$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft File: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft (raw, json) Hash identifier: OyWnxJ0lAOKwYv/cbp41jpG9whu6cesmnS34IaC+Ux4= Subject key identifier: 53:0C:E2:1B:59:1A:35:A6:54:E6:61:A2:9D:90:98:14:2A:14:60:59 Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Certificate serial: 01992668FDA8A450E79265D4E126D3BAE50C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft Manifest number: 1697 Signing time: Sun 07 Sep 2025 23:00:38 +0000 Manifest this update: Sun 07 Sep 2025 23:00:38 +0000 Manifest next update: Mon 08 Sep 2025 23:00:38 +0000 Files and hashes: 1: 08x65D62xajmjuWxGOGX--5GFZ4.roa (hash: ku01TCluM3ObD1DEPpsLr/8jGhA1O5espf/zteTKSkk=) 2: 1-fxNLZQMykWE3SLBLsEKwibzn3o.roa (hash: U9t8UfOKITE6D0gBLc/Dtn9zr6EfXzJkxHJL0LBQvTo=) 3: FDmDvOACHulfshItBSDCX5mBYSQ.roa (hash: aexzHKGvD/WM+wZ6/qx7vyWxEHAqx7gswtzEcmCk74k=) 4: FzyJ-A4chBzu8lQqhpLh4dfVe9s.roa (hash: kikBFtCVFZZA5yK1FlsJJ2Y15ol/mIm/K3+f2pwmt3Q=) 5: JRfXlKgZScSlnAP9_s4mWUCHMzI.roa (hash: Yofq9QzaUqxyhMLfnSLcXXtmS3vz0xWVOjl3kItQ1gM=) 6: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl (hash: nu7X4jm1jeNkzJZR5iSNH1BMHtiwrDl1ZTkViAcyqGs=) 7: UI2cnhatNs5ZeysmslxEpLBSTew.roa (hash: axZPCQgEFKrONNIyjteNC+Y0RYmX6khaCS5yj1K7lFE=) 8: XIqtTjvuJ5glY39EaIP6KmILhoo.roa (hash: oyK+JoJZ3ZJXn7BAWGpujgyfoF5xI3Ds91YiwWdI2PE=) 9: b_MAVuI29oBciIh7vGGq0NJVEzc.roa (hash: hDxp3S5bhbbLqI6OACypq5MMFaQlI+7lCsYe3tJ2F9c=) 10: dOfaSe3fIYIhGR1xcwXjfUk3OeI.roa (hash: uz8UfxMH6M1zEnn7EFrd8TVCQANQpajV/Ux4YkN59Jk=) 11: ivBw7pb2lERE4O4pT70f-IjK-H8.roa (hash: 9+du4uvg6+sqYU99LVsbimMbdhpdO5ppSVPQO3/HDIY=) 12: vaL0J_r43BzBTm5r8Bo75j0pTF8.roa (hash: 75FzmVXUE4MjGcr9LiSgeGxgqkVwVmsZ6mF1xXYO59Y=) 13: xql_-P-OAPxsw0DYqDMeVv_ouM0.roa (hash: z3TNfUg7hcPhHMAkA1yXUFzFfkViIiMqGb4M5hsyxWc=) 14: znQ8DXX-YB1T12tLbZzdQvqf6Xw.roa (hash: Fj7qYKOe87d1vdGj42TXK+N6F3CwstdEs/doNr+JhTw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 08 Sep 2025 23:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:26:68:fd:a8:a4:50:e7:92:65:d4:e1:26:d3:ba:e5:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Validity Not Before: Sep 7 23:00:38 2025 GMT Not After : Sep 8 23:00:38 2025 GMT Subject: CN=530ce21b591a35a654e661a29d9098142a146059 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d7:db:83:1a:0e:df:5e:6f:fb:53:76:ab:f8: 18:e8:0b:69:24:2d:a6:56:a6:4e:20:a3:41:1b:ac: 7b:2e:96:7f:81:dc:6c:dd:f6:f7:8f:61:ac:7b:44: 15:e8:49:ed:14:8f:b4:6e:84:be:52:f1:a0:66:8b: 39:57:b8:96:a0:30:e0:d1:20:c4:8a:d5:ab:3a:4e: 4b:5d:8d:50:d4:51:2e:c9:87:62:48:ac:39:a6:0c: 21:6b:77:06:a1:21:8e:f3:28:a9:71:97:92:d4:12: 1c:89:d7:25:90:d6:1c:d6:ab:92:c1:33:45:f0:35: 80:93:30:9c:a9:bd:86:2c:b7:f1:c4:86:8b:06:01: 46:4f:80:11:49:f4:3b:9a:c1:c4:2c:8b:23:fe:6c: 2f:7c:d3:52:91:55:c1:db:48:8a:d5:d3:db:e1:25: 56:86:48:8c:77:ad:35:9e:03:e5:4e:77:db:e4:80: f2:6f:c3:29:6f:c4:07:18:8f:d4:5e:51:0f:03:96: 34:8a:cc:c7:0e:79:50:38:bc:af:b1:d5:ec:89:c5: 57:26:db:a6:9f:53:89:8d:a9:c9:49:79:eb:36:a0: 46:39:81:76:cb:58:e3:5d:a8:e7:fa:a6:31:dd:9d: 8e:36:90:93:08:ce:d8:c1:10:66:d5:1b:4e:f4:6d: ba:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:0C:E2:1B:59:1A:35:A6:54:E6:61:A2:9D:90:98:14:2A:14:60:59 X509v3 Authority Key Identifier: keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:1c:a7:48:72:09:47:b8:e7:33:8a:bf:d2:4c:07:32:c5:1b: 1f:8b:9b:44:07:d1:1c:f5:c5:be:e4:56:d7:ac:b0:f0:5e:9d: a4:5f:f0:b1:d8:c2:95:26:10:b4:84:05:6b:c7:e0:6c:c9:be: 91:42:6e:11:d5:a4:a0:31:27:02:14:78:08:f7:2b:59:3a:7e: ff:58:41:7c:57:d9:94:43:b0:b3:cc:75:a8:28:93:cc:f8:2c: cc:17:16:9f:91:93:e2:42:d2:cd:00:e2:ea:44:2b:1a:02:59: 0a:95:46:06:17:0d:a6:23:40:44:ac:b3:8d:80:0e:1c:28:a1: 07:7c:b0:76:94:03:0c:ff:a7:6d:e4:4e:4f:8d:f6:60:3c:cb: 90:ab:12:84:4d:f8:d8:df:27:71:7b:4b:4f:6a:57:88:bb:0c: b2:76:b6:cb:c7:49:e4:ed:5b:a7:22:ad:ef:5c:0a:a3:e4:48: d6:c9:5d:0e:a1:3f:df:17:85:d9:6c:36:85:f5:40:2f:77:ea: d0:5f:c8:ad:b1:3c:0d:85:5e:ad:ee:99:49:c7:b2:ec:fa:55: 81:f6:31:e0:77:5c:e2:b0:7b:bc:bf:9d:a5:48:0c:be:03:3e: 79:79:a7:1a:01:17:c9:1b:0a:0f:c1:af:ab:ed:c1:ea:a6:c4: d5:08:2f:2f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZkmaP2opFDnkmXU4SbTuuUMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNDc0YWM3Y2E4NWUwOWMyZDQ4YjMzZTdiZjY2ZjhlZDc2 NGRlMGYwHhcNMjUwOTA3MjMwMDM4WhcNMjUwOTA4MjMwMDM4WjAzMTEwLwYDVQQD Eyg1MzBjZTIxYjU5MWEzNWE2NTRlNjYxYTI5ZDkwOTgxNDJhMTQ2MDU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsdfbgxoO315v+1N2q/gY6AtpJC2m VqZOIKNBG6x7LpZ/gdxs3fb3j2Gse0QV6EntFI+0boS+UvGgZos5V7iWoDDg0SDE itWrOk5LXY1Q1FEuyYdiSKw5pgwha3cGoSGO8yipcZeS1BIcidclkNYc1quSwTNF 8DWAkzCcqb2GLLfxxIaLBgFGT4ARSfQ7msHELIsj/mwvfNNSkVXB20iK1dPb4SVW hkiMd601ngPlTnfb5IDyb8Mpb8QHGI/UXlEPA5Y0iszHDnlQOLyvsdXsicVXJtum n1OJjanJSXnrNqBGOYF2y1jjXajn+qYx3Z2ONpCTCM7YwRBm1RtO9G26CQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFMM4htZGjWmVOZhop2QmBQqFGBZMB8GA1UdIwQY MBaAFDJHSsfKheCcLUizPnv2b47XZN4PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzkt MTJlYzIyYzljNWEyLzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzktMTJlYzIyYzljNWEy LzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACxynSHIJ R7jnM4q/0kwHMsUbH4ubRAfRHPXFvuRW16yw8F6dpF/wsdjClSYQtIQFa8fgbMm+ kUJuEdWkoDEnAhR4CPcrWTp+/1hBfFfZlEOws8x1qCiTzPgszBcWn5GT4kLSzQDi 6kQrGgJZCpVGBhcNpiNARKyzjYAOHCihB3ywdpQDDP+nbeROT432YDzLkKsShE34 2N8ncXtLT2pXiLsMsna2y8dJ5O1bpyKt71wKo+RI1sldDqE/3xeF2Ww2hfVAL3fq 0F/IrbE8DYVere6ZScey7PpVgfYx4Hdc4rB7vL+dpUgMvgM+eXmnGgEXyRsKD8Gv q+3B6qbE1QgvLw== -----END CERTIFICATE-----Generated at Mon Sep 8 08:06:57 2025 by rpki-client