$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.mft File: P-3YXB7Mtf9LqTARenMpCZwP8us.mft (raw, json) Hash identifier: eb+5u0pQq697PSs9YB4lgxOuw73RgXK8ahjRrgDeRjA= Subject key identifier: 35:B8:03:B0:6E:40:18:C8:46:22:08:A2:19:D7:FC:CA:D6:61:D5:5A Authority key identifier: 3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB Certificate issuer: /CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb Certificate serial: 0198D5BBD9E917E84595837EE383B4089C6C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.mft Manifest number: 166F Signing time: Sat 23 Aug 2025 07:01:54 +0000 Manifest this update: Sat 23 Aug 2025 07:01:54 +0000 Manifest next update: Sun 24 Aug 2025 07:01:54 +0000 Files and hashes: 1: 4SyAKG9FRt1gAFJy5VgH5PwxTRA.roa (hash: jTSIiH7dSb5EybAsEY+n22bAiKvGllq/AuPJ12+ncpM=) 2: BPvvMmPw0v2RXdpWWHfCuRUXY28.roa (hash: xZBsJjBvf0lTF+79AIT0zRbookilcef0qHIZ5VPCKjo=) 3: BZv8sGCcNALUX5pRivC_EjiidAY.roa (hash: h2vpw3fwMWMbbCOrxK6C72hr7+aeGxdeLm1OT0QOTJY=) 4: DGiTictajwWlIqV1Y3gB4SABHrM.roa (hash: Id5c1uksWgHuNXSqMulTJtxTXfw1/TAJk3AEd7b9YRQ=) 5: Mk65rzu_RkrceH34hYZR24Obsg0.roa (hash: rTzdbjg2prHl5GqIGFCWtd1Ib91ETCuwTrOfSPbAKbI=) 6: P-3YXB7Mtf9LqTARenMpCZwP8us.crl (hash: j8bgqPPkeWAR/gnKgYbtmx8zzI+77Jhf9bwq+335/CA=) 7: Q7Kremg5Fgj0SfkKKXdi8FJc68I.roa (hash: wwhqLnVWip/tEomt2waPsqqsK0Xf41SfYznp1QkJ0BM=) 8: VB2zjyzRbVcAI7qwybUzZhlXV-U.roa (hash: cbrJc/4RT0HiKhNiv2HtCVB5MjAEHV6aPZtCJF7/HaM=) 9: fScTC-RTAL4AeGIUFDXeFWgxNOU.roa (hash: LpQDvJVc9hMoS+6x9uoQSz8d+i8pdM/6GrU1p5QPkoU=) 10: gjV1b6nl-2sIdV0OViEWc13VOgw.roa (hash: YJxg+E5odCH0e5CDjaGL8I+42oC/IlpXfOKgoo/xCo4=) 11: i_vdOGwxPt-bikrKCsCq4vU6o1Y.roa (hash: Oi88txSdII7ssSiwm/zvR3/xE/bpdarLSDiFGBrNlqs=) 12: jLM5t3eg01fijHX5BZDxTUjpEGU.roa (hash: zlqEOh5qlKElj+/BR3gY6unzfRt8ygL6XM3lywwcPBU=) 13: jt3cdzogC_GhOHVIdQu1LfkbDrM.roa (hash: 4TbqHgl6LIIhOvKU0Ma8NpMAoh5pYOvW9g1cZnc89eY=) 14: mv1h37MzImfXhXtotGH2l6nUD-c.roa (hash: jma1UU++sReZAO/OYU5m4FrNNXuoRuTByWXR/ZHh5qk=) 15: pPSUgW-kch1wzV-mL74GjoJRYas.roa (hash: 14IsY2Pcu5B3SjJ5ycOJDXddH4w35As15arfEbi1nXc=) 16: sVq7ykDogd7cCsDF--hBK9DnjT4.roa (hash: yntzoQcvzBrX+tVilVNDQYJnh1oAW90RlNAXUQi35Kc=) 17: yUsdU2ULQpT4CaBLrnJG--v6B4k.roa (hash: nFPDGUe2wiSsXpmHy1xpSDCHB5E3thvkbalz4PA2+qg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.crl rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.mft rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 05:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:d5:bb:d9:e9:17:e8:45:95:83:7e:e3:83:b4:08:9c:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb Validity Not Before: Aug 23 07:01:54 2025 GMT Not After : Aug 24 07:01:54 2025 GMT Subject: CN=35b803b06e4018c8462208a219d7fccad661d55a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:22:77:8b:4f:64:ef:77:a0:e1:9c:a1:86:ba: 15:6b:ae:e6:b9:8e:61:85:4e:eb:00:e8:ca:14:a1: e7:04:7c:55:f0:c8:9f:79:e9:6c:86:8d:49:b5:3a: 2a:5a:91:52:70:4e:93:d1:b9:07:c9:a7:fb:94:04: d2:7d:38:f0:37:2b:44:c2:26:fb:73:cf:79:ae:9f: cd:c6:9c:23:f6:38:8e:26:e3:97:17:04:2f:fb:ed: 68:2d:74:eb:58:ca:78:4d:47:2f:d7:31:56:ea:96: 97:f3:66:22:86:6c:c7:64:a8:7b:a2:23:b0:55:5e: d4:24:2b:9b:21:bf:3d:3f:ad:7e:63:4a:00:28:c2: ee:56:7c:0f:ca:bf:9f:97:13:ec:34:e0:9f:a4:9e: 8c:20:f7:49:50:07:65:50:6f:4e:88:f8:c2:95:bf: 5f:b3:d5:dd:d5:4d:87:35:f1:ab:e5:c2:28:90:5e: 61:2f:2b:c4:f6:29:3e:60:23:a5:5d:9c:06:99:29: 3a:8b:fb:70:05:9f:f7:03:e9:f6:e2:e1:6b:3e:bc: 98:52:2b:28:cf:ec:6d:53:34:95:69:85:95:de:b6: cc:de:19:5e:ed:2f:4b:62:b0:11:c2:4c:ac:85:1f: 20:9f:e9:df:2c:04:88:f7:8e:23:d2:7f:b5:f5:44: d9:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:B8:03:B0:6E:40:18:C8:46:22:08:A2:19:D7:FC:CA:D6:61:D5:5A X509v3 Authority Key Identifier: keyid:3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:a8:2f:4e:22:37:fa:44:b7:43:1b:49:e9:43:3b:c5:63:41: e6:91:cc:0a:01:8b:94:df:96:ce:8b:ed:d7:5b:57:1b:fe:1e: 8b:38:f5:6b:83:7c:7a:1d:84:99:bf:da:fa:cd:e0:77:da:6c: 7a:37:cd:1a:f5:a6:6a:9b:5b:4c:55:be:cf:16:e1:8d:02:5b: 82:60:a0:72:e7:27:b0:98:5b:90:5f:eb:e5:bf:91:26:a4:c3: e9:b4:26:ec:8f:b6:d4:af:cf:92:8d:bf:4d:68:7c:ad:21:8d: 21:0e:3f:cf:9a:37:13:a5:31:7d:f6:42:15:44:13:ea:38:3f: 7c:d0:fd:5f:0c:73:99:57:91:1d:fa:73:55:53:a9:03:79:9c: dc:45:3d:5c:5a:52:cb:4e:fb:b4:b5:ac:33:0e:41:86:30:3a: db:41:56:36:a9:9a:c1:ab:79:eb:c7:9f:dc:88:04:87:d1:31: 58:71:3a:0a:e4:ac:f6:b7:be:b8:b3:29:10:36:a9:35:4f:93: b2:28:f2:79:fd:5b:1c:d4:64:f9:da:f2:e2:de:5c:22:49:09: c7:38:3c:93:6f:47:18:81:b5:9f:6f:b4:c5:17:fe:d3:85:33: e8:ed:6a:16:bf:d6:80:04:07:08:67:0d:bf:15:a3:10:1a:d7: 3f:49:e7:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjVu9npF+hFlYN+44O0CJxsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmZWRkODVjMWVjY2I1ZmY0YmE5MzAxMTdhNzMyOTA5OWMw ZmYyZWIwHhcNMjUwODIzMDcwMTU0WhcNMjUwODI0MDcwMTU0WjAzMTEwLwYDVQQD EygzNWI4MDNiMDZlNDAxOGM4NDYyMjA4YTIxOWQ3ZmNjYWQ2NjFkNTVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5yJ3i09k73eg4ZyhhroVa67muY5h hU7rAOjKFKHnBHxV8Mifeelsho1JtToqWpFScE6T0bkHyaf7lATSfTjwNytEwib7 c895rp/Nxpwj9jiOJuOXFwQv++1oLXTrWMp4TUcv1zFW6paX82YihmzHZKh7oiOw VV7UJCubIb89P61+Y0oAKMLuVnwPyr+flxPsNOCfpJ6MIPdJUAdlUG9OiPjClb9f s9Xd1U2HNfGr5cIokF5hLyvE9ik+YCOlXZwGmSk6i/twBZ/3A+n24uFrPryYUiso z+xtUzSVaYWV3rbM3hle7S9LYrARwkyshR8gn+nfLASI944j0n+19UTZnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDW4A7BuQBjIRiIIohnX/MrWYdVaMB8GA1UdIwQY MBaAFD/t2FwezLX/S6kwEXpzKQmcD/LrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUC0zWVhCN010ZjlMcVRBUmVuTXBDWndQOHVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC80MWMzMjEtMzQ3ZS00YzNlLWFmZmQt ZTJiNTI3NzI4ZTk2LzEvUC0zWVhCN010ZjlMcVRBUmVuTXBDWndQOHVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC80MWMzMjEtMzQ3ZS00YzNlLWFmZmQtZTJiNTI3NzI4ZTk2 LzEvUC0zWVhCN010ZjlMcVRBUmVuTXBDWndQOHVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKqgvTiI3 +kS3QxtJ6UM7xWNB5pHMCgGLlN+Wzovt11tXG/4eizj1a4N8eh2Emb/a+s3gd9ps ejfNGvWmaptbTFW+zxbhjQJbgmCgcucnsJhbkF/r5b+RJqTD6bQm7I+21K/Pko2/ TWh8rSGNIQ4/z5o3E6UxffZCFUQT6jg/fND9XwxzmVeRHfpzVVOpA3mc3EU9XFpS y077tLWsMw5BhjA620FWNqmawat568ef3IgEh9ExWHE6CuSs9re+uLMpEDapNU+T sijyef1bHNRk+dry4t5cIkkJxzg8k29HGIG1n2+0xRf+04Uz6O1qFr/WgAQHCGcN vxWjEBrXP0nnyg== -----END CERTIFICATE-----Generated at Sat Aug 23 14:18:26 2025 by rpki-client