$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft File: ER1oFDdScdGjy9EhVdsR0r1BqNM.mft (raw, json) Hash identifier: iztpVEn4jnO/E4CeNXMHtp6WhJrN8ZMY5t9j/pwqdOE= Subject key identifier: AA:04:C3:AD:CD:EA:4F:E1:27:11:76:C7:42:35:E3:BD:8C:E0:32:AC Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Certificate serial: 01974BC4560AFEFB5E81F6353798CDC7CA0D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft Manifest number: 1443 Signing time: Sat 07 Jun 2025 19:00:47 +0000 Manifest this update: Sat 07 Jun 2025 19:00:47 +0000 Manifest next update: Sun 08 Jun 2025 19:00:47 +0000 Files and hashes: 1: 1-Eladd6sj8Y7vq1mtW5h6ASM_tM.roa (hash: auxhruGljCxtN9ijkL9KZ/K4C+RcNKrzhKvUSRg/9HQ=) 2: 1-dpIOgQrHNlMUsxt6C2Ztf5nfuM.roa (hash: pCUJMhojWf39aVt/QyofbsbuGjc8Gizw3ZJ2MSqOsTA=) 3: 1-gUTUj2JpuChCvozdxCQFTR22DM.roa (hash: f/2CCyCRw0ujuPO8AP04nbSH6GVLpL5l8bdrrfS8KoQ=) 4: 4JmdsvBatEpFanHBLwN8tE53B0o.roa (hash: rZ4Y8EU6soeJCyiHjLhVB0iARab8gRMfLlwRpZ6KFuk=) 5: 7ap_QJi20SaGnPgK1pV6_7cP-Uo.roa (hash: BOo8F2wEw4BgZClwTOfUjkt0HIqhHPtSsQJru4E0kFk=) 6: 7pYVLfxDyksCdUmiOhbgviOo3x8.roa (hash: QcPN759vJqixjDGU3gmMeZsCeSMWabiqP3hVma37vPU=) 7: ER1oFDdScdGjy9EhVdsR0r1BqNM.crl (hash: iSiEXsd297vUxRpi/iGTHE2s+9JJODSKD97x5O3xZ04=) 8: Hfkubm6yrWEn7gBE9wSMaD_ExXE.roa (hash: FXP2ir2FJkx6oy+MltDsbhNB8kOwwEjeXoSk5fOxlUM=) 9: Kk7xKrzHzx6qmDJI5CVBM_Sl474.roa (hash: m5FUWhJ54zbQwUlYkehhIiOw3x1SXokhdxGSIsx1B6c=) 10: Si8V8khtv0yVUA78DGGzfalNcCk.roa (hash: TuKNETdYYEdxWIcOAjkF1OdADD7zXp4g+mS6E5V7pvo=) 11: XjirH4cwDvxlRkAGxm7FSwAK2sM.roa (hash: YF/U/qPEr6M3Q+MIXQrnfUUKIV5n5WTRe7Dd9hsZTtM=) 12: aaSIhAJHCTwygtdFuXnOQPW6bY4.roa (hash: wv3RWyn/0THt7bCTdq/aMs2HWBM2MxgNANY6nblHNaA=) 13: azpo2jbXZip4fzf6JfxzYCloMXU.roa (hash: lChd9oLNFRupauF5HA1DBK7UGcNDTVpyA1eioCbGUns=) 14: cozXNddBZMRS0D_fVDWk42XqVNI.roa (hash: nP2wP4zibtasbSbsg7EMlMPSKjFkuBzXXdP2DBCONIM=) 15: iwe0kg-crqIWyp2IScMa9LxREgQ.roa (hash: CaVzf6weXzwiNznLUpeTB+QaHcaNjVgYiVjygsUgHxg=) 16: lQoeI3fot2NEOazpcJqwENKoEUU.roa (hash: Elimcemes6spMNky/T+TAYcPtxVw5jFrGcayiuk5D80=) 17: vsEC-C0-IZ2XJzdCqJMyLFlVXyo.roa (hash: 6dyvsyNO+SBB5YmEGzfWoUfWH/YqXAoOIBD3aTROXnU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 18:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:4b:c4:56:0a:fe:fb:5e:81:f6:35:37:98:cd:c7:ca:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Validity Not Before: Jun 7 19:00:47 2025 GMT Not After : Jun 8 19:00:47 2025 GMT Subject: CN=aa04c3adcdea4fe1271176c74235e3bd8ce032ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ad:3e:35:78:81:e1:34:8c:34:7e:53:97:c7: 0b:0d:a2:ae:97:d5:08:0d:14:3a:98:9d:bd:55:29: 9e:56:fd:7f:3c:d5:7e:0e:3f:95:1d:92:63:fd:31: 05:e0:2e:65:dc:79:ba:cb:fa:55:7e:c8:ba:44:76: fb:3e:52:c8:90:fc:9c:ca:a4:0f:b4:6d:20:09:2a: 67:78:08:fa:63:29:33:bd:78:f2:be:04:72:e1:92: e5:e3:1c:fd:86:cc:2a:f6:e9:91:a2:df:22:34:09: 5e:3d:a7:bf:d4:d8:20:e2:56:e4:27:96:18:86:34: 4a:bc:46:47:73:69:80:ff:2f:8c:d4:cc:c8:1b:09: 6f:cd:e5:9b:08:0d:10:d7:1a:78:ba:07:09:8e:76: 9c:3e:57:62:4f:b7:cf:f3:11:62:da:27:86:81:66: ab:d5:ac:34:e0:fc:a2:ae:d6:23:10:82:b9:59:52: 26:e2:59:64:e7:49:a4:5d:f4:8b:b0:d8:4d:9b:21: 87:ea:72:64:30:0c:2f:50:c3:f3:7b:33:94:07:64: 45:bb:e4:23:26:64:e6:5a:d6:7d:17:4d:bc:8c:3d: b0:21:5f:60:38:f2:16:e8:09:e4:a7:f7:af:9c:bb: f8:3a:09:14:f2:64:a2:ec:13:1c:15:f0:ad:c8:90: 97:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:04:C3:AD:CD:EA:4F:E1:27:11:76:C7:42:35:E3:BD:8C:E0:32:AC X509v3 Authority Key Identifier: keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:77:a7:2a:3b:44:c1:24:86:ca:d5:66:2d:a6:74:53:9b:2b: f1:b8:f5:d2:70:a7:12:17:e2:73:0d:44:5e:86:fd:81:1d:78: 9c:6f:eb:86:93:f2:29:4c:2e:6a:e2:0c:b6:5a:0f:41:d5:26: 44:a8:af:04:73:de:28:6b:3b:36:c9:1b:c6:b9:49:95:41:72: 3c:19:49:1f:e3:5f:52:46:03:94:4e:07:fb:59:7d:c4:ae:f3: 12:bf:45:74:6e:10:dd:62:6c:1a:2f:8b:66:c2:59:31:96:fe: 1d:3f:d9:8a:ae:62:6b:b1:50:e5:3b:c2:d6:63:1c:b5:52:76: f4:f6:fa:98:84:f0:2a:43:32:01:be:2f:db:2f:2b:31:85:a7: 8f:44:66:4d:f2:26:06:d3:3c:0e:b2:4c:54:14:fb:97:2e:64: b3:41:79:c0:86:96:73:43:0c:92:f1:26:c8:a3:a9:7b:7a:6b: a3:57:db:d2:49:36:bc:71:14:4c:1a:5d:07:74:e3:cf:e1:f2: 92:65:1f:3a:0a:44:cc:56:29:96:07:12:77:20:ff:0c:9c:99: 8a:20:f3:f2:92:ad:05:dd:d0:31:bd:c4:77:7d:9b:dd:60:78: 62:37:2a:6a:7b:a9:e1:76:a0:a7:42:fc:4e:f2:bb:3f:c1:f9: ba:d6:db:c9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdLxFYK/vtegfY1N5jNx8oNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMWQ2ODE0Mzc1MjcxZDFhM2NiZDEyMTU1ZGIxMWQyYmQ0 MWE4ZDMwHhcNMjUwNjA3MTkwMDQ3WhcNMjUwNjA4MTkwMDQ3WjAzMTEwLwYDVQQD EyhhYTA0YzNhZGNkZWE0ZmUxMjcxMTc2Yzc0MjM1ZTNiZDhjZTAzMmFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxK0+NXiB4TSMNH5Tl8cLDaKul9UI DRQ6mJ29VSmeVv1/PNV+Dj+VHZJj/TEF4C5l3Hm6y/pVfsi6RHb7PlLIkPycyqQP tG0gCSpneAj6YykzvXjyvgRy4ZLl4xz9hswq9umRot8iNAlePae/1Ngg4lbkJ5YY hjRKvEZHc2mA/y+M1MzIGwlvzeWbCA0Q1xp4ugcJjnacPldiT7fP8xFi2ieGgWar 1aw04PyirtYjEIK5WVIm4llk50mkXfSLsNhNmyGH6nJkMAwvUMPzezOUB2RFu+Qj JmTmWtZ9F028jD2wIV9gOPIW6Ankp/evnLv4OgkU8mSi7BMcFfCtyJCXZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKoEw63N6k/hJxF2x0I1472M4DKsMB8GA1UdIwQY MBaAFBEdaBQ3UnHRo8vRIVXbEdK9QajTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQt MjcxZDI1ZTIwNTc0LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQtMjcxZDI1ZTIwNTc0 LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs3enKjtE wSSGytVmLaZ0U5sr8bj10nCnEhficw1EXob9gR14nG/rhpPyKUwuauIMtloPQdUm RKivBHPeKGs7NskbxrlJlUFyPBlJH+NfUkYDlE4H+1l9xK7zEr9FdG4Q3WJsGi+L ZsJZMZb+HT/Ziq5ia7FQ5TvC1mMctVJ29Pb6mITwKkMyAb4v2y8rMYWnj0RmTfIm BtM8DrJMVBT7ly5ks0F5wIaWc0MMkvEmyKOpe3pro1fb0kk2vHEUTBpdB3Tjz+Hy kmUfOgpEzFYplgcSdyD/DJyZiiDz8pKtBd3QMb3Ed32b3WB4Yjcqanup4Xagp0L8 TvK7P8H5utbbyQ== -----END CERTIFICATE-----Generated at Sat Jun 7 22:12:18 2025 by rpki-client