$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft File: Kfp91j8uLYe194UAk8dDu_vhTkQ.mft (raw, json) Hash identifier: fIfqSIV6KUHo/DD34UKEeYYBrUnD3hzI8Go8PyJ1RXU= Subject key identifier: 1A:F5:7C:5E:A4:6B:D9:91:79:AE:70:5E:8D:07:14:B5:61:83:33:C1 Authority key identifier: 29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 Certificate issuer: /CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Certificate serial: 0197470C421868042C186D1F155F182EEF8B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft Manifest number: 042C Signing time: Fri 06 Jun 2025 21:01:15 +0000 Manifest this update: Fri 06 Jun 2025 21:01:15 +0000 Manifest next update: Sat 07 Jun 2025 21:01:15 +0000 Files and hashes: 1: 05o0ilxpLPFj724SFa-brN8vzXk.roa (hash: CPN9MrS7MYDAN7zH2nr9vN3ZoOoKTAOXjde0z1Y3r4g=) 2: 5h88FMdyJ4BKxPsdcgHQyCeiggw.roa (hash: Owv+GMEcs1uONJHFnOZ4mKs3NxskXYOAjZpyCXtz47Y=) 3: 7HfOX3VXYMpd2AIPBc7-S-uMs_8.roa (hash: k5M6cr3ux0zaC3HrK4AQu/eEDnL7gIrijJy4BZ0Nw4M=) 4: 7OOt-MnHsX07hiPdKHIMZaJ8wrg.roa (hash: 7nZ90mtRGZWhPbm1Puw7IzZkWIgR1R3W35D51WFY05w=) 5: BT9PpbhARp2PKEupubiiio8TvBc.roa (hash: PoRHUsj11iEWOHUhXg6p185DLswF97IfYO5dpNwM+4k=) 6: F1OWe033_DuZ-JjrisCh6PYvi1s.roa (hash: bLONjsizRZ/N6QYxCW6KHMn5K6t8a7PJWP3/t57vEJk=) 7: K3PHjFr5iZQBePAHzZD7020H3CQ.roa (hash: cYqNDwyqOAThtjZwtvIGK4yhgMYUiG7kHacZddA60SQ=) 8: Kfp91j8uLYe194UAk8dDu_vhTkQ.crl (hash: Fag417VDnAhkgEob9SVG3qe0C7Oe5dZJr9kSm+eCOCE=) 9: PwDUcjqBkiIEULzXxKTVGmmTWG4.roa (hash: FRJ/j45X7Ib31MDYnkP96sRJLV09a4YTIEwHH8GRm+c=) 10: SGJaxM1tftN6eWW_JhWZIZdq6Hs.roa (hash: i3+GB/wkLsPOj8TleSkbJUTDI0kj7dMA6dFb0QRWP+8=) 11: X-V1c33BeHLMq6YPZ6efCsl3cMM.roa (hash: qD2GqEyAmd2okDBw6OR3DlzX+O8r0bDHBHVLHEg9U3g=) 12: X6A7ZOxQkF-N5TBF6hNZ0D-sPxQ.roa (hash: sOJamuYIhYJWJLrvAE1wd1xA2gh7NgXmer7n43KBLdc=) 13: Y68HM_eE8K1w4SS6fxm68_4816Q.roa (hash: j5XSBxx8t0t2IG8jaeix/JPoU5Vp2pcHE0yvoVN43nY=) 14: eM7RoSEq3C715iKtcwBUqsiVTDM.roa (hash: U7xNVv9g2fKrI4EOjzXQcIX1ekwna/aEJqfXxfKaR90=) 15: u-M1H4DlyfJcf3cI4KPf60AAf5E.roa (hash: rqvHkJ1B+GOatMUS6IQfjBMvmK91Ea22MfD3TS1yuVM=) 16: us6ukJjPwguMUHmhc8SpjnjeHOE.roa (hash: RuHDwxtF2zmik+S8Nhu0t8NrGvwHVQJraNmp1nORf/c=) 17: zvMqPtiLMOCgjOxqm6euJp83YNA.roa (hash: jIvx8RFgHAKB/kauSEcxDljiE/0sDn1/Jfcw3a0iCKU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 21:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:47:0c:42:18:68:04:2c:18:6d:1f:15:5f:18:2e:ef:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Validity Not Before: Jun 6 21:01:15 2025 GMT Not After : Jun 7 21:01:15 2025 GMT Subject: CN=1af57c5ea46bd99179ae705e8d0714b5618333c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e6:2e:0a:cc:70:b6:66:d7:29:c0:3d:25:a0: d8:15:16:7b:25:13:8b:5b:a0:22:fd:36:cc:16:d8: 40:33:29:1c:a7:40:5b:bc:f7:9b:47:4d:94:2f:80: 5b:ef:d7:e9:f4:23:76:f0:84:58:c2:9d:8e:cb:7b: f3:6a:7b:43:62:1f:32:7e:e9:01:b0:e0:3c:fb:6d: 51:7c:17:d4:87:5e:83:8a:26:1e:d8:04:71:d4:e1: 45:bb:2a:5f:d4:3f:16:d4:b3:e9:30:1f:2a:c3:63: fb:36:61:b2:02:13:f9:58:c7:81:bb:6f:97:9d:8d: 81:d9:c7:89:82:ad:0b:f0:19:b7:7f:af:79:cf:b1: 22:dd:3d:e6:16:1f:f0:7a:98:d6:60:a5:aa:af:12: 00:ad:63:1a:3f:cd:4d:4e:05:d1:23:26:fb:ea:5b: f8:95:76:97:64:8b:5b:01:fc:81:d0:5a:ba:7c:47: 90:2b:04:c5:a0:df:40:6e:d7:0c:d7:5d:21:08:ff: cf:6a:e2:a3:1b:15:17:60:54:aa:0a:d9:f2:7f:00: 20:55:83:5c:1b:66:fa:12:8d:aa:17:a9:7d:e8:8a: fd:9a:cf:ef:88:6c:73:97:4b:15:48:50:31:f9:af: 90:32:3b:1c:79:81:7d:a4:37:70:91:22:5f:41:7a: 72:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:F5:7C:5E:A4:6B:D9:91:79:AE:70:5E:8D:07:14:B5:61:83:33:C1 X509v3 Authority Key Identifier: keyid:29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:e7:00:a5:cf:74:ed:c5:57:c9:3a:3a:65:04:77:b0:58:0b: c7:99:55:9f:6b:d0:c2:62:d1:51:14:ef:6b:f7:97:9c:af:a0: fe:73:2e:c5:5c:ba:f7:a0:a1:0f:ae:c5:99:0b:51:91:cd:7f: 79:98:90:17:8d:7a:5f:a4:10:35:53:91:b4:a7:19:55:eb:c2: f2:ce:06:a8:b8:8e:58:44:5d:a7:67:af:ee:f4:7a:12:9b:c5: 85:a3:47:2f:5f:91:96:be:a6:9f:93:a7:b6:24:69:53:bb:f1: 97:30:b7:b0:92:fe:b0:e3:be:d5:fa:ce:3d:49:c7:fa:2d:ce: 89:b8:b5:a7:5a:7c:cf:d3:d3:b5:1b:2a:25:58:db:44:3e:82: 63:f0:3c:ab:01:ec:04:c3:40:41:56:84:0a:1a:a1:1c:95:f7: 36:3e:f5:d1:ff:52:cb:dc:1a:92:64:d8:42:e1:cc:30:8d:5a: 2d:06:ef:aa:ed:ae:b8:b8:4f:65:c0:29:62:0a:00:0b:32:c9: fb:1b:88:35:87:8a:bb:f7:5a:a2:f5:ce:ef:ae:ce:09:82:d8: cd:a5:d2:31:30:8a:81:b4:2a:79:26:25:26:dc:c5:91:30:60: 2b:6a:48:aa:e8:5e:b1:6c:1f:15:ef:45:4c:79:a8:66:ee:a3: b2:91:0c:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdHDEIYaAQsGG0fFV8YLu+LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZmE3ZGQ2M2YyZTJkODdiNWY3ODUwMDkzYzc0M2JiZmJl MTRlNDQwHhcNMjUwNjA2MjEwMTE1WhcNMjUwNjA3MjEwMTE1WjAzMTEwLwYDVQQD EygxYWY1N2M1ZWE0NmJkOTkxNzlhZTcwNWU4ZDA3MTRiNTYxODMzM2MxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOYuCsxwtmbXKcA9JaDYFRZ7JROL W6Ai/TbMFthAMykcp0BbvPebR02UL4Bb79fp9CN28IRYwp2Oy3vzantDYh8yfukB sOA8+21RfBfUh16DiiYe2ARx1OFFuypf1D8W1LPpMB8qw2P7NmGyAhP5WMeBu2+X nY2B2ceJgq0L8Bm3f695z7Ei3T3mFh/wepjWYKWqrxIArWMaP81NTgXRIyb76lv4 lXaXZItbAfyB0Fq6fEeQKwTFoN9AbtcM110hCP/PauKjGxUXYFSqCtnyfwAgVYNc G2b6Eo2qF6l96Ir9ms/viGxzl0sVSFAx+a+QMjsceYF9pDdwkSJfQXpyIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBr1fF6ka9mRea5wXo0HFLVhgzPBMB8GA1UdIwQY MBaAFCn6fdY/Li2HtfeFAJPHQ7v74U5EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUt NzlmN2I2ZWE3YzE0LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUtNzlmN2I2ZWE3YzE0 LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX+cApc90 7cVXyTo6ZQR3sFgLx5lVn2vQwmLRURTva/eXnK+g/nMuxVy696ChD67FmQtRkc1/ eZiQF416X6QQNVORtKcZVevC8s4GqLiOWERdp2ev7vR6EpvFhaNHL1+Rlr6mn5On tiRpU7vxlzC3sJL+sOO+1frOPUnH+i3Oibi1p1p8z9PTtRsqJVjbRD6CY/A8qwHs BMNAQVaEChqhHJX3Nj710f9Sy9wakmTYQuHMMI1aLQbvqu2uuLhPZcApYgoACzLJ +xuINYeKu/daovXO767OCYLYzaXSMTCKgbQqeSYlJtzFkTBgK2pIquhesWwfFe9F THmoZu6jspEMZA== -----END CERTIFICATE-----Generated at Sat Jun 7 04:10:40 2025 by rpki-client