$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.mft File: BVFgW2dezk4PznF1rjGpP6gnK6Y.mft (raw, json) Hash identifier: Ibu0wL6MbFVP1Fgfnz/H1+Y+sPzCB9qc7rrzgA1ydz4= Subject key identifier: 16:62:DB:7D:81:6F:90:85:64:50:29:94:43:4E:33:FF:48:1B:F6:7D Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6 Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6 Certificate serial: 0198D54DF8BDEC8A53EC837FCBD60ECDE0EF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.mft Manifest number: 167D Signing time: Sat 23 Aug 2025 05:01:53 +0000 Manifest this update: Sat 23 Aug 2025 05:01:53 +0000 Manifest next update: Sun 24 Aug 2025 05:01:53 +0000 Files and hashes: 1: 0AYdj6RPn1eQ4OgEy6QCr1f5k2Q.roa (hash: L6DU942Jz6/lvfUIe3D2o0HomEkBYzu27lFzdIVqGEc=) 2: 5t_gEPyzONNwmcX_6ew0Ih3Mk2Q.roa (hash: vkkst1UDRXFHGnw3oCIz/VahP4EJhU4cLye1AO0QLS0=) 3: B-VB7mD6d3yYH8PU8AgFih1fMDc.roa (hash: T5HGrFxvsUPySvUxTWFtkDKWgc+DSV2mLNavrR7oxEo=) 4: BVFgW2dezk4PznF1rjGpP6gnK6Y.crl (hash: ZfR8lx75qwhlsn1LjcbiCTkMckIRMQ67Kip4frbsrg4=) 5: FQTXSvb27ypAWeWR6u4PUk-NFzc.roa (hash: oVmw4Wr4zacFRrwMuuDV+itYXymrywavxqZKYRr/zHc=) 6: GIdtnYTfB_OfNmkj58C5zvwyoiY.roa (hash: mrolhVBCf9ezcIiNdke1ILuseOXCo3lGnZtCw7CJdqk=) 7: JIWScFv9Kksz3-WjVTMxXPLjiWo.roa (hash: 9Ejcda+LEF9Prza7a6M4k8Cqx+Jsocz8uwzratsGHfs=) 8: Ry99V7wdnB63QA0YiggryZhHU-U.roa (hash: mMBh91Bzq2gPCtQkwNpkOUuuvLHWXUK22LlIXX1xS/g=) 9: T2zf4MlLIMSvzzuDsJMAjIOyKkY.roa (hash: ueRz8nTweEwyQ4f6p4yvV8towA7SPGMkaN88JD99IhM=) 10: WTBCbSxb7h1w4Up4KNg9SZTnE6c.roa (hash: zGDl99MvN6NddN0ACg6xKrKwSNupTCXGaQXZUdGsWZY=) 11: Wgn-Z3i6lXU4mVGYn9zEOu2Y5uo.roa (hash: KDlQZdCuo/nIV3/PuDzNC2v7AGRYnk63vIIL7+xFyqo=) 12: ZNVBvSaI1BNlFT5y4meV0Zbgnzw.roa (hash: bWlw2kG0F8Yo+irCKVO4en+85QCKnglxRBdSlkv67r0=) 13: ZmV3RrHyNbdlPpXWHxyJNKlqz_0.roa (hash: duiYNAfkU9vNSfSeoTIVT6MoGsXF5yCoHKwjI4a3RZo=) 14: bLACyeWnCQUwWZqE5WZ_BrmQU6Y.roa (hash: uwoE5/d36cX/Ks6beQm+PxMT5NEUJYwmYJZfciGwpzU=) 15: lSQaQo1pT929AIuNEO-jfbBj_uI.roa (hash: aky/WPIxzMhPYRkj4RXOkjGc0PhL0aXcIKo/I7TPgXM=) 16: lmjGoIkmtRARzMHJ3Iv6xZvWT5U.roa (hash: D1V3yIkbb8Fb2YGAP6nceG/MedRCxNzvPEgyVbvAN7Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.mft rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 05:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:d5:4d:f8:bd:ec:8a:53:ec:83:7f:cb:d6:0e:cd:e0:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6 Validity Not Before: Aug 23 05:01:53 2025 GMT Not After : Aug 24 05:01:53 2025 GMT Subject: CN=1662db7d816f908564502994434e33ff481bf67d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ca:c0:74:a0:5b:55:9d:e5:8b:d7:47:b4:b0: e9:f4:b1:a6:bc:2a:fb:da:3c:e8:fd:53:d1:78:55: cf:85:70:d1:1b:db:95:b7:d7:6c:d2:95:d6:21:a7: 6a:b3:18:20:49:e6:64:3a:d3:97:67:e4:fb:16:72: f0:34:94:42:1d:26:36:f5:52:e2:d6:89:a0:e5:5b: 76:60:38:9d:16:71:e0:6b:1a:1f:a1:36:f8:e0:3b: 92:84:52:a1:4e:33:43:f4:f6:b1:01:da:6d:87:81: 5e:f5:c1:74:9a:39:15:9d:90:1c:28:84:56:e5:25: b2:48:e6:b7:e8:42:41:4e:fa:ab:0c:da:95:4f:cf: 2f:5a:b8:22:c0:54:52:9d:48:02:a4:43:e6:a3:7f: 83:0a:79:5a:45:38:e9:33:0d:ff:cf:94:3a:c6:12: 18:e4:30:40:e1:b6:d1:32:8e:4f:31:ad:a7:0a:42: 99:8d:70:31:21:ae:37:4c:73:df:53:5a:ac:10:f8: 41:30:ff:81:c8:3f:f2:1d:fe:f4:90:a5:c1:95:28: c3:b0:64:00:8b:5d:4e:c9:49:7c:a7:48:4d:c0:79: 8f:00:62:f6:56:6d:14:93:aa:22:3a:5d:96:7b:3c: 13:b6:f1:bb:b5:f2:bc:1c:37:3c:44:dc:4d:06:a0: ab:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:62:DB:7D:81:6F:90:85:64:50:29:94:43:4E:33:FF:48:1B:F6:7D X509v3 Authority Key Identifier: keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:d1:a5:6d:da:1e:16:a2:02:67:08:56:95:f4:23:61:f0:76: 0a:b4:51:b5:e7:db:88:4b:dd:66:d0:43:e0:ec:a0:fe:ec:05: bf:98:7c:5c:79:cd:23:6a:aa:77:11:6e:e5:0b:b2:27:53:1d: 6b:98:2f:ce:a1:54:52:ed:7a:7d:80:3e:b7:57:bf:9c:e3:4c: f0:6c:80:d3:a3:93:20:a5:40:2c:0a:6a:0d:28:08:f0:93:12: a9:e6:7f:3a:e4:09:7d:c2:80:42:a8:b5:ab:8f:02:42:1f:bd: fd:4a:f7:7d:f4:67:56:73:92:38:aa:ca:85:3d:44:7c:b4:c3: 70:71:ea:8a:41:c2:02:d5:56:fe:e1:9a:2d:cd:98:21:e2:7f: e6:76:06:f4:79:17:be:fb:0a:6d:85:a7:d6:e1:b3:9c:09:a0: 82:18:ba:e0:09:88:06:ec:bf:9a:ef:58:79:0f:ea:f1:fe:c1: c1:47:cb:95:c7:c2:10:cd:7e:a4:75:6a:46:27:9f:c2:e7:29: df:b2:d9:07:04:9f:d8:6d:90:2c:4f:d6:be:a0:dd:50:fd:b3: 19:c9:e9:15:b7:f3:31:f2:3f:af:99:58:63:ce:90:8e:d2:c3: 81:26:fc:f2:c8:a5:0c:c9:41:ca:e2:ce:81:b0:76:d5:b0:27: 17:1b:53:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjVTfi97IpT7IN/y9YOzeDvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1NTE2MDViNjc1ZWNlNGUwZmNlNzE3NWFlMzFhOTNmYTgy NzJiYTYwHhcNMjUwODIzMDUwMTUzWhcNMjUwODI0MDUwMTUzWjAzMTEwLwYDVQQD EygxNjYyZGI3ZDgxNmY5MDg1NjQ1MDI5OTQ0MzRlMzNmZjQ4MWJmNjdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxcrAdKBbVZ3li9dHtLDp9LGmvCr7 2jzo/VPReFXPhXDRG9uVt9ds0pXWIadqsxggSeZkOtOXZ+T7FnLwNJRCHSY29VLi 1omg5Vt2YDidFnHgaxofoTb44DuShFKhTjND9PaxAdpth4Fe9cF0mjkVnZAcKIRW 5SWySOa36EJBTvqrDNqVT88vWrgiwFRSnUgCpEPmo3+DCnlaRTjpMw3/z5Q6xhIY 5DBA4bbRMo5PMa2nCkKZjXAxIa43THPfU1qsEPhBMP+ByD/yHf70kKXBlSjDsGQA i11OyUl8p0hNwHmPAGL2Vm0Uk6oiOl2WezwTtvG7tfK8HDc8RNxNBqCrBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBZi232Bb5CFZFAplENOM/9IG/Z9MB8GA1UdIwQY MBaAFAVRYFtnXs5OD85xda4xqT+oJyumMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlZGZ1cyZGV6azRQem5GMXJqR3BQNmduSzZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8yOGVhNDUtN2QzMC00NmRmLThmMmEt MDc3OWY0OGVjZWEwLzEvQlZGZ1cyZGV6azRQem5GMXJqR3BQNmduSzZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC8yOGVhNDUtN2QzMC00NmRmLThmMmEtMDc3OWY0OGVjZWEw LzEvQlZGZ1cyZGV6azRQem5GMXJqR3BQNmduSzZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARNGlbdoe FqICZwhWlfQjYfB2CrRRtefbiEvdZtBD4Oyg/uwFv5h8XHnNI2qqdxFu5QuyJ1Md a5gvzqFUUu16fYA+t1e/nONM8GyA06OTIKVALApqDSgI8JMSqeZ/OuQJfcKAQqi1 q48CQh+9/Ur3ffRnVnOSOKrKhT1EfLTDcHHqikHCAtVW/uGaLc2YIeJ/5nYG9HkX vvsKbYWn1uGznAmgghi64AmIBuy/mu9YeQ/q8f7BwUfLlcfCEM1+pHVqRiefwucp 37LZBwSf2G2QLE/WvqDdUP2zGcnpFbfzMfI/r5lYY86QjtLDgSb88silDMlByuLO gbB21bAnFxtTIQ== -----END CERTIFICATE-----Generated at Sat Aug 23 12:21:29 2025 by rpki-client