$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft File: ER1oFDdScdGjy9EhVdsR0r1BqNM.mft (raw, json) Hash identifier: GxH+vGx2im77qj54JWAanbsM+3nh+ceGKM/K8Nh+7oM= Subject key identifier: 70:15:ED:FE:1B:62:FE:EA:31:27:C8:7B:01:A8:2F:F4:38:1F:7B:C8 Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Certificate serial: 019938397A66A033AFEA0E6A24DBAB7E40CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft Manifest number: 1542 Signing time: Thu 11 Sep 2025 10:01:54 +0000 Manifest this update: Thu 11 Sep 2025 10:01:54 +0000 Manifest next update: Fri 12 Sep 2025 10:01:54 +0000 Files and hashes: 1: 1-Eladd6sj8Y7vq1mtW5h6ASM_tM.roa (hash: auxhruGljCxtN9ijkL9KZ/K4C+RcNKrzhKvUSRg/9HQ=) 2: 1-dpIOgQrHNlMUsxt6C2Ztf5nfuM.roa (hash: pCUJMhojWf39aVt/QyofbsbuGjc8Gizw3ZJ2MSqOsTA=) 3: 1-gUTUj2JpuChCvozdxCQFTR22DM.roa (hash: f/2CCyCRw0ujuPO8AP04nbSH6GVLpL5l8bdrrfS8KoQ=) 4: 4JmdsvBatEpFanHBLwN8tE53B0o.roa (hash: rZ4Y8EU6soeJCyiHjLhVB0iARab8gRMfLlwRpZ6KFuk=) 5: 7ap_QJi20SaGnPgK1pV6_7cP-Uo.roa (hash: BOo8F2wEw4BgZClwTOfUjkt0HIqhHPtSsQJru4E0kFk=) 6: 7pYVLfxDyksCdUmiOhbgviOo3x8.roa (hash: QcPN759vJqixjDGU3gmMeZsCeSMWabiqP3hVma37vPU=) 7: ER1oFDdScdGjy9EhVdsR0r1BqNM.crl (hash: ktaP5x6FycOD0c/v+nyNws/Cvx0eu9619l6OtB5j3QQ=) 8: Hfkubm6yrWEn7gBE9wSMaD_ExXE.roa (hash: FXP2ir2FJkx6oy+MltDsbhNB8kOwwEjeXoSk5fOxlUM=) 9: Kk7xKrzHzx6qmDJI5CVBM_Sl474.roa (hash: m5FUWhJ54zbQwUlYkehhIiOw3x1SXokhdxGSIsx1B6c=) 10: Si8V8khtv0yVUA78DGGzfalNcCk.roa (hash: TuKNETdYYEdxWIcOAjkF1OdADD7zXp4g+mS6E5V7pvo=) 11: XjirH4cwDvxlRkAGxm7FSwAK2sM.roa (hash: YF/U/qPEr6M3Q+MIXQrnfUUKIV5n5WTRe7Dd9hsZTtM=) 12: aaSIhAJHCTwygtdFuXnOQPW6bY4.roa (hash: wv3RWyn/0THt7bCTdq/aMs2HWBM2MxgNANY6nblHNaA=) 13: azpo2jbXZip4fzf6JfxzYCloMXU.roa (hash: lChd9oLNFRupauF5HA1DBK7UGcNDTVpyA1eioCbGUns=) 14: cozXNddBZMRS0D_fVDWk42XqVNI.roa (hash: nP2wP4zibtasbSbsg7EMlMPSKjFkuBzXXdP2DBCONIM=) 15: iwe0kg-crqIWyp2IScMa9LxREgQ.roa (hash: CaVzf6weXzwiNznLUpeTB+QaHcaNjVgYiVjygsUgHxg=) 16: lQoeI3fot2NEOazpcJqwENKoEUU.roa (hash: Elimcemes6spMNky/T+TAYcPtxVw5jFrGcayiuk5D80=) 17: vsEC-C0-IZ2XJzdCqJMyLFlVXyo.roa (hash: 6dyvsyNO+SBB5YmEGzfWoUfWH/YqXAoOIBD3aTROXnU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Sep 2025 05:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:38:39:7a:66:a0:33:af:ea:0e:6a:24:db:ab:7e:40:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Validity Not Before: Sep 11 10:01:54 2025 GMT Not After : Sep 12 10:01:54 2025 GMT Subject: CN=7015edfe1b62feea3127c87b01a82ff4381f7bc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5e:05:2c:bd:c7:ab:60:ff:ec:10:7c:85:e7: 16:22:25:67:45:28:5c:22:5b:fb:79:ad:55:1f:cf: e1:7e:ec:bc:3e:84:50:d5:8c:23:82:bc:38:77:10: 62:54:b6:8a:37:22:38:26:3e:c0:e9:68:3f:ea:19: 23:c3:25:32:a7:22:70:f7:e8:ec:0c:da:23:49:a5: 8e:3b:db:0a:5d:07:2f:49:58:3c:96:3d:37:b0:93: 4f:10:cb:c7:43:fd:06:cf:a5:d3:9f:ea:24:10:18: 70:03:36:83:c1:f7:7d:75:39:b7:db:5a:7b:58:04: 59:54:89:a7:0c:bd:18:d3:b8:d6:51:2a:4a:5d:58: 22:29:7d:a5:0d:14:33:c8:ac:75:d9:f6:45:a4:f1: c6:b6:d1:44:4a:cf:e2:22:09:32:9f:70:b4:b0:52: e6:e6:d4:7d:ff:a3:0c:6d:7b:a7:5a:01:6f:5e:4d: 21:e0:2e:f3:33:26:66:99:a8:b4:e3:54:1f:84:dc: 71:79:5c:20:32:d9:3d:c9:7c:16:1b:1d:77:a3:27: 12:9a:27:c7:f1:b7:a1:9a:a8:25:4d:b9:76:73:56: c4:93:1f:3d:67:65:24:b4:da:b0:10:fe:f4:83:c8: 89:d3:51:15:3d:5f:d9:68:59:c6:80:34:5d:40:92: 32:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:15:ED:FE:1B:62:FE:EA:31:27:C8:7B:01:A8:2F:F4:38:1F:7B:C8 X509v3 Authority Key Identifier: keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:77:2a:78:c0:ae:9a:67:11:28:d2:04:ea:60:c3:1c:c4:4a: 36:58:a1:2f:58:da:f8:34:94:36:d0:2d:8a:56:07:06:0e:28: 1f:6b:a7:1c:10:51:92:35:0c:7f:10:50:ab:0d:48:32:60:d2: 4c:64:1d:4a:89:e7:40:7d:3a:c9:36:49:1a:16:0a:07:e2:0c: df:90:81:44:31:d2:c6:a7:ce:a6:f0:82:90:04:37:21:72:af: 95:3a:8e:32:76:dc:3a:04:ce:14:1c:42:34:a5:ca:66:2b:f5: 31:2d:8d:bf:6a:e1:82:84:a0:90:4e:2c:59:3c:9c:06:47:05: 48:91:21:7e:08:07:36:8f:3a:f8:e3:3a:a5:45:d3:31:3d:76: 01:d7:2a:d9:85:55:98:1d:95:bb:ca:7b:54:97:27:cd:b5:5c: 92:37:e9:0d:34:98:5c:2c:05:14:6e:ec:e6:52:d8:24:23:c4: 1e:f2:c5:e5:74:3d:0e:53:45:a7:88:e9:cc:08:0f:bc:8d:23: 4c:6a:57:e7:ed:f3:a7:82:77:08:ff:f7:de:22:fe:3b:41:62: 67:89:95:9d:53:72:19:0a:f6:e7:fd:c4:23:9b:94:12:55:56: 7c:5f:95:17:3b:1c:19:53:98:42:f7:61:8b:7c:69:0c:22:75: 6a:34:af:11 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZk4OXpmoDOv6g5qJNurfkDPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMWQ2ODE0Mzc1MjcxZDFhM2NiZDEyMTU1ZGIxMWQyYmQ0 MWE4ZDMwHhcNMjUwOTExMTAwMTU0WhcNMjUwOTEyMTAwMTU0WjAzMTEwLwYDVQQD Eyg3MDE1ZWRmZTFiNjJmZWVhMzEyN2M4N2IwMWE4MmZmNDM4MWY3YmM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtF4FLL3Hq2D/7BB8hecWIiVnRShc Ilv7ea1VH8/hfuy8PoRQ1Ywjgrw4dxBiVLaKNyI4Jj7A6Wg/6hkjwyUypyJw9+js DNojSaWOO9sKXQcvSVg8lj03sJNPEMvHQ/0Gz6XTn+okEBhwAzaDwfd9dTm321p7 WARZVImnDL0Y07jWUSpKXVgiKX2lDRQzyKx12fZFpPHGttFESs/iIgkyn3C0sFLm 5tR9/6MMbXunWgFvXk0h4C7zMyZmmai041QfhNxxeVwgMtk9yXwWGx13oycSmifH 8behmqglTbl2c1bEkx89Z2UktNqwEP70g8iJ01EVPV/ZaFnGgDRdQJIyoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHAV7f4bYv7qMSfIewGoL/Q4H3vIMB8GA1UdIwQY MBaAFBEdaBQ3UnHRo8vRIVXbEdK9QajTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQt MjcxZDI1ZTIwNTc0LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQtMjcxZDI1ZTIwNTc0 LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ3cqeMCu mmcRKNIE6mDDHMRKNlihL1ja+DSUNtAtilYHBg4oH2unHBBRkjUMfxBQqw1IMmDS TGQdSonnQH06yTZJGhYKB+IM35CBRDHSxqfOpvCCkAQ3IXKvlTqOMnbcOgTOFBxC NKXKZiv1MS2Nv2rhgoSgkE4sWTycBkcFSJEhfggHNo86+OM6pUXTMT12Adcq2YVV mB2Vu8p7VJcnzbVckjfpDTSYXCwFFG7s5lLYJCPEHvLF5XQ9DlNFp4jpzAgPvI0j TGpX5+3zp4J3CP/33iL+O0FiZ4mVnVNyGQr25/3EI5uUElVWfF+VFzscGVOYQvdh i3xpDCJ1ajSvEQ== -----END CERTIFICATE-----Generated at Thu Sep 11 11:45:09 2025 by rpki-client