$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft File: Nov7il7uSQgupijfJaSl1Q86qbM.mft (raw, json) Hash identifier: eo6A2YZtPqXlZtSXk/fPHhM/tHJlMgzZYvxTgS9iaEQ= Subject key identifier: C4:F5:D1:B4:FA:15:89:5A:95:E8:95:EE:00:8B:A7:A8:1E:BA:D2:DE Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Certificate serial: 0198D47456AE48FB2753C5E5E56F8C6F01F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft Manifest number: 1331 Signing time: Sat 23 Aug 2025 01:04:10 +0000 Manifest this update: Sat 23 Aug 2025 01:04:10 +0000 Manifest next update: Sun 24 Aug 2025 01:04:10 +0000 Files and hashes: 1: 1-N0MB6K4BGhCodjphO0sGfJH9lc.roa (hash: wNvOddmKqC3vtf7NfXiGQ3Hozg+ofKLNZIEe00zLk1M=) 2: 1-bbMCI3xod0gOUPFmgFsyOO30Bw.roa (hash: LKqJzBII7MGbUijDJ1j/lwoVixYqcdKqwxqkwNRG00c=) 3: 1-mVwC91y2gjxzZ49ECJKeMBNsxM.roa (hash: U559gzASGhlXQBS0hGV4xF3kH8STm7I07VZJO2H7/G4=) 4: 1-wabTO2fsXFXQTzOoF0K0I_DrZU.roa (hash: RTeqrHSUS0wIUgh9aXCRzEflNtC7IYLpRr5YT5/0umM=) 5: 1WFTW_XNP-qj9QwtLvnY8K90GHo.roa (hash: TT0O/NxdJaHvvJ9dp0/GHhMEHYZPpkP2KSw3SR8SILQ=) 6: 6blgCUf86x3rCdfBH3ieROWsyRA.roa (hash: 86kM1G7rQ1SYShoyqdcl0qpLnm5lgNUyaKELq4WGkm8=) 7: 6kSNO4q11KUII70MaOJKkb7-8sg.roa (hash: po7fMOEHEv78blrhtlvLrqv8BATiXO+irHU+tW7u7Us=) 8: 6rwN2H9TdeOGb7q8HP8JJtg4qSc.roa (hash: FcA2BwhZ6jCjWY4Hf8YuwHRI8qkKyNdVMrQdqJ8aP+Q=) 9: ABJStH93Tb6FchJ9fsWarHUv7_o.roa (hash: 2aWwBiU7xdii1VsEutmj7weOOLZIls6NzS14i2lKxbg=) 10: CkXXQPJaaUDcGZXca877DoZAZBs.roa (hash: c5vNHGh+QpD+Iysn2/rTkiH0Y/dq9wFL5MpRaysUMKg=) 11: DVg1Efbw-1VF7OmnT2UlNXAKp6c.roa (hash: +oncWmQ5BpXDKZTWF4Tr8YOqt10mU/wA8TyqNvyksnI=) 12: F-W1PnZcCIg_t9g53Zhr8ZnRECY.roa (hash: vUOE0EzW5wlVnmrKCdNEm67M3EqZb+A0EvhCnOtIuZM=) 13: IN3MTD4yGkkCDB1rJO86jTqGDXo.roa (hash: 7YOMcFzQDeiJ2ivIPHaXcmOgqcdPTr50fRvwkCG59Mg=) 14: NmpssQUEcEZNKaoW0BQiwNAoyOM.roa (hash: umT/ksYC6kbCYRycfHE77LtnW64FjufV8F+An3q8R18=) 15: Nov7il7uSQgupijfJaSl1Q86qbM.crl (hash: Q/PTrqwFS9EpI4GVCrK0mIR7+xO0bbJOqhaqwlpdVIY=) 16: S7OFuNl-GH-DU5EJTYgFgwhDjj4.roa (hash: ymztFVGLR/DYVfAE234cC1kQgAmVsycMhDqhtka8bLQ=) 17: SWriLr3nVJjiUOMV3ZQzft65uIQ.roa (hash: spVCEv9GHrawAsPw1EVJ3YvZeiUgfGRBjgYb4vGUxOc=) 18: SwhgnoZF_hBARmFUiuLLJ2EVqdA.roa (hash: 48VRNmDGNhRP2L8JLtMNzB4JM3bc2vPZU8jDlCGlZ6A=) 19: Y93UFuH00_cFjyT9h0x-Xo3LsRA.roa (hash: KbxPfOmyChm+trCvOnFCPUXdRLZulWQI+556HaiOtUM=) 20: ZGQz0tsigUD9Q_FNeNUn6ogaHqg.roa (hash: K6ZZnIzxkzbl1qwYVTj7m0h9gsdaSWPnwrSd9T7K9Qs=) 21: ZnbzYHRBvUTbEjCixu-51iq0NfI.roa (hash: H6eoYf0qoCchu+RJjza0539v8DwbGRsxOIQiPaH7Gsc=) 22: _xC1kXcH_xnBrp3zmmeFMgFE7KI.roa (hash: lnLioS9m0wvQKnvleqYpOpwLrz8qz8X99uptw34wSFs=) 23: nV9zpTkg41cEF2aE_Xxas5qWLPE.roa (hash: TmF18BVISDIjbdiP8hL66Gsgu4TLs2FCPMkL0xuGpQk=) 24: ou4-Kh9DNSjfvl0SW2m8LklQ2t0.roa (hash: kGFdPKNsDJKbeK37pMl8shm8W/kYhkK5Y6eKhGhDWLA=) 25: q9T06HR6r97SU-awwQlQkmbgz5o.roa (hash: ETbjB9b9hcvuMEeWyF6+hF4G9dhj7syzfHpk/6yrsfU=) 26: vo2rUhudHaghMCW2SmvX6-xlrgc.roa (hash: FZASucIaZ1aOelFRR50cfT704K1hG/2FvzdrgPSdXmY=) 27: w_7KSHXu7o9ktpz_Vrh_00tv7HI.roa (hash: gkGoVuf1pEqMxqdRmFn7c7MKr+cC0H9E1TpCk2Uue1E=) 28: xls96UEa5x8QQ0zNf0sviPf9i3k.roa (hash: m0eq2urB49dl+6zHn37E7MnUA3Q0Qt3aw5b2d8bC9Dc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 00:37:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:d4:74:56:ae:48:fb:27:53:c5:e5:e5:6f:8c:6f:01:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Validity Not Before: Aug 23 01:04:10 2025 GMT Not After : Aug 24 01:04:10 2025 GMT Subject: CN=c4f5d1b4fa15895a95e895ee008ba7a81ebad2de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c8:cf:3a:03:fb:de:2c:9e:1f:c4:50:c3:68: 70:46:cc:e9:41:5d:f0:72:e4:a2:e2:49:b6:ad:db: 77:e4:05:77:93:92:94:49:1f:dc:ce:4c:98:fb:22: 6f:74:33:ae:54:d0:bf:dc:68:6a:48:f1:6f:92:78: 28:e0:46:3e:40:99:d1:8c:b5:75:8e:0f:aa:96:82: 83:5a:0e:da:5f:47:2b:34:7c:a9:e6:37:57:22:0e: 01:6a:3c:75:80:26:23:aa:d4:24:ab:32:12:90:9a: fa:4c:42:20:ac:4f:ba:4f:db:1c:de:6f:56:40:6c: 64:1f:70:2d:22:90:9d:30:27:ae:3e:6c:e5:11:33: 35:b1:f2:a3:be:ba:db:ef:1f:4d:94:79:fe:e3:b5: 5f:f2:a7:7d:16:56:33:97:c1:7a:58:ef:cf:4c:f1: 0a:9b:37:54:18:b7:4d:f4:16:20:ea:8e:ae:61:10: 56:0b:6e:5a:00:a6:ac:4a:67:b7:1c:15:75:8a:57: ec:28:d4:d3:e6:ba:3d:db:7c:a7:8a:0d:8a:37:d5: 6e:a4:6e:b7:ec:71:80:0c:83:3c:96:09:b8:a2:21: 98:ea:aa:72:f4:9b:1d:87:74:85:5f:fe:f3:bb:af: 0e:24:d5:12:a0:68:f3:c7:66:d4:d2:de:54:2f:14: 61:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:F5:D1:B4:FA:15:89:5A:95:E8:95:EE:00:8B:A7:A8:1E:BA:D2:DE X509v3 Authority Key Identifier: keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:68:96:48:23:4e:a7:6e:7a:b4:46:8d:40:4d:e0:29:d8:25: 5a:9f:a5:25:fd:a2:df:a8:e9:e1:a3:7b:ec:4f:8c:57:16:71: 03:73:bc:9a:46:72:87:57:02:e5:b2:37:43:aa:dc:16:92:45: f1:61:d2:47:19:e9:02:83:96:27:76:ff:36:54:19:83:9c:95: 16:bc:fc:1c:8d:a2:76:dc:35:97:6c:85:9e:6c:19:59:f3:44: 28:7c:eb:ae:a3:2f:4b:cd:b8:db:45:da:c5:9e:af:3e:e5:7e: 2f:31:24:7a:a9:4f:00:0d:6d:c4:a7:9c:2d:d0:ae:1e:96:fa: aa:0b:6a:46:6c:c8:a6:37:ce:ef:2c:37:08:a3:48:8d:c2:c2: fe:be:d3:da:2a:a4:bd:6f:14:93:0e:b5:d2:28:6b:9c:b6:63: dd:98:76:50:21:ad:45:73:c1:14:06:7b:2e:63:bf:fd:61:48: 7d:bd:ec:c7:9f:2e:70:3c:4d:7a:79:c2:f2:7d:7f:25:13:fd: a3:4e:fe:77:7c:01:ba:64:08:c2:63:3b:ae:e5:82:5a:6b:7d: 87:44:dd:67:0d:4e:41:de:98:87:a0:db:9b:d4:32:ae:68:b0: 59:bf:6e:a0:d6:80:64:98:0f:05:4a:3b:01:5e:84:00:68:7c: 1d:21:08:81 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjUdFauSPsnU8Xl5W+MbwH5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz YWE5YjMwHhcNMjUwODIzMDEwNDEwWhcNMjUwODI0MDEwNDEwWjAzMTEwLwYDVQQD EyhjNGY1ZDFiNGZhMTU4OTVhOTVlODk1ZWUwMDhiYTdhODFlYmFkMmRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyMjPOgP73iyeH8RQw2hwRszpQV3w cuSi4km2rdt35AV3k5KUSR/czkyY+yJvdDOuVNC/3GhqSPFvkngo4EY+QJnRjLV1 jg+qloKDWg7aX0crNHyp5jdXIg4Bajx1gCYjqtQkqzISkJr6TEIgrE+6T9sc3m9W QGxkH3AtIpCdMCeuPmzlETM1sfKjvrrb7x9NlHn+47Vf8qd9FlYzl8F6WO/PTPEK mzdUGLdN9BYg6o6uYRBWC25aAKasSme3HBV1ilfsKNTT5ro923ynig2KN9VupG63 7HGADIM8lgm4oiGY6qpy9Jsdh3SFX/7zu68OJNUSoGjzx2bU0t5ULxRhcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMT10bT6FYlaleiV7gCLp6geutLeMB8GA1UdIwQY MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt MGFlMmU5MjJhMjkyLzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi2iWSCNO p256tEaNQE3gKdglWp+lJf2i36jp4aN77E+MVxZxA3O8mkZyh1cC5bI3Q6rcFpJF 8WHSRxnpAoOWJ3b/NlQZg5yVFrz8HI2idtw1l2yFnmwZWfNEKHzrrqMvS82420Xa xZ6vPuV+LzEkeqlPAA1txKecLdCuHpb6qgtqRmzIpjfO7yw3CKNIjcLC/r7T2iqk vW8Ukw610ihrnLZj3Zh2UCGtRXPBFAZ7LmO//WFIfb3sx58ucDxNennC8n1/JRP9 o07+d3wBumQIwmM7ruWCWmt9h0TdZw1OQd6Yh6Dbm9QyrmiwWb9uoNaAZJgPBUo7 AV6EAGh8HSEIgQ== -----END CERTIFICATE-----Generated at Sat Aug 23 10:11:31 2025 by rpki-client