$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft File: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft (raw, json) Hash identifier: rzIMoZz49EXcXLN515fDVESUk8q/zQ2tknY8gb5L61A= Subject key identifier: 4A:28:69:35:4E:BF:C5:E1:58:DE:F2:4A:BE:0D:78:0E:43:8B:F4:0F Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Certificate serial: 019749D5D64BC9B9A5877F1811CC9A81B89E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft Manifest number: 1599 Signing time: Sat 07 Jun 2025 10:00:40 +0000 Manifest this update: Sat 07 Jun 2025 10:00:40 +0000 Manifest next update: Sun 08 Jun 2025 10:00:40 +0000 Files and hashes: 1: 08x65D62xajmjuWxGOGX--5GFZ4.roa (hash: ku01TCluM3ObD1DEPpsLr/8jGhA1O5espf/zteTKSkk=) 2: 1-fxNLZQMykWE3SLBLsEKwibzn3o.roa (hash: U9t8UfOKITE6D0gBLc/Dtn9zr6EfXzJkxHJL0LBQvTo=) 3: FzyJ-A4chBzu8lQqhpLh4dfVe9s.roa (hash: kikBFtCVFZZA5yK1FlsJJ2Y15ol/mIm/K3+f2pwmt3Q=) 4: JRfXlKgZScSlnAP9_s4mWUCHMzI.roa (hash: Yofq9QzaUqxyhMLfnSLcXXtmS3vz0xWVOjl3kItQ1gM=) 5: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl (hash: zNA4FVZaP7HgmMqPfuWKwHAEAsXeakUpEJbGe6J7gYs=) 6: OOWsOYaSoAqJ3HO-R5wNTcf_irg.roa (hash: FHVKtTLfD9KJ5KSxDig6awJ13wpTnxgLs+NcZ0Q//g4=) 7: UI2cnhatNs5ZeysmslxEpLBSTew.roa (hash: axZPCQgEFKrONNIyjteNC+Y0RYmX6khaCS5yj1K7lFE=) 8: XIqtTjvuJ5glY39EaIP6KmILhoo.roa (hash: oyK+JoJZ3ZJXn7BAWGpujgyfoF5xI3Ds91YiwWdI2PE=) 9: b_MAVuI29oBciIh7vGGq0NJVEzc.roa (hash: hDxp3S5bhbbLqI6OACypq5MMFaQlI+7lCsYe3tJ2F9c=) 10: dOfaSe3fIYIhGR1xcwXjfUk3OeI.roa (hash: uz8UfxMH6M1zEnn7EFrd8TVCQANQpajV/Ux4YkN59Jk=) 11: ivBw7pb2lERE4O4pT70f-IjK-H8.roa (hash: 9+du4uvg6+sqYU99LVsbimMbdhpdO5ppSVPQO3/HDIY=) 12: mew8-eeZMjfWFrph1bkqTGd0o2o.roa (hash: ZTROpY1xzLgXXfO1lrdKWiIbYEdEw9dXrylpkOT7OWA=) 13: o56KW7qmKI89RBX7wwhJRJnWzxA.roa (hash: TSisfXvRUilLYjnEFcF1fY33OVEAWdRk4KyWKFaY7ZA=) 14: vaL0J_r43BzBTm5r8Bo75j0pTF8.roa (hash: 75FzmVXUE4MjGcr9LiSgeGxgqkVwVmsZ6mF1xXYO59Y=) 15: wjhfspu_G4HGizYS_OBNLClt3cU.roa (hash: bxfIFEAR3HaNo4msf1HR2PgJlfyMNGagLyOKrjbfFag=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 09:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:49:d5:d6:4b:c9:b9:a5:87:7f:18:11:cc:9a:81:b8:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Validity Not Before: Jun 7 10:00:40 2025 GMT Not After : Jun 8 10:00:40 2025 GMT Subject: CN=4a2869354ebfc5e158def24abe0d780e438bf40f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:af:d5:5b:cc:8a:a1:27:53:fb:89:23:f6:7c: ff:ae:1b:1b:0a:06:e5:7b:3a:18:ad:2f:b5:02:40: 21:e7:00:58:b3:44:03:32:c9:3d:b3:d5:b9:a2:20: 92:05:34:0b:8b:3a:e2:95:6c:74:99:eb:b5:f2:4b: a5:b5:bd:79:61:5f:b9:1c:ea:6d:b7:6c:9c:d3:84: 79:91:c0:44:a5:cb:81:a2:6c:e9:dd:6b:8a:ae:05: 76:a2:8b:c2:59:65:f9:08:91:4c:ba:b4:e3:5c:b4: 6e:70:b7:b6:ac:ad:f9:11:50:98:2c:8b:f1:23:24: 43:98:e7:98:72:c9:1c:a6:fe:86:64:1f:f1:a6:c8: 47:0d:73:fa:7d:c8:6c:a8:88:d0:af:d5:2b:b4:7a: 18:f9:c6:8a:1e:25:75:6c:6a:78:fa:f9:1a:13:6e: 24:e0:d3:d5:b9:e1:d1:06:06:5b:ef:92:d8:5f:b6: 7c:39:82:a9:18:83:6b:ec:61:8e:58:7a:b3:40:34: 56:7f:73:30:a3:be:07:d0:22:3f:5c:7c:a7:dc:46: 8f:8b:44:31:61:8d:39:28:12:b3:f5:28:54:be:59: 0e:4d:03:7f:64:0a:d9:d2:83:0a:d2:03:10:66:43: 85:e9:7a:c9:e3:98:2a:a3:55:c6:a7:27:61:48:05: c3:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:28:69:35:4E:BF:C5:E1:58:DE:F2:4A:BE:0D:78:0E:43:8B:F4:0F X509v3 Authority Key Identifier: keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption de:23:f2:01:2c:4c:fc:40:d6:27:15:f4:50:58:f1:7d:3c:1b: 84:50:33:dd:1e:d4:1a:21:e3:fd:50:62:a6:0f:56:93:6d:ec: 14:e3:2e:9c:73:0d:6d:4a:32:12:f6:d6:99:55:03:46:ad:24: 62:3b:b4:c3:27:e7:df:b3:d2:55:ea:f3:a3:3b:f8:49:36:48: f5:6d:27:fa:92:89:d0:bc:ea:e9:49:ce:1a:b7:81:d0:7d:a5: e7:d6:08:bf:f6:4f:80:1d:e6:9f:e5:ac:6b:f9:83:f1:6b:4a: a6:d1:ce:50:40:d6:32:14:04:10:36:7c:14:93:c6:d9:42:49: 33:30:2f:1f:5c:64:97:a7:46:82:50:27:b8:ca:5b:55:ee:f8: ef:f3:5c:bf:dd:91:cd:99:ce:41:bb:70:e5:f3:6b:ab:5d:1f: 7b:3d:7d:2c:5d:b6:1a:8d:b7:57:73:d2:cf:d9:d5:a1:bf:8e: 8f:07:17:be:f2:35:7a:93:52:e8:f9:f9:0f:ed:6b:21:9e:38: 4c:8e:89:17:0c:5b:4a:6c:aa:f9:09:79:0d:87:00:76:b5:96: 29:2c:50:68:a7:56:b6:34:65:91:c1:2a:3a:c4:1c:09:6b:c2: 6f:b3:45:a3:53:68:92:3a:15:73:12:cf:c1:90:9f:5f:c6:64: fc:7a:9d:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdJ1dZLybmlh38YEcyagbieMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNDc0YWM3Y2E4NWUwOWMyZDQ4YjMzZTdiZjY2ZjhlZDc2 NGRlMGYwHhcNMjUwNjA3MTAwMDQwWhcNMjUwNjA4MTAwMDQwWjAzMTEwLwYDVQQD Eyg0YTI4NjkzNTRlYmZjNWUxNThkZWYyNGFiZTBkNzgwZTQzOGJmNDBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAha/VW8yKoSdT+4kj9nz/rhsbCgbl ezoYrS+1AkAh5wBYs0QDMsk9s9W5oiCSBTQLizrilWx0meu18kultb15YV+5HOpt t2yc04R5kcBEpcuBomzp3WuKrgV2oovCWWX5CJFMurTjXLRucLe2rK35EVCYLIvx IyRDmOeYcskcpv6GZB/xpshHDXP6fchsqIjQr9UrtHoY+caKHiV1bGp4+vkaE24k 4NPVueHRBgZb75LYX7Z8OYKpGINr7GGOWHqzQDRWf3Mwo74H0CI/XHyn3EaPi0Qx YY05KBKz9ShUvlkOTQN/ZArZ0oMK0gMQZkOF6XrJ45gqo1XGpydhSAXD9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEooaTVOv8XhWN7ySr4NeA5Di/QPMB8GA1UdIwQY MBaAFDJHSsfKheCcLUizPnv2b47XZN4PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzkt MTJlYzIyYzljNWEyLzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzktMTJlYzIyYzljNWEy LzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA3iPyASxM /EDWJxX0UFjxfTwbhFAz3R7UGiHj/VBipg9Wk23sFOMunHMNbUoyEvbWmVUDRq0k Yju0wyfn37PSVerzozv4STZI9W0n+pKJ0Lzq6UnOGreB0H2l59YIv/ZPgB3mn+Ws a/mD8WtKptHOUEDWMhQEEDZ8FJPG2UJJMzAvH1xkl6dGglAnuMpbVe747/Ncv92R zZnOQbtw5fNrq10fez19LF22Go23V3PSz9nVob+OjwcXvvI1epNS6Pn5D+1rIZ44 TI6JFwxbSmyq+Ql5DYcAdrWWKSxQaKdWtjRlkcEqOsQcCWvCb7NFo1NokjoVcxLP wZCfX8Zk/Hqd4A== -----END CERTIFICATE-----Generated at Sat Jun 7 18:52:25 2025 by rpki-client