$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft File: rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft (raw, json) Hash identifier: ZpSbl0p3yR0fsrqZr5aZ6X+LWz8+RXOBtaDgurA7Mq0= Subject key identifier: C0:E0:F5:36:FD:1A:65:10:E6:CD:6D:F2:E8:14:EC:4C:F6:F0:06:06 Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Certificate serial: 0199FCFD9D25202EA071F6611F9FD003049E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft Manifest number: 172A Signing time: Sun 19 Oct 2025 15:01:43 +0000 Manifest this update: Sun 19 Oct 2025 15:01:43 +0000 Manifest next update: Mon 20 Oct 2025 15:01:43 +0000 Files and hashes: 1: 0ztpdIPZKD6tLdnP79sm1hMOXpI.roa (hash: V+undJDS0h8d8CYJ+c34sHP0OtxUuBa8a+o8Uohmb0E=) 2: 1oM3GP4XRi0mqDBcN0k0C4RTdHY.roa (hash: Eqko1gSCAK/Ec5hGsjBzpPB0Hmmto77uxcqKM6nkuos=) 3: 4rBl4Xgj-eyO-Qb6KkYRdP_q3yA.roa (hash: 9Fg4JBY24DsNxM7h9nmxlQnxm85kk0BWdXCDra924l8=) 4: 5s050sybnU_qDLTadTW4Cbc1oa4.roa (hash: ul22+y65UhFi/PV4KsevDJSKijOmKuUMMb7YcjmOBq0=) 5: AkuNATViTFoUsLRTBmxq5TZta1U.roa (hash: +ALe8BR6dBzO5s8AWGnd/n4M4kjwqZrGPKmd2bf8aB0=) 6: D-_QiVeAYymMyrqyEwwxZVlJ77w.roa (hash: pLHDIfQfn00HxVAd67SY9GUFCYPJH9fT0t4z495xhcU=) 7: I49sO32imbdn9nfJ0l-il2Ef_jY.roa (hash: k2Ksa8ZIkYwAdo7qnIBXutPiCFJfdjd5EjsrD8efaro=) 8: JWGGkRuJCVyXIJf7U_Tllx9GvLo.roa (hash: q2mwtM0pyYItD49ctwOqLjVJYv5g0mJ64QH0B7oRSCM=) 9: PQ4JRK_v8Rb4S6Y1Hjjg1mh8-RM.roa (hash: 6S6SDi+NoevpWtxjp+Phs+mUreAi/RCvfLId1bbLsWc=) 10: SHESx2HqUfWZxboQ6jP2hImYKmU.roa (hash: OlCdziBdwRc0FY5ejIFVQ8Nt867ISEKKLNxKfPnLzFA=) 11: TevPA31zpqIvq6GeQSDxtNa30UQ.roa (hash: 2nDbpMbvjKPaiiXiHqb4sCzw1FXoCOAaM9XlGLGbhC8=) 12: U2a4Mi5anG6MoVx-kSkOlCHuZ9U.roa (hash: WzVg8UcZ00h0mbpXiGBDaneFB3IZyzn0LFRbQNJ9OXc=) 13: UU4qmywXJeD0s-bEtA06YqQJbXY.roa (hash: U8vbKeUDnyxjI4tldoiMN64co7xQZg9nWw+wDHbmz3c=) 14: bicuo27VbekDKZ2baxGyIAeBOBw.roa (hash: SWEpCpnN+xzcUkxLs6Bt4xTFqOqzIoS1IpAm8o8Z7uw=) 15: cbX3FwOgi9rS1ENe_k5BLCxVdg4.roa (hash: 35j9cePlwM12en+EIoj2uwLnq2TReRAiO2SX/9vwgDk=) 16: icTWsoKn_xk3KExZZn417x-Qv84.roa (hash: o9OMiruJYKHV5Ad+C6iuA4/zkZ1aBjsbg8MEUFVbq0o=) 17: nwRRU278nZ-OoZkxunLEdDGvAcI.roa (hash: XtojZB9yoPUFiPBHYDNCJYd8iy1TyLCfmu2Ry8BmvwU=) 18: rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl (hash: fn345fA1M8AEvGq2b08JqaBNAoKSWJzKP1yDXySL1/E=) 19: ya7mSjgbQNkjSkwREdHvHfCPb0I.roa (hash: qGz6FzpRmDdb9Ho0LXX5sUlrsbd9atIt02hL0IbJ65M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 11:18:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:fc:fd:9d:25:20:2e:a0:71:f6:61:1f:9f:d0:03:04:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Validity Not Before: Oct 19 15:01:43 2025 GMT Not After : Oct 20 15:01:43 2025 GMT Subject: CN=c0e0f536fd1a6510e6cd6df2e814ec4cf6f00606 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1f:17:94:a5:6c:a0:77:9e:7f:65:f5:9d:53: 67:46:66:0c:52:34:2e:d2:14:99:47:d2:f6:fd:87: be:c4:11:fe:11:26:7d:c9:23:ca:ed:93:69:30:65: 3a:04:1f:9e:3e:00:ff:cc:08:b6:3a:b5:23:97:b8: a0:b6:d8:f3:51:af:e9:cd:b4:b9:ab:d2:ab:93:7b: c0:51:40:c1:d4:92:77:cc:c5:50:51:b7:1e:bd:06: 46:81:91:48:12:70:a8:91:ae:78:80:c1:48:78:68: 3e:c8:46:b5:6e:46:42:77:79:0a:a8:14:ec:09:41: b8:7e:9d:5d:a9:1f:cd:2d:05:97:d8:6e:60:3e:dd: f9:c8:1e:f2:ac:81:52:28:9c:29:2a:7c:e8:9e:57: 21:10:70:41:47:26:ca:9c:c3:90:4f:39:f6:72:6a: 0d:c3:0f:b1:5b:56:2a:1d:42:38:fe:17:61:f8:94: ee:0a:2d:20:6b:3a:95:87:d4:64:35:6c:77:69:ff: 62:37:4e:bf:7f:7c:d2:52:c9:49:d2:fb:d5:78:b6: 06:0d:d4:62:9d:de:d6:59:56:cb:9d:2f:eb:b7:6c: a6:55:50:ed:50:6a:b0:4f:67:71:a1:af:6b:4a:02: a3:b3:d5:cf:1a:25:b5:2d:d4:9e:10:df:41:a4:83: f0:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:E0:F5:36:FD:1A:65:10:E6:CD:6D:F2:E8:14:EC:4C:F6:F0:06:06 X509v3 Authority Key Identifier: keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:00:01:a8:50:14:2f:80:d6:11:b4:19:b8:72:4b:f4:a7:c8: 9c:ac:d2:2b:a0:03:9a:06:ca:20:a2:50:42:af:1a:06:b0:af: 9e:ff:7e:fc:42:9e:d8:0c:40:22:ec:e5:3f:c2:e5:83:40:f5: 74:ab:f1:13:3d:7d:2c:e1:72:5b:de:c6:c6:7f:13:34:80:5a: 5b:59:c7:87:05:b8:66:7f:1c:52:70:f4:62:1d:c4:aa:00:0b: 10:67:c9:d1:20:e5:82:89:13:a2:87:70:7a:95:77:36:11:3f: 12:9c:eb:d3:81:8f:f4:3d:6f:ea:5d:63:ca:89:f7:2f:25:67: 3a:7e:e2:2f:6b:b1:7a:1e:64:b7:df:54:ea:95:dd:09:04:68: bb:f2:e6:b6:37:f5:0a:60:e9:05:39:4c:d5:07:d7:d5:5e:c5: 69:11:8a:57:16:20:cf:21:e2:8f:44:e6:40:1d:4f:df:ff:b4: ea:6d:6f:32:d0:29:48:9a:17:8c:ba:29:fe:76:90:18:b8:df: 3f:c5:ed:ac:62:be:02:c5:af:11:45:11:bc:01:c9:2e:54:8a: 4f:59:5f:d4:dd:f3:db:4b:df:22:37:19:e7:0d:04:c7:be:b8: 71:8b:e3:5c:f7:b6:1d:aa:72:d7:93:aa:d4:cc:b5:7c:51:45: 29:85:ef:ff -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZn8/Z0lIC6gcfZhH5/QAwSeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMGRhNDNiNGE1ZDNkYjc4YmEzZjc3NGU1YjMxYjc3MDM3 MjAyZDUwHhcNMjUxMDE5MTUwMTQzWhcNMjUxMDIwMTUwMTQzWjAzMTEwLwYDVQQD EyhjMGUwZjUzNmZkMWE2NTEwZTZjZDZkZjJlODE0ZWM0Y2Y2ZjAwNjA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzh8XlKVsoHeef2X1nVNnRmYMUjQu 0hSZR9L2/Ye+xBH+ESZ9ySPK7ZNpMGU6BB+ePgD/zAi2OrUjl7igttjzUa/pzbS5 q9Krk3vAUUDB1JJ3zMVQUbcevQZGgZFIEnCoka54gMFIeGg+yEa1bkZCd3kKqBTs CUG4fp1dqR/NLQWX2G5gPt35yB7yrIFSKJwpKnzonlchEHBBRybKnMOQTzn2cmoN ww+xW1YqHUI4/hdh+JTuCi0gazqVh9RkNWx3af9iN06/f3zSUslJ0vvVeLYGDdRi nd7WWVbLnS/rt2ymVVDtUGqwT2dxoa9rSgKjs9XPGiW1LdSeEN9BpIPweQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMDg9Tb9GmUQ5s1t8ugU7Ez28AYGMB8GA1UdIwQY MBaAFK0NpDtKXT23i6P3dOWzG3cDcgLVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTct YzUxNWYzNTRjYzVhLzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTctYzUxNWYzNTRjYzVh LzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWwABqFAU L4DWEbQZuHJL9KfInKzSK6ADmgbKIKJQQq8aBrCvnv9+/EKe2AxAIuzlP8Llg0D1 dKvxEz19LOFyW97Gxn8TNIBaW1nHhwW4Zn8cUnD0Yh3EqgALEGfJ0SDlgokToodw epV3NhE/Epzr04GP9D1v6l1jyon3LyVnOn7iL2uxeh5kt99U6pXdCQRou/Lmtjf1 CmDpBTlM1QfX1V7FaRGKVxYgzyHij0TmQB1P3/+06m1vMtApSJoXjLop/naQGLjf P8XtrGK+AsWvEUURvAHJLlSKT1lf1N3z20vfIjcZ5w0Ex764cYvjXPe2Hapy15Oq 1My1fFFFKYXv/w== -----END CERTIFICATE-----Generated at Sun Oct 19 18:15:17 2025 by rpki-client