$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.mft File: uqDyWO70sr9LuqhDDB5YyowYjqc.mft (raw, json) Hash identifier: USyuXzaP/ryzKocvFlHvOl/NPyDAEiJWdpz+zIRK0n8= Subject key identifier: BD:76:27:9B:89:76:DD:21:20:BC:A6:E5:95:74:BF:19:3F:5A:08:B2 Authority key identifier: BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 Certificate issuer: /CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Certificate serial: 0198D51623F79831E37C6FDF8587D39AAA3F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.mft Manifest number: 0155 Signing time: Sat 23 Aug 2025 04:00:54 +0000 Manifest this update: Sat 23 Aug 2025 04:00:54 +0000 Manifest next update: Sun 24 Aug 2025 04:00:54 +0000 Files and hashes: 1: 3BdeI36IkUxOlCqSmaZfu8I0p4g.roa (hash: 5N4fYvWW73MoWuT7eG7LCKSc0LhblTQNkeac5h0QDT0=) 2: Ej0LL4eQcyaFFBbIcZGn_RdKMlM.roa (hash: 5Q9FT9y6g9k2oW+zDGUAPIzpEKHxknBC6bu78NWYNzQ=) 3: NRaQo2jIQHJmAjiGhyJQMAA7WEc.roa (hash: 0SnrGVOF2i1D6j6ZzSnt0Wg4Lvrl2BITuiIqatxVhqk=) 4: Pv48cERpHgZrkEd-pA2cx5n0Dx4.roa (hash: ielywtJAKkxMoIx1w7LZ3LEuLxtsUUXOXr+8Yf+miBs=) 5: PzNxqQdkgSpGYxNc-jAx_r3OQ5w.roa (hash: TE0cVIygdHu8nD6ddQO4pl85tRSyEis9fR0YP4iCrQg=) 6: SGqR7-NUvAEVogscY-CAK6J21KE.roa (hash: X2CmxDVUZVVa0JFYlts3SwBBYG/8wgKZntgve8jmpjc=) 7: VlbvguPEwT0ZiaTTjcBDWmFtOiw.roa (hash: HczSJesZd0LFeqaaNpOq8EKjH3G6DmVNW/cvNPs5ySo=) 8: WSR-O9b0gsJsQFSKXSTL8eJBMpA.roa (hash: a3d83I3OM26Rcumlwo5C8tjA1sldnSwvJlMfN0DSpuw=) 9: dNdlikygHYW9_VCSMxVInvo5wAE.roa (hash: oANbFDFE9Ng6o6gqO/EcOwZNCNKxlzdWPW9zD7faSZw=) 10: pz5iKSS3DjXvuOKM5710xrPbd3k.roa (hash: BAQauhMx2S4URlRz7DXain/wmvSRTTI+4gS0hRToEQ8=) 11: qYtaBV1QHFqIX4Zzb9pAgcJ7FlM.roa (hash: lX56tQdRTgCel8q/Xo9AvRt49Mx4NjdnE/8coAHzSjc=) 12: uqDyWO70sr9LuqhDDB5YyowYjqc.crl (hash: Y3dOr14raiomnWds0I83mNv1wn+pQ8hlwDDTt0F36zI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.mft rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 04:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:d5:16:23:f7:98:31:e3:7c:6f:df:85:87:d3:9a:aa:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Validity Not Before: Aug 23 04:00:54 2025 GMT Not After : Aug 24 04:00:54 2025 GMT Subject: CN=bd76279b8976dd2120bca6e59574bf193f5a08b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ac:e3:b6:08:20:ce:0b:e9:1d:e0:76:af:c2: fd:f3:b6:35:99:65:5c:69:6e:36:43:97:4d:d3:8f: 54:1e:72:2d:bd:2a:3f:5f:5e:82:47:a6:ec:e9:ad: 18:05:cf:db:46:a9:03:30:76:a5:05:ad:0b:02:8d: c9:64:24:cb:1c:a7:3a:12:89:16:a1:90:8b:2d:a6: 16:46:f3:b2:5f:0e:3c:86:97:31:fb:3f:b9:e5:38: 4d:eb:9d:cc:33:cd:9f:fd:e2:5d:2e:3d:2f:8a:3c: f6:ea:54:d8:cc:fe:0c:0b:98:ca:b2:a0:eb:41:4d: 1f:d5:02:94:82:64:0c:31:04:a8:e7:58:89:7a:c9: da:5e:12:db:9b:97:98:52:69:16:82:98:a2:df:7c: 6d:82:ad:56:03:40:5f:90:63:d2:bb:4d:24:6c:e5: 32:7d:74:ce:09:b6:14:96:fe:71:9e:44:28:61:cd: 9b:73:c1:07:ea:b6:75:69:7d:05:60:c1:5a:06:fb: 6e:ba:bf:93:de:4e:e3:b3:7d:e1:fd:08:36:11:3b: a0:d8:55:1a:58:ae:f2:de:af:ea:f6:da:3f:a6:a7: 14:75:7f:31:03:41:56:90:21:21:31:78:19:8b:b6: d6:af:13:65:52:e8:d7:32:c0:70:38:71:57:a6:3f: 0c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:76:27:9B:89:76:DD:21:20:BC:A6:E5:95:74:BF:19:3F:5A:08:B2 X509v3 Authority Key Identifier: keyid:BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:77:f9:e4:b1:e2:79:62:a4:c0:32:0d:d8:e8:81:0c:e1:fe: cb:bc:73:19:67:d4:6f:8b:14:58:db:73:47:fa:75:0c:de:cd: ae:43:5b:cd:29:78:59:1d:84:36:45:68:f5:7c:65:8d:49:c3: d8:a9:d1:ae:8b:e1:cb:10:d7:fc:15:9c:cd:02:1f:01:d4:08: b7:59:2a:d6:bf:7b:50:a9:db:c9:79:0e:28:e6:83:7d:a1:64: 60:c8:57:68:c7:90:e5:6d:75:0e:94:f6:95:99:28:43:25:cf: 7e:28:b3:e3:1d:bc:b6:28:c0:ab:10:65:bd:23:2b:67:85:61: 07:2e:d1:9e:b0:f5:df:36:9a:45:98:16:36:7c:96:ce:47:4e: 1b:ca:51:f6:c2:52:51:3c:f1:f3:16:57:8e:03:bb:ae:fb:7f: 58:17:d6:03:7a:e0:73:8c:f2:d8:7f:38:43:03:80:9f:13:4f: 92:cd:8d:a4:a2:6d:61:0b:22:65:b4:2e:1f:d2:80:05:23:7d: 38:14:b0:b5:86:1e:d5:31:d5:5f:62:c7:15:d5:c3:ac:70:2b: 33:d3:07:99:28:53:52:fd:15:90:12:19:42:9e:84:18:d0:16: 7c:ea:f0:01:15:43:3c:cb:b9:1d:b6:3c:65:1e:0c:9c:6f:d1: e7:24:38:86 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjVFiP3mDHjfG/fhYfTmqo/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhYTBmMjU4ZWVmNGIyYmY0YmJhYTg0MzBjMWU1OGNhOGMx ODhlYTcwHhcNMjUwODIzMDQwMDU0WhcNMjUwODI0MDQwMDU0WjAzMTEwLwYDVQQD EyhiZDc2Mjc5Yjg5NzZkZDIxMjBiY2E2ZTU5NTc0YmYxOTNmNWEwOGIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0KzjtgggzgvpHeB2r8L987Y1mWVc aW42Q5dN049UHnItvSo/X16CR6bs6a0YBc/bRqkDMHalBa0LAo3JZCTLHKc6EokW oZCLLaYWRvOyXw48hpcx+z+55ThN653MM82f/eJdLj0vijz26lTYzP4MC5jKsqDr QU0f1QKUgmQMMQSo51iJesnaXhLbm5eYUmkWgpii33xtgq1WA0BfkGPSu00kbOUy fXTOCbYUlv5xnkQoYc2bc8EH6rZ1aX0FYMFaBvtuur+T3k7js33h/Qg2ETug2FUa WK7y3q/q9to/pqcUdX8xA0FWkCEhMXgZi7bWrxNlUujXMsBwOHFXpj8MgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL12J5uJdt0hILym5ZV0vxk/WgiyMB8GA1UdIwQY MBaAFLqg8lju9LK/S7qoQwweWMqMGI6nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEt ZTU3NjhkNmIxODJjLzEvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEtZTU3NjhkNmIxODJj LzEvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYXf55LHi eWKkwDIN2OiBDOH+y7xzGWfUb4sUWNtzR/p1DN7NrkNbzSl4WR2ENkVo9XxljUnD 2KnRrovhyxDX/BWczQIfAdQIt1kq1r97UKnbyXkOKOaDfaFkYMhXaMeQ5W11DpT2 lZkoQyXPfiiz4x28tijAqxBlvSMrZ4VhBy7RnrD13zaaRZgWNnyWzkdOG8pR9sJS UTzx8xZXjgO7rvt/WBfWA3rgc4zy2H84QwOAnxNPks2NpKJtYQsiZbQuH9KABSN9 OBSwtYYe1THVX2LHFdXDrHArM9MHmShTUv0VkBIZQp6EGNAWfOrwARVDPMu5HbY8 ZR4MnG/R5yQ4hg== -----END CERTIFICATE-----Generated at Sat Aug 23 14:12:25 2025 by rpki-client