$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft File: hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft (raw, json) Hash identifier: N0hUQ+iaLW5G6mjR4xiWT8G/G2fC32y+2ENwa0K2bms= Subject key identifier: D2:89:19:2E:CF:29:32:5E:09:3E:BB:87:DC:80:5B:59:C7:06:09:98 Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd Certificate serial: 01992CD94AA1D8F7DE2EFFEA162A8ADC876B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft Manifest number: 1297 Signing time: Tue 09 Sep 2025 05:01:01 +0000 Manifest this update: Tue 09 Sep 2025 05:01:01 +0000 Manifest next update: Wed 10 Sep 2025 05:01:01 +0000 Files and hashes: 1: 2Il6q-ZqOuI80bOhmO2ATk_4gjA.roa (hash: qZ2AvjwfuN5RofSpAulT+zvOokvk9hdo9R5gBG6wVV8=) 2: EqxVNlycylxq6ufI9ng2ltdK1KM.roa (hash: b+kpuQsONfGhMD7qgwxZkbzW/4IKkzNE5v/myC4W0qY=) 3: MceCU4XPd0t7fhZxTxvxReumv1Q.roa (hash: 5TdX80iYVUkF2JY7Z9ZEOYjAnRhS8f4vWckTIPnEXdo=) 4: QdYIwbhgXZFZDGrsD1bCfWnJfNM.roa (hash: GAa3KktDwm+TlBojUO7F6LnOQMJ0zxC/VLgeFCn23pI=) 5: V1rb0y6iu1TTOsIZQYPUPITNZdc.roa (hash: 4TLj9uQX2T55ymBodPD3FK/tTeE67Ngmw9g4awglSqU=) 6: Yjrt4HsK8wh6pJI81KOUWlnSEwg.roa (hash: XmuwPChIn1UvgMab/4oMWsQTN7bkJ51y5zUd1xVolH0=) 7: aaic0TQ08KDxqNotu0QjynGFp8k.roa (hash: y+rn4gyMmixGkyVVHgb8Zj+xOMFFm7BJm3FAMYf/M4M=) 8: cO2-NOuH2RV4sPciOdoA32su67Q.roa (hash: 9jc3V+7f0q1/c2NMI1faaA1MEEx9FCl4Vp7wxvOlyNU=) 9: euovkC8FzqkWizkBlJiIPuOidbU.roa (hash: NVQ3tcOFWDZctMMGjmKl2U9mGUa0NK9LjFLKrJC2iHM=) 10: gdNItxWNsM4KiGU05OylhksApCc.roa (hash: WiPvUqderzx9CicZMrqZIDKRBrczrFFx57GnwN1V0lI=) 11: hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl (hash: SswDAE2mrAGO1JzgJ24xCn6JCdzr1EUOyuUfqgfHPE8=) 12: o1oWSbF99ChHezdi7-NEtS6WqIQ.roa (hash: ssh+w8HWpTpbSb7HfHBqwKGeOCK5JvaJKAWgtYiNFsU=) 13: oMpZucICfk-8ZesIjg26RzH9z8Q.roa (hash: avfjdtl0mm9+afn2EBtC58m5oIaLp8/rBFhWdaYQq6o=) 14: zYeF4EOXDH9wga2Hl1a9xt43c_E.roa (hash: qprf7Kh7V9oLipnyoiqapOwT3fD2c8ij+cCs23g5KeE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 10 Sep 2025 05:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:2c:d9:4a:a1:d8:f7:de:2e:ff:ea:16:2a:8a:dc:87:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd Validity Not Before: Sep 9 05:01:01 2025 GMT Not After : Sep 10 05:01:01 2025 GMT Subject: CN=d289192ecf29325e093ebb87dc805b59c7060998 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ac:b8:90:9c:92:87:45:b1:3d:25:1a:64:cf: 47:5b:ee:94:2e:f6:97:a7:a9:06:cf:5a:00:69:22: 20:0e:c8:7b:c1:a5:0c:4b:ff:37:6a:5c:ca:07:0c: 6c:cb:a5:06:a7:34:7a:c4:2b:db:f0:78:06:b3:46: 00:24:27:65:bf:12:29:e4:0d:1f:79:04:66:66:67: f6:f2:39:f9:53:e2:27:29:ce:9a:db:86:da:e0:83: 3e:82:40:91:38:8b:7d:3b:18:8a:ab:ab:f6:5e:bc: 05:51:6c:36:f9:c7:fc:fe:b5:ea:20:5e:ac:16:92: 1c:36:9e:4d:ba:5f:8c:dd:26:ed:4d:8b:45:42:40: 6b:d1:03:e9:2d:3c:8f:a8:c7:a5:94:f1:e1:de:0f: da:7d:78:0b:2c:1d:9b:c4:9c:66:1a:1f:26:fb:be: 6c:13:1f:1b:5a:8e:09:a5:0f:96:4d:9a:cd:c6:ce: 21:b6:7d:ff:b0:61:ed:ad:09:c7:25:dc:fc:95:3d: e4:73:ed:79:9c:77:5d:94:d6:ab:11:c6:4d:33:d9: 27:ec:83:c5:b0:c8:0e:f1:7f:fc:57:7d:d4:c9:20: 39:0c:6d:d7:c9:01:db:08:6e:38:e9:58:1f:e6:3f: 09:63:36:61:e3:62:52:48:ff:22:74:99:a1:d5:75: 85:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:89:19:2E:CF:29:32:5E:09:3E:BB:87:DC:80:5B:59:C7:06:09:98 X509v3 Authority Key Identifier: keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:0c:ad:d2:d5:d0:fc:5e:1e:83:2f:c8:69:a8:28:91:b8:8a: 34:d7:f2:33:94:c9:52:02:33:84:a0:91:d1:47:a7:d6:e0:6b: 7e:ce:53:20:61:4b:46:58:b6:89:61:6b:b5:af:6c:f1:bc:22: bb:04:63:34:fc:c0:df:e8:13:62:fa:f8:21:ba:53:6c:55:48: c3:54:d3:7c:bc:c4:3a:28:71:71:f8:c0:38:93:1a:cd:a4:0c: 51:4f:d5:d1:85:6e:0b:bc:75:c5:45:af:b8:ad:cd:77:f8:ee: b6:83:18:34:ff:8c:17:78:cb:c8:c0:98:57:fd:81:5b:38:ad: 15:ea:58:46:b4:99:b1:b8:6b:e7:dc:1a:34:02:b8:37:03:14: 0a:8e:3c:0f:c4:6a:f0:21:8a:60:5f:51:04:a4:25:d9:8d:54: 62:14:ae:5b:5b:84:b6:5b:39:84:8a:20:3e:8c:e6:9f:bc:d5: bf:d7:ef:a6:5e:d7:70:34:fa:fa:6c:f1:ac:10:5a:0d:07:ad: 41:67:68:c8:c9:d2:81:c8:d4:db:cf:8e:3b:ad:70:40:99:19: 38:c5:e4:fc:dd:6a:25:01:99:7e:46:82:5e:18:e2:fe:0e:3d: 13:8f:10:49:ab:27:7b:d1:6d:02:fd:73:e6:59:a0:2a:9b:4b: e1:6e:9c:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZks2Uqh2PfeLv/qFiqK3IdrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZDBlNzYzZjkzNWMxNzE2OTRmMTcyMDU2ZWI0NDIwOWRi MmUyY2QwHhcNMjUwOTA5MDUwMTAxWhcNMjUwOTEwMDUwMTAxWjAzMTEwLwYDVQQD EyhkMjg5MTkyZWNmMjkzMjVlMDkzZWJiODdkYzgwNWI1OWM3MDYwOTk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuKy4kJySh0WxPSUaZM9HW+6ULvaX p6kGz1oAaSIgDsh7waUMS/83alzKBwxsy6UGpzR6xCvb8HgGs0YAJCdlvxIp5A0f eQRmZmf28jn5U+InKc6a24ba4IM+gkCROIt9OxiKq6v2XrwFUWw2+cf8/rXqIF6s FpIcNp5Nul+M3SbtTYtFQkBr0QPpLTyPqMellPHh3g/afXgLLB2bxJxmGh8m+75s Ex8bWo4JpQ+WTZrNxs4htn3/sGHtrQnHJdz8lT3kc+15nHddlNarEcZNM9kn7IPF sMgO8X/8V33UySA5DG3XyQHbCG446Vgf5j8JYzZh42JSSP8idJmh1XWF5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNKJGS7PKTJeCT67h9yAW1nHBgmYMB8GA1UdIwQY MBaAFIXQ52P5NcFxaU8XIFbrRCCdsuLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2Qt ZjEyODM1ZjAyNDdiLzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2QtZjEyODM1ZjAyNDdi LzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEQyt0tXQ /F4egy/IaagokbiKNNfyM5TJUgIzhKCR0Uen1uBrfs5TIGFLRli2iWFrta9s8bwi uwRjNPzA3+gTYvr4IbpTbFVIw1TTfLzEOihxcfjAOJMazaQMUU/V0YVuC7x1xUWv uK3Nd/jutoMYNP+MF3jLyMCYV/2BWzitFepYRrSZsbhr59waNAK4NwMUCo48D8Rq 8CGKYF9RBKQl2Y1UYhSuW1uEtls5hIogPozmn7zVv9fvpl7XcDT6+mzxrBBaDQet QWdoyMnSgcjU28+OO61wQJkZOMXk/N1qJQGZfkaCXhji/g49E48QSasne9FtAv1z 5lmgKptL4W6c1A== -----END CERTIFICATE-----Generated at Tue Sep 9 09:02:37 2025 by rpki-client