$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft File: s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft (raw, json) Hash identifier: 251SQ7EBOm6bPzVJP4BrqMtCWYv4VldO4OVY3QeQwzo= Subject key identifier: 44:C3:F3:F1:3C:61:C7:42:2C:88:69:04:18:FA:87:27:5D:04:3B:C6 Authority key identifier: B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 Certificate issuer: /CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Certificate serial: 0198D54DD47FF8502A54B5262862173C4F1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft Manifest number: 1660 Signing time: Sat 23 Aug 2025 05:01:44 +0000 Manifest this update: Sat 23 Aug 2025 05:01:44 +0000 Manifest next update: Sun 24 Aug 2025 05:01:44 +0000 Files and hashes: 1: 1IyxB14_QkLsvmLRx3j-3a6Zjk4.roa (hash: htWKauGvhiwmC3uhHI9F9baGTADLWNpjXIog5aUAkzA=) 2: Hrw24NCuWIUCpkj_ixSA3ykRPr4.roa (hash: EL86DxycBZAbHkapsC+FVYde7DJDbg6IvsLrlIhK4Mg=) 3: HzkqLbs1liYqOOnORyYsONDUWCk.roa (hash: uXYRvHJ6LJgN5jTlxHsTjXJyetqQoAXwubqH0//UAWg=) 4: KW8HM7Vt-viFSQssh-MaAGQ56LI.roa (hash: LVB3HoG1zrGwq6DA6Whlqb+iZJnipajeWgJUkFDtgQ8=) 5: LMWubVuf7cJuSG5rD2NRgzDK5TM.roa (hash: BApiahutiwbQpT3is1YK4Anf4y1KpsDk2PWh/oiETuo=) 6: N8YU9P6afQ3l1ax9yLIDe6D0fIk.roa (hash: EU77Dk5F7GrtkJ85p7yvIHvzXNj6aNgdhN+Tn5j+zs0=) 7: NxaezdRi3ofV0Ea6FtmKMCg4Xno.roa (hash: OxfdQ+cdMI49CYY0Q1jeMkKHuJPcs1w/NoTD4eAZ2MA=) 8: jGaeQ05R3hLIsxNTb7dpc8FaO6w.roa (hash: 4TEbxdiinYCpm4mycPqOwDmBBxQQxUxqZfGO0t4kbOg=) 9: mSsD_9FMfN2LP7M_Mwsa2ue8f54.roa (hash: 9X0dNAuuQyEHvxBMN4gp2QewnB9NGpB0KtQCW0IE4VU=) 10: oRsHwl0lqDdQsW8I1c5igLUyNzs.roa (hash: 8g9A+Hdue1idAErOv1qWZKgEKPMgG/A4+RlDqNfgnkI=) 11: oreGjQwv74g6OpxObQTCv-MnU1M.roa (hash: d1IJwSRdqQjA5VA/VLC7+miffsmnB8Nxer6G7ClHfMc=) 12: p2_R78qfiRDhzvxPsVGCBtVmaJE.roa (hash: AfONkYdMNZkN9Er/D4pbys1uxPQQYlJm+sdpKa5QxNI=) 13: s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl (hash: QLGzGCLUQSiK1O/RwQfqwxostL5JqHwXF/dS1Phh/g0=) 14: wjy1-qmg6rYR0UilXbPOrktmKnc.roa (hash: OCHLZL4VOIDtWxajhki14b+EkeW6juZq6cOYKpzs8QI=) 15: xMcgE5el8x0M_rTEbVyhY3X3x1c.roa (hash: PGLJrZJLBXcLan5LC1jzJXTcMWQ+drrbyWZOiA3GgNU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 05:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:d5:4d:d4:7f:f8:50:2a:54:b5:26:28:62:17:3c:4f:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Validity Not Before: Aug 23 05:01:44 2025 GMT Not After : Aug 24 05:01:44 2025 GMT Subject: CN=44c3f3f13c61c7422c88690418fa87275d043bc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d2:34:32:60:d3:af:e5:c4:4b:e2:73:cc:a9: 67:94:4e:af:32:9c:fa:f1:49:77:6f:d4:59:f1:17: 93:43:80:de:57:51:db:24:da:65:fe:f5:b0:48:a5: 83:ca:10:e7:e7:20:9a:ba:13:16:4e:05:40:7c:0a: b9:53:de:ec:0a:9a:23:56:36:5d:60:c0:67:b5:91: 81:22:74:c4:c9:6b:5c:94:c2:66:4e:29:f5:6f:1a: 97:24:06:85:de:4c:97:2f:79:06:36:b0:1e:2f:13: fe:dd:f3:6b:0a:69:ca:f8:29:71:eb:b9:7a:90:84: 69:60:96:f4:1b:5e:78:68:0f:f7:ba:35:3d:d8:ff: 86:cc:7d:cb:32:c6:91:13:1e:19:a6:fb:da:2b:34: 32:60:32:5b:6b:db:2b:66:5e:2b:b1:00:a6:46:1e: 61:6f:41:c4:2a:26:08:44:f4:1f:4f:c9:7d:53:21: 87:e2:2f:c9:b7:81:af:10:25:88:88:2d:ad:5c:ee: 6e:9d:11:7d:32:84:76:28:6c:77:8e:84:f2:48:57: 25:8b:46:40:cc:d6:e9:1c:a5:d2:a8:c7:20:11:b1: 7e:cb:89:d8:7f:e3:2d:1f:36:ce:51:56:3b:80:8f: 20:bc:85:31:ab:68:fe:e6:34:95:7e:65:18:65:d2: f2:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:C3:F3:F1:3C:61:C7:42:2C:88:69:04:18:FA:87:27:5D:04:3B:C6 X509v3 Authority Key Identifier: keyid:B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:2c:08:0e:9c:a0:44:e6:b5:9b:33:29:8f:d4:46:67:d9:a5: 29:e0:8d:11:db:09:49:9a:da:ad:fe:e4:ae:b2:98:70:82:f9: ae:37:5f:41:6f:d7:26:aa:39:3a:cb:ea:a8:53:d0:29:23:85: 9e:50:f2:99:07:66:ae:73:c1:92:04:9d:3a:be:18:5b:96:99: 1c:ae:52:34:6c:9c:a7:b3:7f:fe:68:03:5c:ca:9f:bf:a6:93: bc:93:cb:dd:fa:ba:2f:b6:62:63:95:77:14:93:2c:c9:d1:1f: f8:fa:45:0d:a5:79:01:bc:b7:88:a1:3d:56:26:dc:36:e8:c2: 02:1a:d9:0e:e2:8c:d6:78:28:e6:f1:30:6a:47:3e:36:78:d5: 16:03:86:ff:4e:b1:e9:22:d1:60:5c:41:ac:09:8f:fd:c5:7c: fb:a2:30:fa:36:5e:f7:5c:7c:18:bb:99:3d:9a:aa:02:72:1b: 36:f8:fe:f7:f0:dd:83:2f:9b:43:39:fc:8d:b2:b7:46:b9:99: c6:7c:00:c9:30:86:8a:9b:c4:db:72:81:de:4f:3f:1a:81:75: 06:52:4b:13:4a:8a:84:fa:a3:e7:64:f5:a1:cc:30:b6:d0:28: 3d:15:ad:ad:ba:34:2c:26:a0:77:5f:0e:1a:f6:40:4e:4b:d0: b4:f8:dc:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjVTdR/+FAqVLUmKGIXPE8fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzYTVkOTk4NjNkYjJlNDliNDRmNmMzMjRlYjA0Mzg4ZmM3 NTE1ZDIwHhcNMjUwODIzMDUwMTQ0WhcNMjUwODI0MDUwMTQ0WjAzMTEwLwYDVQQD Eyg0NGMzZjNmMTNjNjFjNzQyMmM4ODY5MDQxOGZhODcyNzVkMDQzYmM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArdI0MmDTr+XES+JzzKlnlE6vMpz6 8Ul3b9RZ8ReTQ4DeV1HbJNpl/vWwSKWDyhDn5yCauhMWTgVAfAq5U97sCpojVjZd YMBntZGBInTEyWtclMJmTin1bxqXJAaF3kyXL3kGNrAeLxP+3fNrCmnK+Clx67l6 kIRpYJb0G154aA/3ujU92P+GzH3LMsaREx4ZpvvaKzQyYDJba9srZl4rsQCmRh5h b0HEKiYIRPQfT8l9UyGH4i/Jt4GvECWIiC2tXO5unRF9MoR2KGx3joTySFcli0ZA zNbpHKXSqMcgEbF+y4nYf+MtHzbOUVY7gI8gvIUxq2j+5jSVfmUYZdLyBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFETD8/E8YcdCLIhpBBj6hyddBDvGMB8GA1UdIwQY MBaAFLOl2Zhj2y5JtE9sMk6wQ4j8dRXSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAt ZWVjNWQ1MGVmYTk0LzEvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAtZWVjNWQ1MGVmYTk0 LzEvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFiwIDpyg ROa1mzMpj9RGZ9mlKeCNEdsJSZrarf7krrKYcIL5rjdfQW/XJqo5OsvqqFPQKSOF nlDymQdmrnPBkgSdOr4YW5aZHK5SNGycp7N//mgDXMqfv6aTvJPL3fq6L7ZiY5V3 FJMsydEf+PpFDaV5Aby3iKE9VibcNujCAhrZDuKM1ngo5vEwakc+NnjVFgOG/06x 6SLRYFxBrAmP/cV8+6Iw+jZe91x8GLuZPZqqAnIbNvj+9/Ddgy+bQzn8jbK3RrmZ xnwAyTCGipvE23KB3k8/GoF1BlJLE0qKhPqj52T1ocwwttAoPRWtrbo0LCagd18O GvZATkvQtPjcFA== -----END CERTIFICATE-----Generated at Sat Aug 23 14:30:00 2025 by rpki-client