$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft File: 520NqzR6OOK4e1oiovfJ4hwYybw.mft (raw, json) Hash identifier: 9Li3DjvaTtGWv6q/ZVEfGdmTp6AX9QxZV+Qzu5pe5Fk= Subject key identifier: 6A:78:29:21:93:90:AD:87:26:19:E8:49:9B:0B:A6:B7:90:2C:6D:61 Authority key identifier: E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC Certificate issuer: /CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Certificate serial: 0198D473FF3FC5DC932F43D32609EEDE7848 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft Manifest number: 1136 Signing time: Sat 23 Aug 2025 01:03:48 +0000 Manifest this update: Sat 23 Aug 2025 01:03:48 +0000 Manifest next update: Sun 24 Aug 2025 01:03:48 +0000 Files and hashes: 1: 1-i_ESwYWDKjvxe-cLQFb33q5Qu0.roa (hash: MWN71QN/v297mIABIQi0BIqexEx6vQv3LxWHulQ1lh0=) 2: 3uMGCa1hGu4z3o3-_G7z4ipL-iU.roa (hash: W9UTR4UDUFmqfh0USMFmsobpW7zQlT5fd2b07I+b238=) 3: 520NqzR6OOK4e1oiovfJ4hwYybw.crl (hash: +ONot1cfJPqFSxYCwngdAANPXpr+Qyb3XW0s91j/Nig=) 4: 53Cd6ksm6jJ9RlO5imUtuWj1rJA.roa (hash: cQll3lCbJxJtoxzsBZdQMm8ZJ1gmBBCp3yO2flYfKKU=) 5: 5aybWk2Ky5dF88Dl5BHsEFM1SO0.roa (hash: H+JwBN0SZWGViTYdzpWvA1lltG+ihuV8ot5mKPyc2Ag=) 6: D51k8Yufzem8ogKjVaG-BE3-N9Q.roa (hash: LfZnqpQQPapIc1GbVrcmd90U2aDXCgwED1y7JLo14nI=) 7: EEzCfGegHPEpdqTqvMRMlcFre1Y.roa (hash: uwoju1vAFdOs3H0Q+w/qT7aEQBJpMP98DiaXonyIQ9M=) 8: EQAhdlSS1FIFJlau-mazb3tbQD8.roa (hash: EYIWh35VYrIjFevk0wSjam09x/CTgAsspbJddnJMeDU=) 9: PLzlfTmqAL1rzlLN1TFrpHpYMVU.roa (hash: INujx6I3LZF9XIVr4zE9W5J6NHU6IlkfUKgf+j8aJrU=) 10: QCPaGZ8bi2Da50RQ4k8ya1w0dq4.roa (hash: UeTuehE3XWxqnHJAwNv7xL7hPz4xW2vyEJKj+BsbTow=) 11: aAu5S5IbLCTcHF2sjNSq_YvIkRs.roa (hash: Ofs8Vq4O2KmWTmDnq5aKJmZojKw/IVecQ8WTuC45ixk=) 12: fjY_g_wwgFPVt57q0tJYGzzoSDw.roa (hash: qq4Ldl54/taiWut/8vwq9PH71gezdeLMf1VMPmsHUe8=) 13: nOw141dLNmkj2u2FTqG2Wvc-gVM.roa (hash: CQnQRUA/+q6ZVbEZKZtps04sWUzpVEunbxRhthCLZIQ=) 14: pw1_qD5J6o76enPdGNTr_4Viub8.roa (hash: L6pLEncIISYEMGBKzu7DbyUXVYEOgT4kfh4modTEATA=) 15: qigZWtFurHaD054OcaOqq49am_w.roa (hash: Sa19eTl0ldE9k7oxfeYcou5g3EZnF3X8bF0Hbur3zdE=) 16: tRNXUlx68rKP9UOE-hhExB1kws8.roa (hash: +Hd3tIKng2pbogIxn1dcX/j1LNU33NvuDwSbS4tdpEA=) 17: ve2cUb4I36o88cUncaHeOHK5tGk.roa (hash: 6gTupRG97QR/JQvN8ay2tdbOI4Q3EMkpnACGQxjxniI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 00:37:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:d4:73:ff:3f:c5:dc:93:2f:43:d3:26:09:ee:de:78:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Validity Not Before: Aug 23 01:03:48 2025 GMT Not After : Aug 24 01:03:48 2025 GMT Subject: CN=6a7829219390ad872619e8499b0ba6b7902c6d61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:99:d5:3c:8d:9d:86:60:e9:96:23:92:d3:15: f0:30:bc:86:76:78:5d:9d:6e:ad:03:5a:3a:59:e2: 28:e1:48:7c:95:59:88:f1:e7:54:6a:04:94:54:64: df:d6:36:78:5d:04:59:6b:cc:7b:9c:5a:59:23:a4: 88:9c:02:c9:ea:27:b9:24:2f:c3:24:0c:6b:f7:1d: b8:25:84:97:3f:e5:15:a2:0e:1f:c7:8e:10:a7:1c: 53:8b:d5:8b:2f:c5:13:7c:c9:ab:b5:ba:f2:91:d0: c0:61:2e:2e:a0:ca:f2:44:22:6a:60:47:b0:d6:87: 27:24:9c:93:9a:e2:4c:24:a6:56:68:55:dd:46:2d: eb:dc:65:63:2a:60:55:f2:16:48:7e:4d:17:dd:c8: 34:2d:78:33:b8:a1:0e:12:8e:55:72:5a:4b:a6:8c: 9f:df:c9:79:cf:2e:45:ac:a8:81:d9:18:29:0f:80: 18:5d:bb:49:80:46:37:a8:49:ae:76:71:4c:3f:71: 37:37:e1:79:22:6f:63:3f:d9:88:d0:32:f5:5c:c8: b5:fb:e9:c2:80:1b:dc:d7:ad:95:7e:c7:eb:f4:79: 20:85:16:0d:9a:10:fe:d6:8b:7b:96:05:37:bb:bf: ff:98:93:09:f9:10:e9:5f:05:9c:c1:ef:b6:48:ca: a0:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:78:29:21:93:90:AD:87:26:19:E8:49:9B:0B:A6:B7:90:2C:6D:61 X509v3 Authority Key Identifier: keyid:E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:a3:c1:ee:66:39:5d:aa:db:e8:cd:56:bd:fa:e6:89:06:e3: d2:86:94:f6:0b:21:23:48:82:65:af:17:19:48:fb:f2:3d:2c: 07:85:6a:8f:98:cb:7f:09:38:95:26:c3:04:62:4c:90:49:80: 00:cb:08:a9:ad:10:dd:f0:59:81:fa:c8:de:6b:98:72:2c:bb: bc:32:f6:5a:d2:a8:ce:33:6d:54:4a:82:20:96:99:e4:3f:4e: 1d:12:ac:12:1f:b4:61:79:2e:54:5e:cf:56:9e:d6:48:45:e5: 2d:a0:72:b1:e5:a5:25:54:60:5c:96:41:3c:17:6b:63:e1:46: e2:87:10:a0:48:70:3f:8b:57:ed:75:e6:b6:98:b0:8f:3e:3f: f6:ad:ea:c3:5f:a5:91:5c:46:93:b1:1b:16:ff:bf:3d:5c:55: 24:2c:6f:b7:43:64:d9:8c:9d:b2:c4:5c:90:37:7b:05:91:31: 47:cb:c1:67:dc:11:7b:be:d9:e9:93:d2:9e:84:f1:00:84:d5: 46:2c:f3:31:50:a8:83:2b:16:ca:b5:f4:08:35:44:27:59:43: d0:9c:a5:38:8a:fa:b6:10:65:1e:4e:92:88:de:0c:9e:87:18: de:1d:46:05:56:63:74:04:76:bd:4b:54:d6:2d:bc:56:ef:87: dc:7b:a1:60 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjUc/8/xdyTL0PTJgnu3nhIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3NmQwZGFiMzQ3YTM4ZTJiODdiNWEyMmEyZjdjOWUyMWMx OGM5YmMwHhcNMjUwODIzMDEwMzQ4WhcNMjUwODI0MDEwMzQ4WjAzMTEwLwYDVQQD Eyg2YTc4MjkyMTkzOTBhZDg3MjYxOWU4NDk5YjBiYTZiNzkwMmM2ZDYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpnVPI2dhmDpliOS0xXwMLyGdnhd nW6tA1o6WeIo4Uh8lVmI8edUagSUVGTf1jZ4XQRZa8x7nFpZI6SInALJ6ie5JC/D JAxr9x24JYSXP+UVog4fx44QpxxTi9WLL8UTfMmrtbrykdDAYS4uoMryRCJqYEew 1ocnJJyTmuJMJKZWaFXdRi3r3GVjKmBV8hZIfk0X3cg0LXgzuKEOEo5VclpLpoyf 38l5zy5FrKiB2RgpD4AYXbtJgEY3qEmudnFMP3E3N+F5Im9jP9mI0DL1XMi1++nC gBvc162Vfsfr9HkghRYNmhD+1ot7lgU3u7//mJMJ+RDpXwWcwe+2SMqg/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGp4KSGTkK2HJhnoSZsLpreQLG1hMB8GA1UdIwQY MBaAFOdtDas0ejjiuHtaIqL3yeIcGMm8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDkt YmQzYmZjOTliZGE5LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDktYmQzYmZjOTliZGE5 LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdKPB7mY5 Xarb6M1WvfrmiQbj0oaU9gshI0iCZa8XGUj78j0sB4Vqj5jLfwk4lSbDBGJMkEmA AMsIqa0Q3fBZgfrI3muYciy7vDL2WtKozjNtVEqCIJaZ5D9OHRKsEh+0YXkuVF7P Vp7WSEXlLaByseWlJVRgXJZBPBdrY+FG4ocQoEhwP4tX7XXmtpiwjz4/9q3qw1+l kVxGk7EbFv+/PVxVJCxvt0Nk2YydssRckDd7BZExR8vBZ9wRe77Z6ZPSnoTxAITV RizzMVCogysWyrX0CDVEJ1lD0JylOIr6thBlHk6SiN4MnocY3h1GBVZjdAR2vUtU 1i28Vu+H3HuhYA== -----END CERTIFICATE-----Generated at Sat Aug 23 09:39:53 2025 by rpki-client