$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft File: kdDHjDCaPpncmrdPLNwEhIWedTA.mft (raw, json) Hash identifier: NDIPnTKd0EIZH4RLaNUu/aNq/LqsV2Hq9SlLERi8pyI= Subject key identifier: 1B:85:90:80:E2:EE:70:97:35:BF:53:14:65:9C:F9:C6:10:E5:96:86 Authority key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30 Certificate issuer: /CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530 Certificate serial: 0198D54E7572E0E6C054E28CBE3C96F44269 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft Manifest number: 1161 Signing time: Sat 23 Aug 2025 05:02:25 +0000 Manifest this update: Sat 23 Aug 2025 05:02:25 +0000 Manifest next update: Sun 24 Aug 2025 05:02:25 +0000 Files and hashes: 1: 1-W_ixXGYX8sPaJagj-AVwFiwChc.roa (hash: L0D3lIfkN9efhBw5T+b3u9NkdIMxDqZ5UXxZUhgRWOs=) 2: 1wei3P__YsLq8D2DZQdx3r5Se8Q.roa (hash: mJ3sfO2t0ZrVqr8Lh/dS5cWV3uJ23FidlrzCBj85Xpg=) 3: D9OViOUA1-461O4zttxUuu7lHv0.roa (hash: 2itBNaHzhENVRyOefdMh6N1RENcyUMqY/eAvQKNqorQ=) 4: FL9fu1OvmoFGfhkDWCYg6qk3FZw.roa (hash: 4qo1m7CfLoe2e1/s3slGLhDBLmvad/IFz+DUbL4c5ro=) 5: QhTNtcmMP2d8JHj8beOVtwBfn-8.roa (hash: pGtJfsZnHgpcNHsy6MUt5rD0YLB/sQz5xjhWg8xCmoY=) 6: b_UNR9Xj_ycfuOSMA48F_QSRqts.roa (hash: V/FK04zH2Za3Nwu+0PjyuAuPUrWk9vHEnkwAOnyhoAs=) 7: kdDHjDCaPpncmrdPLNwEhIWedTA.crl (hash: smwwMHw2jQ4UKuWfYS1sXNGzPOQtJxvLXilu2a4m0T4=) 8: mI6CMDbVFOggenhN7vYK1kqjlUM.roa (hash: Ix338GJteDKUBZwQ6uAO2I9vp00YeBcogG5YXz8IPLE=) 9: vUVcdpzXr2JQGsu1xtXoOvW_LHU.roa (hash: 2iN03nQJUllsMqRJ1fP7+P4h4U6MeEk1ERszIuxQ8MY=) 10: wGY7w33wbp754v9ca7Ik2gL3Voc.roa (hash: cLU9Ywl9VMx+T+dYulHYxfzmlahVeyhReHN4Xp/Qd78=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 05:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:d5:4e:75:72:e0:e6:c0:54:e2:8c:be:3c:96:f4:42:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530 Validity Not Before: Aug 23 05:02:25 2025 GMT Not After : Aug 24 05:02:25 2025 GMT Subject: CN=1b859080e2ee709735bf5314659cf9c610e59686 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:66:7a:88:5a:b0:3a:85:22:b0:15:2d:10:5c: 4a:ba:c2:88:4c:7b:e8:58:28:c6:48:c2:7d:27:78: 22:d1:ef:f6:2d:45:9b:3a:55:64:d6:85:74:89:61: 09:88:01:6c:59:d2:a4:b5:6b:64:23:bf:87:25:c4: 41:db:c2:48:fe:67:c3:82:15:a7:dc:2e:88:d7:02: 0c:32:de:bd:e2:43:c8:55:37:5a:f1:e0:7b:28:11: d2:46:a3:75:98:2b:1e:67:81:05:4b:52:25:99:5d: 67:2f:64:e8:e2:cf:56:62:e6:a1:e3:cf:39:7f:1a: d8:aa:c5:74:34:d5:f1:bf:fe:cd:fa:e1:c2:f1:bc: 84:c3:ba:9b:73:f6:69:fa:eb:00:e6:42:86:c7:4e: 8b:45:44:81:4d:b1:ae:91:4d:d0:92:7c:10:a2:68: 7a:de:16:51:ce:b7:9f:cf:94:fc:89:00:73:d5:a7: 0d:2e:e0:83:d6:db:de:75:50:fe:c3:f5:ba:98:23: 78:fa:05:3a:b4:53:57:89:40:cd:89:9b:46:d8:97: 0b:09:e8:78:bd:60:78:b2:4f:04:b5:af:58:7c:b1: 12:61:e5:fd:19:11:20:93:e8:26:75:ff:e7:70:a5: 26:82:8e:a5:f7:27:ed:bb:c7:eb:0d:ee:2c:7d:f9: f6:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:85:90:80:E2:EE:70:97:35:BF:53:14:65:9C:F9:C6:10:E5:96:86 X509v3 Authority Key Identifier: keyid:91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:28:6f:19:4d:ab:07:50:e4:a5:8f:8d:22:72:13:db:d5:f3: 89:7c:0d:70:7e:78:9e:8a:1c:bb:da:a9:c8:80:30:b5:aa:70: d7:d0:d2:9c:52:e9:94:b8:89:d4:2e:48:65:c1:1a:c3:83:f2: 7f:54:f3:07:30:4f:2d:62:e1:c6:24:ba:60:11:a8:6b:41:f2: c4:48:91:c1:3b:ed:b2:8b:43:e9:a7:af:6e:c3:2a:06:d9:43: 07:52:7e:84:67:35:12:a0:8c:e0:b5:72:1c:19:06:64:e2:14: 2a:6b:54:21:bc:ab:0b:17:12:d7:b9:95:db:a2:a4:34:01:6b: b8:bb:9b:b3:e4:63:cb:b2:9f:aa:e9:f4:dc:6b:91:9d:e2:a9: a5:bb:fe:4d:72:62:41:2f:23:9a:18:f2:25:d4:c6:ed:05:6c: d6:74:2a:91:c3:56:1f:b9:6c:0d:1f:5a:1c:23:71:62:72:fa: 68:12:6c:30:46:e1:36:bb:9c:9c:12:6a:28:9e:2b:2d:4e:4d: 2b:98:74:b3:6b:20:be:49:6b:24:f1:6e:67:a5:be:26:60:e2: 74:d8:87:f5:46:36:c4:30:ee:c8:ee:fd:01:92:98:bd:6f:68: 21:cf:fb:99:0a:fb:40:36:8e:f5:ec:16:e7:80:01:6e:13:e1: 71:0f:fc:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjVTnVy4ObAVOKMvjyW9EJpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxZDBjNzhjMzA5YTNlOTlkYzlhYjc0ZjJjZGMwNDg0ODU5 ZTc1MzAwHhcNMjUwODIzMDUwMjI1WhcNMjUwODI0MDUwMjI1WjAzMTEwLwYDVQQD EygxYjg1OTA4MGUyZWU3MDk3MzViZjUzMTQ2NTljZjljNjEwZTU5Njg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt2Z6iFqwOoUisBUtEFxKusKITHvo WCjGSMJ9J3gi0e/2LUWbOlVk1oV0iWEJiAFsWdKktWtkI7+HJcRB28JI/mfDghWn 3C6I1wIMMt694kPIVTda8eB7KBHSRqN1mCseZ4EFS1IlmV1nL2To4s9WYuah4885 fxrYqsV0NNXxv/7N+uHC8byEw7qbc/Zp+usA5kKGx06LRUSBTbGukU3QknwQomh6 3hZRzrefz5T8iQBz1acNLuCD1tvedVD+w/W6mCN4+gU6tFNXiUDNiZtG2JcLCeh4 vWB4sk8Eta9YfLESYeX9GREgk+gmdf/ncKUmgo6l9yftu8frDe4sffn2zQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBuFkIDi7nCXNb9TFGWc+cYQ5ZaGMB8GA1UdIwQY MBaAFJHQx4wwmj6Z3Jq3TyzcBISFnnUwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEt NDg1MmM4ZmY4YWYyLzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEtNDg1MmM4ZmY4YWYy LzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUyhvGU2r B1DkpY+NInIT29XziXwNcH54noocu9qpyIAwtapw19DSnFLplLiJ1C5IZcEaw4Py f1TzBzBPLWLhxiS6YBGoa0HyxEiRwTvtsotD6aevbsMqBtlDB1J+hGc1EqCM4LVy HBkGZOIUKmtUIbyrCxcS17mV26KkNAFruLubs+Rjy7Kfqun03GuRneKppbv+TXJi QS8jmhjyJdTG7QVs1nQqkcNWH7lsDR9aHCNxYnL6aBJsMEbhNrucnBJqKJ4rLU5N K5h0s2sgvklrJPFuZ6W+JmDidNiH9UY2xDDuyO79AZKYvW9oIc/7mQr7QDaO9ewW 54ABbhPhcQ/8yg== -----END CERTIFICATE-----Generated at Sat Aug 23 11:27:15 2025 by rpki-client