$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft File: rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft (raw, json) Hash identifier: ugt9AClCCd/8aE1iIHLmlYAsgcOa3kM6mJo6/fdIwDw= Subject key identifier: D1:6D:9A:77:36:F4:8B:12:21:78:47:2D:67:63:39:6B:99:C7:B5:12 Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Certificate serial: 0197B77C9ED2C2F2BC73D7132DCD32542CF0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft Manifest number: 15F8 Signing time: Sat 28 Jun 2025 17:01:26 +0000 Manifest this update: Sat 28 Jun 2025 17:01:26 +0000 Manifest next update: Sun 29 Jun 2025 17:01:26 +0000 Files and hashes: 1: 0SyYaQgLQzTmHyjwALNgjgW6Ips.roa (hash: 9FZRGxKEG0jtfYGiry8IM0OKO6/JFkO8TxODVgljdw8=) 2: 14T-yR595pYQLnI4P4fbXUmbkNI.roa (hash: ujAl/ku+dkQ5mGeO+VIy0fpmzvNm5EBe8cbs1OH3tig=) 3: 1oM3GP4XRi0mqDBcN0k0C4RTdHY.roa (hash: Eqko1gSCAK/Ec5hGsjBzpPB0Hmmto77uxcqKM6nkuos=) 4: 4rBl4Xgj-eyO-Qb6KkYRdP_q3yA.roa (hash: 9Fg4JBY24DsNxM7h9nmxlQnxm85kk0BWdXCDra924l8=) 5: D-_QiVeAYymMyrqyEwwxZVlJ77w.roa (hash: pLHDIfQfn00HxVAd67SY9GUFCYPJH9fT0t4z495xhcU=) 6: I49sO32imbdn9nfJ0l-il2Ef_jY.roa (hash: k2Ksa8ZIkYwAdo7qnIBXutPiCFJfdjd5EjsrD8efaro=) 7: PQ4JRK_v8Rb4S6Y1Hjjg1mh8-RM.roa (hash: 6S6SDi+NoevpWtxjp+Phs+mUreAi/RCvfLId1bbLsWc=) 8: SHESx2HqUfWZxboQ6jP2hImYKmU.roa (hash: OlCdziBdwRc0FY5ejIFVQ8Nt867ISEKKLNxKfPnLzFA=) 9: TevPA31zpqIvq6GeQSDxtNa30UQ.roa (hash: 2nDbpMbvjKPaiiXiHqb4sCzw1FXoCOAaM9XlGLGbhC8=) 10: U2a4Mi5anG6MoVx-kSkOlCHuZ9U.roa (hash: WzVg8UcZ00h0mbpXiGBDaneFB3IZyzn0LFRbQNJ9OXc=) 11: UU4qmywXJeD0s-bEtA06YqQJbXY.roa (hash: U8vbKeUDnyxjI4tldoiMN64co7xQZg9nWw+wDHbmz3c=) 12: bHfPn3msgwx5FPQ-Adt7HpQNCIk.roa (hash: mn8L9NM8fYmycQe3GG9bUyJmLWRnJsF0fPb8aD5LaTM=) 13: bicuo27VbekDKZ2baxGyIAeBOBw.roa (hash: SWEpCpnN+xzcUkxLs6Bt4xTFqOqzIoS1IpAm8o8Z7uw=) 14: cbX3FwOgi9rS1ENe_k5BLCxVdg4.roa (hash: 35j9cePlwM12en+EIoj2uwLnq2TReRAiO2SX/9vwgDk=) 15: d15xz2wDYoFUwdFtDFCYutWPOZE.roa (hash: iUtxP8YPi9EAjdDD2kqSiWotelk+W31zZ06ojPLu7Ao=) 16: icTWsoKn_xk3KExZZn417x-Qv84.roa (hash: o9OMiruJYKHV5Ad+C6iuA4/zkZ1aBjsbg8MEUFVbq0o=) 17: nwRRU278nZ-OoZkxunLEdDGvAcI.roa (hash: XtojZB9yoPUFiPBHYDNCJYd8iy1TyLCfmu2Ry8BmvwU=) 18: rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl (hash: kDl5Md4AqGsnCSj9jHBzd+YTxWU790o7KMxeKZbOS3I=) 19: xZHK8sMXJRR9tFEPi8Dz0m2XwJE.roa (hash: P4VjA7AD0Rq8qJwX9hUh9U04YYNDoPlLqjbXRLiEoic=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 15:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:b7:7c:9e:d2:c2:f2:bc:73:d7:13:2d:cd:32:54:2c:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Validity Not Before: Jun 28 17:01:26 2025 GMT Not After : Jun 29 17:01:26 2025 GMT Subject: CN=d16d9a7736f48b122178472d6763396b99c7b512 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:31:59:3b:a8:d3:1f:83:c6:ef:5f:24:56:f8: b3:52:de:f2:97:ee:6d:33:7c:3b:5b:9e:5f:5c:0c: e0:07:c9:ac:71:8a:12:8f:0b:10:a0:91:aa:03:ec: 99:6d:21:d9:6f:fc:97:62:e3:19:12:1f:a0:f0:4c: 63:4f:06:1b:9f:d5:ba:c7:62:3c:41:f5:d0:18:71: 3f:32:bc:c6:4b:c1:28:10:b8:04:32:0c:ae:58:59: 28:ff:3f:c0:1f:bc:59:4a:47:cc:ac:e8:06:72:15: 89:ea:4c:ba:62:5a:bf:0f:66:b0:fb:8a:28:bc:a1: 66:c1:12:04:79:a0:42:de:cf:18:0b:fa:e4:f9:e5: 09:6d:cc:83:51:04:86:a9:7c:7b:a7:8f:3f:9c:60: 67:9d:07:5a:6b:c9:f6:bc:97:a2:94:e1:46:ad:27: 0b:4e:79:73:37:b6:39:34:2a:01:9c:28:0c:05:48: 9b:fb:bd:be:15:a3:27:94:07:34:90:0a:2a:9f:8e: e4:24:40:7e:e6:0b:c1:1c:46:aa:a6:3c:79:a5:c1: 6d:6a:b8:ba:51:b5:09:79:e4:e1:76:15:3d:fe:fb: a6:9a:fa:98:2f:b9:72:ef:cc:97:ff:50:33:12:95: 8d:03:8f:39:52:48:d3:50:d0:e9:74:47:0b:60:6e: 72:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:6D:9A:77:36:F4:8B:12:21:78:47:2D:67:63:39:6B:99:C7:B5:12 X509v3 Authority Key Identifier: keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:74:5e:9e:71:fe:e4:4b:0c:46:fd:51:0f:8a:52:43:01:4b: 1e:cd:11:c7:99:cf:8b:4a:7f:20:f3:fb:86:cf:2b:d6:41:00: 6a:2a:a3:ed:e0:3a:ce:22:53:9f:6f:e7:58:ff:af:0a:8b:0a: d7:ce:24:7d:81:a5:01:8f:96:0b:c1:5c:19:08:dc:fc:af:b3: ab:fe:1b:8b:6b:be:62:03:be:a3:a5:f2:1d:1c:d9:76:ed:5a: 81:c5:67:60:b4:76:33:35:13:27:57:f9:ff:27:8d:88:b2:76: c2:a9:77:c1:e4:de:f2:8c:b3:a2:f3:47:0e:7f:5f:d1:eb:f4: 6f:6f:a5:13:43:a8:e0:c0:d4:84:87:91:9c:88:55:85:2c:0c: 9a:88:5b:05:a5:70:3a:79:2b:e1:9f:ce:4d:f5:54:36:f6:6d: a9:76:c8:62:88:b3:17:f1:d0:ba:23:d9:ae:ce:fa:54:6c:f0: 87:37:77:63:20:79:55:d5:31:08:24:69:06:24:7f:17:e8:cf: b8:63:f2:f0:61:aa:3a:8f:fb:db:55:db:1a:18:ae:e1:ec:93: 56:fb:ef:02:2a:02:0e:63:76:f4:96:22:87:29:04:4b:88:ac: 08:34:12:d7:79:04:40:cd:6e:48:c5:54:e1:bf:11:34:fc:ae: f8:ac:11:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZe3fJ7SwvK8c9cTLc0yVCzwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMGRhNDNiNGE1ZDNkYjc4YmEzZjc3NGU1YjMxYjc3MDM3 MjAyZDUwHhcNMjUwNjI4MTcwMTI2WhcNMjUwNjI5MTcwMTI2WjAzMTEwLwYDVQQD EyhkMTZkOWE3NzM2ZjQ4YjEyMjE3ODQ3MmQ2NzYzMzk2Yjk5YzdiNTEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0DFZO6jTH4PG718kVvizUt7yl+5t M3w7W55fXAzgB8mscYoSjwsQoJGqA+yZbSHZb/yXYuMZEh+g8ExjTwYbn9W6x2I8 QfXQGHE/MrzGS8EoELgEMgyuWFko/z/AH7xZSkfMrOgGchWJ6ky6Ylq/D2aw+4oo vKFmwRIEeaBC3s8YC/rk+eUJbcyDUQSGqXx7p48/nGBnnQdaa8n2vJeilOFGrScL TnlzN7Y5NCoBnCgMBUib+72+FaMnlAc0kAoqn47kJEB+5gvBHEaqpjx5pcFtari6 UbUJeeThdhU9/vummvqYL7ly78yX/1AzEpWNA485UkjTUNDpdEcLYG5yeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNFtmnc29IsSIXhHLWdjOWuZx7USMB8GA1UdIwQY MBaAFK0NpDtKXT23i6P3dOWzG3cDcgLVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTct YzUxNWYzNTRjYzVhLzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTctYzUxNWYzNTRjYzVh LzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApnRennH+ 5EsMRv1RD4pSQwFLHs0Rx5nPi0p/IPP7hs8r1kEAaiqj7eA6ziJTn2/nWP+vCosK 184kfYGlAY+WC8FcGQjc/K+zq/4bi2u+YgO+o6XyHRzZdu1agcVnYLR2MzUTJ1f5 /yeNiLJ2wql3weTe8oyzovNHDn9f0ev0b2+lE0Oo4MDUhIeRnIhVhSwMmohbBaVw Onkr4Z/OTfVUNvZtqXbIYoizF/HQuiPZrs76VGzwhzd3YyB5VdUxCCRpBiR/F+jP uGPy8GGqOo/721XbGhiu4eyTVvvvAioCDmN29JYihykES4isCDQS13kEQM1uSMVU 4b8RNPyu+KwRdg== -----END CERTIFICATE-----Generated at Sat Jun 28 22:52:18 2025 by rpki-client