$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.mft File: uqDyWO70sr9LuqhDDB5YyowYjqc.mft (raw, json) Hash identifier: qwvzb1t3zMcn5bw3D10kdGJVh6z9CHaY9opcUpuz3Bw= Subject key identifier: BC:FE:35:3C:A2:32:B1:34:30:47:7F:52:15:BA:C8:B2:BF:6C:6B:B2 Authority key identifier: BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 Certificate issuer: /CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Certificate serial: 0199FB0F0DDBA8FFCBEA5365525A03C2BFFF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.mft Manifest number: 0205 Signing time: Sun 19 Oct 2025 06:01:31 +0000 Manifest this update: Sun 19 Oct 2025 06:01:31 +0000 Manifest next update: Mon 20 Oct 2025 06:01:31 +0000 Files and hashes: 1: 3BdeI36IkUxOlCqSmaZfu8I0p4g.roa (hash: 5N4fYvWW73MoWuT7eG7LCKSc0LhblTQNkeac5h0QDT0=) 2: MRvWFzgC4a_7skPBbLRCksqaIsg.roa (hash: JKe21lFrUDcMNPiRT62GmLjAHsF9M4bn3iZlwG/8M6s=) 3: NohcJ4WZIaeXcX-OVJUzPxqH120.roa (hash: yVdxleiK6WjS5Znh4H6vQaLKbZ4eDhHDboRdcNpplGE=) 4: NtGG7TpxKPy6KVuYJ_YsRlPznf0.roa (hash: h9sUldnph3JsPwvErMM5O4Md1UjpyrbVAOlpo+5yenM=) 5: PzNxqQdkgSpGYxNc-jAx_r3OQ5w.roa (hash: TE0cVIygdHu8nD6ddQO4pl85tRSyEis9fR0YP4iCrQg=) 6: QriAKgPb5OxN8NYevbod9bih3Ao.roa (hash: xcDTbpvTfMHrAJl0IS53H0E4FlfDEIidiWAb66EAaYQ=) 7: VNz7hqvsR-ukZZdtpVM76UMDGBM.roa (hash: jwbsYUXQD8OEknZhDbXeDAo0cGFYmN+VJd34+E+HgvE=) 8: WSR-O9b0gsJsQFSKXSTL8eJBMpA.roa (hash: a3d83I3OM26Rcumlwo5C8tjA1sldnSwvJlMfN0DSpuw=) 9: WZY1-5x2WyCpOIyehhDGkzXs6aU.roa (hash: YWudaqyhwGIUN8z350ztRMjLHkWhXqHTu9WZVlmFBoY=) 10: ceRe27r4TaVzZe1TelFg0Kd7u0Y.roa (hash: B7bH7cuDjJTKEb3qydpXimO3oByn3OasTj45zytGAyc=) 11: dNdlikygHYW9_VCSMxVInvo5wAE.roa (hash: oANbFDFE9Ng6o6gqO/EcOwZNCNKxlzdWPW9zD7faSZw=) 12: gHW5tPxE-lIEUimHj9qBz3_MhZ8.roa (hash: XnbNcAJ1rbX9PryG7T67Z1+8xQS2Dvry35WjQBKZEY8=) 13: nti6jfhXkm1QSIiifqg-oK4RoVs.roa (hash: jooh5h1pWqlN6+JTQDRA25GNsO/H10HAQ/qO3BKe1JM=) 14: pz5iKSS3DjXvuOKM5710xrPbd3k.roa (hash: BAQauhMx2S4URlRz7DXain/wmvSRTTI+4gS0hRToEQ8=) 15: qYtaBV1QHFqIX4Zzb9pAgcJ7FlM.roa (hash: lX56tQdRTgCel8q/Xo9AvRt49Mx4NjdnE/8coAHzSjc=) 16: uqDyWO70sr9LuqhDDB5YyowYjqc.crl (hash: Qi0zSTsw/yajAcSLbf3cBfcynxAeEs914YdyQ+CrV2s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.mft rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 06:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:fb:0f:0d:db:a8:ff:cb:ea:53:65:52:5a:03:c2:bf:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=baa0f258eef4b2bf4bbaa8430c1e58ca8c188ea7 Validity Not Before: Oct 19 06:01:31 2025 GMT Not After : Oct 20 06:01:31 2025 GMT Subject: CN=bcfe353ca232b13430477f5215bac8b2bf6c6bb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3f:c5:c9:34:13:c6:57:bb:97:a6:37:45:96: c9:21:e5:6b:f4:e2:a3:a3:66:aa:d6:0b:03:d2:28: 6b:e0:90:87:04:02:9e:7f:34:3c:01:2c:c2:11:31: c4:ae:32:a1:d5:2d:79:7c:17:bb:1e:68:e3:e0:63: c3:e2:69:ff:f6:51:95:10:17:e1:7e:96:88:55:72: 9e:31:ed:d3:db:23:70:f2:b7:fe:79:68:98:37:86: 1d:82:33:4c:5d:ca:7d:05:d1:9a:fe:63:b7:61:3a: 4d:3f:89:b3:4f:cd:03:44:64:f3:be:f2:88:36:f8: 9e:d6:2e:5e:b7:2a:b9:59:27:37:87:d2:85:86:5c: 5a:9a:12:21:cf:f3:39:84:e8:4f:ff:ce:16:1e:ef: 1c:e1:9e:82:e2:84:ee:41:0a:91:cc:eb:ad:6a:1f: 24:90:8d:13:0a:82:b2:b5:41:bb:05:07:fe:f4:42: 2f:8f:a0:7e:82:c5:53:ff:85:cc:e2:37:62:5e:bc: 27:db:6a:6c:6e:5d:fe:dc:12:4a:0a:15:e0:72:39: d3:23:94:88:9e:5e:ed:f5:f1:f0:75:eb:53:3b:8a: 49:77:46:47:f8:00:bf:81:a1:7a:cf:cc:b4:89:b1: 25:32:0e:07:6f:b2:d5:b8:83:df:5d:3b:43:e0:53: a3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:FE:35:3C:A2:32:B1:34:30:47:7F:52:15:BA:C8:B2:BF:6C:6B:B2 X509v3 Authority Key Identifier: keyid:BA:A0:F2:58:EE:F4:B2:BF:4B:BA:A8:43:0C:1E:58:CA:8C:18:8E:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqDyWO70sr9LuqhDDB5YyowYjqc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5e0ee1-c833-4241-960a-e5768d6b182c/1/uqDyWO70sr9LuqhDDB5YyowYjqc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:6e:4f:57:82:7f:46:cb:b2:bf:8a:40:fc:19:78:60:5e:87: 5e:62:78:71:e0:17:89:b2:a5:c5:6f:31:af:03:b5:a5:32:b4: 3e:11:47:e9:40:bb:d4:83:c0:39:3f:97:1a:16:8d:43:68:c0: a7:6c:88:e2:0f:7c:27:1f:4f:3c:a6:36:59:67:fe:2e:72:ac: df:dd:78:e7:e2:7e:cc:c5:0e:29:6f:27:5a:5b:01:d4:29:ed: c5:f1:e4:47:d1:01:e9:d5:0d:42:d4:1f:f9:ad:fb:f6:75:37: 14:49:e7:ba:2b:83:fc:9a:af:57:7c:db:fb:63:fe:03:5c:dc: ab:1e:67:a8:07:df:96:64:e8:9f:37:be:32:38:f9:fc:3e:bd: e4:90:7a:1e:f8:50:6c:01:77:0c:e2:91:23:73:c3:65:68:e2: 40:2d:da:81:76:fb:67:8e:a2:c0:41:fc:d7:54:8c:aa:00:6e: 42:43:0f:49:28:c5:c5:63:87:8c:61:09:4f:3f:00:0f:e8:f5: 57:30:df:f0:c9:20:c7:17:ec:69:14:e4:29:e0:55:4c:63:d0: 0c:25:4a:cc:23:6d:34:23:a4:6e:18:87:c8:3c:48:8b:e0:0e: a1:99:00:68:bf:29:66:01:05:54:f2:8a:9e:4c:ed:a0:b7:cf: 8b:f5:2d:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZn7Dw3bqP/L6lNlUloDwr//MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhYTBmMjU4ZWVmNGIyYmY0YmJhYTg0MzBjMWU1OGNhOGMx ODhlYTcwHhcNMjUxMDE5MDYwMTMxWhcNMjUxMDIwMDYwMTMxWjAzMTEwLwYDVQQD EyhiY2ZlMzUzY2EyMzJiMTM0MzA0NzdmNTIxNWJhYzhiMmJmNmM2YmIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxT/FyTQTxle7l6Y3RZbJIeVr9OKj o2aq1gsD0ihr4JCHBAKefzQ8ASzCETHErjKh1S15fBe7Hmjj4GPD4mn/9lGVEBfh fpaIVXKeMe3T2yNw8rf+eWiYN4YdgjNMXcp9BdGa/mO3YTpNP4mzT80DRGTzvvKI Nvie1i5etyq5WSc3h9KFhlxamhIhz/M5hOhP/84WHu8c4Z6C4oTuQQqRzOutah8k kI0TCoKytUG7BQf+9EIvj6B+gsVT/4XM4jdiXrwn22psbl3+3BJKChXgcjnTI5SI nl7t9fHwdetTO4pJd0ZH+AC/gaF6z8y0ibElMg4Hb7LVuIPfXTtD4FOjkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLz+NTyiMrE0MEd/UhW6yLK/bGuyMB8GA1UdIwQY MBaAFLqg8lju9LK/S7qoQwweWMqMGI6nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEt ZTU3NjhkNmIxODJjLzEvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS81ZTBlZTEtYzgzMy00MjQxLTk2MGEtZTU3NjhkNmIxODJj LzEvdXFEeVdPNzBzcjlMdXFoRERCNVl5b3dZanFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI25PV4J/ Rsuyv4pA/Bl4YF6HXmJ4ceAXibKlxW8xrwO1pTK0PhFH6UC71IPAOT+XGhaNQ2jA p2yI4g98Jx9PPKY2WWf+LnKs39145+J+zMUOKW8nWlsB1CntxfHkR9EB6dUNQtQf +a379nU3FEnnuiuD/JqvV3zb+2P+A1zcqx5nqAfflmTonze+Mjj5/D695JB6HvhQ bAF3DOKRI3PDZWjiQC3agXb7Z46iwEH811SMqgBuQkMPSSjFxWOHjGEJTz8AD+j1 VzDf8MkgxxfsaRTkKeBVTGPQDCVKzCNtNCOkbhiHyDxIi+AOoZkAaL8pZgEFVPKK nkztoLfPi/UtHw== -----END CERTIFICATE-----Generated at Sun Oct 19 15:31:42 2025 by rpki-client