$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft File: Kfp91j8uLYe194UAk8dDu_vhTkQ.mft (raw, json) Hash identifier: WzhT9Cm7kkngc/Pu98bpgDh70oAHIKiTmgICJoYy7gk= Subject key identifier: CE:0E:FC:9B:EA:E5:45:34:A1:4D:51:7A:37:31:E7:B0:9A:80:F5:D1 Authority key identifier: 29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 Certificate issuer: /CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Certificate serial: 019A194FC814B06D86ECE7C5C26294F71D83 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft Manifest number: 05A2 Signing time: Sat 25 Oct 2025 03:00:50 +0000 Manifest this update: Sat 25 Oct 2025 03:00:50 +0000 Manifest next update: Sun 26 Oct 2025 03:00:50 +0000 Files and hashes: 1: 05o0ilxpLPFj724SFa-brN8vzXk.roa (hash: CPN9MrS7MYDAN7zH2nr9vN3ZoOoKTAOXjde0z1Y3r4g=) 2: 5h88FMdyJ4BKxPsdcgHQyCeiggw.roa (hash: Owv+GMEcs1uONJHFnOZ4mKs3NxskXYOAjZpyCXtz47Y=) 3: 7HfOX3VXYMpd2AIPBc7-S-uMs_8.roa (hash: k5M6cr3ux0zaC3HrK4AQu/eEDnL7gIrijJy4BZ0Nw4M=) 4: 7OOt-MnHsX07hiPdKHIMZaJ8wrg.roa (hash: 7nZ90mtRGZWhPbm1Puw7IzZkWIgR1R3W35D51WFY05w=) 5: BT9PpbhARp2PKEupubiiio8TvBc.roa (hash: PoRHUsj11iEWOHUhXg6p185DLswF97IfYO5dpNwM+4k=) 6: F1OWe033_DuZ-JjrisCh6PYvi1s.roa (hash: bLONjsizRZ/N6QYxCW6KHMn5K6t8a7PJWP3/t57vEJk=) 7: K3PHjFr5iZQBePAHzZD7020H3CQ.roa (hash: cYqNDwyqOAThtjZwtvIGK4yhgMYUiG7kHacZddA60SQ=) 8: Kfp91j8uLYe194UAk8dDu_vhTkQ.crl (hash: ZDsQvX4zvrXv7kYA0ySHL/nIK++cUNnUaT3e4KMbqNc=) 9: PwDUcjqBkiIEULzXxKTVGmmTWG4.roa (hash: FRJ/j45X7Ib31MDYnkP96sRJLV09a4YTIEwHH8GRm+c=) 10: SGJaxM1tftN6eWW_JhWZIZdq6Hs.roa (hash: i3+GB/wkLsPOj8TleSkbJUTDI0kj7dMA6dFb0QRWP+8=) 11: X-V1c33BeHLMq6YPZ6efCsl3cMM.roa (hash: qD2GqEyAmd2okDBw6OR3DlzX+O8r0bDHBHVLHEg9U3g=) 12: X6A7ZOxQkF-N5TBF6hNZ0D-sPxQ.roa (hash: sOJamuYIhYJWJLrvAE1wd1xA2gh7NgXmer7n43KBLdc=) 13: Y68HM_eE8K1w4SS6fxm68_4816Q.roa (hash: j5XSBxx8t0t2IG8jaeix/JPoU5Vp2pcHE0yvoVN43nY=) 14: eM7RoSEq3C715iKtcwBUqsiVTDM.roa (hash: U7xNVv9g2fKrI4EOjzXQcIX1ekwna/aEJqfXxfKaR90=) 15: u-M1H4DlyfJcf3cI4KPf60AAf5E.roa (hash: rqvHkJ1B+GOatMUS6IQfjBMvmK91Ea22MfD3TS1yuVM=) 16: us6ukJjPwguMUHmhc8SpjnjeHOE.roa (hash: RuHDwxtF2zmik+S8Nhu0t8NrGvwHVQJraNmp1nORf/c=) 17: zvMqPtiLMOCgjOxqm6euJp83YNA.roa (hash: jIvx8RFgHAKB/kauSEcxDljiE/0sDn1/Jfcw3a0iCKU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 26 Oct 2025 02:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:19:4f:c8:14:b0:6d:86:ec:e7:c5:c2:62:94:f7:1d:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Validity Not Before: Oct 25 03:00:50 2025 GMT Not After : Oct 26 03:00:50 2025 GMT Subject: CN=ce0efc9beae54534a14d517a3731e7b09a80f5d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a4:e1:ea:9e:8a:94:fd:3d:b2:a9:93:29:3b: 27:40:1e:7f:31:aa:48:f2:a9:22:ff:d3:f5:73:16: b0:ca:72:a3:6e:9b:8e:76:78:03:e8:ca:f4:6d:f0: 3f:6e:43:0e:c8:11:6f:61:cb:cd:6b:75:f9:f0:a4: ff:97:10:92:90:8a:ac:19:fe:14:d7:da:ea:52:c2: d2:2e:30:94:e9:b1:3f:90:bd:96:97:5e:96:0e:dd: ba:46:40:15:21:16:a0:b3:6b:c7:9c:f6:5b:d6:11: 99:66:61:d1:b0:d3:f9:1e:f1:26:6f:c2:0c:29:b3: 90:b8:58:70:26:be:d2:d9:a3:c0:d1:be:6e:89:cc: 32:59:d1:14:1e:f5:0a:90:d2:7f:1a:b8:54:1c:43: 7c:af:19:14:3a:9d:1c:6c:87:1d:9a:e2:ef:e3:7d: 28:55:6b:8e:08:58:c9:8f:f2:3b:31:3b:72:dd:29: a6:7d:a0:df:a2:9f:1d:47:93:08:10:07:93:ef:b8: 4f:87:c0:9c:7c:a6:57:f7:71:45:d9:f6:45:46:01: ff:c7:5e:4c:45:e6:cc:e3:8e:f6:2f:78:bd:f8:01: 37:03:cc:72:68:94:2d:33:e4:2d:d3:39:3f:cd:1f: 9c:d8:5a:34:0a:e8:6f:f8:f0:e8:a1:46:0a:af:02: 13:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:0E:FC:9B:EA:E5:45:34:A1:4D:51:7A:37:31:E7:B0:9A:80:F5:D1 X509v3 Authority Key Identifier: keyid:29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:96:5a:5d:f6:f5:b4:1d:1e:86:4e:5d:46:f2:4d:68:1b:14: f9:b1:69:cc:fc:c6:53:92:c1:04:0a:75:62:b3:95:6f:77:93: 61:e7:c5:f1:1e:64:6c:11:e9:e9:ef:a0:db:d5:b3:a7:18:d8: 2b:59:5f:35:f9:27:b5:26:01:6e:ce:23:03:72:24:0d:6f:c8: f9:4b:a5:b8:d5:ac:40:ba:2b:9d:b5:ca:ac:15:a3:5d:90:3a: eb:82:db:bb:6e:fa:1a:8c:be:15:55:24:0c:3e:85:cb:47:c3: 0a:c9:ae:25:a8:c2:b8:55:92:1c:e9:d4:c1:75:2a:d8:8f:0e: 06:d9:94:b5:ef:b7:e5:00:5a:f4:4f:03:9f:e5:0f:69:3d:59: fe:b8:70:6c:e3:4e:09:21:f7:0a:39:d0:f0:db:59:29:64:3b: 18:1a:1e:8b:46:4a:16:22:b2:95:e8:3c:41:07:e8:d5:63:cc: 9b:b0:08:9d:f7:87:12:f6:07:f4:ca:8f:bf:e1:0e:b4:22:7c: db:22:ff:cd:e5:59:50:07:cb:86:65:f7:dd:39:40:5c:13:e2: ec:63:0b:c0:07:fb:59:2c:ee:32:86:9d:8e:08:f7:05:e5:a0: eb:8e:63:26:49:79:74:4a:69:8d:78:ae:9d:b4:cb:fd:bd:37: c9:50:a8:50 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZoZT8gUsG2G7OfFwmKU9x2DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZmE3ZGQ2M2YyZTJkODdiNWY3ODUwMDkzYzc0M2JiZmJl MTRlNDQwHhcNMjUxMDI1MDMwMDUwWhcNMjUxMDI2MDMwMDUwWjAzMTEwLwYDVQQD EyhjZTBlZmM5YmVhZTU0NTM0YTE0ZDUxN2EzNzMxZTdiMDlhODBmNWQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs6Th6p6KlP09sqmTKTsnQB5/MapI 8qki/9P1cxawynKjbpuOdngD6Mr0bfA/bkMOyBFvYcvNa3X58KT/lxCSkIqsGf4U 19rqUsLSLjCU6bE/kL2Wl16WDt26RkAVIRags2vHnPZb1hGZZmHRsNP5HvEmb8IM KbOQuFhwJr7S2aPA0b5uicwyWdEUHvUKkNJ/GrhUHEN8rxkUOp0cbIcdmuLv430o VWuOCFjJj/I7MTty3SmmfaDfop8dR5MIEAeT77hPh8CcfKZX93FF2fZFRgH/x15M RebM4472L3i9+AE3A8xyaJQtM+Qt0zk/zR+c2Fo0Cuhv+PDooUYKrwITuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM4O/Jvq5UU0oU1Rejcx57CagPXRMB8GA1UdIwQY MBaAFCn6fdY/Li2HtfeFAJPHQ7v74U5EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUt NzlmN2I2ZWE3YzE0LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUtNzlmN2I2ZWE3YzE0 LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlZZaXfb1 tB0ehk5dRvJNaBsU+bFpzPzGU5LBBAp1YrOVb3eTYefF8R5kbBHp6e+g29WzpxjY K1lfNfkntSYBbs4jA3IkDW/I+UuluNWsQLornbXKrBWjXZA664Lbu276Goy+FVUk DD6Fy0fDCsmuJajCuFWSHOnUwXUq2I8OBtmUte+35QBa9E8Dn+UPaT1Z/rhwbONO CSH3CjnQ8NtZKWQ7GBoei0ZKFiKyleg8QQfo1WPMm7AInfeHEvYH9MqPv+EOtCJ8 2yL/zeVZUAfLhmX33TlAXBPi7GMLwAf7WSzuMoadjgj3BeWg645jJkl5dEppjXiu nbTL/b03yVCoUA== -----END CERTIFICATE-----Generated at Sat Oct 25 11:33:19 2025 by rpki-client