$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft File: bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft (raw, json) Hash identifier: LFUY8kUcjYC3XStV6ch0w5YgvSEdRs1AZR+Lqyv2yX0= Subject key identifier: 29:73:B8:30:DC:6F:D3:33:D3:60:D9:CB:4D:4E:2C:4B:2D:58:7B:F5 Authority key identifier: 6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 Certificate issuer: /CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Certificate serial: 019A1E07C310C494486A52FC81F112C92672 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft Manifest number: 1775 Signing time: Sun 26 Oct 2025 01:00:16 +0000 Manifest this update: Sun 26 Oct 2025 01:00:16 +0000 Manifest next update: Mon 27 Oct 2025 01:00:16 +0000 Files and hashes: 1: GJGNGTLsLaPzo7RV9J9cGo7ZCKI.roa (hash: ycPiGraLR+oJB3cwW5Zn+sG2+Vx4fOUp8s3QYwjDHdY=) 2: LJGytq9N5LZAfsPYy6Q-7xTDnFQ.roa (hash: L8DANG0AVQkhh+LlhVF97AUo2a9H2Thg2+BhZTsZc9s=) 3: VdTIZg10bNsf97lJZgApyqs5rnw.roa (hash: JZmVNExP4W1uSJTEkKjxhG9IYISkRZKnN8IfaygiTvg=) 4: _RuQI5qt_gCJV8eSXJjHywGzAcM.roa (hash: DUnvGlvb0qBwrlu2PMIboP80gnaIA1d0Yg1mit2U5+4=) 5: _oIa1v5_qtgCStQ7Gr8CmdhmJJk.roa (hash: sBeGOfBKlFTzuSpkLUgZSpY0MFPhQu/DyIR2/KkHkUM=) 6: acsdEgh-dFdAGSqAE_lAYWdPdzo.roa (hash: lIvBIoA3FQRV1Et4CF8cBr7OP+IuEmQHKzZDW4s0Y6A=) 7: bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl (hash: jSMCMckvdzI0UcMl3Fhs35/Q/1nuxXe+KbjF94OpeYI=) 8: gp93L_YQvuGEaCDSOxiRg-T-4UM.roa (hash: cOL7dP+BUiqZrZ0lZLE/dQN9GFbGifb1tHwfI+S3noI=) 9: mJjHdX3SCVwj6yoNCT7Dpu7pXSo.roa (hash: ccP3x4XUmUaf8il9YXiD7LEPdeAv9/EZKZYCHAVZnrA=) 10: uXeorQ0KraTFvVQlrxOSwyrTRt8.roa (hash: p6Mox6CbN3FoG5SSiyHeNVnPtI+94QgKaVPxEdmTl2o=) 11: yE8yGiOSM9_WiLeRkIg-dqNW2to.roa (hash: lSz5irzOf2/kcuzlFP5VLqCVP2LHBpJf2WHVunZKvMQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 27 Oct 2025 01:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:1e:07:c3:10:c4:94:48:6a:52:fc:81:f1:12:c9:26:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Validity Not Before: Oct 26 01:00:16 2025 GMT Not After : Oct 27 01:00:16 2025 GMT Subject: CN=2973b830dc6fd333d360d9cb4d4e2c4b2d587bf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7a:ca:4d:8b:8a:24:69:c3:a1:62:7a:4b:60: 60:38:94:ee:48:e9:e8:fc:cb:35:99:87:ad:8d:90: 17:a8:80:84:a3:d4:98:ac:d3:25:2f:38:2c:cd:07: 7b:b7:5c:8c:40:6e:51:09:9a:33:44:ac:4d:cc:15: c8:80:5b:a6:1d:bc:eb:61:d9:19:ee:83:46:62:b2: f5:43:91:04:5b:f2:7a:cb:43:d3:65:ad:31:45:ff: 6e:34:2f:3d:36:79:82:e2:84:c1:3d:18:1a:86:e8: 64:84:b7:2f:bd:ab:4b:03:b4:4d:71:b1:ff:5a:40: ea:50:14:2a:f5:b0:2e:f6:5b:bd:fa:3f:28:9e:45: 88:2f:55:bb:e7:45:af:73:fb:11:6c:02:4d:27:9a: 4d:28:3a:7e:d8:ae:37:b3:98:f3:5a:93:4d:23:7a: ca:ee:6e:95:00:a1:af:46:90:13:c2:9a:fd:55:5f: 1a:29:3a:50:cb:1a:96:83:ee:6d:00:92:d1:83:c6: 98:7c:6c:72:90:c3:d3:1e:2d:3e:b8:9a:27:16:e9: 8d:22:14:46:26:bb:87:a5:16:8a:03:9a:69:18:37: 09:9e:02:e3:ba:98:5a:63:86:6e:01:d2:4a:9d:5a: d5:40:c3:ae:c2:69:3b:63:de:53:ce:22:34:ce:f0: 51:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:73:B8:30:DC:6F:D3:33:D3:60:D9:CB:4D:4E:2C:4B:2D:58:7B:F5 X509v3 Authority Key Identifier: keyid:6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:62:d0:1f:c1:2d:17:f2:0f:72:e9:4f:7d:81:6b:c8:08:16: 71:68:2c:76:a8:94:73:ed:03:60:f3:c9:3f:23:b2:d1:5a:ff: 76:c7:04:6d:cb:42:d7:d1:a7:7c:c0:a6:a0:36:7d:46:1b:34: d9:7b:e3:d8:8d:e4:38:89:2f:61:87:eb:a1:86:14:b0:b2:64: 5c:be:9a:9c:41:bc:cb:ef:c1:5b:46:1f:4e:71:fa:64:dc:b7: 8b:9b:0e:d2:8c:e0:1c:6f:79:05:93:2a:c6:98:11:a9:86:fc: 04:8a:b6:6c:6a:83:bb:4d:9c:b3:64:47:6e:1a:90:51:66:53: 69:ae:65:c5:a5:c9:18:13:ed:18:ca:d6:e5:69:b8:23:57:f6: 9a:f1:e5:61:ee:ef:6b:52:37:1e:9b:34:57:23:a6:52:3e:2a: 2c:e9:f0:c1:86:89:84:27:54:a0:a6:66:b7:74:ba:f0:0a:74: 37:59:b7:0e:ad:91:2b:85:3e:77:68:21:c7:45:c4:77:39:3e: b5:ba:4a:92:6a:5a:7b:3a:86:69:db:3b:ed:b2:31:eb:ba:22: 57:da:a8:8d:a4:c2:6e:23:e1:0d:00:5b:4c:f8:d2:b5:69:bb: 4f:a2:23:50:3f:ef:fe:69:56:77:0c:a9:20:c0:1a:8e:f9:24: 1d:2a:c3:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZoeB8MQxJRIalL8gfESySZyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMzAzMGE0YjY3Zjk1YzJmZWQ5MDJkNTY2NTdmYWEyNDk0 YjUxMjkwHhcNMjUxMDI2MDEwMDE2WhcNMjUxMDI3MDEwMDE2WjAzMTEwLwYDVQQD EygyOTczYjgzMGRjNmZkMzMzZDM2MGQ5Y2I0ZDRlMmM0YjJkNTg3YmY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxXrKTYuKJGnDoWJ6S2BgOJTuSOno /Ms1mYetjZAXqICEo9SYrNMlLzgszQd7t1yMQG5RCZozRKxNzBXIgFumHbzrYdkZ 7oNGYrL1Q5EEW/J6y0PTZa0xRf9uNC89NnmC4oTBPRgahuhkhLcvvatLA7RNcbH/ WkDqUBQq9bAu9lu9+j8onkWIL1W750Wvc/sRbAJNJ5pNKDp+2K43s5jzWpNNI3rK 7m6VAKGvRpATwpr9VV8aKTpQyxqWg+5tAJLRg8aYfGxykMPTHi0+uJonFumNIhRG JruHpRaKA5ppGDcJngLjuphaY4ZuAdJKnVrVQMOuwmk7Y95TziI0zvBR/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFClzuDDcb9Mz02DZy01OLEstWHv1MB8GA1UdIwQY MBaAFG8wMKS2f5XC/tkC1WZX+qJJS1EpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYt YmYzYjIxYTI3MGYyLzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYtYmYzYjIxYTI3MGYy LzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAomLQH8Et F/IPculPfYFryAgWcWgsdqiUc+0DYPPJPyOy0Vr/dscEbctC19GnfMCmoDZ9Rhs0 2Xvj2I3kOIkvYYfroYYUsLJkXL6anEG8y+/BW0YfTnH6ZNy3i5sO0ozgHG95BZMq xpgRqYb8BIq2bGqDu02cs2RHbhqQUWZTaa5lxaXJGBPtGMrW5Wm4I1f2mvHlYe7v a1I3Hps0VyOmUj4qLOnwwYaJhCdUoKZmt3S68Ap0N1m3Dq2RK4U+d2ghx0XEdzk+ tbpKkmpaezqGads77bIx67oiV9qojaTCbiPhDQBbTPjStWm7T6IjUD/v/mlWdwyp IMAajvkkHSrDCw== -----END CERTIFICATE-----Generated at Sun Oct 26 06:29:35 2025 by rpki-client