$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft File: AOT2p3Not87P5nIgtDZXax4Aiuw.mft (raw, json) Hash identifier: G9IUx+Y6FdkW0ZH7kYOVeUFQHZLtp+ecD0Nqr3p381U= Subject key identifier: 9C:BC:6E:66:26:A1:6F:EF:50:86:C4:12:99:E7:3E:E3:92:48:49:E1 Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec Certificate serial: 0198D6982BC459D5C068EE7982601C858915 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft Manifest number: 1740 Signing time: Sat 23 Aug 2025 11:02:33 +0000 Manifest this update: Sat 23 Aug 2025 11:02:33 +0000 Manifest next update: Sun 24 Aug 2025 11:02:33 +0000 Files and hashes: 1: 9T56n42qcdDdN0gF0u82-0VAGAQ.roa (hash: uBMriIGAK+N61tGdoiuf0CM9PKKxee+sm/hbz3LttmE=) 2: AOT2p3Not87P5nIgtDZXax4Aiuw.crl (hash: xveHMuhftj+UWOywg5k0LEtYc1bXT9UKLug0z9Sx7Rw=) 3: BY6vuao8dzcdWvFAFv0TrK8gbcs.roa (hash: ZDN7wXgq4/TF65FlyVO+h6CqqGxfq850Jit0suO59Nc=) 4: Svvhgo8X1drpMq_QokkBFa4W80w.roa (hash: eEM6GVW64ZPHTJr6mZ27nOJM8iax+cOishqtH69OQFE=) 5: TQuAoSMTgD47o86Mfnh3jJOO5ek.roa (hash: OnrGrU7lhj5to79HwgQxpEZnXPQGMxbjMVbPvn1if3E=) 6: USyW0O_6fcBP2bF0PoHV0RL6-Y8.roa (hash: rYcvR45gztdgTjrFLAUTrj+3T6dDm1wWFyZUivL/lkQ=) 7: UqESFWwPTzjbApEAfUlqEqe0RQE.roa (hash: s8ahaYu2umakIkOHunLEsrzEdAIsc7vrgdaPFAJX/B0=) 8: UwuhHIRc9qSfEX6XGunAr85dyEA.roa (hash: v6KOr1rmHDt+GxwNeTG+w6jxSzGnr+bSVua9Q4OO8C0=) 9: VkkvGMtenz96Ubj3KDzXyym1LzY.roa (hash: E/GDo41oktFV73vvuiDk3fNXk8LkaX2ghEwTcizgkaw=) 10: kLCDMTUTRbJeJajr_KP2p663xqk.roa (hash: Cd9LBaXNUzFq1myVM5COYVtjKiIjTzwaQ7rIDyhpbzE=) 11: mS1g5aNaOIe32m5_FgfjTc6VbP4.roa (hash: DRqrjZnRKpeQWBmj82tLSsN99MhvkwnNbbxykbvBnVg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 11:02:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:d6:98:2b:c4:59:d5:c0:68:ee:79:82:60:1c:85:89:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec Validity Not Before: Aug 23 11:02:33 2025 GMT Not After : Aug 24 11:02:33 2025 GMT Subject: CN=9cbc6e6626a16fef5086c41299e73ee3924849e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:07:44:db:98:f7:2a:fa:38:f5:63:be:56:3c: 66:02:46:fc:9d:00:66:48:95:37:b1:cb:8d:8b:24: 07:18:c6:95:a6:03:36:ff:e0:98:32:17:66:ec:01: 7c:6c:0d:e8:c9:29:3e:7c:7c:7c:c7:21:1c:77:76: d3:84:5e:f8:b8:d7:84:a4:11:84:d0:7d:2d:be:c4: af:27:1c:13:08:37:cd:67:5e:0d:fd:71:d4:6a:c8: a1:fa:c6:1e:0a:24:fc:45:e6:40:50:0e:f3:14:89: 6c:56:73:92:c0:da:ca:a3:b0:6e:1f:a8:7b:c6:81: 84:48:10:f6:3b:a8:42:4d:0c:dd:d9:0e:0f:3c:9d: 1d:48:30:d9:9c:2f:26:c4:f3:4c:41:57:d1:7e:81: fb:5a:f7:df:ba:8c:7b:d5:a6:e2:cc:6a:3e:60:33: 48:e2:85:f2:41:f3:61:0d:3b:a5:66:62:76:64:88: 60:30:2e:96:61:28:d9:06:60:9c:46:a3:10:c8:b4: a1:f3:6e:0c:3f:19:d6:58:ec:39:26:7c:70:f9:2f: c6:d1:38:0d:95:1d:07:15:ab:f3:92:04:2e:32:09: 09:cb:e7:01:f9:3c:a3:77:0b:9f:97:bd:94:88:27: f1:65:30:ec:d3:27:6d:78:57:57:c0:7a:f7:14:2a: c2:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:BC:6E:66:26:A1:6F:EF:50:86:C4:12:99:E7:3E:E3:92:48:49:E1 X509v3 Authority Key Identifier: keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c0:4b:5b:a3:e3:90:7b:f9:6a:7a:82:63:12:df:48:d4:58:f0: 20:d8:60:6d:e9:42:f0:51:8f:2a:80:3a:2c:b6:75:65:64:2e: da:9b:5c:b1:7a:f8:7c:23:e0:7b:9e:bc:28:e0:8d:3f:f1:0f: e2:f9:98:a1:2b:76:b9:f8:69:56:00:0c:24:93:6b:59:ae:4b: 4d:71:a1:f5:ce:b5:45:b7:cb:15:68:fe:61:01:c3:83:37:6c: 6a:4a:ed:36:cd:86:94:cc:7f:2b:7c:47:83:89:62:43:6a:f7: eb:a8:23:a3:3c:44:e7:51:ac:5f:78:39:3e:25:04:74:12:b4: 24:be:f0:8e:90:85:66:71:35:90:74:0d:84:e7:90:b0:48:a8: b6:34:0e:d9:b6:ce:5b:63:a0:4f:c1:ac:9c:e7:8f:6e:ff:f7: bd:70:cf:d3:1b:31:37:ed:f9:3b:0e:15:64:5e:0e:5d:e7:23: 9d:d6:00:16:e7:cf:03:4b:f7:3e:29:84:62:be:38:b1:68:b7: dc:4c:c1:54:d2:16:2e:bb:e9:90:b3:c2:03:35:48:74:a4:5f: 9c:01:6c:f5:a2:2f:bd:4f:47:90:21:2c:a2:a4:aa:16:e6:f1: e3:f2:91:d8:89:d4:74:8f:74:38:c7:35:73:4c:52:b8:33:b0: 01:94:e1:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjWmCvEWdXAaO55gmAchYkVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZTRmNmE3NzM2OGI3Y2VjZmU2NzIyMGI0MzY1NzZiMWUw MDhhZWMwHhcNMjUwODIzMTEwMjMzWhcNMjUwODI0MTEwMjMzWjAzMTEwLwYDVQQD Eyg5Y2JjNmU2NjI2YTE2ZmVmNTA4NmM0MTI5OWU3M2VlMzkyNDg0OWUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApQdE25j3Kvo49WO+VjxmAkb8nQBm SJU3scuNiyQHGMaVpgM2/+CYMhdm7AF8bA3oySk+fHx8xyEcd3bThF74uNeEpBGE 0H0tvsSvJxwTCDfNZ14N/XHUasih+sYeCiT8ReZAUA7zFIlsVnOSwNrKo7BuH6h7 xoGESBD2O6hCTQzd2Q4PPJ0dSDDZnC8mxPNMQVfRfoH7Wvffuox71abizGo+YDNI 4oXyQfNhDTulZmJ2ZIhgMC6WYSjZBmCcRqMQyLSh824MPxnWWOw5Jnxw+S/G0TgN lR0HFavzkgQuMgkJy+cB+Tyjdwufl72UiCfxZTDs0ydteFdXwHr3FCrCAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJy8bmYmoW/vUIbEEpnnPuOSSEnhMB8GA1UdIwQY MBaAFADk9qdzaLfOz+ZyILQ2V2seAIrsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMt YjA3ZDg0MTZhZTRhLzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMtYjA3ZDg0MTZhZTRh LzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwEtbo+OQ e/lqeoJjEt9I1FjwINhgbelC8FGPKoA6LLZ1ZWQu2ptcsXr4fCPge568KOCNP/EP 4vmYoSt2ufhpVgAMJJNrWa5LTXGh9c61RbfLFWj+YQHDgzdsakrtNs2GlMx/K3xH g4liQ2r366gjozxE51GsX3g5PiUEdBK0JL7wjpCFZnE1kHQNhOeQsEiotjQO2bbO W2OgT8GsnOePbv/3vXDP0xsxN+35Ow4VZF4OXecjndYAFufPA0v3PimEYr44sWi3 3EzBVNIWLrvpkLPCAzVIdKRfnAFs9aIvvU9HkCEsoqSqFubx4/KR2InUdI90OMc1 c0xSuDOwAZThRA== -----END CERTIFICATE-----Generated at Sat Aug 23 20:03:32 2025 by rpki-client