$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft File: aZHFbxGnFxxhUyOXafVXvroQGC0.mft (raw, json) Hash identifier: zM7lN5j9nkbZSgbxN8XapKwEYAF699isq51Un4dFsL4= Subject key identifier: C6:9B:86:5C:F0:85:BA:FD:B4:CC:DC:F3:D6:90:65:6B:12:F2:E6:B4 Authority key identifier: 69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D Certificate issuer: /CN=6991c56f11a7171c6153239769f557beba10182d Certificate serial: 019A0B5DCED4AB1C2DBFA64BBE8554739EBD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft Manifest number: 0A63 Signing time: Wed 22 Oct 2025 10:01:28 +0000 Manifest this update: Wed 22 Oct 2025 10:01:28 +0000 Manifest next update: Thu 23 Oct 2025 10:01:28 +0000 Files and hashes: 1: 0ZnUbFz494YaFYXrrvpst6o3vps.roa (hash: OVgxGJmRNj8L4Akc46yjqXSfo2J2UzOCk6rafbqc2OA=) 2: 1gMhaWTt9SatCtzXb2x3evmqFAM.roa (hash: 6Y9a57NqqkLkQqCohM5S0/g04HJqvciLd/hsGJkposA=) 3: 2R9OObFNaEDkANSZ-coBJRfRpcg.roa (hash: PuD3VMT0jUQBkYxsd7Ldnl6ZWhsJPerlMMUp2zMDWgw=) 4: 3B48XSzrqRQbODZNf87x_kjUhNo.roa (hash: y14T24Ofee6GJVa1mI4/7qxhdq0jl8KEydSAoin8Qhg=) 5: 4Big0S_3eVdxzCi9Q5-ZazqY78k.roa (hash: MZj2ZauIX6SjNg/AhkH3xRZrKv7KoBeknyWj0YQB2/w=) 6: 5KCmcBzgBtGKXXIdhXDGwgQX-Nc.roa (hash: 3MBj03+qouTWcvDDud6sW23ZkQ0DtRDfsHdVwPfcmzA=) 7: Ge-sdc_RhsJevkQCq5DXSj7W5SM.roa (hash: cppMW1hN3HemsqcEnmgRLycbL6rv3c6Bv6GxyK4Dr7I=) 8: GzbjpWWbs-1PqotRsV09E9K9Lz4.roa (hash: DPdOn5R31znLhVjpEt/89hnY5IoUTo1sHiV7ubrKX6Q=) 9: IR0N93wyt194hpjTT9eshHBGwCY.roa (hash: hm8stnovqLivJRd1Zt72YsNy0Lv8colWOGD8fUtYhVw=) 10: Ipr3KewOoeNwtKcMjwWhhMZ4XGk.roa (hash: 3JCwXXZ0yyhMNw7g8hWZGcEbqAf0RiAf0XwSMEKW1/k=) 11: LiReZTb5eM73wM_EtDaxcTNj4Uc.roa (hash: VxzmF2kcB0hEh+Og8NMqll1d/dM5T/PwiOdBSWMF9+w=) 12: NdAX7Rrn7y-KonnG7TF23wCnJFU.roa (hash: 1r3koUbwGBNgbjNaxMGO8L4AUL4EQ4uI3dkO8TUFqEA=) 13: NxKKuEIzsEe5p3RwQBZ8j63Lsc4.roa (hash: mOT2nWmKWDEZ1VeM86bS3Qx+tjUuZhaB/QcxGF5t7y4=) 14: OxLywK9-WD8ykiaZCQkg8aVcCjY.roa (hash: iXcObwE6BigOurV7fYooDfgc8zyVyQ+nTBGFkUMqd08=) 15: Qjyx-VfeYJzhQ64OO3GeexbDjpo.roa (hash: rj+IOmmZrJFH/pGr6IiDQ9M39qURzS3Ek11UjeILldM=) 16: TvRgaW9-CsNjYomAsfORBTmW3OU.roa (hash: E1pW1tBEDD4gp+efpV/wAMGMYES5LCvHxLW4UcIoHuI=) 17: US4urt8SGYSwI0nrEmSfY23OtMo.roa (hash: WGkLaX+bRS10FeqEfnkw5XXJQ/dEDlUw6wG2fIeU7p0=) 18: UbTczMXH1DXAp6Y4rzAMo0-vjMY.roa (hash: /5fKT3FRRFYWFa0s/Qas8JVmnywA6hIsUQs3iIAfCSc=) 19: V9MunteQeVICf2ICr71lxQH0Fho.roa (hash: eyd5tdJUMOhtnb51XXGrnbSnVth9KptYyQQSksmwF/U=) 20: Xk5tmPIosW8yWOoBE4vC97DKTmI.roa (hash: n+WSuCldCqJF0J/zIrAAsy8W1NaktFT44ojEQwTF8/A=) 21: Y8kVBgTTg77JqceZAx8eeOkuigc.roa (hash: IFdbCND0Hr2WHlrHfsppyOn82/Cdt+j+/f3Y4nRrJM0=) 22: a0il1xPCzL5RX2zRZ16C5yrKQN0.roa (hash: jNHlYD8MG49p1qoIK36TKFr01Lgirahfew8083hVbhQ=) 23: a75rOpjpaPa3RoX99f00xHpyQQk.roa (hash: pBUN5kZ0kemGdrUfIg4JmP66bIvq4vhJcqUtu9xb4uk=) 24: aZHFbxGnFxxhUyOXafVXvroQGC0.crl (hash: NLFt/f6cJdiHrztwy1lf+WCA83wRhOFeTUG4mECu0ys=) 25: eSDGXftwPU-DhjYptcEbu97gSEU.roa (hash: 298/MebJAxJVNu0RXxXXDu+aRB+xIjmk2sL/OavJmSI=) 26: e_ENa9NQtcVIjb5O_oQwLQrqTww.roa (hash: AVxIz7N9OcyxU6ZzRtu6hf2VS4z3pFTO7JZMHNOa9PI=) 27: gt8flTD_zJibygdA8dyeuF1l6X4.roa (hash: aubI8iptMgWbWF9zUBH11nChoCQulzBZponMqronaCU=) 28: h8jROV5bQoENdkPdOHcG_4qWdVY.roa (hash: glJfimln9Noz47bXSrY5ZJrPDNDjmCoZp6sAhb5XR58=) 29: hd5E-IfEq2TxeShk5Gaec24hUKw.roa (hash: gaGe3UUy/HO5uK3mGo4Jfk2cwdMRK/X0E0rPiNSPI88=) 30: mqFZ_6poK042LnYArfefb64YNZQ.roa (hash: z+bsA4ZcDvX2JPMlTZwVkKpOQPowKJ3wnhxnQ/pVUXU=) 31: qjt96n4RyTnwKt8f25Hzr4YOzU4.roa (hash: c+NeV173DV29fxhrcPqvFfp6/xCLnBsKjYjqezsWpbo=) 32: r72MZC6TP9HFp69hVblH2z8aLDw.roa (hash: 60a58tQ14AuL0odo9HIWNyGRLIp51J3Om0fY3oCEnBg=) 33: uuETfDd2MFEUFL6j7oWk0rsVxng.roa (hash: gq3xyqmM/tiK/h2Lc/3S6cQaZW777XfzMoLElI6p2tY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 23 Oct 2025 08:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:0b:5d:ce:d4:ab:1c:2d:bf:a6:4b:be:85:54:73:9e:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6991c56f11a7171c6153239769f557beba10182d Validity Not Before: Oct 22 10:01:28 2025 GMT Not After : Oct 23 10:01:28 2025 GMT Subject: CN=c69b865cf085bafdb4ccdcf3d690656b12f2e6b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:dd:60:bd:ac:04:7e:2a:a2:80:ab:0c:87:f7: 20:6b:c2:ab:5f:d3:29:4f:ec:07:55:dd:4c:8d:95: 0e:47:8f:dd:90:82:5f:10:6f:9c:80:84:0a:ab:5d: e2:f6:5e:8b:fc:8b:7a:72:14:bc:58:2a:98:ab:97: 08:a9:18:0b:1e:7d:75:f2:06:90:e6:b0:c6:fc:34: 68:21:d4:25:ad:4d:87:b1:24:20:ff:c8:f0:fb:20: 6f:00:c3:b0:b8:a0:97:15:f9:93:f3:6a:25:ab:f7: 6e:d8:98:3d:88:20:8a:8b:c4:cd:25:bd:b7:5c:86: eb:83:6a:75:dc:b6:59:7b:5d:74:79:ec:09:29:73: 0b:4d:6d:25:12:e2:a0:7d:60:9e:98:d5:50:2f:f9: 89:e8:26:65:07:6c:7f:88:3d:00:47:55:f7:96:66: 13:c2:b6:2c:06:98:22:ce:34:a6:12:16:4f:13:12: f7:07:7f:92:39:ce:22:b1:69:25:87:85:71:4e:65: f1:c9:7d:07:42:d9:dd:4b:77:2b:d8:8f:1c:39:4e: 16:4d:4b:64:99:7b:36:3b:44:98:90:cd:4a:79:0a: 37:0c:67:72:27:fa:ea:61:9c:d1:00:5a:43:01:4b: 24:b7:3e:bb:a0:0d:dd:1c:a5:54:fa:52:12:92:ea: ee:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:9B:86:5C:F0:85:BA:FD:B4:CC:DC:F3:D6:90:65:6B:12:F2:E6:B4 X509v3 Authority Key Identifier: keyid:69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:5e:75:31:b4:12:c1:47:d4:c6:7a:45:21:01:8b:24:46:46: 59:87:00:0b:24:5a:76:7f:80:c6:65:d5:ae:0c:cd:71:95:3c: 29:ce:11:f0:62:9e:f0:73:80:75:d4:75:4f:1b:9c:bd:95:51: 39:22:ef:ea:4a:de:c0:c9:9c:53:3e:7f:3d:09:f6:03:c3:ed: 99:ec:3d:34:d5:d0:19:68:81:a0:9b:68:78:26:9b:fe:c0:56: e7:ff:97:20:b7:dd:b4:c2:ce:23:d4:fc:2c:75:c6:ed:58:63: 75:7b:ff:cf:0e:a2:08:0c:90:5c:5c:bc:83:75:79:9f:5e:9d: a1:a6:23:e8:2d:c7:5e:02:7e:d3:77:53:2d:7b:85:ea:aa:f0: d9:be:fd:10:aa:62:24:0b:4a:33:49:2b:2d:80:bf:4c:90:6b: 0b:46:bb:bf:5f:a5:97:a8:5b:d6:17:89:ba:0e:de:8e:fd:15: f9:61:a6:44:d3:e9:35:c6:55:fb:91:d2:38:4a:1c:26:50:f0: 6a:c5:2b:62:b4:09:e3:d0:70:67:78:e3:d3:ca:1b:ee:4c:97: 84:12:65:5b:c2:15:50:8c:22:10:27:d7:1c:75:4a:6a:12:15: b7:84:24:db:02:fd:c3:41:96:70:c8:80:d3:6c:6e:e3:bf:95: 1b:c3:80:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZoLXc7Uqxwtv6ZLvoVUc569MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5OTFjNTZmMTFhNzE3MWM2MTUzMjM5NzY5ZjU1N2JlYmEx MDE4MmQwHhcNMjUxMDIyMTAwMTI4WhcNMjUxMDIzMTAwMTI4WjAzMTEwLwYDVQQD EyhjNjliODY1Y2YwODViYWZkYjRjY2RjZjNkNjkwNjU2YjEyZjJlNmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgt1gvawEfiqigKsMh/cga8KrX9Mp T+wHVd1MjZUOR4/dkIJfEG+cgIQKq13i9l6L/It6chS8WCqYq5cIqRgLHn118gaQ 5rDG/DRoIdQlrU2HsSQg/8jw+yBvAMOwuKCXFfmT82olq/du2Jg9iCCKi8TNJb23 XIbrg2p13LZZe110eewJKXMLTW0lEuKgfWCemNVQL/mJ6CZlB2x/iD0AR1X3lmYT wrYsBpgizjSmEhZPExL3B3+SOc4isWklh4VxTmXxyX0HQtndS3cr2I8cOU4WTUtk mXs2O0SYkM1KeQo3DGdyJ/rqYZzRAFpDAUsktz67oA3dHKVU+lISkurukQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMabhlzwhbr9tMzc89aQZWsS8ua0MB8GA1UdIwQY MBaAFGmRxW8RpxccYVMjl2n1V766EBgtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYt NjVkMTU2NzM0MGZkLzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYtNjVkMTU2NzM0MGZk LzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbl51MbQS wUfUxnpFIQGLJEZGWYcACyRadn+AxmXVrgzNcZU8Kc4R8GKe8HOAddR1TxucvZVR OSLv6krewMmcUz5/PQn2A8Ptmew9NNXQGWiBoJtoeCab/sBW5/+XILfdtMLOI9T8 LHXG7VhjdXv/zw6iCAyQXFy8g3V5n16doaYj6C3HXgJ+03dTLXuF6qrw2b79EKpi JAtKM0krLYC/TJBrC0a7v1+ll6hb1heJug7ejv0V+WGmRNPpNcZV+5HSOEocJlDw asUrYrQJ49BwZ3jj08ob7kyXhBJlW8IVUIwiECfXHHVKahIVt4Qk2wL9w0GWcMiA 02xu47+VG8OAYw== -----END CERTIFICATE-----Generated at Wed Oct 22 13:03:00 2025 by rpki-client