$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft File: aZHFbxGnFxxhUyOXafVXvroQGC0.mft (raw, json) Hash identifier: xUq4F1SCWiUHXGH2UtI/CXgDHKcNLaP6sVV37P2NNTo= Subject key identifier: FD:C5:8F:14:11:76:BF:E7:EF:9D:53:75:5F:56:E7:0E:E2:E4:3E:00 Authority key identifier: 69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D Certificate issuer: /CN=6991c56f11a7171c6153239769f557beba10182d Certificate serial: 019835A7B58CFD8AFE04378B88A78FC4A6AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft Manifest number: 0963 Signing time: Wed 23 Jul 2025 05:00:40 +0000 Manifest this update: Wed 23 Jul 2025 05:00:40 +0000 Manifest next update: Thu 24 Jul 2025 05:00:40 +0000 Files and hashes: 1: 2R9OObFNaEDkANSZ-coBJRfRpcg.roa (hash: PuD3VMT0jUQBkYxsd7Ldnl6ZWhsJPerlMMUp2zMDWgw=) 2: 3B48XSzrqRQbODZNf87x_kjUhNo.roa (hash: y14T24Ofee6GJVa1mI4/7qxhdq0jl8KEydSAoin8Qhg=) 3: 4Big0S_3eVdxzCi9Q5-ZazqY78k.roa (hash: MZj2ZauIX6SjNg/AhkH3xRZrKv7KoBeknyWj0YQB2/w=) 4: 5KCmcBzgBtGKXXIdhXDGwgQX-Nc.roa (hash: 3MBj03+qouTWcvDDud6sW23ZkQ0DtRDfsHdVwPfcmzA=) 5: BnuRCNG1wcVZgzYhH3AO0QDn6nc.roa (hash: MelnLA0AceokIL7fTEiXdw1iO6Uw+ZhvD5k8pRZYCyE=) 6: GzbjpWWbs-1PqotRsV09E9K9Lz4.roa (hash: DPdOn5R31znLhVjpEt/89hnY5IoUTo1sHiV7ubrKX6Q=) 7: IR0N93wyt194hpjTT9eshHBGwCY.roa (hash: hm8stnovqLivJRd1Zt72YsNy0Lv8colWOGD8fUtYhVw=) 8: Ipr3KewOoeNwtKcMjwWhhMZ4XGk.roa (hash: 3JCwXXZ0yyhMNw7g8hWZGcEbqAf0RiAf0XwSMEKW1/k=) 9: KulVakBvwbVv5xXObvn_Py6ECrk.roa (hash: LBTjWC3x61Ugle7Tbb8SnIfRkRrHBdl2y6NzyWWyUR8=) 10: LiReZTb5eM73wM_EtDaxcTNj4Uc.roa (hash: VxzmF2kcB0hEh+Og8NMqll1d/dM5T/PwiOdBSWMF9+w=) 11: NdAX7Rrn7y-KonnG7TF23wCnJFU.roa (hash: 1r3koUbwGBNgbjNaxMGO8L4AUL4EQ4uI3dkO8TUFqEA=) 12: NxKKuEIzsEe5p3RwQBZ8j63Lsc4.roa (hash: mOT2nWmKWDEZ1VeM86bS3Qx+tjUuZhaB/QcxGF5t7y4=) 13: OxLywK9-WD8ykiaZCQkg8aVcCjY.roa (hash: iXcObwE6BigOurV7fYooDfgc8zyVyQ+nTBGFkUMqd08=) 14: PGgQA4lq16a2A-WgJ_ri64lGsRE.roa (hash: Q6QSZCDfq8qNTpDtgedLOR/KuDwL2RUnCSAMtaotxEg=) 15: PQKBEz--SSKWDIAiw6k8NvS0ZZs.roa (hash: TvoYYI7+8jxDhFJ70WTx3yHFZVU6aLMt2T6AsfLH8xI=) 16: Qjyx-VfeYJzhQ64OO3GeexbDjpo.roa (hash: rj+IOmmZrJFH/pGr6IiDQ9M39qURzS3Ek11UjeILldM=) 17: US4urt8SGYSwI0nrEmSfY23OtMo.roa (hash: WGkLaX+bRS10FeqEfnkw5XXJQ/dEDlUw6wG2fIeU7p0=) 18: UbTczMXH1DXAp6Y4rzAMo0-vjMY.roa (hash: /5fKT3FRRFYWFa0s/Qas8JVmnywA6hIsUQs3iIAfCSc=) 19: V9MunteQeVICf2ICr71lxQH0Fho.roa (hash: eyd5tdJUMOhtnb51XXGrnbSnVth9KptYyQQSksmwF/U=) 20: Xk5tmPIosW8yWOoBE4vC97DKTmI.roa (hash: n+WSuCldCqJF0J/zIrAAsy8W1NaktFT44ojEQwTF8/A=) 21: Y8kVBgTTg77JqceZAx8eeOkuigc.roa (hash: IFdbCND0Hr2WHlrHfsppyOn82/Cdt+j+/f3Y4nRrJM0=) 22: ZiD-MY3nOuLXzR9RDg6huulrUtA.roa (hash: psjzBFQxt80JPQCyicrTYbpG7+HkCyyCB+fL0q+8TEU=) 23: a75rOpjpaPa3RoX99f00xHpyQQk.roa (hash: pBUN5kZ0kemGdrUfIg4JmP66bIvq4vhJcqUtu9xb4uk=) 24: aZHFbxGnFxxhUyOXafVXvroQGC0.crl (hash: 4itzLoXDPJMMJf/zUdXprYm5c++1XXAP2lnBvxziq5U=) 25: cxoHocYfpOLbmWm9vZdeuztX1mM.roa (hash: n6b1cBbTDRO9vvH+MGVzzJhRTNkNJBd2SHTwJhIHGMM=) 26: gt8flTD_zJibygdA8dyeuF1l6X4.roa (hash: aubI8iptMgWbWF9zUBH11nChoCQulzBZponMqronaCU=) 27: mqFZ_6poK042LnYArfefb64YNZQ.roa (hash: z+bsA4ZcDvX2JPMlTZwVkKpOQPowKJ3wnhxnQ/pVUXU=) 28: r72MZC6TP9HFp69hVblH2z8aLDw.roa (hash: 60a58tQ14AuL0odo9HIWNyGRLIp51J3Om0fY3oCEnBg=) 29: rUMG6_YUV9Kmnpwq0G1k_OVrago.roa (hash: AjxBsOVclOWcJ5FeutBbN2YA3ybu29Q3Qe9JK4k72kk=) 30: wyYtlqseGv6gXQkCTy30WJ-H2eE.roa (hash: 0/U6xWPb4mk6ryPiHh563SCZx0Tww+D7flQW+39Amak=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 24 Jul 2025 05:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:35:a7:b5:8c:fd:8a:fe:04:37:8b:88:a7:8f:c4:a6:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6991c56f11a7171c6153239769f557beba10182d Validity Not Before: Jul 23 05:00:40 2025 GMT Not After : Jul 24 05:00:40 2025 GMT Subject: CN=fdc58f141176bfe7ef9d53755f56e70ee2e43e00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7a:86:5b:22:1c:f4:56:00:d0:cb:2c:4d:0d: 7d:68:65:cf:1a:8b:02:6c:9b:4e:6d:46:d5:a3:47: 68:6a:eb:51:c0:f7:c2:f2:4e:77:8d:11:11:a1:b8: 2c:58:2d:89:97:6a:f2:ff:b8:76:d6:f2:de:0f:29: 49:a0:39:cf:a2:31:48:16:d2:b0:16:c1:57:ae:5b: ee:cd:3d:a3:0f:05:bd:89:d1:c7:56:e6:65:b7:a9: ad:64:f6:36:94:3f:24:90:b9:62:3e:f9:56:19:d0: 60:60:dc:44:e8:39:87:28:75:d4:7c:71:a9:1b:97: 66:29:f0:e9:9c:27:00:ed:4c:91:bf:a4:c6:32:30: 14:21:c2:3e:3d:83:ee:db:4c:c0:e0:c0:3a:91:c1: 9e:e0:14:55:df:fa:a9:ac:46:93:d9:bc:df:b2:b7: 24:41:66:f6:9f:32:d4:f6:b9:e5:db:3a:aa:f8:30: 38:93:50:1c:3c:25:88:f2:a4:a0:ad:92:d5:05:41: e7:84:c9:af:e4:92:13:71:3b:29:2e:a0:4c:9a:1d: 73:c1:70:91:f3:27:d6:e8:75:06:28:0e:53:b8:15: dc:41:57:a3:9a:5d:c2:5f:77:3e:ca:06:e2:75:be: 9e:ee:73:0b:da:27:45:e7:65:9c:97:43:ea:e8:14: a2:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:C5:8F:14:11:76:BF:E7:EF:9D:53:75:5F:56:E7:0E:E2:E4:3E:00 X509v3 Authority Key Identifier: keyid:69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:ff:78:f6:10:88:51:83:21:51:15:c1:ca:5e:b6:40:e0:d0: b5:7f:ba:27:9a:00:7c:6e:fb:27:1a:a0:9d:27:68:f4:07:74: d4:62:36:4f:70:98:bc:ab:54:54:c3:2c:75:ee:de:13:fd:e4: d9:d1:a3:5c:fd:f0:cc:6e:15:71:21:e8:a4:2e:27:fb:c7:63: 72:38:34:77:5a:e7:a9:24:0d:0f:45:f3:79:ec:bb:9c:ea:c8: 3b:7f:1c:95:43:44:89:ac:90:f6:07:50:be:b1:5a:fb:19:9e: 9a:14:0c:fc:11:13:2f:85:ba:db:35:77:01:fd:84:78:d4:de: 80:72:74:e0:d9:d6:b4:2f:b7:3e:00:7a:e4:9a:03:f8:e1:02: ec:b5:96:93:6f:57:d3:6c:83:91:59:85:21:d6:5c:ac:62:9f: 54:be:fb:f1:cb:d9:1a:8e:96:28:df:1c:89:e4:1a:62:3a:f1: 4d:b4:88:69:f7:ba:08:2e:45:af:15:8b:df:55:ca:16:35:9a: 04:cc:22:d8:b1:85:06:4e:22:16:13:43:bb:6d:6b:7c:b9:71: 83:c0:37:52:e5:60:c9:64:28:6b:14:78:7b:c6:f9:83:e0:63: 71:52:13:b3:40:fe:a2:68:25:45:12:70:e5:17:9a:d6:cb:30: 39:b8:de:13 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZg1p7WM/Yr+BDeLiKePxKavMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5OTFjNTZmMTFhNzE3MWM2MTUzMjM5NzY5ZjU1N2JlYmEx MDE4MmQwHhcNMjUwNzIzMDUwMDQwWhcNMjUwNzI0MDUwMDQwWjAzMTEwLwYDVQQD EyhmZGM1OGYxNDExNzZiZmU3ZWY5ZDUzNzU1ZjU2ZTcwZWUyZTQzZTAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr3qGWyIc9FYA0MssTQ19aGXPGosC bJtObUbVo0doautRwPfC8k53jRERobgsWC2Jl2ry/7h21vLeDylJoDnPojFIFtKw FsFXrlvuzT2jDwW9idHHVuZlt6mtZPY2lD8kkLliPvlWGdBgYNxE6DmHKHXUfHGp G5dmKfDpnCcA7UyRv6TGMjAUIcI+PYPu20zA4MA6kcGe4BRV3/qprEaT2bzfsrck QWb2nzLU9rnl2zqq+DA4k1AcPCWI8qSgrZLVBUHnhMmv5JITcTspLqBMmh1zwXCR 8yfW6HUGKA5TuBXcQVejml3CX3c+ygbidb6e7nML2idF52Wcl0Pq6BSixwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP3FjxQRdr/n751TdV9W5w7i5D4AMB8GA1UdIwQY MBaAFGmRxW8RpxccYVMjl2n1V766EBgtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYt NjVkMTU2NzM0MGZkLzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYtNjVkMTU2NzM0MGZk LzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXP949hCI UYMhURXByl62QODQtX+6J5oAfG77JxqgnSdo9Ad01GI2T3CYvKtUVMMsde7eE/3k 2dGjXP3wzG4VcSHopC4n+8djcjg0d1rnqSQND0Xzeey7nOrIO38clUNEiayQ9gdQ vrFa+xmemhQM/BETL4W62zV3Af2EeNTegHJ04NnWtC+3PgB65JoD+OEC7LWWk29X 02yDkVmFIdZcrGKfVL778cvZGo6WKN8cieQaYjrxTbSIafe6CC5FrxWL31XKFjWa BMwi2LGFBk4iFhNDu21rfLlxg8A3UuVgyWQoaxR4e8b5g+BjcVITs0D+omglRRJw 5Rea1sswObjeEw== -----END CERTIFICATE-----Generated at Wed Jul 23 08:07:32 2025 by rpki-client