$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft File: kdDHjDCaPpncmrdPLNwEhIWedTA.mft (raw, json) Hash identifier: f2WvY6GYQ9B5nKsypcGaHgBqxglfgORPsV9tdJbLEsg= Subject key identifier: 83:52:65:08:D4:4F:B8:9A:8B:DE:DB:11:E4:69:A0:C3:8E:4E:6B:CD Authority key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30 Certificate issuer: /CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530 Certificate serial: 0199FA6A0EC1F60197DCAFC13C919A02DC85 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft Manifest number: 11F9 Signing time: Sun 19 Oct 2025 03:01:18 +0000 Manifest this update: Sun 19 Oct 2025 03:01:18 +0000 Manifest next update: Mon 20 Oct 2025 03:01:18 +0000 Files and hashes: 1: 1-W_ixXGYX8sPaJagj-AVwFiwChc.roa (hash: L0D3lIfkN9efhBw5T+b3u9NkdIMxDqZ5UXxZUhgRWOs=) 2: 1wei3P__YsLq8D2DZQdx3r5Se8Q.roa (hash: mJ3sfO2t0ZrVqr8Lh/dS5cWV3uJ23FidlrzCBj85Xpg=) 3: D9OViOUA1-461O4zttxUuu7lHv0.roa (hash: 2itBNaHzhENVRyOefdMh6N1RENcyUMqY/eAvQKNqorQ=) 4: FL9fu1OvmoFGfhkDWCYg6qk3FZw.roa (hash: 4qo1m7CfLoe2e1/s3slGLhDBLmvad/IFz+DUbL4c5ro=) 5: QhTNtcmMP2d8JHj8beOVtwBfn-8.roa (hash: pGtJfsZnHgpcNHsy6MUt5rD0YLB/sQz5xjhWg8xCmoY=) 6: b_UNR9Xj_ycfuOSMA48F_QSRqts.roa (hash: V/FK04zH2Za3Nwu+0PjyuAuPUrWk9vHEnkwAOnyhoAs=) 7: bvT0XxpWvjhSrsyJnY-pHBlHicQ.roa (hash: jO921Nm2+NbwqmtR+BTndgCkDUsWuQ/tZNnxs0Ah0nM=) 8: kdDHjDCaPpncmrdPLNwEhIWedTA.crl (hash: pmoZWKDZRuojrzWQX2XAsDmEPX5vQsx9b+LgnAYvM7w=) 9: mI6CMDbVFOggenhN7vYK1kqjlUM.roa (hash: Ix338GJteDKUBZwQ6uAO2I9vp00YeBcogG5YXz8IPLE=) 10: vUVcdpzXr2JQGsu1xtXoOvW_LHU.roa (hash: 2iN03nQJUllsMqRJ1fP7+P4h4U6MeEk1ERszIuxQ8MY=) 11: wGY7w33wbp754v9ca7Ik2gL3Voc.roa (hash: cLU9Ywl9VMx+T+dYulHYxfzmlahVeyhReHN4Xp/Qd78=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 03:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:fa:6a:0e:c1:f6:01:97:dc:af:c1:3c:91:9a:02:dc:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530 Validity Not Before: Oct 19 03:01:18 2025 GMT Not After : Oct 20 03:01:18 2025 GMT Subject: CN=83526508d44fb89a8bdedb11e469a0c38e4e6bcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7c:a0:c3:81:5f:43:ba:41:91:e7:c3:9c:c2: 57:49:68:f1:90:32:45:16:e4:b2:8f:3c:5c:66:9c: ce:b0:83:4f:f7:5e:51:fe:5a:bc:96:98:da:3c:34: 2c:4c:37:50:1e:e2:33:aa:f1:2a:65:e5:d1:69:f1: 6f:aa:1b:53:82:4c:3f:8b:d4:c2:9e:3e:9c:b7:4a: bb:8c:5e:8b:a9:5e:ec:a3:3f:e9:7f:99:b6:58:e7: 29:48:5f:c7:9d:b4:36:5e:90:41:76:b0:a2:91:dc: 1d:85:73:ee:88:1b:30:d4:5d:76:0e:56:27:76:78: a1:5b:d9:a8:48:7d:b4:26:4e:d7:24:12:cb:66:5c: ae:80:b0:3e:ac:57:88:e3:69:cf:47:f4:4d:3c:fa: 6e:5e:99:f6:dd:93:68:f7:4a:cc:f4:09:5c:69:04: c2:49:98:d3:51:8e:b2:9c:16:37:b0:d3:dc:34:c1: 38:d0:6c:d4:69:f5:45:a9:c0:3a:4b:89:c2:6f:cc: 15:3d:fb:85:6c:d0:1d:43:7f:03:20:74:2d:26:da: 00:73:76:e0:34:ce:e3:ef:87:48:4f:5c:2f:c9:a4: c5:07:8f:5f:cd:1e:69:72:94:27:04:4b:48:ac:bf: 2a:cf:d9:46:01:1e:99:90:91:7e:b2:37:f2:78:ee: 91:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:52:65:08:D4:4F:B8:9A:8B:DE:DB:11:E4:69:A0:C3:8E:4E:6B:CD X509v3 Authority Key Identifier: keyid:91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:d0:9f:3e:75:59:c3:9e:69:d3:51:47:bf:b9:87:3b:99:2d: 25:43:ab:78:9b:50:7a:51:a3:05:90:8d:cb:ff:73:9b:af:6b: 75:16:cd:05:32:12:bc:71:2c:d3:20:10:cd:b4:e1:1b:fe:78: 57:6a:b0:a6:53:72:ea:f1:a4:57:e2:6f:98:be:08:18:c1:79: 62:38:64:e0:81:3e:8d:50:82:db:bb:ba:ae:b2:6d:fb:1a:80: ac:d0:ae:1a:06:70:8e:f6:ba:bb:bd:99:f7:b4:ed:3b:4e:54: d5:25:0f:f1:9b:5a:9e:9d:dd:3e:c6:f5:6f:27:52:14:11:21: 6b:3d:63:a0:0c:ea:f3:31:66:9d:0a:ae:39:3a:24:32:51:15: b1:bf:ea:2d:ed:e6:d8:71:c8:27:7c:3b:cf:88:42:66:12:33: 06:69:f6:59:a5:74:f1:43:bb:a5:8d:a8:70:bd:49:aa:fb:f4: 8b:89:0f:85:06:86:58:0e:75:60:70:82:17:b4:6d:1f:10:27: 5b:3c:69:18:78:e0:2c:dc:b8:a2:73:28:ab:94:dd:7f:bd:30: e7:2c:35:eb:4d:2d:85:d0:eb:44:ed:e4:d3:6a:f3:37:ab:42: f5:c8:3a:15:14:8e:02:c3:14:15:b9:c6:62:25:22:9d:88:42: 3e:3f:b4:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZn6ag7B9gGX3K/BPJGaAtyFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxZDBjNzhjMzA5YTNlOTlkYzlhYjc0ZjJjZGMwNDg0ODU5 ZTc1MzAwHhcNMjUxMDE5MDMwMTE4WhcNMjUxMDIwMDMwMTE4WjAzMTEwLwYDVQQD Eyg4MzUyNjUwOGQ0NGZiODlhOGJkZWRiMTFlNDY5YTBjMzhlNGU2YmNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqHygw4FfQ7pBkefDnMJXSWjxkDJF FuSyjzxcZpzOsINP915R/lq8lpjaPDQsTDdQHuIzqvEqZeXRafFvqhtTgkw/i9TC nj6ct0q7jF6LqV7soz/pf5m2WOcpSF/HnbQ2XpBBdrCikdwdhXPuiBsw1F12DlYn dnihW9moSH20Jk7XJBLLZlyugLA+rFeI42nPR/RNPPpuXpn23ZNo90rM9AlcaQTC SZjTUY6ynBY3sNPcNME40GzUafVFqcA6S4nCb8wVPfuFbNAdQ38DIHQtJtoAc3bg NM7j74dIT1wvyaTFB49fzR5pcpQnBEtIrL8qz9lGAR6ZkJF+sjfyeO6RKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFINSZQjUT7iai97bEeRpoMOOTmvNMB8GA1UdIwQY MBaAFJHQx4wwmj6Z3Jq3TyzcBISFnnUwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEt NDg1MmM4ZmY4YWYyLzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEtNDg1MmM4ZmY4YWYy LzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADtCfPnVZ w55p01FHv7mHO5ktJUOreJtQelGjBZCNy/9zm69rdRbNBTISvHEs0yAQzbThG/54 V2qwplNy6vGkV+JvmL4IGMF5Yjhk4IE+jVCC27u6rrJt+xqArNCuGgZwjva6u72Z 97TtO05U1SUP8Ztanp3dPsb1bydSFBEhaz1joAzq8zFmnQquOTokMlEVsb/qLe3m 2HHIJ3w7z4hCZhIzBmn2WaV08UO7pY2ocL1Jqvv0i4kPhQaGWA51YHCCF7RtHxAn WzxpGHjgLNy4onMoq5Tdf70w5yw1600thdDrRO3k02rzN6tC9cg6FRSOAsMUFbnG YiUinYhCPj+01g== -----END CERTIFICATE-----Generated at Sun Oct 19 13:05:51 2025 by rpki-client