$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft File: Nov7il7uSQgupijfJaSl1Q86qbM.mft (raw, json) Hash identifier: 4jyfVosBvdgrIyRQbFkeIoeZFF3FHLAdnAdoTj/z33w= Subject key identifier: 6C:86:28:D6:C6:E9:4F:2B:4A:A6:08:A3:F7:60:C1:42:3B:E6:0A:F6 Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Certificate serial: 0199FF9024A9C308900AADA0CDF8A564954F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft Manifest number: 13D7 Signing time: Mon 20 Oct 2025 03:01:00 +0000 Manifest this update: Mon 20 Oct 2025 03:01:00 +0000 Manifest next update: Tue 21 Oct 2025 03:01:00 +0000 Files and hashes: 1: 0sTiQL9BpziNNFF9FacA7txFp4w.roa (hash: CLrdyx0Cg3S+QuOUt4e8L9WYyaGDex4K2YIa5CkZ86Q=) 2: 1-N0MB6K4BGhCodjphO0sGfJH9lc.roa (hash: wNvOddmKqC3vtf7NfXiGQ3Hozg+ofKLNZIEe00zLk1M=) 3: 1-bbMCI3xod0gOUPFmgFsyOO30Bw.roa (hash: LKqJzBII7MGbUijDJ1j/lwoVixYqcdKqwxqkwNRG00c=) 4: 1-wabTO2fsXFXQTzOoF0K0I_DrZU.roa (hash: RTeqrHSUS0wIUgh9aXCRzEflNtC7IYLpRr5YT5/0umM=) 5: 1WFTW_XNP-qj9QwtLvnY8K90GHo.roa (hash: TT0O/NxdJaHvvJ9dp0/GHhMEHYZPpkP2KSw3SR8SILQ=) 6: 1lTFoj63RaNBPnsylzVDB0FbQcc.roa (hash: Wmsf3/BQIBuAue+polYHmV/g9lwEk/F7Z4SpbFZOF0o=) 7: 41NUtPFxhObk-wVR35VCAMgd6ew.roa (hash: PcHsWPaT2JkObS4lJVIC3b2jPWyUUdnpeoaDp23b2r0=) 8: 6blgCUf86x3rCdfBH3ieROWsyRA.roa (hash: 86kM1G7rQ1SYShoyqdcl0qpLnm5lgNUyaKELq4WGkm8=) 9: 6kSNO4q11KUII70MaOJKkb7-8sg.roa (hash: po7fMOEHEv78blrhtlvLrqv8BATiXO+irHU+tW7u7Us=) 10: 6rwN2H9TdeOGb7q8HP8JJtg4qSc.roa (hash: FcA2BwhZ6jCjWY4Hf8YuwHRI8qkKyNdVMrQdqJ8aP+Q=) 11: ABJStH93Tb6FchJ9fsWarHUv7_o.roa (hash: 2aWwBiU7xdii1VsEutmj7weOOLZIls6NzS14i2lKxbg=) 12: C34TCWAAsuIM5LVygn6C7yQx3P0.roa (hash: M4OJhxeXZ34Zdg4oZ52MXUW46vr94WOQk28NV0lOpg4=) 13: CkXXQPJaaUDcGZXca877DoZAZBs.roa (hash: c5vNHGh+QpD+Iysn2/rTkiH0Y/dq9wFL5MpRaysUMKg=) 14: DVg1Efbw-1VF7OmnT2UlNXAKp6c.roa (hash: +oncWmQ5BpXDKZTWF4Tr8YOqt10mU/wA8TyqNvyksnI=) 15: IN3MTD4yGkkCDB1rJO86jTqGDXo.roa (hash: 7YOMcFzQDeiJ2ivIPHaXcmOgqcdPTr50fRvwkCG59Mg=) 16: NmpssQUEcEZNKaoW0BQiwNAoyOM.roa (hash: umT/ksYC6kbCYRycfHE77LtnW64FjufV8F+An3q8R18=) 17: Nov7il7uSQgupijfJaSl1Q86qbM.crl (hash: rZRgHOxXiFIqJZfi6C5koB24SauP6VYxTh98IqT4Sx8=) 18: P5MQT6daRbdr-R3pB7QOjSqAL4Q.roa (hash: xmGgGe1dwu3F4/Ddk90Hq6VDykeMQZvGcFQBtkOWLR8=) 19: QckeBKMJh1BMnZ4ggic7riQ2nos.roa (hash: PamlZ5g3cWGlPRPXTTD6iPe1z0pCGfOT1CE1MB2hQhQ=) 20: QfrBASbGsV9PVtFSk_7UjwBcWEM.roa (hash: rNxthRgt1V+JwXg506MlnxTxTgZ9hC5VywiRjKQezCo=) 21: S7OFuNl-GH-DU5EJTYgFgwhDjj4.roa (hash: ymztFVGLR/DYVfAE234cC1kQgAmVsycMhDqhtka8bLQ=) 22: SWriLr3nVJjiUOMV3ZQzft65uIQ.roa (hash: spVCEv9GHrawAsPw1EVJ3YvZeiUgfGRBjgYb4vGUxOc=) 23: SwhgnoZF_hBARmFUiuLLJ2EVqdA.roa (hash: 48VRNmDGNhRP2L8JLtMNzB4JM3bc2vPZU8jDlCGlZ6A=) 24: Y93UFuH00_cFjyT9h0x-Xo3LsRA.roa (hash: KbxPfOmyChm+trCvOnFCPUXdRLZulWQI+556HaiOtUM=) 25: YQyoZSZ38L_KFryMEYkBnAZJoIU.roa (hash: rlsyW+kzGTKRfz2CZKaaatgyY9ylPHrd5KVR/xTE2Pc=) 26: Zk4BlJWRnOOEXvSWy79JFjGP6ds.roa (hash: SdogvnoK+ooQjSoYhkW00PpLxlDevb4pmfwk2gJXytQ=) 27: nV9zpTkg41cEF2aE_Xxas5qWLPE.roa (hash: TmF18BVISDIjbdiP8hL66Gsgu4TLs2FCPMkL0xuGpQk=) 28: ou4-Kh9DNSjfvl0SW2m8LklQ2t0.roa (hash: kGFdPKNsDJKbeK37pMl8shm8W/kYhkK5Y6eKhGhDWLA=) 29: q9T06HR6r97SU-awwQlQkmbgz5o.roa (hash: ETbjB9b9hcvuMEeWyF6+hF4G9dhj7syzfHpk/6yrsfU=) 30: tVNklZT96j0o2vM1vFyzeOT8bDo.roa (hash: X8HwNTOIYXkyadyS3xbX6x0xWEuSl2cwCWxlE5a5tY0=) 31: w_7KSHXu7o9ktpz_Vrh_00tv7HI.roa (hash: gkGoVuf1pEqMxqdRmFn7c7MKr+cC0H9E1TpCk2Uue1E=) 32: xls96UEa5x8QQ0zNf0sviPf9i3k.roa (hash: m0eq2urB49dl+6zHn37E7MnUA3Q0Qt3aw5b2d8bC9Dc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 20:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:ff:90:24:a9:c3:08:90:0a:ad:a0:cd:f8:a5:64:95:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Validity Not Before: Oct 20 03:01:00 2025 GMT Not After : Oct 21 03:01:00 2025 GMT Subject: CN=6c8628d6c6e94f2b4aa608a3f760c1423be60af6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:30:e0:8e:57:04:bf:97:6b:26:cf:67:98:ff: 97:38:34:2d:ab:9a:bc:05:38:4e:69:3b:3a:1f:5e: 5c:ff:0d:f8:99:80:b4:e7:78:2d:be:1c:7e:36:d1: f5:2e:6b:93:f6:8a:f5:8f:21:fa:6d:f1:48:f3:60: 39:db:dc:34:0b:6a:d2:d3:6a:f6:9f:37:43:d6:d1: 83:5c:9d:dc:54:4d:a2:4e:3f:48:03:96:b6:e7:5c: 3e:a1:20:e9:ce:b0:d8:af:bf:df:74:38:f3:ea:b2: 76:1c:d9:1f:5c:51:dd:1f:0d:99:25:98:b0:19:d4: 1d:7c:ff:88:67:bf:59:4e:f1:1f:da:af:09:9b:17: 9e:b3:61:a4:03:d7:51:38:71:e3:16:b6:53:c1:28: 49:a8:60:02:9a:3e:c3:53:95:57:c1:08:fe:9c:d9: 58:c7:01:e7:02:05:69:3f:5e:4a:c0:74:93:e8:ef: 09:ab:dc:ed:f0:60:20:c9:7d:4a:3a:a0:ca:36:c2: 29:4c:0e:2d:53:f6:76:b6:ad:53:cf:a8:d9:ec:73: 93:da:db:21:57:1f:e1:1b:65:5d:57:57:86:25:99: 0a:78:30:2e:02:9d:86:77:aa:09:60:32:29:e6:c9: d3:14:53:9f:37:46:74:2e:9d:75:05:89:6a:60:e8: bb:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:86:28:D6:C6:E9:4F:2B:4A:A6:08:A3:F7:60:C1:42:3B:E6:0A:F6 X509v3 Authority Key Identifier: keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:df:51:37:8e:4c:45:25:10:e3:36:43:bb:cc:f8:d8:1e:a1: 7f:5f:af:52:d3:4a:76:f3:1b:7c:b2:bf:c3:48:fe:32:ee:61: c3:40:2b:44:a9:54:3e:50:a4:6e:32:42:60:08:3d:e5:39:88: 8b:ab:c1:37:c7:ba:a2:aa:59:76:a6:bb:50:ed:0c:b0:44:a4: bf:a5:b5:56:e1:34:9f:95:d9:8f:2d:4e:27:bb:db:dc:48:a2: f4:93:a8:7b:41:74:f2:d4:58:39:e9:1d:af:64:80:90:ee:64: 8e:7f:97:ef:2c:91:2b:79:a4:d8:0d:70:c1:ee:43:01:f7:ce: 6c:c0:33:cb:10:05:04:b4:13:93:dd:fe:7a:ba:bc:42:0e:19: fc:a6:79:9f:1a:e4:5b:85:42:55:84:bf:e7:30:d0:a2:4d:0a: 60:94:71:69:5e:73:98:49:bc:4a:f4:ac:29:fe:e4:15:fb:11: 88:ba:ed:20:83:72:1a:b2:e3:1d:3d:22:82:86:61:28:40:9b: 4f:da:c4:42:a3:93:e8:77:65:96:27:cc:1b:d7:e0:7a:47:e4: 0c:61:7c:5a:4d:fc:39:39:f4:3a:b2:b6:cf:b0:f7:f4:dd:23: 69:32:db:e1:dc:31:69:6c:bb:e1:8f:e7:75:0c:f4:55:64:c2: 9d:8d:4b:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZn/kCSpwwiQCq2gzfilZJVPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz YWE5YjMwHhcNMjUxMDIwMDMwMTAwWhcNMjUxMDIxMDMwMTAwWjAzMTEwLwYDVQQD Eyg2Yzg2MjhkNmM2ZTk0ZjJiNGFhNjA4YTNmNzYwYzE0MjNiZTYwYWY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0zDgjlcEv5drJs9nmP+XODQtq5q8 BThOaTs6H15c/w34mYC053gtvhx+NtH1LmuT9or1jyH6bfFI82A529w0C2rS02r2 nzdD1tGDXJ3cVE2iTj9IA5a251w+oSDpzrDYr7/fdDjz6rJ2HNkfXFHdHw2ZJZiw GdQdfP+IZ79ZTvEf2q8Jmxees2GkA9dROHHjFrZTwShJqGACmj7DU5VXwQj+nNlY xwHnAgVpP15KwHST6O8Jq9zt8GAgyX1KOqDKNsIpTA4tU/Z2tq1Tz6jZ7HOT2tsh Vx/hG2VdV1eGJZkKeDAuAp2Gd6oJYDIp5snTFFOfN0Z0Lp11BYlqYOi7uQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGyGKNbG6U8rSqYIo/dgwUI75gr2MB8GA1UdIwQY MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt MGFlMmU5MjJhMjkyLzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAud9RN45M RSUQ4zZDu8z42B6hf1+vUtNKdvMbfLK/w0j+Mu5hw0ArRKlUPlCkbjJCYAg95TmI i6vBN8e6oqpZdqa7UO0MsESkv6W1VuE0n5XZjy1OJ7vb3Eii9JOoe0F08tRYOekd r2SAkO5kjn+X7yyRK3mk2A1wwe5DAffObMAzyxAFBLQTk93+erq8Qg4Z/KZ5nxrk W4VCVYS/5zDQok0KYJRxaV5zmEm8SvSsKf7kFfsRiLrtIINyGrLjHT0igoZhKECb T9rEQqOT6HdllifMG9fgekfkDGF8Wk38OTn0OrK2z7D39N0jaTLb4dwxaWy74Y/n dQz0VWTCnY1LYw== -----END CERTIFICATE-----Generated at Mon Oct 20 05:55:58 2025 by rpki-client