$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft File: hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft (raw, json) Hash identifier: VfpadwpmZYHQg7VK1eumin/hA4O4b3SIlYr2ECjRP/o= Subject key identifier: B9:6B:0A:81:BD:0D:BC:73:E8:7B:C7:A9:EE:BA:89:48:7C:A4:9C:DA Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd Certificate serial: 019A1C504491FDFE672FDAE9B0AD7CF35437 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft Manifest number: 1313 Signing time: Sat 25 Oct 2025 17:00:13 +0000 Manifest this update: Sat 25 Oct 2025 17:00:13 +0000 Manifest next update: Sun 26 Oct 2025 17:00:13 +0000 Files and hashes: 1: 2Il6q-ZqOuI80bOhmO2ATk_4gjA.roa (hash: qZ2AvjwfuN5RofSpAulT+zvOokvk9hdo9R5gBG6wVV8=) 2: EqxVNlycylxq6ufI9ng2ltdK1KM.roa (hash: b+kpuQsONfGhMD7qgwxZkbzW/4IKkzNE5v/myC4W0qY=) 3: MceCU4XPd0t7fhZxTxvxReumv1Q.roa (hash: 5TdX80iYVUkF2JY7Z9ZEOYjAnRhS8f4vWckTIPnEXdo=) 4: QdYIwbhgXZFZDGrsD1bCfWnJfNM.roa (hash: GAa3KktDwm+TlBojUO7F6LnOQMJ0zxC/VLgeFCn23pI=) 5: V1rb0y6iu1TTOsIZQYPUPITNZdc.roa (hash: 4TLj9uQX2T55ymBodPD3FK/tTeE67Ngmw9g4awglSqU=) 6: Yjrt4HsK8wh6pJI81KOUWlnSEwg.roa (hash: XmuwPChIn1UvgMab/4oMWsQTN7bkJ51y5zUd1xVolH0=) 7: aaic0TQ08KDxqNotu0QjynGFp8k.roa (hash: y+rn4gyMmixGkyVVHgb8Zj+xOMFFm7BJm3FAMYf/M4M=) 8: cO2-NOuH2RV4sPciOdoA32su67Q.roa (hash: 9jc3V+7f0q1/c2NMI1faaA1MEEx9FCl4Vp7wxvOlyNU=) 9: euovkC8FzqkWizkBlJiIPuOidbU.roa (hash: NVQ3tcOFWDZctMMGjmKl2U9mGUa0NK9LjFLKrJC2iHM=) 10: gdNItxWNsM4KiGU05OylhksApCc.roa (hash: WiPvUqderzx9CicZMrqZIDKRBrczrFFx57GnwN1V0lI=) 11: hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl (hash: Ld6Zhb2w6SCNBY8zX8ymel7NhSXQXu6cpNyzPoLoJ/0=) 12: o1oWSbF99ChHezdi7-NEtS6WqIQ.roa (hash: ssh+w8HWpTpbSb7HfHBqwKGeOCK5JvaJKAWgtYiNFsU=) 13: oMpZucICfk-8ZesIjg26RzH9z8Q.roa (hash: avfjdtl0mm9+afn2EBtC58m5oIaLp8/rBFhWdaYQq6o=) 14: zYeF4EOXDH9wga2Hl1a9xt43c_E.roa (hash: qprf7Kh7V9oLipnyoiqapOwT3fD2c8ij+cCs23g5KeE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 26 Oct 2025 11:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:1c:50:44:91:fd:fe:67:2f:da:e9:b0:ad:7c:f3:54:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd Validity Not Before: Oct 25 17:00:13 2025 GMT Not After : Oct 26 17:00:13 2025 GMT Subject: CN=b96b0a81bd0dbc73e87bc7a9eeba89487ca49cda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:36:95:ca:ec:35:7b:63:c6:7e:09:6b:59:c8: 24:27:31:59:ab:82:7d:dd:ad:0c:43:a5:29:7f:08: 35:ee:12:49:41:28:8c:6b:f2:92:76:dd:d7:af:08: 59:0f:15:ce:75:f8:09:88:13:a4:b3:2f:5a:5d:f9: 45:09:c9:f3:f2:14:c5:23:00:b3:ee:a6:15:f4:03: 42:57:85:7a:de:76:2a:f2:80:fe:1c:df:44:6f:6a: 48:28:68:d8:b2:4e:49:aa:cd:4c:11:12:58:c7:ab: a5:a5:69:f6:fa:96:17:a3:d1:48:a6:39:8f:0e:dc: 02:f4:b5:67:56:7d:51:dc:e3:b3:49:c2:89:e7:7f: cf:94:88:59:88:52:1e:c3:2d:8f:fd:73:8d:04:0b: 1e:66:25:18:7d:a1:6d:8d:27:d2:c9:bd:33:2d:79: 54:b5:6a:67:f5:ef:40:dd:cb:52:be:88:40:e6:00: 7b:ac:46:6f:7b:5f:2d:95:54:ce:d3:5f:0c:5b:dc: 88:e3:29:23:68:81:bb:d7:34:54:31:85:62:0e:42: ea:60:ac:05:a8:0e:ae:86:af:ac:de:22:7d:2a:eb: c2:16:cf:8b:35:cc:8e:55:9e:c4:3e:4f:8a:8e:09: 9d:d8:0b:f7:e8:42:2a:28:ef:7d:67:0e:6f:39:76: 5b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:6B:0A:81:BD:0D:BC:73:E8:7B:C7:A9:EE:BA:89:48:7C:A4:9C:DA X509v3 Authority Key Identifier: keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:03:41:87:7c:76:e4:e9:b8:a3:a6:56:1a:a5:02:61:01:4d: 90:81:5f:ba:af:b5:e4:10:fa:9a:98:60:98:f0:5a:ce:1b:22: 51:c2:a1:7f:71:5e:2f:ac:01:a7:6c:7e:5c:34:c5:fa:6e:a4: b1:54:56:ea:99:49:48:70:1b:25:3c:bb:de:a8:f3:e2:8d:12: 5a:78:f7:14:7d:a4:54:73:6e:0e:ee:48:f0:6e:7c:3b:48:f5: c5:4d:5d:d2:11:3f:7f:8f:cc:c2:b6:ff:47:5e:1b:ff:8e:de: 73:88:22:5b:43:1f:e0:fa:61:55:38:ac:d9:26:cf:35:39:1b: 97:ac:ce:65:8e:6c:8b:60:d6:51:f5:b3:37:e0:6a:52:05:1c: 0b:3a:96:48:1c:c8:e0:c3:27:9d:28:7e:71:1b:7c:4b:9a:25: ca:b9:99:d1:f5:07:ec:19:03:ce:cb:b3:ed:f4:31:00:94:52: 2e:e7:8a:3c:2c:0f:d6:63:7b:e8:5d:9a:c2:fb:d1:07:bf:ad: 2e:d0:0a:f4:f4:8d:ac:19:6b:bd:00:88:aa:c1:b9:43:18:65: 97:8a:03:da:23:79:9c:84:3d:6e:44:29:60:b8:40:b9:e4:8d: 23:95:3a:15:f3:f5:9a:8c:ca:ef:69:e6:97:68:89:30:c9:6b: 70:51:c1:33 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZocUESR/f5nL9rpsK1881Q3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZDBlNzYzZjkzNWMxNzE2OTRmMTcyMDU2ZWI0NDIwOWRi MmUyY2QwHhcNMjUxMDI1MTcwMDEzWhcNMjUxMDI2MTcwMDEzWjAzMTEwLwYDVQQD EyhiOTZiMGE4MWJkMGRiYzczZTg3YmM3YTllZWJhODk0ODdjYTQ5Y2RhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApjaVyuw1e2PGfglrWcgkJzFZq4J9 3a0MQ6Upfwg17hJJQSiMa/KSdt3XrwhZDxXOdfgJiBOksy9aXflFCcnz8hTFIwCz 7qYV9ANCV4V63nYq8oD+HN9Eb2pIKGjYsk5Jqs1MERJYx6ulpWn2+pYXo9FIpjmP DtwC9LVnVn1R3OOzScKJ53/PlIhZiFIewy2P/XONBAseZiUYfaFtjSfSyb0zLXlU tWpn9e9A3ctSvohA5gB7rEZve18tlVTO018MW9yI4ykjaIG71zRUMYViDkLqYKwF qA6uhq+s3iJ9KuvCFs+LNcyOVZ7EPk+Kjgmd2Av36EIqKO99Zw5vOXZbtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLlrCoG9Dbxz6HvHqe66iUh8pJzaMB8GA1UdIwQY MBaAFIXQ52P5NcFxaU8XIFbrRCCdsuLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2Qt ZjEyODM1ZjAyNDdiLzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2QtZjEyODM1ZjAyNDdi LzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABANBh3x2 5Om4o6ZWGqUCYQFNkIFfuq+15BD6mphgmPBazhsiUcKhf3FeL6wBp2x+XDTF+m6k sVRW6plJSHAbJTy73qjz4o0SWnj3FH2kVHNuDu5I8G58O0j1xU1d0hE/f4/Mwrb/ R14b/47ec4giW0Mf4PphVTis2SbPNTkbl6zOZY5si2DWUfWzN+BqUgUcCzqWSBzI 4MMnnSh+cRt8S5olyrmZ0fUH7BkDzsuz7fQxAJRSLueKPCwP1mN76F2awvvRB7+t LtAK9PSNrBlrvQCIqsG5Qxhll4oD2iN5nIQ9bkQpYLhAueSNI5U6FfP1mozK72nm l2iJMMlrcFHBMw== -----END CERTIFICATE-----Generated at Sat Oct 25 20:04:24 2025 by rpki-client