$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft File: Us2aZRLb8lpfGbgn16LH4iou6N0.mft (raw, json) Hash identifier: w2/7ajqL+v7TsTDBnC/yXVULJPYY4IEA6tKeuasJ8q4= Subject key identifier: F5:25:88:59:E8:30:1D:31:4C:42:3E:D3:AF:99:5D:67:34:89:1E:7C Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Certificate serial: 019933B76C23A69006BB035992ABADACA63D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft Manifest number: 0939 Signing time: Wed 10 Sep 2025 13:01:22 +0000 Manifest this update: Wed 10 Sep 2025 13:01:22 +0000 Manifest next update: Thu 11 Sep 2025 13:01:22 +0000 Files and hashes: 1: 1-fNwUFlO6fD6i3f_1SheL5UVW0g.roa (hash: 32fP/D02b4404J0+5cPNK59TuFMj1f7NhGygcv25yuI=) 2: 1FJeVgZId139knZgMTYZmAnwLDs.roa (hash: VPpFwlCkzXISful3TlM5ZgodfCcJYCCPoZqn50dkuRo=) 3: BaoLehfzYM1vkBF2LqjuxCVGppw.roa (hash: wk0ycjZln2vcCwTCcN83YoDpaabATIZRlFvsl/RZ67U=) 4: Mg8DfV8_DXrPv3KqkbNYUp0l0tM.roa (hash: bc63jnsWB8rXpmaLfBdrnPsJc2KKfycExaCBRhU5vnM=) 5: ONKzBcZlLaDvBXj0ChQkq0AcBAo.roa (hash: xt6U3+zGv+p5+qldoLqBIRpHRAbFRfEFMt0N2Y4HxPA=) 6: Us2aZRLb8lpfGbgn16LH4iou6N0.crl (hash: zyWSz/HTX6fY3hac3lHndizM0ISN4s4tC0THdQjWi3s=) 7: Wbt2iaP6Wu29ETEZevGjkYyyw8Y.roa (hash: mBaJPapqwbvtmJukkLZju5JRZWG5d49D3KPZxGiRkTk=) 8: cbgxDriMd1w8Ezk1j_uW9c-uk8k.roa (hash: RA/kZIx4fzU+RCbQ8O1BxIKCZRJDjC4JRLSNt3ovrQ8=) 9: cblkW3ZYAZ5VQl8X3gHLFnE7S8g.roa (hash: +MK4cG6/hNPklJaXz5PxE5zp6rLCIwlFMKcCPx37Jxo=) 10: dxXbgNQXIcZf-wRxxpxKbsjTAhQ.roa (hash: 7Q2urw+eTsZ+V/fuq0yE3c5anzy795+Z4CJRGjeU6Hk=) 11: e9y8dXFts4c8fUXqw6xiDwRGFs8.roa (hash: BkXdL8SYbCdtWvnDfEL5onMOz7lIKfBEzCveSNdxkpQ=) 12: fYtRnjgkdcOcs2OTSoOyF7XeMYQ.roa (hash: BGM9RaFK/cZe9M2jNupJdVSdkow5uJUKCy6zw6S9pgQ=) 13: irPx7LPWmaDBY-_AbmGw3WFEhaQ.roa (hash: jDb6rbhv8bZIGpVJLz4cPKbnagFjHpigNY2MzVPUyPM=) 14: obpj78Cj4h6AqPChG513fVXXoMs.roa (hash: xhWt95TQUSf4jmhliYXpfzfmunJAIuxitDmmO5ohsLY=) 15: puM6zDTCACkm8XM63GmrJCmb9w4.roa (hash: /wWLN32nFvo5E1f9qQj5og/sDQq7KYw38OVpA8GGi58=) 16: zAnPUHrCJSV18x-mMc7-hNiZjaY.roa (hash: LG3Y0utc8dwpuU3oGtbD8u6QKi2Bv7dHexHJeWNV5Hk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Sep 2025 11:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:33:b7:6c:23:a6:90:06:bb:03:59:92:ab:ad:ac:a6:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Validity Not Before: Sep 10 13:01:22 2025 GMT Not After : Sep 11 13:01:22 2025 GMT Subject: CN=f5258859e8301d314c423ed3af995d6734891e7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:e8:5e:82:a8:0e:83:92:d1:81:fb:8d:d2:18: e2:cb:f8:99:b7:c8:20:ba:b2:d6:de:82:37:d0:48: 54:b8:68:e5:15:e3:b6:d1:21:1d:a2:53:d4:50:9f: 55:71:6b:64:bf:43:0f:81:68:08:bc:5f:c3:ac:f6: 4f:d6:f4:37:59:c4:77:6e:2d:cc:aa:02:cf:96:1d: 41:56:91:eb:8a:32:e5:59:98:a3:0f:a5:99:c6:38: 56:48:af:54:34:71:1c:59:c9:d9:40:3a:cd:6a:f4: 56:d7:b6:0a:34:b3:e2:e4:9d:1f:c7:da:9c:c7:bc: f4:ad:94:f6:7b:56:6c:86:67:21:20:bb:3a:7e:9f: 15:cb:f6:fa:e3:5d:0b:2a:41:f4:e3:da:67:61:72: 0b:97:07:4b:12:e9:04:17:3f:b8:f3:3f:ad:f9:4d: 44:92:86:9c:20:b7:cb:5c:17:d4:70:e5:0b:95:75: 74:20:4a:8a:35:8b:2f:8e:34:2f:09:7c:eb:4e:b9: 96:d3:23:c6:d4:a7:c0:a7:53:f1:6c:8d:b7:92:a6: c5:1f:7f:68:3e:14:85:8a:7e:cb:51:ff:14:fd:87: 1e:5b:9d:9e:77:1c:2a:3d:ce:25:33:ef:46:87:24: 6e:b1:0a:49:78:20:0e:16:e7:0f:1f:cb:b3:3c:ae: 28:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:25:88:59:E8:30:1D:31:4C:42:3E:D3:AF:99:5D:67:34:89:1E:7C X509v3 Authority Key Identifier: keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:07:99:72:f5:21:ef:32:68:f0:4a:07:c9:6c:dd:50:f3:ce: 57:8c:87:87:4a:26:c7:1c:77:c9:32:ac:5d:e5:ea:06:69:f9: 89:6d:d4:72:30:bb:1d:e7:b7:2a:1c:02:46:01:58:69:07:da: 3a:38:5d:b6:0c:2d:13:fa:5f:62:fb:89:81:5a:cc:cb:ac:6c: d4:d6:0e:11:d9:b8:17:10:45:e4:b8:12:fc:46:1a:06:58:2b: bd:95:19:ed:05:d0:59:90:c0:f6:fd:35:b6:ab:c1:38:0c:c5: a1:50:0e:ab:63:2c:dd:c5:ed:b1:ff:a0:b7:3b:82:fd:67:8b: 19:6d:f0:bc:61:80:0e:62:83:93:84:8f:b1:8d:1a:27:e9:a5: 70:b0:73:a4:7e:70:53:37:7a:ce:29:64:74:5f:9f:35:5c:5d: 4c:99:71:d8:4f:7d:4a:85:75:2f:bd:c7:3f:b0:8b:6a:8c:91: e8:f8:47:ea:d4:30:f2:ed:2b:ca:b4:de:e1:a1:13:ad:be:67: 0d:43:3d:10:e4:80:4a:40:c9:8c:77:b1:84:33:ab:27:a5:0f: fb:70:59:6b:32:7f:5f:b0:d0:31:d8:7f:d8:9d:d5:70:4f:3b: aa:4c:ae:28:8f:12:b6:8e:60:32:39:56:25:b8:17:09:7f:a1: 6f:8a:55:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZkzt2wjppAGuwNZkqutrKY9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyY2Q5YTY1MTJkYmYyNWE1ZjE5YjgyN2Q3YTJjN2UyMmEy ZWU4ZGQwHhcNMjUwOTEwMTMwMTIyWhcNMjUwOTExMTMwMTIyWjAzMTEwLwYDVQQD EyhmNTI1ODg1OWU4MzAxZDMxNGM0MjNlZDNhZjk5NWQ2NzM0ODkxZTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9uhegqgOg5LRgfuN0hjiy/iZt8gg urLW3oI30EhUuGjlFeO20SEdolPUUJ9VcWtkv0MPgWgIvF/DrPZP1vQ3WcR3bi3M qgLPlh1BVpHrijLlWZijD6WZxjhWSK9UNHEcWcnZQDrNavRW17YKNLPi5J0fx9qc x7z0rZT2e1ZshmchILs6fp8Vy/b6410LKkH049pnYXILlwdLEukEFz+48z+t+U1E koacILfLXBfUcOULlXV0IEqKNYsvjjQvCXzrTrmW0yPG1KfAp1PxbI23kqbFH39o PhSFin7LUf8U/YceW52edxwqPc4lM+9GhyRusQpJeCAOFucPH8uzPK4omQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPUliFnoMB0xTEI+06+ZXWc0iR58MB8GA1UdIwQY MBaAFFLNmmUS2/JaXxm4J9eix+IqLujdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUt Y2NhMzc2MDZiZjE4LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUtY2NhMzc2MDZiZjE4 LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUAeZcvUh 7zJo8EoHyWzdUPPOV4yHh0omxxx3yTKsXeXqBmn5iW3UcjC7Hee3KhwCRgFYaQfa OjhdtgwtE/pfYvuJgVrMy6xs1NYOEdm4FxBF5LgS/EYaBlgrvZUZ7QXQWZDA9v01 tqvBOAzFoVAOq2Ms3cXtsf+gtzuC/WeLGW3wvGGADmKDk4SPsY0aJ+mlcLBzpH5w Uzd6zilkdF+fNVxdTJlx2E99SoV1L73HP7CLaoyR6PhH6tQw8u0ryrTe4aETrb5n DUM9EOSASkDJjHexhDOrJ6UP+3BZazJ/X7DQMdh/2J3VcE87qkyuKI8Sto5gMjlW JbgXCX+hb4pVxA== -----END CERTIFICATE-----Generated at Wed Sep 10 15:21:50 2025 by rpki-client