$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft File: Nov7il7uSQgupijfJaSl1Q86qbM.mft (raw, json) Hash identifier: Ol/W8yHlOnjx2ZU0IMvXfpX3usonf2TMUp6BSiXYjjc= Subject key identifier: 46:4B:90:24:62:AD:06:14:50:5B:93:62:70:0C:5B:1D:59:03:72:25 Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Certificate serial: 0199FDB98A68FB2BE0BDC0109200BF2A4C25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft Manifest number: 13D6 Signing time: Sun 19 Oct 2025 18:26:59 +0000 Manifest this update: Sun 19 Oct 2025 18:26:59 +0000 Manifest next update: Mon 20 Oct 2025 18:26:59 +0000 Files and hashes: 1: 0sTiQL9BpziNNFF9FacA7txFp4w.roa (hash: CLrdyx0Cg3S+QuOUt4e8L9WYyaGDex4K2YIa5CkZ86Q=) 2: 1-N0MB6K4BGhCodjphO0sGfJH9lc.roa (hash: wNvOddmKqC3vtf7NfXiGQ3Hozg+ofKLNZIEe00zLk1M=) 3: 1-bbMCI3xod0gOUPFmgFsyOO30Bw.roa (hash: LKqJzBII7MGbUijDJ1j/lwoVixYqcdKqwxqkwNRG00c=) 4: 1-wabTO2fsXFXQTzOoF0K0I_DrZU.roa (hash: RTeqrHSUS0wIUgh9aXCRzEflNtC7IYLpRr5YT5/0umM=) 5: 1WFTW_XNP-qj9QwtLvnY8K90GHo.roa (hash: TT0O/NxdJaHvvJ9dp0/GHhMEHYZPpkP2KSw3SR8SILQ=) 6: 1lTFoj63RaNBPnsylzVDB0FbQcc.roa (hash: Wmsf3/BQIBuAue+polYHmV/g9lwEk/F7Z4SpbFZOF0o=) 7: 41NUtPFxhObk-wVR35VCAMgd6ew.roa (hash: PcHsWPaT2JkObS4lJVIC3b2jPWyUUdnpeoaDp23b2r0=) 8: 6blgCUf86x3rCdfBH3ieROWsyRA.roa (hash: 86kM1G7rQ1SYShoyqdcl0qpLnm5lgNUyaKELq4WGkm8=) 9: 6kSNO4q11KUII70MaOJKkb7-8sg.roa (hash: po7fMOEHEv78blrhtlvLrqv8BATiXO+irHU+tW7u7Us=) 10: 6rwN2H9TdeOGb7q8HP8JJtg4qSc.roa (hash: FcA2BwhZ6jCjWY4Hf8YuwHRI8qkKyNdVMrQdqJ8aP+Q=) 11: ABJStH93Tb6FchJ9fsWarHUv7_o.roa (hash: 2aWwBiU7xdii1VsEutmj7weOOLZIls6NzS14i2lKxbg=) 12: C34TCWAAsuIM5LVygn6C7yQx3P0.roa (hash: M4OJhxeXZ34Zdg4oZ52MXUW46vr94WOQk28NV0lOpg4=) 13: CkXXQPJaaUDcGZXca877DoZAZBs.roa (hash: c5vNHGh+QpD+Iysn2/rTkiH0Y/dq9wFL5MpRaysUMKg=) 14: DVg1Efbw-1VF7OmnT2UlNXAKp6c.roa (hash: +oncWmQ5BpXDKZTWF4Tr8YOqt10mU/wA8TyqNvyksnI=) 15: IN3MTD4yGkkCDB1rJO86jTqGDXo.roa (hash: 7YOMcFzQDeiJ2ivIPHaXcmOgqcdPTr50fRvwkCG59Mg=) 16: NmpssQUEcEZNKaoW0BQiwNAoyOM.roa (hash: umT/ksYC6kbCYRycfHE77LtnW64FjufV8F+An3q8R18=) 17: Nov7il7uSQgupijfJaSl1Q86qbM.crl (hash: 8jNxKWJzH4IT4M4pBn3Up2VzllS6ZDCwHuFGzfWbIy8=) 18: P5MQT6daRbdr-R3pB7QOjSqAL4Q.roa (hash: xmGgGe1dwu3F4/Ddk90Hq6VDykeMQZvGcFQBtkOWLR8=) 19: QckeBKMJh1BMnZ4ggic7riQ2nos.roa (hash: PamlZ5g3cWGlPRPXTTD6iPe1z0pCGfOT1CE1MB2hQhQ=) 20: QfrBASbGsV9PVtFSk_7UjwBcWEM.roa (hash: rNxthRgt1V+JwXg506MlnxTxTgZ9hC5VywiRjKQezCo=) 21: S7OFuNl-GH-DU5EJTYgFgwhDjj4.roa (hash: ymztFVGLR/DYVfAE234cC1kQgAmVsycMhDqhtka8bLQ=) 22: SWriLr3nVJjiUOMV3ZQzft65uIQ.roa (hash: spVCEv9GHrawAsPw1EVJ3YvZeiUgfGRBjgYb4vGUxOc=) 23: SwhgnoZF_hBARmFUiuLLJ2EVqdA.roa (hash: 48VRNmDGNhRP2L8JLtMNzB4JM3bc2vPZU8jDlCGlZ6A=) 24: Y93UFuH00_cFjyT9h0x-Xo3LsRA.roa (hash: KbxPfOmyChm+trCvOnFCPUXdRLZulWQI+556HaiOtUM=) 25: YQyoZSZ38L_KFryMEYkBnAZJoIU.roa (hash: rlsyW+kzGTKRfz2CZKaaatgyY9ylPHrd5KVR/xTE2Pc=) 26: Zk4BlJWRnOOEXvSWy79JFjGP6ds.roa (hash: SdogvnoK+ooQjSoYhkW00PpLxlDevb4pmfwk2gJXytQ=) 27: nV9zpTkg41cEF2aE_Xxas5qWLPE.roa (hash: TmF18BVISDIjbdiP8hL66Gsgu4TLs2FCPMkL0xuGpQk=) 28: ou4-Kh9DNSjfvl0SW2m8LklQ2t0.roa (hash: kGFdPKNsDJKbeK37pMl8shm8W/kYhkK5Y6eKhGhDWLA=) 29: q9T06HR6r97SU-awwQlQkmbgz5o.roa (hash: ETbjB9b9hcvuMEeWyF6+hF4G9dhj7syzfHpk/6yrsfU=) 30: tVNklZT96j0o2vM1vFyzeOT8bDo.roa (hash: X8HwNTOIYXkyadyS3xbX6x0xWEuSl2cwCWxlE5a5tY0=) 31: w_7KSHXu7o9ktpz_Vrh_00tv7HI.roa (hash: gkGoVuf1pEqMxqdRmFn7c7MKr+cC0H9E1TpCk2Uue1E=) 32: xls96UEa5x8QQ0zNf0sviPf9i3k.roa (hash: m0eq2urB49dl+6zHn37E7MnUA3Q0Qt3aw5b2d8bC9Dc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 18:26:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:fd:b9:8a:68:fb:2b:e0:bd:c0:10:92:00:bf:2a:4c:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Validity Not Before: Oct 19 18:26:59 2025 GMT Not After : Oct 20 18:26:59 2025 GMT Subject: CN=464b902462ad0614505b9362700c5b1d59037225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:11:29:6b:04:5f:a9:c9:f1:76:cd:f4:62:3a: f7:65:f3:59:78:50:11:80:9a:56:81:b1:07:2c:93: b3:ab:0d:1d:2a:81:cc:dd:3a:73:66:4d:b5:c1:79: 0a:a3:e1:2f:33:cb:1d:8f:c0:18:00:4b:85:34:0c: a6:6b:e2:42:b3:cf:2d:65:3d:d6:0e:a9:32:e1:20: 27:75:4d:d8:75:73:02:d7:c2:72:bf:e3:b6:2f:47: db:1e:d5:e5:51:68:f8:5d:7c:21:77:e5:6e:39:1f: 55:e5:7a:88:52:d4:a2:cf:02:2f:1d:a7:75:0f:09: 8f:ec:83:b8:a1:5e:2b:a1:65:1c:83:35:c6:3e:ee: 60:7d:a8:1a:e4:9e:c4:2f:49:53:2d:9c:28:02:38: bf:ea:cb:45:a7:94:10:61:9a:45:70:d4:3f:7a:30: 12:33:ab:45:01:5f:ff:69:28:ca:7f:db:3b:3c:f6: 01:90:33:fc:a9:85:4f:7c:80:39:f1:d2:38:f8:6b: fe:4c:27:d6:27:18:e4:a7:63:32:73:1c:3e:5d:f6: ae:00:fc:53:bf:1d:1a:bf:b7:c9:b3:bf:14:2f:b4: 5f:aa:7b:82:1e:9a:e3:2f:dd:84:39:47:e1:64:fc: 6c:dd:38:52:cf:65:b6:2f:25:cf:12:18:c8:f9:bd: fb:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:4B:90:24:62:AD:06:14:50:5B:93:62:70:0C:5B:1D:59:03:72:25 X509v3 Authority Key Identifier: keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:09:ba:04:ea:d9:c7:57:7d:bb:b2:66:9c:b0:98:7a:15:3e: 38:3c:37:fd:20:77:28:03:52:7d:90:09:f3:9b:25:eb:51:e7: 3b:71:86:68:36:b2:5d:d7:19:73:73:ae:ce:6c:02:f7:7b:7f: b3:52:d2:45:17:cb:3d:df:76:49:b0:94:db:0a:ee:f4:6d:23: 86:28:35:0f:7e:ff:90:5d:d9:c9:2d:e8:df:d9:87:b5:85:d9: c8:82:b2:7b:62:ce:1a:84:a5:44:eb:ee:01:52:f4:80:c0:e6: de:29:0f:01:c1:89:2f:4a:f1:5b:75:05:b8:6e:00:2a:26:2c: 2b:da:06:a7:f4:b4:7b:d1:a6:1d:6b:46:5e:66:f8:b8:5a:f9: 31:b3:7f:04:d2:d3:fd:1f:9e:7c:4f:9b:fc:cc:ef:be:f3:4a: ab:5a:47:1f:d9:91:9b:f9:70:20:fc:38:fb:52:b5:bb:d4:97: 7b:af:42:04:66:2b:bb:95:38:a3:72:0e:c1:58:3a:f2:fc:c5: 15:5e:38:a8:4a:73:17:4c:72:39:28:45:9b:1b:07:7a:c3:ec: 88:29:5f:2d:78:5f:94:3d:c6:f0:d7:bf:5b:88:a5:53:70:9c: 52:8b:c0:e2:a6:f7:97:47:13:58:81:f4:e1:14:1b:d1:ec:9f: 50:86:35:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZn9uYpo+yvgvcAQkgC/KkwlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz YWE5YjMwHhcNMjUxMDE5MTgyNjU5WhcNMjUxMDIwMTgyNjU5WjAzMTEwLwYDVQQD Eyg0NjRiOTAyNDYyYWQwNjE0NTA1YjkzNjI3MDBjNWIxZDU5MDM3MjI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6BEpawRfqcnxds30Yjr3ZfNZeFAR gJpWgbEHLJOzqw0dKoHM3TpzZk21wXkKo+EvM8sdj8AYAEuFNAyma+JCs88tZT3W Dqky4SAndU3YdXMC18Jyv+O2L0fbHtXlUWj4XXwhd+VuOR9V5XqIUtSizwIvHad1 DwmP7IO4oV4roWUcgzXGPu5gfaga5J7EL0lTLZwoAji/6stFp5QQYZpFcNQ/ejAS M6tFAV//aSjKf9s7PPYBkDP8qYVPfIA58dI4+Gv+TCfWJxjkp2Mycxw+XfauAPxT vx0av7fJs78UL7RfqnuCHprjL92EOUfhZPxs3ThSz2W2LyXPEhjI+b37CwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEZLkCRirQYUUFuTYnAMWx1ZA3IlMB8GA1UdIwQY MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt MGFlMmU5MjJhMjkyLzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAQm6BOrZ x1d9u7JmnLCYehU+ODw3/SB3KANSfZAJ85sl61HnO3GGaDayXdcZc3OuzmwC93t/ s1LSRRfLPd92SbCU2wru9G0jhig1D37/kF3ZyS3o39mHtYXZyIKye2LOGoSlROvu AVL0gMDm3ikPAcGJL0rxW3UFuG4AKiYsK9oGp/S0e9GmHWtGXmb4uFr5MbN/BNLT /R+efE+b/MzvvvNKq1pHH9mRm/lwIPw4+1K1u9SXe69CBGYru5U4o3IOwVg68vzF FV44qEpzF0xyOShFmxsHesPsiClfLXhflD3G8Ne/W4ilU3CcUovA4qb3l0cTWIH0 4RQb0eyfUIY11g== -----END CERTIFICATE-----Generated at Mon Oct 20 02:30:20 2025 by rpki-client