$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft File: Nov7il7uSQgupijfJaSl1Q86qbM.mft (raw, json) Hash identifier: h13+HfUWEmE42+omOJqDeFnDLTi1f61hHOTDRKW0CDg= Subject key identifier: 79:8B:4F:E3:68:9D:06:78:B7:AF:17:4F:4B:BF:0E:66:25:22:87:0A Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Certificate serial: 0197B6D726A43C711F50B5180171B1387AF7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft Manifest number: 1299 Signing time: Sat 28 Jun 2025 14:00:42 +0000 Manifest this update: Sat 28 Jun 2025 14:00:42 +0000 Manifest next update: Sun 29 Jun 2025 14:00:42 +0000 Files and hashes: 1: 0hshT3NJf3ZcExZUQYc5nmNlGaY.roa (hash: JsM+BK5pxCs2yQ1uCb8EQL/4Y9VORNiVl/v1CM9RYLo=) 2: 1-N0MB6K4BGhCodjphO0sGfJH9lc.roa (hash: wNvOddmKqC3vtf7NfXiGQ3Hozg+ofKLNZIEe00zLk1M=) 3: 1-bbMCI3xod0gOUPFmgFsyOO30Bw.roa (hash: LKqJzBII7MGbUijDJ1j/lwoVixYqcdKqwxqkwNRG00c=) 4: 1-mVwC91y2gjxzZ49ECJKeMBNsxM.roa (hash: U559gzASGhlXQBS0hGV4xF3kH8STm7I07VZJO2H7/G4=) 5: 1-wabTO2fsXFXQTzOoF0K0I_DrZU.roa (hash: RTeqrHSUS0wIUgh9aXCRzEflNtC7IYLpRr5YT5/0umM=) 6: 59BM3cmIoy1MoFuz148y_WZgCKA.roa (hash: b8nLw7Sod/Ce2ZRbJw+OEbeY/YeQr8JvhOn6OiPAFJE=) 7: 6blgCUf86x3rCdfBH3ieROWsyRA.roa (hash: 86kM1G7rQ1SYShoyqdcl0qpLnm5lgNUyaKELq4WGkm8=) 8: 6kSNO4q11KUII70MaOJKkb7-8sg.roa (hash: po7fMOEHEv78blrhtlvLrqv8BATiXO+irHU+tW7u7Us=) 9: 6rwN2H9TdeOGb7q8HP8JJtg4qSc.roa (hash: FcA2BwhZ6jCjWY4Hf8YuwHRI8qkKyNdVMrQdqJ8aP+Q=) 10: 94zx2Hk-WlNFvqXHoA07AsfQ3tc.roa (hash: Nk+m+YVGx7gj/COWKuN73LASLzDxNz2N629l6tregGQ=) 11: ABJStH93Tb6FchJ9fsWarHUv7_o.roa (hash: 2aWwBiU7xdii1VsEutmj7weOOLZIls6NzS14i2lKxbg=) 12: CkXXQPJaaUDcGZXca877DoZAZBs.roa (hash: c5vNHGh+QpD+Iysn2/rTkiH0Y/dq9wFL5MpRaysUMKg=) 13: DVg1Efbw-1VF7OmnT2UlNXAKp6c.roa (hash: +oncWmQ5BpXDKZTWF4Tr8YOqt10mU/wA8TyqNvyksnI=) 14: F-W1PnZcCIg_t9g53Zhr8ZnRECY.roa (hash: vUOE0EzW5wlVnmrKCdNEm67M3EqZb+A0EvhCnOtIuZM=) 15: IN3MTD4yGkkCDB1rJO86jTqGDXo.roa (hash: 7YOMcFzQDeiJ2ivIPHaXcmOgqcdPTr50fRvwkCG59Mg=) 16: Nov7il7uSQgupijfJaSl1Q86qbM.crl (hash: MLci7yFxzZ1Puv+NhuS+azVQ8LDHpybtakG3VBpfD9U=) 17: S7OFuNl-GH-DU5EJTYgFgwhDjj4.roa (hash: ymztFVGLR/DYVfAE234cC1kQgAmVsycMhDqhtka8bLQ=) 18: SWriLr3nVJjiUOMV3ZQzft65uIQ.roa (hash: spVCEv9GHrawAsPw1EVJ3YvZeiUgfGRBjgYb4vGUxOc=) 19: SwhgnoZF_hBARmFUiuLLJ2EVqdA.roa (hash: 48VRNmDGNhRP2L8JLtMNzB4JM3bc2vPZU8jDlCGlZ6A=) 20: ZnbzYHRBvUTbEjCixu-51iq0NfI.roa (hash: H6eoYf0qoCchu+RJjza0539v8DwbGRsxOIQiPaH7Gsc=) 21: dc7y4-j6l8uoBJyYyBNjuWyNHr8.roa (hash: VDSSVJFB7a9g+BUqFW01QjbDjiWar99akOtbmMtWJbE=) 22: gAy2L-yq3jv5ULydsY0WjO758DY.roa (hash: kDdF7XHhC12P2H5eVodHGu1h34gE1iEE5luu7KRRUlE=) 23: nV9zpTkg41cEF2aE_Xxas5qWLPE.roa (hash: TmF18BVISDIjbdiP8hL66Gsgu4TLs2FCPMkL0xuGpQk=) 24: ou4-Kh9DNSjfvl0SW2m8LklQ2t0.roa (hash: kGFdPKNsDJKbeK37pMl8shm8W/kYhkK5Y6eKhGhDWLA=) 25: q9T06HR6r97SU-awwQlQkmbgz5o.roa (hash: ETbjB9b9hcvuMEeWyF6+hF4G9dhj7syzfHpk/6yrsfU=) 26: w_7KSHXu7o9ktpz_Vrh_00tv7HI.roa (hash: gkGoVuf1pEqMxqdRmFn7c7MKr+cC0H9E1TpCk2Uue1E=) 27: xls96UEa5x8QQ0zNf0sviPf9i3k.roa (hash: m0eq2urB49dl+6zHn37E7MnUA3Q0Qt3aw5b2d8bC9Dc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 10:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:b6:d7:26:a4:3c:71:1f:50:b5:18:01:71:b1:38:7a:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Validity Not Before: Jun 28 14:00:42 2025 GMT Not After : Jun 29 14:00:42 2025 GMT Subject: CN=798b4fe3689d0678b7af174f4bbf0e662522870a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:95:94:44:da:a0:b4:24:d2:bb:39:76:97:6d: f6:18:3d:1f:65:9a:ea:2b:d9:87:0b:11:8b:14:43: d2:e1:34:86:f7:0a:64:57:95:ea:49:44:5e:e4:c6: 88:80:fd:99:58:e8:30:90:29:8e:8a:81:58:ab:ce: ba:1e:88:19:6b:e6:64:ca:bf:e5:e8:70:e7:9b:5c: 0b:d1:4f:fc:55:70:5a:64:65:c7:d7:20:ff:ed:c0: fc:e6:f0:02:3c:e6:cf:25:0f:e1:40:db:97:31:c0: 4f:96:d4:ce:48:d1:12:be:87:70:17:dc:4d:e3:15: cb:1d:75:9a:ea:fc:35:6e:5f:f3:62:4a:91:75:5c: bc:e3:cf:09:af:e2:e7:6d:7a:82:b1:09:7a:b1:65: af:2f:8c:01:98:7e:bc:91:bb:2b:35:98:68:1d:07: d0:f0:52:2e:df:bf:b5:8e:96:1f:cc:72:8b:b4:6a: ba:3f:2e:bf:73:1a:fe:28:fc:7b:84:95:35:ce:3f: 32:d5:3b:ca:cd:39:56:30:65:9e:c0:0a:fb:df:d5: 0d:07:15:10:8f:fc:24:10:a2:4a:1a:9b:44:db:24: 37:37:0c:20:32:6a:93:22:e1:1f:84:b0:05:7c:91: 35:40:f7:4d:11:0c:6b:1b:87:ca:0d:dd:76:96:8b: ef:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:8B:4F:E3:68:9D:06:78:B7:AF:17:4F:4B:BF:0E:66:25:22:87:0A X509v3 Authority Key Identifier: keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:d0:93:a1:ed:97:23:03:5a:ea:b0:6a:4c:d6:31:5f:8d:6b: 1d:b2:16:65:95:4a:42:fe:d3:22:83:a1:fc:f6:49:ef:14:97: 6e:b5:19:27:2f:a5:72:63:52:f7:a0:1b:15:dd:3d:5a:50:a2: 4d:91:ab:c8:9f:7e:79:7c:0d:2e:39:08:03:8f:62:ed:14:1a: 87:44:28:b3:d5:1b:3f:0c:04:6f:7c:f7:d9:c8:62:ec:79:c2: cd:28:c0:1d:6b:bd:7c:d7:d8:a6:84:9c:33:c5:92:e9:f1:86: b6:7a:ae:37:18:de:28:1d:62:87:63:79:5e:3d:71:c2:ee:3b: 06:61:1a:c8:88:2e:df:7c:9a:41:d9:95:1b:1a:17:3f:c5:d2: 3a:e5:e0:4e:38:35:eb:10:42:6a:bf:77:94:a0:7d:e2:54:02: c7:0a:9a:41:a0:69:d8:d1:ce:81:17:22:a3:54:82:12:c9:9c: e8:50:31:7d:11:42:5e:19:58:27:2f:88:ae:f0:ee:42:f1:5c: df:67:c9:00:5e:d5:a2:89:c5:15:95:f2:70:6d:a9:ce:46:a4: bb:49:4b:0e:38:18:fe:21:59:e3:eb:c5:1f:36:6c:df:77:54: 08:b4:2f:d5:d7:61:8d:df:c2:d9:22:f2:be:aa:ef:4b:8a:30: e2:84:a2:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZe21yakPHEfULUYAXGxOHr3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz YWE5YjMwHhcNMjUwNjI4MTQwMDQyWhcNMjUwNjI5MTQwMDQyWjAzMTEwLwYDVQQD Eyg3OThiNGZlMzY4OWQwNjc4YjdhZjE3NGY0YmJmMGU2NjI1MjI4NzBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0JWURNqgtCTSuzl2l232GD0fZZrq K9mHCxGLFEPS4TSG9wpkV5XqSURe5MaIgP2ZWOgwkCmOioFYq866HogZa+Zkyr/l 6HDnm1wL0U/8VXBaZGXH1yD/7cD85vACPObPJQ/hQNuXMcBPltTOSNESvodwF9xN 4xXLHXWa6vw1bl/zYkqRdVy8488Jr+LnbXqCsQl6sWWvL4wBmH68kbsrNZhoHQfQ 8FIu37+1jpYfzHKLtGq6Py6/cxr+KPx7hJU1zj8y1TvKzTlWMGWewAr739UNBxUQ j/wkEKJKGptE2yQ3NwwgMmqTIuEfhLAFfJE1QPdNEQxrG4fKDd12lovvgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHmLT+NonQZ4t68XT0u/DmYlIocKMB8GA1UdIwQY MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt MGFlMmU5MjJhMjkyLzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHNCToe2X IwNa6rBqTNYxX41rHbIWZZVKQv7TIoOh/PZJ7xSXbrUZJy+lcmNS96AbFd09WlCi TZGryJ9+eXwNLjkIA49i7RQah0Qos9UbPwwEb3z32chi7HnCzSjAHWu9fNfYpoSc M8WS6fGGtnquNxjeKB1ih2N5Xj1xwu47BmEayIgu33yaQdmVGxoXP8XSOuXgTjg1 6xBCar93lKB94lQCxwqaQaBp2NHOgRcio1SCEsmc6FAxfRFCXhlYJy+IrvDuQvFc 32fJAF7VoonFFZXycG2pzkaku0lLDjgY/iFZ4+vFHzZs33dUCLQv1ddhjd/C2SLy vqrvS4ow4oSi5A== -----END CERTIFICATE-----Generated at Sat Jun 28 19:27:48 2025 by rpki-client