$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft File: s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft (raw, json) Hash identifier: sHlyQcWsOaBkX+TYPwjvsBFoIMMOWPO+baCDjXAk/Dk= Subject key identifier: 2D:C4:80:71:81:BC:FB:21:88:A8:9D:59:5D:68:E8:D0:24:5F:4C:99 Authority key identifier: B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 Certificate issuer: /CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Certificate serial: 0199FDD90D5B1792DC0ED50B2EFEFA715753 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft Manifest number: 1705 Signing time: Sun 19 Oct 2025 19:01:24 +0000 Manifest this update: Sun 19 Oct 2025 19:01:24 +0000 Manifest next update: Mon 20 Oct 2025 19:01:24 +0000 Files and hashes: 1: 8G17Uj9AIXGxXZ66yfJHOLsxPo8.roa (hash: qU/6T++9LyINzVzJ8CV6sT+MweAHyZF0SIUnm5bIRYg=) 2: Hrw24NCuWIUCpkj_ixSA3ykRPr4.roa (hash: EL86DxycBZAbHkapsC+FVYde7DJDbg6IvsLrlIhK4Mg=) 3: HzkqLbs1liYqOOnORyYsONDUWCk.roa (hash: uXYRvHJ6LJgN5jTlxHsTjXJyetqQoAXwubqH0//UAWg=) 4: N8YU9P6afQ3l1ax9yLIDe6D0fIk.roa (hash: EU77Dk5F7GrtkJ85p7yvIHvzXNj6aNgdhN+Tn5j+zs0=) 5: NxaezdRi3ofV0Ea6FtmKMCg4Xno.roa (hash: OxfdQ+cdMI49CYY0Q1jeMkKHuJPcs1w/NoTD4eAZ2MA=) 6: TO40FjbIwGNQNwtqPj8kwc1ZTTA.roa (hash: CxCIaev63Gqq5Rl8++kPvXMtj4T/C8ceRG4EudeHUmA=) 7: g0-0qeR0lc1LsLxknNYR3dnvEBA.roa (hash: EXsDcqkvYGuTEAGM2nI2WIcOnpMXlYj8og8Md2Id59Q=) 8: gG0DNUP64NYeP7QJN-nJ3HYb71o.roa (hash: TdYqV2WNRnqL2XDaa0pYRnVh8SMGr720PVd0f0ZigsI=) 9: jGaeQ05R3hLIsxNTb7dpc8FaO6w.roa (hash: 4TEbxdiinYCpm4mycPqOwDmBBxQQxUxqZfGO0t4kbOg=) 10: oRsHwl0lqDdQsW8I1c5igLUyNzs.roa (hash: 8g9A+Hdue1idAErOv1qWZKgEKPMgG/A4+RlDqNfgnkI=) 11: oreGjQwv74g6OpxObQTCv-MnU1M.roa (hash: d1IJwSRdqQjA5VA/VLC7+miffsmnB8Nxer6G7ClHfMc=) 12: p2_R78qfiRDhzvxPsVGCBtVmaJE.roa (hash: AfONkYdMNZkN9Er/D4pbys1uxPQQYlJm+sdpKa5QxNI=) 13: s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl (hash: xHvE9SQ4Qh+rW4+fBUzjiVZ8b7aEFcGwtcCdnNR6kQY=) 14: wjy1-qmg6rYR0UilXbPOrktmKnc.roa (hash: OCHLZL4VOIDtWxajhki14b+EkeW6juZq6cOYKpzs8QI=) 15: xMcgE5el8x0M_rTEbVyhY3X3x1c.roa (hash: PGLJrZJLBXcLan5LC1jzJXTcMWQ+drrbyWZOiA3GgNU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 11:18:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:fd:d9:0d:5b:17:92:dc:0e:d5:0b:2e:fe:fa:71:57:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Validity Not Before: Oct 19 19:01:24 2025 GMT Not After : Oct 20 19:01:24 2025 GMT Subject: CN=2dc4807181bcfb2188a89d595d68e8d0245f4c99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:7c:af:1a:bd:e0:89:5f:56:fb:2b:53:bc:7d: 8e:a8:87:a8:f7:5f:f2:8b:6f:b3:5c:14:4e:ea:5d: 58:10:7b:5d:d8:3c:ab:f6:48:3b:18:7a:fc:88:01: c6:47:50:64:82:41:5b:eb:21:d7:ae:3c:ce:71:31: e1:70:e9:8b:cb:b9:08:ab:18:e9:d3:b4:5c:fc:39: 1e:53:33:60:a3:4f:de:7e:c4:dc:b8:1e:bc:b8:2f: bb:10:4f:d6:c2:43:6c:ad:ed:bf:28:47:6f:ee:9e: 62:25:6a:57:72:e6:fd:d7:9f:56:f3:38:19:5d:6d: 1b:25:49:35:48:9d:73:f8:91:42:ce:c7:ae:8c:56: 9c:09:0b:ba:7a:56:52:9a:bb:c8:f1:42:30:0a:f5: be:aa:23:99:f0:b3:6c:2d:5f:f2:24:3e:85:1a:61: 56:16:d0:0c:3e:b7:10:dc:b6:6c:13:c3:2a:34:65: a0:1f:1c:5f:18:da:ec:90:26:49:64:52:eb:91:2b: d1:74:69:72:39:e4:93:e0:90:cb:ad:b9:6e:91:28: a7:b6:47:70:be:a1:d7:a2:94:cd:b3:48:00:7c:ad: 38:db:7f:17:31:76:2b:0f:90:5c:dd:5f:16:85:ff: b1:3c:33:c4:f4:15:76:97:44:30:38:ac:c9:9b:61: d8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:C4:80:71:81:BC:FB:21:88:A8:9D:59:5D:68:E8:D0:24:5F:4C:99 X509v3 Authority Key Identifier: keyid:B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:60:c4:e6:e8:8e:6e:45:f3:bc:76:19:05:60:dd:c4:39:90: 4a:3d:bf:88:21:c4:b5:50:0b:86:17:d7:c6:1b:7e:83:9e:7c: 44:13:54:c8:5a:ac:d3:08:a4:3c:0f:47:ad:90:3c:e9:a1:63: 59:4d:39:39:3b:60:d1:03:e4:03:01:31:ca:45:61:e5:2b:51: ed:a2:ee:2e:2b:70:0c:1e:ae:10:ad:1e:2d:07:c0:34:e2:4c: 3d:d2:25:41:1e:98:63:22:40:14:38:16:5e:4a:80:38:30:9e: be:d4:09:82:92:2e:59:81:15:b0:c5:d5:9b:67:ec:57:b2:7c: 9d:4e:d3:41:f8:a5:b1:9a:65:77:d0:4d:2a:46:8c:45:ee:9a: ed:a0:2e:11:65:ec:35:34:e5:c7:cd:e8:3d:c9:b1:9d:24:65: 0f:e5:51:03:48:40:dd:af:63:cc:44:d0:50:48:b9:db:7f:5e: ce:a2:1e:9f:31:8a:0c:bf:a5:04:67:6b:a2:b2:79:f8:42:b0: ea:af:c0:e1:71:c5:9b:0f:85:85:ac:09:5d:14:a3:04:de:06: 9d:f0:15:57:4a:b7:2b:ff:00:29:68:b1:68:0a:27:66:e3:a7: e9:46:3e:da:16:9d:f3:01:15:fb:42:6d:f3:47:cb:05:a6:2b: 24:78:bd:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZn92Q1bF5LcDtULLv76cVdTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzYTVkOTk4NjNkYjJlNDliNDRmNmMzMjRlYjA0Mzg4ZmM3 NTE1ZDIwHhcNMjUxMDE5MTkwMTI0WhcNMjUxMDIwMTkwMTI0WjAzMTEwLwYDVQQD EygyZGM0ODA3MTgxYmNmYjIxODhhODlkNTk1ZDY4ZThkMDI0NWY0Yzk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkXyvGr3giV9W+ytTvH2OqIeo91/y i2+zXBRO6l1YEHtd2Dyr9kg7GHr8iAHGR1BkgkFb6yHXrjzOcTHhcOmLy7kIqxjp 07Rc/DkeUzNgo0/efsTcuB68uC+7EE/WwkNsre2/KEdv7p5iJWpXcub9159W8zgZ XW0bJUk1SJ1z+JFCzseujFacCQu6elZSmrvI8UIwCvW+qiOZ8LNsLV/yJD6FGmFW FtAMPrcQ3LZsE8MqNGWgHxxfGNrskCZJZFLrkSvRdGlyOeST4JDLrblukSintkdw vqHXopTNs0gAfK04238XMXYrD5Bc3V8Whf+xPDPE9BV2l0QwOKzJm2HYBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC3EgHGBvPshiKidWV1o6NAkX0yZMB8GA1UdIwQY MBaAFLOl2Zhj2y5JtE9sMk6wQ4j8dRXSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAt ZWVjNWQ1MGVmYTk0LzEvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAtZWVjNWQ1MGVmYTk0 LzEvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWmDE5uiO bkXzvHYZBWDdxDmQSj2/iCHEtVALhhfXxht+g558RBNUyFqs0wikPA9HrZA86aFj WU05OTtg0QPkAwExykVh5StR7aLuLitwDB6uEK0eLQfANOJMPdIlQR6YYyJAFDgW XkqAODCevtQJgpIuWYEVsMXVm2fsV7J8nU7TQfilsZpld9BNKkaMRe6a7aAuEWXs NTTlx83oPcmxnSRlD+VRA0hA3a9jzETQUEi5239ezqIenzGKDL+lBGdrorJ5+EKw 6q/A4XHFmw+FhawJXRSjBN4GnfAVV0q3K/8AKWixaAonZuOn6UY+2had8wEV+0Jt 80fLBaYrJHi9kw== -----END CERTIFICATE-----Generated at Sun Oct 19 20:41:30 2025 by rpki-client