$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft File: ZbfWaZg1v-moCB38EU3xv20hXac.mft (raw, json) Hash identifier: JlKN/rd+qAsSQ3xefFiP7GJF1NQBfKu3gO0v7FeD5TA= Subject key identifier: 03:49:B2:B2:91:67:B6:55:5C:A0:12:88:16:36:6D:36:C8:D2:43:B2 Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7 Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7 Certificate serial: 019A03DA3CCAED54451B7199390C0C1EE70B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft Manifest number: 1787 Signing time: Mon 20 Oct 2025 23:00:25 +0000 Manifest this update: Mon 20 Oct 2025 23:00:25 +0000 Manifest next update: Tue 21 Oct 2025 23:00:25 +0000 Files and hashes: 1: 0Xu9MwyoHkfp7GLAOKKRl3-RnUQ.roa (hash: VyIx7EHEZctcI6C3p3OjyiQ9ZrYWF3YW1EKBVSDH0tQ=) 2: 0laar789lWX2-65-BfO0C43Kjqw.roa (hash: qA62Wk12qtwW9Q6Z6JfBejGbdGShPZxSeZLDsIRfnAM=) 3: 15zRjTXVNBGuDrUDEqN5UuwIids.roa (hash: FwYZwxMG1QLtJeFhKkER9dDPt8BpPk0Q+1jXXZv9EiM=) 4: 18sxOB5Kpihtussm1nLKSIGMFSE.roa (hash: b7X7RSJm4cnyNvUC/xqU2kCOGFYxn6Od5qlq/zQq/DM=) 5: 2SAQLA7QMTW3rJ2MPjCOahlOsgA.roa (hash: YQiN3iKo5zTaytwvVXkZsjdfMdlDibNqV0v4+CZFgPw=) 6: 36ON7UJf6RKUVtPkHxjJbIPu6wI.roa (hash: avWtErCBxgMuS2W52KAD2WqaiRKt44F6kD+P9GJZHVc=) 7: 4ugbCy83DcO9TYhxoGqg3xYqKBI.roa (hash: uW7VWLBw91JN4k11JcZFpOcPQ5HtPfwoG25WkIgbLeQ=) 8: 6EY_VCJpg8TJEyV90mnhu97g-NE.roa (hash: x5jwufeU6KO3TQwWZ79Pk418O4crpsgwEI7vweQ9IdQ=) 9: 8cHwMfOElAOtUhKJMQnFdtVynac.roa (hash: BX5kiADLkG8Ax4FiuAtWSeygXw2CbkULb5L6Dz7ZXb8=) 10: 9_6Qgvz8x0xmVgbjQq9RZaCrzwI.roa (hash: XDjG9XViYUZoXuJfh57cLMJxvVfFwPpTj7Ylh+rpLA4=) 11: 9la_AU58bMd-3pCNHt8w31jQCl4.roa (hash: E9TsWgVQ3BFPUDXwzoZMZ0b6bAsHWFerURHLZ/QkqCc=) 12: CCpeBz282waZWIp6wfY2xNGCC9E.roa (hash: vV/uCDu7bu0Kj5ZjmV2IVmbVX66D/TiH8HiOBPDsfV4=) 13: CjeSZR86nfS6K8sFUbh397KLlSg.roa (hash: VvUNYRmECbisLlM1k5o1a+U0OGBTt8KDFsxxt+vB35I=) 14: IGXep-Sp1xTx1rwpzVruBZRjNug.roa (hash: cujh35boqOnCbI1nKqG05ttKtrmdk5otJzYosXhUDII=) 15: LHhc_a5ROGSUtw6wcT-sPhDhr1M.roa (hash: p/vM2J4TZw167L9VNt16GhD88WXBue8q+Ndc+jHHLFs=) 16: LdSX0TNAWu1GANikgGHJZKbN5ts.roa (hash: XzH2guM8uD41A2haqYmLeH+1CfMtNp2yUb4pKTWFFOk=) 17: LwiKFQb5NXEk7Oaggp_P4meqxSY.roa (hash: gSctbJTrUeV/PjIbJWVbdhLqycF/J2VYj2W1aXj1i7s=) 18: NNPkTDbtxCjIv0T_rkcglbIHKsI.roa (hash: IKxplvCU83AT08NdV5QMZT2pNZspbe6MXkpY4tcztgc=) 19: Olvba8b0LQ3XYjmweIYYCWlaL24.roa (hash: Wj2tE5RhOaTBOgwtpy7j+LlliXQCV/ipn4kpk6MvU1M=) 20: PTy298-nUrNtL6XANPxlJ7TyOo8.roa (hash: xKKmkxhyHB8ISDXmYkZq+hQ/caVLmzK9MfNxnz4PSO8=) 21: WO5iMFxx-F4JF78W9Ca0mfMOiYc.roa (hash: uBIHUV8mnwau9Fyw3ey0VTaOO0smiERX1iJx5QMdF/M=) 22: Wzq1y0doG8WfM1zNpgf4G6VhY_I.roa (hash: ANi9PNCi24CfK53dgbxV1jDB/S5TR8D7gFN/whY98FI=) 23: YVwxp9vRo78D3Zkq4PWUJjvh2ys.roa (hash: 6SWi7F6i8jnqxlALTm3akUKfwciw3a80Vo8UDIGTBq0=) 24: Z1mAh7dnk6Rh8hMBVveYuVVKQhw.roa (hash: c4iSRYoWCrKro/VyPAI3QKrwxaiFQdNixwwM9DnplJk=) 25: ZbfWaZg1v-moCB38EU3xv20hXac.crl (hash: M7FK7aiYvZSgbN+j1zvY3UZtqXhmLRerGRX/2M1a0TQ=) 26: ZeS20_oHUJMluTQ0NLKvA8MddlQ.roa (hash: dG98OYoIHXRu6CU/AFyTQ7Ffl0Qa040yf0xbzK4lVB0=) 27: iEpDEVUAC0FqyMEjeItbSe6hHhw.roa (hash: uIxiBqhS0laFOTljS8IeUdTLfRVqc/6t1ILn5Hh8PqE=) 28: ldsSV8XkUxgRsN1Mt_5-mRILoaY.roa (hash: 2KvQ5LUfWObgEEs4hfrZe98s+DulmLTkOugxEUCQvZg=) 29: llk4ofXvRzHEH-qWue__dsHka_s.roa (hash: K2BZhTog7Vh0tYt+YbAIQfdPEsZY55aQG6EI2WxH2g8=) 30: qWpzvRDGfVICOAas6EpA5TLROBI.roa (hash: 0F40XY0fiwK+HQCyTtXfsCoNfyawPos3cmHr8KSTvbw=) 31: wCb4vbrgGFRhU-Cc5NMZl-jzWqo.roa (hash: zpBJ6kRrehBfcMMd+SMf9RfgRe0zUoI1wInwbsH+nsg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 Oct 2025 22:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:03:da:3c:ca:ed:54:45:1b:71:99:39:0c:0c:1e:e7:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7 Validity Not Before: Oct 20 23:00:25 2025 GMT Not After : Oct 21 23:00:25 2025 GMT Subject: CN=0349b2b29167b6555ca0128816366d36c8d243b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:77:b0:9b:1b:18:ce:60:97:35:b6:83:f5:dc: 37:51:8b:95:f7:34:d5:5a:28:6e:94:79:a7:91:1d: 3e:57:8b:b8:d5:cf:e2:cc:e2:da:81:8f:e4:52:1e: 6b:9f:f4:65:4c:9e:a9:b8:6f:5b:7b:6b:b1:9b:da: 07:83:71:5e:d4:4b:b1:22:e0:4c:f9:9d:32:4a:39: a1:e5:88:73:b6:9b:e9:de:99:4d:ba:07:cf:7c:6f: d8:1f:40:a4:5d:fe:d5:f4:03:43:4c:4b:44:9b:cc: 51:dc:fc:a8:7d:a5:5f:ad:1a:ed:30:22:29:42:c8: 7d:eb:7e:83:bf:67:db:56:21:6e:5e:2b:cc:e2:56: ae:87:cc:86:da:ec:f7:69:e3:49:30:bd:82:ca:fc: 4b:79:fd:1e:8c:e2:8c:db:c8:d1:b4:2b:f6:ef:f7: f0:0e:70:11:ff:73:29:2e:0e:6a:3e:89:4a:75:b0: 6e:94:46:39:11:1a:5a:73:0f:8d:59:63:6f:50:93: d8:3b:23:74:8e:c1:b7:0b:68:fd:7a:1e:29:4e:fd: 3e:36:12:74:bd:b3:af:41:f2:a5:16:90:82:7d:aa: 50:f9:57:b5:fe:f9:24:22:a9:74:02:70:87:ac:79: 6c:30:c3:66:91:c9:0f:63:51:6b:b7:ff:a0:95:38: 0a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:49:B2:B2:91:67:B6:55:5C:A0:12:88:16:36:6D:36:C8:D2:43:B2 X509v3 Authority Key Identifier: keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:e4:c9:fb:2d:f9:0f:14:19:39:60:9e:ba:07:ff:66:5a:f4: a0:89:62:f2:e6:46:76:d4:3e:ce:5d:77:0a:26:78:b8:7f:6d: 73:d7:5f:d7:f8:9a:6e:f7:a6:03:c7:5a:43:59:96:89:fe:c7: b3:5c:73:45:65:cb:21:56:8e:4e:e0:e4:a3:75:0a:15:b3:2e: 94:94:cb:6b:53:05:ae:24:c6:8f:42:1f:97:12:15:4a:78:55: f2:3f:09:3f:6c:92:ab:99:7e:45:33:ab:97:74:f0:3b:e8:45: 63:27:00:8b:fd:86:88:49:9d:b9:2d:8a:98:cf:d0:fe:91:75: 64:00:1a:b7:9a:4c:01:81:c4:93:16:c8:e7:69:6c:54:4a:37: 22:d2:fa:5b:bb:36:8b:5a:2a:9c:be:d3:c8:31:99:d3:25:39: e9:15:4a:3c:be:82:40:ff:39:0d:20:57:e2:61:44:48:10:4c: d0:6c:85:3f:52:85:c0:1f:95:df:f2:0e:d1:f9:ea:97:2f:3c: 7c:4a:b7:99:40:57:6d:31:10:70:ca:08:a7:fe:f9:5e:6f:ae: e5:92:3e:98:47:84:cf:e4:39:17:c9:4e:08:86:1e:19:28:45: 4e:0d:96:7c:6e:62:1b:b2:7d:23:6b:46:4e:9e:b3:2d:7b:54: d0:9b:56:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZoD2jzK7VRFG3GZOQwMHucLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1YjdkNjY5OTgzNWJmZTlhODA4MWRmYzExNGRmMWJmNmQy MTVkYTcwHhcNMjUxMDIwMjMwMDI1WhcNMjUxMDIxMjMwMDI1WjAzMTEwLwYDVQQD EygwMzQ5YjJiMjkxNjdiNjU1NWNhMDEyODgxNjM2NmQzNmM4ZDI0M2IyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnnewmxsYzmCXNbaD9dw3UYuV9zTV WihulHmnkR0+V4u41c/izOLagY/kUh5rn/RlTJ6puG9be2uxm9oHg3Fe1EuxIuBM +Z0ySjmh5Yhztpvp3plNugfPfG/YH0CkXf7V9ANDTEtEm8xR3PyofaVfrRrtMCIp Qsh9636Dv2fbViFuXivM4lauh8yG2uz3aeNJML2CyvxLef0ejOKM28jRtCv27/fw DnAR/3MpLg5qPolKdbBulEY5ERpacw+NWWNvUJPYOyN0jsG3C2j9eh4pTv0+NhJ0 vbOvQfKlFpCCfapQ+Ve1/vkkIql0AnCHrHlsMMNmkckPY1Frt/+glTgK4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFANJsrKRZ7ZVXKASiBY2bTbI0kOyMB8GA1UdIwQY MBaAFGW31mmYNb/pqAgd/BFN8b9tIV2nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWmJmV2FaZzF2LW1vQ0IzOEVVM3h2MjBoWGFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC8wMjVlZTgtM2Y0Ny00NTdkLThkNDct OWU0MTNlYmY0MmYzLzEvWmJmV2FaZzF2LW1vQ0IzOEVVM3h2MjBoWGFjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC8wMjVlZTgtM2Y0Ny00NTdkLThkNDctOWU0MTNlYmY0MmYz LzEvWmJmV2FaZzF2LW1vQ0IzOEVVM3h2MjBoWGFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjuTJ+y35 DxQZOWCeugf/Zlr0oIli8uZGdtQ+zl13CiZ4uH9tc9df1/iabvemA8daQ1mWif7H s1xzRWXLIVaOTuDko3UKFbMulJTLa1MFriTGj0IflxIVSnhV8j8JP2ySq5l+RTOr l3TwO+hFYycAi/2GiEmduS2KmM/Q/pF1ZAAat5pMAYHEkxbI52lsVEo3ItL6W7s2 i1oqnL7TyDGZ0yU56RVKPL6CQP85DSBX4mFESBBM0GyFP1KFwB+V3/IO0fnqly88 fEq3mUBXbTEQcMoIp/75Xm+u5ZI+mEeEz+Q5F8lOCIYeGShFTg2WfG5iG7J9I2tG Tp6zLXtU0JtWzA== -----END CERTIFICATE-----Generated at Tue Oct 21 07:52:14 2025 by rpki-client