:03:9f:f1:d9:d6:78:78:4b:e7:46:61:34:13:6f:cb: 81:64:e7:3d:97:38:11:44:71:30:ca:f6:87:4c:4c:23:a1:d9: 39:d6:57:94:8d:89:2c:7c:c3:67:f4:4d:48:86:5e:25:a8:57: 74:f2:b9:fa:df:60:3b:4b:aa:5f:e1:57:f5:6f:4b:70:85:4e: a0:2f:8b:ef:85:d2:55:e7:ad:35:d2:9a:99:db:1f:de:27:db: 15:02:47:a9:6b:9a:cc:7f:81:4d:ae:f6:8a:52:80:f6:af:5d: 03:c7:2b:88:5b:34:ad:09:41:db:3f:e8:12:ea:48:4b:13:4b: 71:f5:21:fb:f8:44:11:6a:9c:60:9b:3b:86:60:1a:1f:b4:af: 18:93:51:ea:fe:8e:d4:a6:f7:4c:31:ed:fe:9a:f6:63:8d:30: 59:0e:e4:6f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZkYCk5XUAwD5RQZmZ37jjc3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1YjdkNjY5OTgzNWJmZTlhODA4MWRmYzExNGRmMWJmNmQy MTVkYTcwHhcNMjUwOTA1MDQwMjMyWhcNMjUwOTA2MDQwMjMyWjAzMTEwLwYDVQQD EyhjMGZmMjIyNjdlMDZhNTk5ZjE3NWM5ZGYzZjc5YjgzNjkzMjU2ZTdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArh4oyVQs5GVczg/PMuEHsxMTC+iz 0V9DNPD14pRlSJZ93HSqbf2MnfZgRyY28w18U48qvy15bO6RebG+PM2M99vc+sNb ZUeZWCBCjJNlXK6yjF2q32FaNEItsClp2xh3zniQtq99P1vKPexxRb2NibqVXe4e ZJ+PpEHgeCuUA3yh/MDRj5KvrA2W68Ko5Bh42IGxzMwdIU0XbfqLIparaYC6fWGP 9RFBHuBArWP3cTuQCt4J3gsRMTKPfeXLcr2deYVm4fGW7VmSm/EVGqn1NPtA1VFb iXfDZYe/wZctHMBXW8OuCoLXT6oVPSWTEpPt+998xxJJ4KdtHfXLDtGQrwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMD/IiZ+BqWZ8XXJ3z95uDaTJW5+MB8GA1UdIwQY MBaAFGW31mmYNb/pqAgd/BFN8b9tIV2nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWmJmV2FaZzF2LW1vQ0IzOEVVM3h2MjBoWGFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC8wMjVlZTgtM2Y0Ny00NTdkLThkNDct OWU0MTNlYmY0MmYzLzEvWmJmV2FaZzF2LW1vQ0IzOEVVM3h2MjBoWGFjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC8wMjVlZTgtM2Y0Ny00NTdkLThkNDctOWU0MTNlYmY0MmYz LzEvWmJmV2FaZzF2LW1vQ0IzOEVVM3h2MjBoWGFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ/V7nv+W TtphPFcvsos7ZqBS3TDGisNiNB1o5j3kSYWbudwZnu0uKFAyz8cBK8pnYL2C/pTE 4nvf1ZHEoVeITPZA2S3r8zq90jmijB5TuUrGc8LxSRJpUQI0ftmIA5/x2dZ4eEvn RmE0E2/LgWTnPZc4EURxMMr2h0xMI6HZOdZXlI2JLHzDZ/RNSIZeJahXdPK5+t9g O0uqX+FX9W9LcIVOoC+L74XSVeetNdKamdsf3ifbFQJHqWuazH+BTa72ilKA9q9d A8criFs0rQlB2z/oEupISxNLcfUh+/hEEWqcYJs7hmAaH7SvGJNR6v6O1Kb3TDHt /pr2Y40wWQ7kbw== -----END CERTIFICATE-----Generated at Fri Sep 5 10:51:13 2025 by rpki-client