$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft File: OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft (raw, json) Hash identifier: /Cq85dHRUKzC8mdUR9njwQzUT5hpDJXZqd3gBvGZDrc= Subject key identifier: 4F:20:06:E2:93:6F:DA:81:FC:D3:E4:3D:D1:D4:87:C2:E2:DC:9F:DB Authority key identifier: 38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 Certificate issuer: /CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Certificate serial: 01992631EA0B6DE1B003F044C3DFD748BA20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft Manifest number: 1682 Signing time: Sun 07 Sep 2025 22:00:29 +0000 Manifest this update: Sun 07 Sep 2025 22:00:29 +0000 Manifest next update: Mon 08 Sep 2025 22:00:29 +0000 Files and hashes: 1: 3nAxOrqe3oi83iVjt7-kMzJ_imI.roa (hash: 0jNIl4uBhcm5LdIuubw+L/Ha2QMXka6zLLkNeAcF40c=) 2: 7B2j1343QblR9F6iTWiRinHn8x0.roa (hash: Bp/dbOZRIjunqnEsDuN3X0tRwg1SKVjgcGEA09U24Zc=) 3: B9dwnbBbiJenj05UDjyUy_TzXDg.roa (hash: s4Wv5YaGEZaX82N6dusRWR3tSJBVmvjmxniLSHfxYAE=) 4: E6umy5_OlHHb3NOgNKiaqTj372A.roa (hash: kmYIRPqCRch39x2r6WhmK+8aDVBlwYVLvzQIGAbOPps=) 5: GrCJk2XTvFQ1bFg3LeF86Dm0kMU.roa (hash: //aHWa+QTi3TqyDc0NocuZ54Ser38N49WnMxWn6LdwE=) 6: OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl (hash: UjBRJJdnn4xcdT5+fgPvw47cetYVmqB5daRD9f0oT3E=) 7: P0hYRZk_epkkwrcDiaxk_ejd9pE.roa (hash: RbP7Hj7hNb6SHmHJtPw1bzOEo2w8Ign3eKIaXKeZWz8=) 8: SOBAES4j7h-D6nKfccoc2NpSr8A.roa (hash: vmAKmT6VUkF1cozh164hgKJKVk8BJXYwDbwibYkkVy4=) 9: WBa-OMWvS5R9EiWcpIqPa_m7lKo.roa (hash: JhWDx8KAw0uX/VJGQRKzvoZLcAnbsOAM+D0EwwgJJrs=) 10: _6ucnx77KQFalvj5yEE2wp5osls.roa (hash: Xw55WCSv/8tmiRj4/KKvZ6v3swmB6TKO4qL1Xw6aI30=) 11: hmNo0lfF6aVfLa7MkqmEKjtbdyQ.roa (hash: +xwhsq1RdvJOWfeJtHcoWSMc+U0UkSWEqMUWf9xz80w=) 12: jtw47htspCaZBqLn-szAwwLDgRI.roa (hash: 4ge4ZfZPpCPnlsJ6k5nbKp3z9nIWCai+fnrSIWJ/WUA=) 13: jzrvK-bgXnpFKZtkluSwDEQbp08.roa (hash: ZM3tthCJVaSjXclzoJDdeWjLh7O5ICpnIBuMTiMEL9g=) 14: nDB6bqiXy-rzhdku9Lj005kPHfA.roa (hash: 0AJR+PurXnO7T0pJNk8Tq3MFQx7X/cSxW3eCAXJvtLk=) 15: pvCC0r4LUt3fsl1VHVQdfXh8Y18.roa (hash: 7j0tvWV4dVH4uAAkH8k/IyIqfSMk5UZQp8CnBxjMpFY=) 16: u50dx3Lab1g7VZDVh4T56LPcn_0.roa (hash: jDquIHZmp2NFyWqEfhpXVj8qaJ2TUhubdI3kfdM2qms=) 17: z5q48ktpf1eARPpbmIGK9GsvsrQ.roa (hash: tmWASzkDn54AHUg2VFq+szTIlcEFXE4zmXDoc40cFbw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 08 Sep 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:26:31:ea:0b:6d:e1:b0:03:f0:44:c3:df:d7:48:ba:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Validity Not Before: Sep 7 22:00:29 2025 GMT Not After : Sep 8 22:00:29 2025 GMT Subject: CN=4f2006e2936fda81fcd3e43dd1d487c2e2dc9fdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:db:e2:c2:4a:2a:8b:17:12:d8:ae:a8:a3:e4: b6:a8:fe:67:7c:f7:84:4b:ea:5a:93:6d:60:69:66: 5a:85:9e:63:97:b2:0c:6c:91:54:93:db:1b:e4:56: 83:67:c5:38:ab:f5:32:61:29:7c:5e:6e:88:a8:c8: ef:cc:44:e1:3e:ec:e3:23:73:4f:2a:d4:f0:2e:59: 92:12:b1:79:64:40:fe:e2:c2:32:bc:fe:1a:5e:76: 6c:04:57:fd:4a:89:fb:b4:bf:1f:e9:fb:b4:a7:05: 33:ea:59:9e:3b:2e:de:ec:05:54:ab:f3:13:ab:1d: f2:a4:1b:b7:f4:04:17:1e:84:90:bd:52:53:89:30: a5:31:99:b4:be:99:4c:4e:4c:b6:c7:0e:3b:d5:8b: b3:ea:b6:e0:6a:8d:25:f4:ba:fe:fc:4b:3e:30:49: d0:5d:b6:f2:bf:71:50:b2:88:71:52:f4:ba:8b:f7: 50:6c:45:b5:00:99:cf:94:56:74:90:13:34:db:94: 7a:3e:19:cf:78:75:c6:c1:89:4a:9c:c0:ff:7a:27: 96:4d:e0:51:6b:1c:60:f4:57:a2:75:1d:67:2d:ea: d0:d4:52:80:98:44:a7:5d:6d:1f:9e:bc:ff:9a:aa: c9:60:14:df:1c:08:e1:c7:b5:63:cc:f3:ae:59:e2: fa:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:20:06:E2:93:6F:DA:81:FC:D3:E4:3D:D1:D4:87:C2:E2:DC:9F:DB X509v3 Authority Key Identifier: keyid:38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:4c:de:70:3c:7e:16:e7:17:7c:11:d0:74:a2:f0:f8:c0:41: ac:02:4f:0e:0a:a4:03:13:6f:1a:85:be:88:e9:ae:27:e9:ce: b2:7d:e7:57:c8:c7:c8:3d:36:6b:83:8c:ae:f5:02:9e:3c:f7: 81:4f:d0:ad:57:99:88:29:61:58:29:80:05:38:97:4c:d3:e1: 1b:dd:5c:ba:42:be:f3:62:9d:80:8f:87:57:cd:16:3a:96:52: b5:09:6c:51:34:2f:f8:3e:b9:b1:55:97:61:ee:2a:c2:41:be: 26:f5:80:be:b6:1d:d5:18:73:ee:76:2d:61:f8:e4:1b:93:91: 98:bd:9c:ee:14:e7:e7:3a:c8:c1:a7:37:7b:b5:8c:21:03:70: fc:a3:57:22:d3:53:f4:6f:e3:48:5a:e8:30:f5:f4:8d:b5:3c: 94:3b:d0:cd:20:ad:8a:cf:52:2e:28:85:c3:f5:2d:86:e9:b2: b0:b4:31:13:b2:29:5d:df:fd:4b:df:a9:d7:5f:8f:95:b2:66: c8:75:73:61:19:88:4a:52:bf:93:22:ec:18:82:b4:58:83:52: bb:4d:d2:0d:6f:64:50:f3:1b:f2:9d:f6:a7:19:c6:9d:70:80: 8d:36:d9:30:4e:2a:a1:8a:4d:d0:62:f4:1d:68:29:76:a5:1e: a8:46:81:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZkmMeoLbeGwA/BEw9/XSLogMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4N2Q2ZGY3ZWI3NTQyZTAzMzNhZWVkZDE0YWRmZjhmNTFm OGNiZDgwHhcNMjUwOTA3MjIwMDI5WhcNMjUwOTA4MjIwMDI5WjAzMTEwLwYDVQQD Eyg0ZjIwMDZlMjkzNmZkYTgxZmNkM2U0M2RkMWQ0ODdjMmUyZGM5ZmRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxtviwkoqixcS2K6oo+S2qP5nfPeE S+pak21gaWZahZ5jl7IMbJFUk9sb5FaDZ8U4q/UyYSl8Xm6IqMjvzEThPuzjI3NP KtTwLlmSErF5ZED+4sIyvP4aXnZsBFf9Son7tL8f6fu0pwUz6lmeOy7e7AVUq/MT qx3ypBu39AQXHoSQvVJTiTClMZm0vplMTky2xw471Yuz6rbgao0l9Lr+/Es+MEnQ Xbbyv3FQsohxUvS6i/dQbEW1AJnPlFZ0kBM025R6PhnPeHXGwYlKnMD/eieWTeBR axxg9FeidR1nLerQ1FKAmESnXW0fnrz/mqrJYBTfHAjhx7VjzPOuWeL6fQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE8gBuKTb9qB/NPkPdHUh8Li3J/bMB8GA1UdIwQY MBaAFDh9bffrdULgMzru3RSt/49R+MvYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2Mt NjA5YTQ4YjJiMTRkLzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2MtNjA5YTQ4YjJiMTRk LzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEEzecDx+ FucXfBHQdKLw+MBBrAJPDgqkAxNvGoW+iOmuJ+nOsn3nV8jHyD02a4OMrvUCnjz3 gU/QrVeZiClhWCmABTiXTNPhG91cukK+82KdgI+HV80WOpZStQlsUTQv+D65sVWX Ye4qwkG+JvWAvrYd1Rhz7nYtYfjkG5ORmL2c7hTn5zrIwac3e7WMIQNw/KNXItNT 9G/jSFroMPX0jbU8lDvQzSCtis9SLiiFw/UthumysLQxE7IpXd/9S9+p11+PlbJm yHVzYRmISlK/kyLsGIK0WINSu03SDW9kUPMb8p32pxnGnXCAjTbZME4qoYpN0GL0 HWgpdqUeqEaBVw== -----END CERTIFICATE-----Generated at Mon Sep 8 08:29:02 2025 by rpki-client