$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.mft File: zV45ZYo-9vE8ohzBGk4z682UZwI.mft (raw, json) Hash identifier: L7GrFWjOo0B4GzJwujn4kERl2r1QCo9HnYEl9wRm40A= Subject key identifier: C2:00:6A:0C:1C:B1:F7:81:1E:13:E3:A8:0C:00:6B:1C:CF:DA:27:EC Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02 Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702 Certificate serial: 01992DEC9D91DDA4B44804B5CBF8255A25C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.mft Manifest number: 17C3 Signing time: Tue 09 Sep 2025 10:01:45 +0000 Manifest this update: Tue 09 Sep 2025 10:01:45 +0000 Manifest next update: Wed 10 Sep 2025 10:01:45 +0000 Files and hashes: 1: 2MknCTAqPrL-JBVm-a7dCcSPR7A.roa (hash: QgeWbSBTUKGBsvwbQgC/fRYVcUxNWpLiMOHrMsaO2LA=) 2: 5n_YcLg3YQQNFYTwhU5huai3ZJI.roa (hash: 9mpciFsp3Kugx6pov8E04ElUzgFox7xfMS6pjLwC4Qg=) 3: 81KZQ-u5F9g0MOVoHU9ewgY-QXg.roa (hash: 8UjV0Jm7R1QguHBx9y2wyolm/VjFBkdN2Pr8OyUJ+mY=) 4: Au9bXszlocyVoMwtR7yHKJSJdd8.roa (hash: nwgXyCp2VJCxj54VlqhKlW+GmuQayPyEYrSPMy4MTwc=) 5: B7gCFjZVeNLW5hK77c-0N4WFxbw.roa (hash: tWsocaUyyxYU90b6yCtG5GWx8yEhokPRBicDQHH/U5s=) 6: ECT8clfNxElQsbNgWf5MSMBQJBw.roa (hash: OHKduQ+nBMz5yKr3Tz8KQLq2T4SUqaXm2BJrDDuQUCc=) 7: Eg5cB0gFbZt-mtb2g5DlnYfptYU.roa (hash: N8GnHFT4fRhNM3nodSxCZOH18KkVNRyweY1llmfoJHs=) 8: GCq3OcvhsVssgyhwVftlmv2qS0g.roa (hash: amGc7yYYdNqbzEM6/ZudOs3K3qKn0m9v09EM2kwWv7M=) 9: I5sUW94nv-LxzV80hMGX3qTQCs4.roa (hash: uL5F8RVKhWM570kSM8rrD/tTcGTu5/K9W9VpY2ciAEQ=) 10: IAPn7DJDgGRPEalWRha9yi2URHE.roa (hash: 6IrJENkJ/zO3Z3yOiJTbJ29lJBvN/NcO/EmIYPV+IrQ=) 11: KCCAvsdFABptcdWkmYzNnQ9RL6E.roa (hash: DSZuLAxhdSWLE0DFN+BFigCnq9IYv1dV5jCeoEQh9rg=) 12: Mfhs8jmocGTaGuB0fg_x0qnHXQY.roa (hash: P75mvG00MMw6xQyOke8+iOXUOpf6sb8l40ULEZSs1Co=) 13: R2ldoXhi8yWQOntF1DnCjSdvZHU.roa (hash: rEkBBSJ/AxqPUULu5r8GdT5K+bRn1TC46uKfQvy074k=) 14: RabFVP9_l7NvhFArTWX9C0fHl8A.roa (hash: i69bKSISEEfsZkRf2LJ6xdjL0YTgWRsBj/o5W7RYyXc=) 15: SeBDGoUZsUtOUZx02IQlwMJ27mU.roa (hash: c6tFykgM8su9GyncwABr6lgk4O/lhzLOVTR6XdjeoGk=) 16: gRGDjjLT48vk7uk37lX43qmpguM.roa (hash: r1CGQBpwekmoJBDyj4suW0g94HtAtdOyi9owjr8gV84=) 17: k8fqwtdh-LqC0pAvtPALHqE5INc.roa (hash: rvx1N8KpHxv0A4ACkabIbMcUvyIz9Ia7cTJGcRNlkzw=) 18: n2vcpbDZB6xrxLYvzTHCKhSNz7E.roa (hash: 5XRyQTD9tl7LBp5vTwaP2Vb/AmIajhXwhSGXa4ngEUA=) 19: pR8X201cE488GDij0jEDtJgNAT4.roa (hash: 55G0ARH5uqyYFb+VPNX9cf5T1AwygrlThtDL14wWHjY=) 20: pcNjPd963pJ-veR3THrsEue-HI8.roa (hash: WY3JRHM86xMcBBANb6NZ6B6Gt06IYrTWP+TpFrDA6VY=) 21: ro5M-dHEvoHU0Wp1W7KVNXTJRB0.roa (hash: XLpdig1yngTdqxo047wSxCKu12A/eL61KXVLCkHmUrU=) 22: tY_SBiXlNsyr5MWGvZwrQKokaZY.roa (hash: kjGrN/I53C88kyyVw+9gflWs7bJ3X6mbRrf1jGUgHG8=) 23: uBPI4Rs7rRPQGCWlNIMKuX7PU7k.roa (hash: jFkWBUBLmZ3TDstxedf2WQQANWt19wC/I1ODOLEnI/k=) 24: wlCqpCf6WqXLzJVszqz1Q1gTyss.roa (hash: VxRQNGxkKhRbXtEdjFiDmjDt1hmaWIKUoy1RTW4daSE=) 25: zV45ZYo-9vE8ohzBGk4z682UZwI.crl (hash: NmYyG8wuQKcu96qRG0wvWs4qAuXVZavhyHYvP4FJF0Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.mft rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 10 Sep 2025 08:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:2d:ec:9d:91:dd:a4:b4:48:04:b5:cb:f8:25:5a:25:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702 Validity Not Before: Sep 9 10:01:45 2025 GMT Not After : Sep 10 10:01:45 2025 GMT Subject: CN=c2006a0c1cb1f7811e13e3a80c006b1ccfda27ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c5:d9:42:5c:98:5b:35:a0:0b:72:1d:9a:f1: 41:02:c4:f4:ba:af:ef:b4:1e:6b:15:90:5a:75:82: 58:a4:1c:41:cb:bc:3f:0e:d2:f7:e2:ec:7a:da:9c: e6:8c:b6:9c:3b:18:a4:18:be:76:84:db:b9:62:3a: df:7c:81:08:81:2c:cc:cf:12:07:f8:8b:d5:49:82: 5d:05:ea:ff:29:e0:7b:b2:f4:1f:69:5b:81:de:cc: ac:58:3b:cc:24:e0:03:26:64:c1:73:cc:81:07:3c: 15:3f:3f:0d:42:03:68:4d:73:4d:cc:86:14:55:4c: f9:b1:13:24:4d:76:18:1c:c3:f9:e8:63:93:f0:73: e5:60:c8:54:43:ab:c3:11:c4:06:aa:69:87:31:46: 64:98:b2:82:97:04:44:2f:4a:ba:95:3b:14:fe:eb: 61:af:41:d9:4c:08:eb:6b:db:24:50:14:9e:d9:18: ae:df:51:e3:b1:5f:1c:de:12:d3:24:1c:8f:77:ab: 3f:e7:b1:9f:9f:9e:2e:16:1b:33:48:e6:6b:07:a5: b6:7c:7f:dc:1d:5b:4a:70:2f:db:1c:09:b9:e3:a1: 91:73:71:ce:a4:3a:12:05:31:b0:62:94:99:73:c4: d3:42:e9:3e:9e:e6:b5:dd:02:7c:18:63:88:cd:e5: 0c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:00:6A:0C:1C:B1:F7:81:1E:13:E3:A8:0C:00:6B:1C:CF:DA:27:EC X509v3 Authority Key Identifier: keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:ad:b9:0f:09:58:4d:d0:2f:6f:cf:19:37:e3:27:b3:50:ef: 0a:de:a9:d1:2a:29:14:d5:76:86:70:63:e5:89:6a:e5:94:2e: db:41:eb:11:40:3b:cb:b6:31:18:48:89:1b:35:1a:96:55:ea: c9:28:25:ec:e1:63:e9:96:40:26:c2:8b:a9:5d:59:d9:5d:66: c1:09:20:f7:5c:51:15:fa:cc:fb:8d:71:60:d6:b2:13:c4:9e: 07:c5:f0:58:89:7d:b1:97:53:2e:18:93:cf:8a:6d:e0:48:3d: 60:81:f3:41:ca:70:f0:92:f6:ac:9f:12:5c:15:16:99:ed:fa: ed:43:50:ee:d9:e8:1d:da:27:a5:13:85:24:13:47:ab:0c:3d: 67:72:f4:37:c6:7d:88:43:66:22:e4:90:cf:5d:f1:03:46:d4: 75:4d:6e:80:79:86:5b:10:69:ff:c2:4c:27:11:50:df:aa:30: d5:60:d8:56:50:3d:70:95:7a:87:67:42:05:55:a5:99:f7:b4: e7:fe:62:50:9a:4d:4d:1f:59:91:24:84:5d:f7:b3:fe:0c:4a: c2:e0:b5:9e:03:b2:5a:ac:7e:06:53:bb:3a:81:08:e2:80:15: 9c:ad:1c:00:60:b4:e3:f0:bc:27:55:3a:fc:78:e1:f0:64:21: 83:31:2e:ec -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZkt7J2R3aS0SAS1y/glWiXCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5 NDY3MDIwHhcNMjUwOTA5MTAwMTQ1WhcNMjUwOTEwMTAwMTQ1WjAzMTEwLwYDVQQD EyhjMjAwNmEwYzFjYjFmNzgxMWUxM2UzYTgwYzAwNmIxY2NmZGEyN2VjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA38XZQlyYWzWgC3IdmvFBAsT0uq/v tB5rFZBadYJYpBxBy7w/DtL34ux62pzmjLacOxikGL52hNu5YjrffIEIgSzMzxIH +IvVSYJdBer/KeB7svQfaVuB3sysWDvMJOADJmTBc8yBBzwVPz8NQgNoTXNNzIYU VUz5sRMkTXYYHMP56GOT8HPlYMhUQ6vDEcQGqmmHMUZkmLKClwREL0q6lTsU/uth r0HZTAjra9skUBSe2Riu31HjsV8c3hLTJByPd6s/57Gfn54uFhszSOZrB6W2fH/c HVtKcC/bHAm546GRc3HOpDoSBTGwYpSZc8TTQuk+nua13QJ8GGOIzeUMxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMIAagwcsfeBHhPjqAwAaxzP2ifsMB8GA1UdIwQY MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt NWQxZmE2NmMzNjNiLzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC625DwlY TdAvb88ZN+Mns1DvCt6p0SopFNV2hnBj5Ylq5ZQu20HrEUA7y7YxGEiJGzUallXq ySgl7OFj6ZZAJsKLqV1Z2V1mwQkg91xRFfrM+41xYNayE8SeB8XwWIl9sZdTLhiT z4pt4Eg9YIHzQcpw8JL2rJ8SXBUWme367UNQ7tnoHdonpROFJBNHqww9Z3L0N8Z9 iENmIuSQz13xA0bUdU1ugHmGWxBp/8JMJxFQ36ow1WDYVlA9cJV6h2dCBVWlmfe0 5/5iUJpNTR9ZkSSEXfez/gxKwuC1ngOyWqx+BlO7OoEI4oAVnK0cAGC04/C8J1U6 /Hjh8GQhgzEu7A== -----END CERTIFICATE-----Generated at Tue Sep 9 18:09:54 2025 by rpki-client