$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft File: OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft (raw, json) Hash identifier: B7Jl+RV0BI8ZIiXXlxvHXyQkck4slnkaMn5AXMyYfe8= Subject key identifier: 9F:6F:D6:0F:7F:99:BC:30:96:0D:67:9A:5C:A7:AD:C5:1D:61:95:29 Authority key identifier: 38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 Certificate issuer: /CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Certificate serial: 019A232E4A933B073FB6909441BAA6D832E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft Manifest number: 1705 Signing time: Mon 27 Oct 2025 01:00:27 +0000 Manifest this update: Mon 27 Oct 2025 01:00:27 +0000 Manifest next update: Tue 28 Oct 2025 01:00:27 +0000 Files and hashes: 1: 3nAxOrqe3oi83iVjt7-kMzJ_imI.roa (hash: 0jNIl4uBhcm5LdIuubw+L/Ha2QMXka6zLLkNeAcF40c=) 2: 7B2j1343QblR9F6iTWiRinHn8x0.roa (hash: Bp/dbOZRIjunqnEsDuN3X0tRwg1SKVjgcGEA09U24Zc=) 3: B9dwnbBbiJenj05UDjyUy_TzXDg.roa (hash: s4Wv5YaGEZaX82N6dusRWR3tSJBVmvjmxniLSHfxYAE=) 4: E6umy5_OlHHb3NOgNKiaqTj372A.roa (hash: kmYIRPqCRch39x2r6WhmK+8aDVBlwYVLvzQIGAbOPps=) 5: GrCJk2XTvFQ1bFg3LeF86Dm0kMU.roa (hash: //aHWa+QTi3TqyDc0NocuZ54Ser38N49WnMxWn6LdwE=) 6: OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl (hash: laRQYgnyDrmRiAY3/OUciL5gztQlHHcMLER376Qw6lg=) 7: P0hYRZk_epkkwrcDiaxk_ejd9pE.roa (hash: RbP7Hj7hNb6SHmHJtPw1bzOEo2w8Ign3eKIaXKeZWz8=) 8: SOBAES4j7h-D6nKfccoc2NpSr8A.roa (hash: vmAKmT6VUkF1cozh164hgKJKVk8BJXYwDbwibYkkVy4=) 9: WBa-OMWvS5R9EiWcpIqPa_m7lKo.roa (hash: JhWDx8KAw0uX/VJGQRKzvoZLcAnbsOAM+D0EwwgJJrs=) 10: _6ucnx77KQFalvj5yEE2wp5osls.roa (hash: Xw55WCSv/8tmiRj4/KKvZ6v3swmB6TKO4qL1Xw6aI30=) 11: hmNo0lfF6aVfLa7MkqmEKjtbdyQ.roa (hash: +xwhsq1RdvJOWfeJtHcoWSMc+U0UkSWEqMUWf9xz80w=) 12: jtw47htspCaZBqLn-szAwwLDgRI.roa (hash: 4ge4ZfZPpCPnlsJ6k5nbKp3z9nIWCai+fnrSIWJ/WUA=) 13: jzrvK-bgXnpFKZtkluSwDEQbp08.roa (hash: ZM3tthCJVaSjXclzoJDdeWjLh7O5ICpnIBuMTiMEL9g=) 14: nDB6bqiXy-rzhdku9Lj005kPHfA.roa (hash: 0AJR+PurXnO7T0pJNk8Tq3MFQx7X/cSxW3eCAXJvtLk=) 15: pvCC0r4LUt3fsl1VHVQdfXh8Y18.roa (hash: 7j0tvWV4dVH4uAAkH8k/IyIqfSMk5UZQp8CnBxjMpFY=) 16: u50dx3Lab1g7VZDVh4T56LPcn_0.roa (hash: jDquIHZmp2NFyWqEfhpXVj8qaJ2TUhubdI3kfdM2qms=) 17: z5q48ktpf1eARPpbmIGK9GsvsrQ.roa (hash: tmWASzkDn54AHUg2VFq+szTIlcEFXE4zmXDoc40cFbw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 27 Oct 2025 23:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:23:2e:4a:93:3b:07:3f:b6:90:94:41:ba:a6:d8:32:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Validity Not Before: Oct 27 01:00:27 2025 GMT Not After : Oct 28 01:00:27 2025 GMT Subject: CN=9f6fd60f7f99bc30960d679a5ca7adc51d619529 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:65:e0:3e:7b:6d:3b:bb:16:58:f0:13:be:d8: b5:d0:11:f0:68:98:cc:bf:d4:9b:83:41:66:07:f4: e6:2a:de:91:84:ca:88:69:69:f3:a5:e6:39:b8:61: 64:63:1e:e2:93:25:ee:e5:91:a9:21:bd:4c:51:15: 32:13:d2:e4:34:d8:5e:bc:0d:70:4a:7d:64:9f:2c: 05:74:88:17:bc:a8:f4:7d:6b:d6:fd:51:f4:a5:dd: b5:7e:92:35:c2:cc:99:71:b4:f9:aa:74:f8:b8:7b: b4:09:8e:f8:50:2b:f0:28:96:cd:fc:1b:54:63:be: e4:25:86:1e:d3:65:ba:22:aa:67:34:e1:60:0c:ed: 9e:f6:33:db:f1:20:97:2c:9a:71:b9:b2:79:b0:2b: 14:68:1f:ae:de:3c:11:96:08:69:66:29:91:f1:9d: e3:4c:32:72:9c:db:9b:73:e2:14:44:65:e4:2d:57: 9f:51:68:34:4c:f8:86:82:5f:34:f0:8d:3f:e1:6a: e5:e5:70:9a:9a:dd:de:76:fe:ca:23:f3:13:6e:44: 62:cd:31:46:9b:e5:50:bc:26:0c:ed:3e:9c:56:cc: 0e:ea:73:bf:27:99:69:27:23:82:2d:e2:67:5c:a0: 3b:08:88:5c:12:98:42:eb:38:03:e5:0c:5c:39:5e: 06:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:6F:D6:0F:7F:99:BC:30:96:0D:67:9A:5C:A7:AD:C5:1D:61:95:29 X509v3 Authority Key Identifier: keyid:38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:3f:33:cf:81:10:8f:28:7c:f6:74:9e:1e:4b:1b:47:83:4e: 6e:b2:64:5f:d1:41:15:d5:22:09:ed:03:d9:9f:d8:9c:8e:4f: c6:93:ac:77:a1:4a:c9:c0:74:c6:db:bb:ef:de:67:f3:7c:01: d1:f3:5e:42:7b:4c:24:1d:5c:b5:8f:ef:8c:35:02:18:6d:22: 67:b5:2a:84:2c:01:7f:b7:b6:6b:ac:b7:da:65:3b:ef:69:de: 91:ac:8b:62:11:a3:04:a3:37:4c:4f:bb:ab:49:8d:89:54:74: 57:fb:8b:d2:cd:0b:4b:d7:00:e7:16:7c:bb:7b:42:d4:f9:55: 79:8c:56:f7:f0:71:a7:ec:fe:30:57:d2:bf:97:a9:77:9d:f2: 60:93:3d:02:3c:82:00:af:d7:35:f7:97:4d:76:e1:94:2c:5a: f5:52:0d:bc:fa:68:3d:cd:71:04:1f:7d:da:fa:27:82:b3:5e: 21:83:ca:81:ac:d7:18:a5:61:df:7d:63:3e:47:02:77:c3:a9: fe:4a:ea:8e:f5:0a:9b:4d:25:d1:5a:a5:1f:85:a6:c5:ef:18: ff:4d:0c:f1:cb:a0:f9:19:53:31:85:fe:60:b7:b3:20:69:ec: 6b:b1:46:0d:41:57:1e:80:58:3f:68:85:e0:9f:b5:1c:8c:77: 00:99:5d:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZojLkqTOwc/tpCUQbqm2DLkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4N2Q2ZGY3ZWI3NTQyZTAzMzNhZWVkZDE0YWRmZjhmNTFm OGNiZDgwHhcNMjUxMDI3MDEwMDI3WhcNMjUxMDI4MDEwMDI3WjAzMTEwLwYDVQQD Eyg5ZjZmZDYwZjdmOTliYzMwOTYwZDY3OWE1Y2E3YWRjNTFkNjE5NTI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkWXgPnttO7sWWPATvti10BHwaJjM v9Sbg0FmB/TmKt6RhMqIaWnzpeY5uGFkYx7ikyXu5ZGpIb1MURUyE9LkNNhevA1w Sn1knywFdIgXvKj0fWvW/VH0pd21fpI1wsyZcbT5qnT4uHu0CY74UCvwKJbN/BtU Y77kJYYe02W6IqpnNOFgDO2e9jPb8SCXLJpxubJ5sCsUaB+u3jwRlghpZimR8Z3j TDJynNubc+IURGXkLVefUWg0TPiGgl808I0/4Wrl5XCamt3edv7KI/MTbkRizTFG m+VQvCYM7T6cVswO6nO/J5lpJyOCLeJnXKA7CIhcEphC6zgD5QxcOV4G4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ9v1g9/mbwwlg1nmlynrcUdYZUpMB8GA1UdIwQY MBaAFDh9bffrdULgMzru3RSt/49R+MvYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2Mt NjA5YTQ4YjJiMTRkLzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2MtNjA5YTQ4YjJiMTRk LzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlD8zz4EQ jyh89nSeHksbR4NObrJkX9FBFdUiCe0D2Z/YnI5PxpOsd6FKycB0xtu7795n83wB 0fNeQntMJB1ctY/vjDUCGG0iZ7UqhCwBf7e2a6y32mU772nekayLYhGjBKM3TE+7 q0mNiVR0V/uL0s0LS9cA5xZ8u3tC1PlVeYxW9/Bxp+z+MFfSv5epd53yYJM9AjyC AK/XNfeXTXbhlCxa9VINvPpoPc1xBB992vongrNeIYPKgazXGKVh331jPkcCd8Op /krqjvUKm00l0VqlH4Wmxe8Y/00M8cug+RlTMYX+YLezIGnsa7FGDUFXHoBYP2iF 4J+1HIx3AJldZw== -----END CERTIFICATE-----Generated at Mon Oct 27 06:29:40 2025 by rpki-client