$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft File: rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft (raw, json) Hash identifier: yTuC1/Wc7HD/ci8Xj78voZZOhRo9GHHw+JAkLKwl5lU= Subject key identifier: 16:5E:E8:32:FD:FE:55:36:A3:3D:3D:06:7C:C1:03:47:D4:D1:E7:D0 Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Certificate serial: 0198D54E0E4CB7506E5E5B6EA340C8E669AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft Manifest number: 168E Signing time: Sat 23 Aug 2025 05:01:59 +0000 Manifest this update: Sat 23 Aug 2025 05:01:59 +0000 Manifest next update: Sun 24 Aug 2025 05:01:59 +0000 Files and hashes: 1: 0SyYaQgLQzTmHyjwALNgjgW6Ips.roa (hash: 9FZRGxKEG0jtfYGiry8IM0OKO6/JFkO8TxODVgljdw8=) 2: 14T-yR595pYQLnI4P4fbXUmbkNI.roa (hash: ujAl/ku+dkQ5mGeO+VIy0fpmzvNm5EBe8cbs1OH3tig=) 3: 1oM3GP4XRi0mqDBcN0k0C4RTdHY.roa (hash: Eqko1gSCAK/Ec5hGsjBzpPB0Hmmto77uxcqKM6nkuos=) 4: 4rBl4Xgj-eyO-Qb6KkYRdP_q3yA.roa (hash: 9Fg4JBY24DsNxM7h9nmxlQnxm85kk0BWdXCDra924l8=) 5: AkuNATViTFoUsLRTBmxq5TZta1U.roa (hash: +ALe8BR6dBzO5s8AWGnd/n4M4kjwqZrGPKmd2bf8aB0=) 6: D-_QiVeAYymMyrqyEwwxZVlJ77w.roa (hash: pLHDIfQfn00HxVAd67SY9GUFCYPJH9fT0t4z495xhcU=) 7: I49sO32imbdn9nfJ0l-il2Ef_jY.roa (hash: k2Ksa8ZIkYwAdo7qnIBXutPiCFJfdjd5EjsrD8efaro=) 8: JWGGkRuJCVyXIJf7U_Tllx9GvLo.roa (hash: q2mwtM0pyYItD49ctwOqLjVJYv5g0mJ64QH0B7oRSCM=) 9: PQ4JRK_v8Rb4S6Y1Hjjg1mh8-RM.roa (hash: 6S6SDi+NoevpWtxjp+Phs+mUreAi/RCvfLId1bbLsWc=) 10: SHESx2HqUfWZxboQ6jP2hImYKmU.roa (hash: OlCdziBdwRc0FY5ejIFVQ8Nt867ISEKKLNxKfPnLzFA=) 11: TevPA31zpqIvq6GeQSDxtNa30UQ.roa (hash: 2nDbpMbvjKPaiiXiHqb4sCzw1FXoCOAaM9XlGLGbhC8=) 12: U2a4Mi5anG6MoVx-kSkOlCHuZ9U.roa (hash: WzVg8UcZ00h0mbpXiGBDaneFB3IZyzn0LFRbQNJ9OXc=) 13: UU4qmywXJeD0s-bEtA06YqQJbXY.roa (hash: U8vbKeUDnyxjI4tldoiMN64co7xQZg9nWw+wDHbmz3c=) 14: bHfPn3msgwx5FPQ-Adt7HpQNCIk.roa (hash: mn8L9NM8fYmycQe3GG9bUyJmLWRnJsF0fPb8aD5LaTM=) 15: bicuo27VbekDKZ2baxGyIAeBOBw.roa (hash: SWEpCpnN+xzcUkxLs6Bt4xTFqOqzIoS1IpAm8o8Z7uw=) 16: cbX3FwOgi9rS1ENe_k5BLCxVdg4.roa (hash: 35j9cePlwM12en+EIoj2uwLnq2TReRAiO2SX/9vwgDk=) 17: icTWsoKn_xk3KExZZn417x-Qv84.roa (hash: o9OMiruJYKHV5Ad+C6iuA4/zkZ1aBjsbg8MEUFVbq0o=) 18: nwRRU278nZ-OoZkxunLEdDGvAcI.roa (hash: XtojZB9yoPUFiPBHYDNCJYd8iy1TyLCfmu2Ry8BmvwU=) 19: pTp6RUrUCMxAVwwEyObJoI9FgUo.roa (hash: 31GS9EncPmPzR2DkvO+/C4bnToRE3RwTxUOXXgxEo7c=) 20: rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl (hash: 1sxEWzNSWRbiPuqO0DN+dabXaxEscqC8fJmbVlmEH1U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 00:37:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:d5:4e:0e:4c:b7:50:6e:5e:5b:6e:a3:40:c8:e6:69:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Validity Not Before: Aug 23 05:01:59 2025 GMT Not After : Aug 24 05:01:59 2025 GMT Subject: CN=165ee832fdfe5536a33d3d067cc10347d4d1e7d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8f:fd:ab:ca:5d:57:4d:01:9f:ee:db:28:11: da:a5:51:14:d1:1e:20:bd:03:60:a7:78:f1:f9:44: 4b:c1:95:d9:7d:88:ed:b5:e4:2d:f2:32:37:cf:3b: 7b:3a:49:bc:ce:c5:56:ef:46:7b:b6:91:26:3f:da: 72:38:47:94:a4:a9:ad:7b:ca:92:15:a8:63:5a:98: 41:99:35:2c:c9:79:06:33:e5:cd:3d:b4:69:d9:a0: a6:3c:b8:6d:18:db:db:9d:cc:e1:56:03:77:fb:90: c5:00:78:83:25:b8:fa:2d:5e:ca:aa:38:d2:6f:2e: 41:f3:a9:69:2b:5f:df:76:c5:84:d6:75:f6:e2:70: f0:2e:dc:7a:c5:dd:23:16:e2:ff:98:e4:28:0e:0e: 67:67:00:bd:b6:9a:f4:9c:12:91:20:19:c5:6b:8d: f9:f6:b7:cc:83:f5:0f:b9:9d:a0:78:37:d7:af:10: 50:31:99:57:b4:6b:d8:d8:9d:19:a2:88:2c:b8:81: ca:5d:99:8a:36:7b:86:31:10:fb:e2:4e:a2:cf:10: 5e:73:0c:c5:9b:29:72:7a:1e:f5:68:f1:6c:4d:1c: f7:9e:71:09:d0:86:76:f6:41:d8:76:44:4c:e6:cb: 97:28:26:60:e4:57:0e:b4:91:d2:64:65:85:bd:42: da:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:5E:E8:32:FD:FE:55:36:A3:3D:3D:06:7C:C1:03:47:D4:D1:E7:D0 X509v3 Authority Key Identifier: keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:28:34:65:74:0d:fe:90:80:71:64:6c:c2:fb:12:c4:e3:b2: 89:96:4c:8c:f8:8d:2a:9c:c0:93:f9:ce:0f:3e:23:11:4a:b4: d6:ca:f7:96:17:e8:d9:a3:a8:f6:5c:a5:f8:d5:75:f9:e2:3b: 60:03:c9:e2:ce:e2:b6:15:95:cb:0a:0b:83:cb:e7:a2:b9:b9: 32:29:c1:02:79:b7:4e:52:74:4c:dd:82:29:f9:9d:23:45:62: 1c:c0:57:df:c2:a5:b6:2e:97:e8:0a:cd:3a:36:6d:ae:2b:45: 65:c9:6d:b7:1e:49:c6:59:65:e6:fe:4b:9c:29:87:d4:d2:fa: 3b:2c:22:01:96:dd:57:d1:dc:5c:8c:6f:41:07:d2:1a:78:be: 97:a8:69:e0:96:ca:07:8f:8e:9c:b4:9b:36:c5:fa:f7:c6:c7: d8:6e:95:96:0b:54:74:2a:a6:25:09:5c:c7:0e:ff:ab:ce:58: 87:f3:34:4e:7d:0f:e7:2a:40:b7:95:bc:fd:77:e4:2a:35:3c: 00:a5:46:d3:03:61:23:ea:b7:49:31:cd:f4:b2:ae:7f:ee:dc: 9d:43:fa:bc:aa:ba:25:94:1f:a9:6d:4d:cf:96:19:7a:c1:5b: 37:3c:ae:1b:29:41:54:e7:91:af:6f:d2:ed:51:4f:ef:aa:52: 67:03:5b:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjVTg5Mt1BuXltuo0DI5mmsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMGRhNDNiNGE1ZDNkYjc4YmEzZjc3NGU1YjMxYjc3MDM3 MjAyZDUwHhcNMjUwODIzMDUwMTU5WhcNMjUwODI0MDUwMTU5WjAzMTEwLwYDVQQD EygxNjVlZTgzMmZkZmU1NTM2YTMzZDNkMDY3Y2MxMDM0N2Q0ZDFlN2QwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvo/9q8pdV00Bn+7bKBHapVEU0R4g vQNgp3jx+URLwZXZfYjtteQt8jI3zzt7Okm8zsVW70Z7tpEmP9pyOEeUpKmte8qS FahjWphBmTUsyXkGM+XNPbRp2aCmPLhtGNvbnczhVgN3+5DFAHiDJbj6LV7KqjjS by5B86lpK1/fdsWE1nX24nDwLtx6xd0jFuL/mOQoDg5nZwC9tpr0nBKRIBnFa435 9rfMg/UPuZ2geDfXrxBQMZlXtGvY2J0ZoogsuIHKXZmKNnuGMRD74k6izxBecwzF mylyeh71aPFsTRz3nnEJ0IZ29kHYdkRM5suXKCZg5FcOtJHSZGWFvULaxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBZe6DL9/lU2oz09BnzBA0fU0efQMB8GA1UdIwQY MBaAFK0NpDtKXT23i6P3dOWzG3cDcgLVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTct YzUxNWYzNTRjYzVhLzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTctYzUxNWYzNTRjYzVh LzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASCg0ZXQN /pCAcWRswvsSxOOyiZZMjPiNKpzAk/nODz4jEUq01sr3lhfo2aOo9lyl+NV1+eI7 YAPJ4s7ithWVywoLg8vnorm5MinBAnm3TlJ0TN2CKfmdI0ViHMBX38Klti6X6ArN OjZtritFZclttx5Jxlll5v5LnCmH1NL6OywiAZbdV9HcXIxvQQfSGni+l6hp4JbK B4+OnLSbNsX698bH2G6VlgtUdCqmJQlcxw7/q85Yh/M0Tn0P5ypAt5W8/XfkKjU8 AKVG0wNhI+q3STHN9LKuf+7cnUP6vKq6JZQfqW1Nz5YZesFbNzyuGylBVOeRr2/S 7VFP76pSZwNbPg== -----END CERTIFICATE-----Generated at Sat Aug 23 10:24:06 2025 by rpki-client