$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft File: bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft (raw, json) Hash identifier: tfgn+kyKP+qRwD4WNqsATLgJsMMLgsexBP0ZxW9RWvI= Subject key identifier: E0:75:E9:58:65:A0:53:23:A2:FE:C6:A7:8B:CB:DB:F1:01:24:83:14 Authority key identifier: 6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 Certificate issuer: /CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Certificate serial: 0199326D2FBAB7076404B01D715B3DCE3CAE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft Manifest number: 16FB Signing time: Wed 10 Sep 2025 07:00:40 +0000 Manifest this update: Wed 10 Sep 2025 07:00:40 +0000 Manifest next update: Thu 11 Sep 2025 07:00:40 +0000 Files and hashes: 1: GJGNGTLsLaPzo7RV9J9cGo7ZCKI.roa (hash: ycPiGraLR+oJB3cwW5Zn+sG2+Vx4fOUp8s3QYwjDHdY=) 2: LJGytq9N5LZAfsPYy6Q-7xTDnFQ.roa (hash: L8DANG0AVQkhh+LlhVF97AUo2a9H2Thg2+BhZTsZc9s=) 3: VdTIZg10bNsf97lJZgApyqs5rnw.roa (hash: JZmVNExP4W1uSJTEkKjxhG9IYISkRZKnN8IfaygiTvg=) 4: _RuQI5qt_gCJV8eSXJjHywGzAcM.roa (hash: DUnvGlvb0qBwrlu2PMIboP80gnaIA1d0Yg1mit2U5+4=) 5: _oIa1v5_qtgCStQ7Gr8CmdhmJJk.roa (hash: sBeGOfBKlFTzuSpkLUgZSpY0MFPhQu/DyIR2/KkHkUM=) 6: acsdEgh-dFdAGSqAE_lAYWdPdzo.roa (hash: lIvBIoA3FQRV1Et4CF8cBr7OP+IuEmQHKzZDW4s0Y6A=) 7: bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl (hash: yh8AAG6nDFapW17nBpu43SRWLUND12CJ1ylabCOskvM=) 8: gp93L_YQvuGEaCDSOxiRg-T-4UM.roa (hash: cOL7dP+BUiqZrZ0lZLE/dQN9GFbGifb1tHwfI+S3noI=) 9: mJjHdX3SCVwj6yoNCT7Dpu7pXSo.roa (hash: ccP3x4XUmUaf8il9YXiD7LEPdeAv9/EZKZYCHAVZnrA=) 10: uXeorQ0KraTFvVQlrxOSwyrTRt8.roa (hash: p6Mox6CbN3FoG5SSiyHeNVnPtI+94QgKaVPxEdmTl2o=) 11: yE8yGiOSM9_WiLeRkIg-dqNW2to.roa (hash: lSz5irzOf2/kcuzlFP5VLqCVP2LHBpJf2WHVunZKvMQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Sep 2025 02:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:32:6d:2f:ba:b7:07:64:04:b0:1d:71:5b:3d:ce:3c:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Validity Not Before: Sep 10 07:00:40 2025 GMT Not After : Sep 11 07:00:40 2025 GMT Subject: CN=e075e95865a05323a2fec6a78bcbdbf101248314 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1c:27:b4:80:15:bd:ce:db:30:eb:ad:29:e3: b0:4b:4b:3d:36:e4:67:88:47:33:ff:03:0d:16:ef: 04:d5:7e:d3:ad:d1:46:6c:01:21:94:04:29:55:f7: ae:84:7b:c5:1a:b6:40:00:79:ca:ed:ac:de:c1:4b: ef:e0:3a:70:e6:79:96:3f:8a:95:36:80:db:02:e2: 3a:6e:0d:e2:91:88:ec:99:2e:12:24:37:63:03:88: 2a:80:d1:d0:1f:03:ea:f5:be:27:db:16:77:0f:98: 15:51:f6:57:56:21:7b:9c:96:fd:c6:7a:56:d6:cd: d0:56:01:74:f8:76:0a:54:a7:68:df:01:4f:06:6b: 46:13:fe:cf:1a:58:34:c4:6c:ff:13:85:5e:44:40: 7e:11:80:72:13:09:04:36:c3:6a:88:7d:c8:d2:6e: e2:a2:01:5b:ca:f3:f7:34:a1:54:5f:26:0b:8f:f5: 38:c7:26:64:6d:2f:ef:96:84:d4:c3:62:81:c7:38: 9c:55:b0:fd:f2:26:b8:42:0b:01:c2:ba:c8:8b:ac: 6c:34:cf:33:8a:18:f1:7d:21:da:9f:d9:27:b5:8a: a0:24:bd:6d:4d:87:dd:37:9b:e4:0d:e7:06:87:90: 86:03:10:3a:b0:c9:f4:02:9a:f3:85:46:25:32:e0: e0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:75:E9:58:65:A0:53:23:A2:FE:C6:A7:8B:CB:DB:F1:01:24:83:14 X509v3 Authority Key Identifier: keyid:6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:c3:30:31:af:e8:5b:74:29:7b:7f:b4:67:d3:1a:22:1e:47: b5:29:a0:b1:3b:df:9e:c8:9d:ff:35:5a:da:bd:50:31:15:81: cb:29:ee:1c:68:54:ea:15:de:75:31:7b:4e:87:fa:79:0d:b6: 00:77:df:f1:d4:bf:9d:b2:21:a5:7e:57:5d:98:46:9d:e4:c0: b8:a6:b7:35:6b:b3:fe:cb:6f:df:12:01:8e:ef:aa:78:7f:b6: b1:c4:cd:0e:9d:22:e1:d0:18:53:5e:84:b0:f3:a5:d1:2a:72: f6:dd:88:cb:47:e3:23:48:ce:51:73:cc:60:34:b6:8e:00:2a: ca:6f:30:c3:bb:af:48:a5:6b:a2:41:7f:df:98:26:7d:26:8d: 93:7a:3d:ab:fe:96:3d:64:ca:fe:61:0f:76:b0:c4:74:fb:f0: 48:b0:22:e9:e1:af:68:ae:35:ae:ad:35:1b:82:a4:c0:8c:1c: de:33:0d:5a:c0:02:c3:5d:a3:cd:6c:31:98:be:b6:79:65:34: e5:7e:3a:ca:21:5f:71:b5:54:0f:c1:d3:92:29:17:fb:56:7e: 2a:be:49:ba:67:bc:b4:39:0c:42:0f:f5:1f:8d:71:53:ec:27: e5:9a:dc:d7:63:bc:6c:8a:6c:2e:78:d7:21:cd:f0:f1:b6:38: 96:cc:92:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZkybS+6twdkBLAdcVs9zjyuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMzAzMGE0YjY3Zjk1YzJmZWQ5MDJkNTY2NTdmYWEyNDk0 YjUxMjkwHhcNMjUwOTEwMDcwMDQwWhcNMjUwOTExMDcwMDQwWjAzMTEwLwYDVQQD EyhlMDc1ZTk1ODY1YTA1MzIzYTJmZWM2YTc4YmNiZGJmMTAxMjQ4MzE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwBwntIAVvc7bMOutKeOwS0s9NuRn iEcz/wMNFu8E1X7TrdFGbAEhlAQpVfeuhHvFGrZAAHnK7azewUvv4Dpw5nmWP4qV NoDbAuI6bg3ikYjsmS4SJDdjA4gqgNHQHwPq9b4n2xZ3D5gVUfZXViF7nJb9xnpW 1s3QVgF0+HYKVKdo3wFPBmtGE/7PGlg0xGz/E4VeREB+EYByEwkENsNqiH3I0m7i ogFbyvP3NKFUXyYLj/U4xyZkbS/vloTUw2KBxzicVbD98ia4QgsBwrrIi6xsNM8z ihjxfSHan9kntYqgJL1tTYfdN5vkDecGh5CGAxA6sMn0AprzhUYlMuDgxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOB16VhloFMjov7Gp4vL2/EBJIMUMB8GA1UdIwQY MBaAFG8wMKS2f5XC/tkC1WZX+qJJS1EpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYt YmYzYjIxYTI3MGYyLzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYtYmYzYjIxYTI3MGYy LzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArMMwMa/o W3Qpe3+0Z9MaIh5HtSmgsTvfnsid/zVa2r1QMRWByynuHGhU6hXedTF7Tof6eQ22 AHff8dS/nbIhpX5XXZhGneTAuKa3NWuz/stv3xIBju+qeH+2scTNDp0i4dAYU16E sPOl0Spy9t2Iy0fjI0jOUXPMYDS2jgAqym8ww7uvSKVrokF/35gmfSaNk3o9q/6W PWTK/mEPdrDEdPvwSLAi6eGvaK41rq01G4KkwIwc3jMNWsACw12jzWwxmL62eWU0 5X46yiFfcbVUD8HTkikX+1Z+Kr5Jume8tDkMQg/1H41xU+wn5Zrc12O8bIpsLnjX Ic3w8bY4lsySWA== -----END CERTIFICATE-----Generated at Wed Sep 10 10:09:02 2025 by rpki-client