$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.mft File: P-3YXB7Mtf9LqTARenMpCZwP8us.mft (raw, json) Hash identifier: JrRno9eJFvTDF9DzOTYGehmbfvTVoAfSZ9BiOFuiCEM= Subject key identifier: E1:02:1E:F2:67:D0:3F:14:A0:EC:D0:F2:F9:18:B4:A7:7A:42:CA:AB Authority key identifier: 3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB Certificate issuer: /CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb Certificate serial: 0197C380C8548E8BEE5AF04D5D226484654C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.mft Manifest number: 15E1 Signing time: Tue 01 Jul 2025 01:01:26 +0000 Manifest this update: Tue 01 Jul 2025 01:01:26 +0000 Manifest next update: Wed 02 Jul 2025 01:01:26 +0000 Files and hashes: 1: 4SyAKG9FRt1gAFJy5VgH5PwxTRA.roa (hash: jTSIiH7dSb5EybAsEY+n22bAiKvGllq/AuPJ12+ncpM=) 2: BPvvMmPw0v2RXdpWWHfCuRUXY28.roa (hash: xZBsJjBvf0lTF+79AIT0zRbookilcef0qHIZ5VPCKjo=) 3: BZv8sGCcNALUX5pRivC_EjiidAY.roa (hash: h2vpw3fwMWMbbCOrxK6C72hr7+aeGxdeLm1OT0QOTJY=) 4: DGiTictajwWlIqV1Y3gB4SABHrM.roa (hash: Id5c1uksWgHuNXSqMulTJtxTXfw1/TAJk3AEd7b9YRQ=) 5: Mk65rzu_RkrceH34hYZR24Obsg0.roa (hash: rTzdbjg2prHl5GqIGFCWtd1Ib91ETCuwTrOfSPbAKbI=) 6: P-3YXB7Mtf9LqTARenMpCZwP8us.crl (hash: jkH0GZwpj7waYd7xcY8RWSVBOtM2ApHRmB1oFATg2uw=) 7: Q7Kremg5Fgj0SfkKKXdi8FJc68I.roa (hash: wwhqLnVWip/tEomt2waPsqqsK0Xf41SfYznp1QkJ0BM=) 8: VB2zjyzRbVcAI7qwybUzZhlXV-U.roa (hash: cbrJc/4RT0HiKhNiv2HtCVB5MjAEHV6aPZtCJF7/HaM=) 9: fScTC-RTAL4AeGIUFDXeFWgxNOU.roa (hash: LpQDvJVc9hMoS+6x9uoQSz8d+i8pdM/6GrU1p5QPkoU=) 10: gjV1b6nl-2sIdV0OViEWc13VOgw.roa (hash: YJxg+E5odCH0e5CDjaGL8I+42oC/IlpXfOKgoo/xCo4=) 11: i_vdOGwxPt-bikrKCsCq4vU6o1Y.roa (hash: Oi88txSdII7ssSiwm/zvR3/xE/bpdarLSDiFGBrNlqs=) 12: jLM5t3eg01fijHX5BZDxTUjpEGU.roa (hash: zlqEOh5qlKElj+/BR3gY6unzfRt8ygL6XM3lywwcPBU=) 13: jt3cdzogC_GhOHVIdQu1LfkbDrM.roa (hash: 4TbqHgl6LIIhOvKU0Ma8NpMAoh5pYOvW9g1cZnc89eY=) 14: mv1h37MzImfXhXtotGH2l6nUD-c.roa (hash: jma1UU++sReZAO/OYU5m4FrNNXuoRuTByWXR/ZHh5qk=) 15: pPSUgW-kch1wzV-mL74GjoJRYas.roa (hash: 14IsY2Pcu5B3SjJ5ycOJDXddH4w35As15arfEbi1nXc=) 16: sVq7ykDogd7cCsDF--hBK9DnjT4.roa (hash: yntzoQcvzBrX+tVilVNDQYJnh1oAW90RlNAXUQi35Kc=) 17: yUsdU2ULQpT4CaBLrnJG--v6B4k.roa (hash: nFPDGUe2wiSsXpmHy1xpSDCHB5E3thvkbalz4PA2+qg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.crl rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.mft rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 01 Jul 2025 23:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:c3:80:c8:54:8e:8b:ee:5a:f0:4d:5d:22:64:84:65:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb Validity Not Before: Jul 1 01:01:26 2025 GMT Not After : Jul 2 01:01:26 2025 GMT Subject: CN=e1021ef267d03f14a0ecd0f2f918b4a77a42caab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:03:36:51:d8:f2:9d:19:bc:e6:47:ec:dd:4c: 20:49:d9:7d:06:23:63:96:99:51:0c:b2:84:8f:20: db:aa:d0:bf:b7:4e:ed:07:b4:80:b5:79:45:e3:d0: 27:09:ce:4f:88:1a:08:4e:2a:38:60:8a:a7:15:5c: 6f:5c:fc:c2:24:46:29:8b:2a:f9:57:e4:d7:aa:30: 21:69:9b:43:2d:0f:d1:72:41:1a:12:cc:94:ef:6a: 95:36:53:44:38:99:53:21:df:27:f6:f7:16:14:e2: ed:ae:70:f3:c5:fe:82:e8:8d:a2:8d:71:e6:fc:83: 41:07:0e:7a:10:78:6f:58:36:6f:ba:d6:ed:d5:4b: 8c:b1:88:f2:30:bd:78:dd:6c:08:d0:ee:df:85:1c: 0d:be:a8:6e:b3:8e:1a:1c:4b:8a:c8:4e:8a:c9:e2: 2e:40:ba:2b:17:6f:25:2e:2d:70:0c:ee:a7:a1:34: 65:7b:54:a8:e8:5c:ce:1b:fd:16:54:43:02:b3:fe: 3b:45:34:0e:ff:0c:19:72:8e:c4:a0:49:60:24:0f: 9a:4f:fe:af:6f:52:cd:65:9a:a9:44:9e:68:6d:d4: a1:43:1d:3e:1c:64:56:d0:e4:95:d5:40:63:d2:b1: fc:a9:a4:8b:6e:fe:7d:ae:e4:74:af:c8:64:01:e5: 69:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:02:1E:F2:67:D0:3F:14:A0:EC:D0:F2:F9:18:B4:A7:7A:42:CA:AB X509v3 Authority Key Identifier: keyid:3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:e8:14:3b:e8:78:f4:d9:25:e1:f4:5f:12:83:0a:04:d9:90: 85:0b:b7:c0:05:26:a0:21:0d:d9:ce:2e:2a:ea:fc:25:55:b9: cf:49:16:fb:3d:5d:5c:10:ab:65:e7:1d:0f:47:6f:eb:f4:97: a0:ff:92:38:c2:3a:16:9f:b4:78:fe:a0:fb:9b:d4:37:f3:06: c6:ca:e4:0f:58:a9:74:ac:21:1f:df:ba:c9:8a:e4:a0:65:97: 24:b5:4d:14:48:08:28:5e:25:d6:96:03:37:d0:71:f5:5f:5d: 05:dc:05:8d:1b:64:7c:c6:1f:ca:da:ea:36:e8:30:4f:aa:1d: d5:22:47:c3:08:c9:c2:dd:c7:14:cc:b3:9c:69:ec:d4:9a:63: 78:b7:59:c4:c5:e9:36:ff:c0:80:ad:58:09:38:cc:d9:cb:bc: 20:93:8f:05:d8:6b:cb:65:29:0e:a1:f7:aa:6a:9d:3c:cf:52: a5:f5:bb:63:91:e8:ba:ea:4d:51:63:02:a6:80:52:03:47:ba: 89:9d:e3:05:ba:93:e5:c5:1d:10:46:01:bf:53:08:47:b7:c5: a0:87:03:4c:2b:2e:da:6b:03:8a:fd:e7:a4:d9:5a:c8:6f:d1: 74:ef:77:fa:7b:79:a0:a5:ca:6f:26:a9:8d:2e:5b:53:ed:ad: d1:0c:9d:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZfDgMhUjovuWvBNXSJkhGVMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmZWRkODVjMWVjY2I1ZmY0YmE5MzAxMTdhNzMyOTA5OWMw ZmYyZWIwHhcNMjUwNzAxMDEwMTI2WhcNMjUwNzAyMDEwMTI2WjAzMTEwLwYDVQQD EyhlMTAyMWVmMjY3ZDAzZjE0YTBlY2QwZjJmOTE4YjRhNzdhNDJjYWFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApwM2UdjynRm85kfs3UwgSdl9BiNj lplRDLKEjyDbqtC/t07tB7SAtXlF49AnCc5PiBoITio4YIqnFVxvXPzCJEYpiyr5 V+TXqjAhaZtDLQ/RckEaEsyU72qVNlNEOJlTId8n9vcWFOLtrnDzxf6C6I2ijXHm /INBBw56EHhvWDZvutbt1UuMsYjyML143WwI0O7fhRwNvqhus44aHEuKyE6KyeIu QLorF28lLi1wDO6noTRle1So6FzOG/0WVEMCs/47RTQO/wwZco7EoElgJA+aT/6v b1LNZZqpRJ5obdShQx0+HGRW0OSV1UBj0rH8qaSLbv59ruR0r8hkAeVpnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOECHvJn0D8UoOzQ8vkYtKd6QsqrMB8GA1UdIwQY MBaAFD/t2FwezLX/S6kwEXpzKQmcD/LrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUC0zWVhCN010ZjlMcVRBUmVuTXBDWndQOHVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC80MWMzMjEtMzQ3ZS00YzNlLWFmZmQt ZTJiNTI3NzI4ZTk2LzEvUC0zWVhCN010ZjlMcVRBUmVuTXBDWndQOHVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC80MWMzMjEtMzQ3ZS00YzNlLWFmZmQtZTJiNTI3NzI4ZTk2 LzEvUC0zWVhCN010ZjlMcVRBUmVuTXBDWndQOHVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALegUO+h4 9Nkl4fRfEoMKBNmQhQu3wAUmoCEN2c4uKur8JVW5z0kW+z1dXBCrZecdD0dv6/SX oP+SOMI6Fp+0eP6g+5vUN/MGxsrkD1ipdKwhH9+6yYrkoGWXJLVNFEgIKF4l1pYD N9Bx9V9dBdwFjRtkfMYfytrqNugwT6od1SJHwwjJwt3HFMyznGns1JpjeLdZxMXp Nv/AgK1YCTjM2cu8IJOPBdhry2UpDqH3qmqdPM9SpfW7Y5HouupNUWMCpoBSA0e6 iZ3jBbqT5cUdEEYBv1MIR7fFoIcDTCsu2msDiv3npNlayG/RdO93+nt5oKXKbyap jS5bU+2t0Qydcw== -----END CERTIFICATE-----Generated at Tue Jul 1 07:06:24 2025 by rpki-client