$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft File: Kb4C3qCghumID1ZMhocrvFl8xnI.mft (raw, json) Hash identifier: IrxKAJmzoeCsr1YX0C08Pa6Ru7G+mEaeFG0E0GmeWAg= Subject key identifier: 2B:06:BE:CF:EA:63:3A:F2:9A:F9:CA:B7:95:C1:03:0C:EC:0A:8F:D0 Authority key identifier: 29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72 Certificate issuer: /CN=29be02dea0a086e9880f564c86872bbc597cc672 Certificate serial: 0199FCFD73826A71F9E6AF584C2C9253AAEB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft Manifest number: 14D3 Signing time: Sun 19 Oct 2025 15:01:32 +0000 Manifest this update: Sun 19 Oct 2025 15:01:32 +0000 Manifest next update: Mon 20 Oct 2025 15:01:32 +0000 Files and hashes: 1: 6KpBI63kEhQRzmhRvVQxSFsUBTI.roa (hash: Ckcyw44N8h4Yete0VsDquepnFPzly6G4UPrg1n68+p4=) 2: Bl50d2SW5pMGbeTLnaL144PRWUQ.roa (hash: bI5Yiq9+r3/RdML3fweIl1fiyaU2NaLiJvR9z1M6k50=) 3: Kb4C3qCghumID1ZMhocrvFl8xnI.crl (hash: ApiTJCkuUpqGdojvXsunCtOMX+PPuETmnY26feLYoGM=) 4: MLMPGj8H9Pi_UwBtlTfByiigjfM.roa (hash: pC0aw2jiKroOvxcRGHKOge3OdR3RFQ8raECTuPmJMXM=) 5: OHP3S03u5tMHflzGMFoSd5vTyZk.roa (hash: nGDY1zJo3dHSTN2PJe0pXCx8heywXO+QdXtgHJbEB2A=) 6: RZnwVTO26PBx3a68dhxrN-N2_9U.roa (hash: 2uzv1j/fxffpUq8amOpURgwfPrkNCx7YPSsxO/BHSJk=) 7: XkZDM_8IFwDF5TaEYGBCOeA1rnY.roa (hash: wJ3Nd2iWllTHLJTwVq5JnkwdVdkkialVRVjZAGjLaUA=) 8: aB7sKw4yBEcglwqSevB86YJRj7Y.roa (hash: PH14Cm3gVr59rgH3FX69SJ0GUOOG1kpk0YkBDPc5P9M=) 9: j1JcZG88WoDJIAs0TuxaORvfLro.roa (hash: yIeCKxXutjytoAiiGxkiUBSn0Vk24wB2GDbKm+IJthI=) 10: nwUsD1fndRShZT-s5ssppnOFmiI.roa (hash: 5Gw61qVpay4Kz2GbqbYja1rnv6svDc1Ma6KW2KgO/Fk=) 11: zphCyxB7JvvZfrdVh3qU9-FSl5c.roa (hash: PYY+kdRiBf7TYzIHyOP800eu0rdgwqkk9pHLsntWJR8=) 12: zvPA1UGui-igyOCxkJMwtvZ5S28.roa (hash: /AfKz5TxnkzdqXaxQMADqDtWb4d/fIp2oXqMIKdkCNA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 11:18:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:fc:fd:73:82:6a:71:f9:e6:af:58:4c:2c:92:53:aa:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29be02dea0a086e9880f564c86872bbc597cc672 Validity Not Before: Oct 19 15:01:32 2025 GMT Not After : Oct 20 15:01:32 2025 GMT Subject: CN=2b06becfea633af29af9cab795c1030cec0a8fd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:f4:a3:41:90:38:0f:7b:04:b3:dc:01:1d:4e: fc:fc:26:90:34:92:39:3a:c0:31:a2:f4:dc:39:fb: a3:7e:90:83:3f:97:42:51:45:5c:fd:ec:93:0a:9e: 4a:7e:89:60:9a:4f:86:37:50:30:00:13:c6:a0:e9: 71:15:00:9d:f2:e5:64:ef:f3:bd:9d:ed:e5:e5:84: 0f:b5:a5:07:f5:e4:43:3e:73:44:98:34:55:0e:00: b0:9a:26:02:37:5c:e4:4e:be:26:66:f9:39:b6:43: b5:cb:b7:fe:87:d1:f0:c6:72:4f:b9:9c:05:a8:9f: bf:da:80:6f:d6:52:74:7b:8d:5b:cf:28:38:c0:57: 20:f4:1d:8b:7a:c4:d0:66:12:bc:c5:87:2c:e8:a4: 84:6d:0f:c8:53:62:e2:ea:ba:45:9b:d0:e3:bd:ac: 70:1d:b5:8b:a2:e6:09:98:49:77:b8:ea:6b:da:c0: 9e:e3:28:5b:48:d3:46:86:c6:8f:29:83:6e:03:9d: 9e:06:8b:fe:d8:c4:30:37:7f:19:97:38:df:50:58: 94:8d:24:5c:84:fc:cb:49:58:aa:a5:46:f7:42:77: 77:b2:ef:ae:cd:80:52:03:f1:db:d4:37:f5:3d:df: e1:df:61:d5:81:07:cb:b1:f5:b1:0b:be:2a:75:35: 6f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:06:BE:CF:EA:63:3A:F2:9A:F9:CA:B7:95:C1:03:0C:EC:0A:8F:D0 X509v3 Authority Key Identifier: keyid:29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:6f:ff:90:b8:23:ed:cf:37:7c:3a:13:51:71:6c:4b:c4:14: 6e:b0:1c:5c:ed:fe:c7:be:36:8b:ae:fa:6b:e4:b9:e1:78:f7: d7:74:63:00:b4:22:1a:3b:4d:70:fc:1f:3f:6a:34:dc:2b:45: c9:63:71:c6:a7:1b:8b:e9:f5:3c:f2:59:6d:00:f1:7b:ad:86: 7e:07:db:92:8f:08:77:0a:87:eb:93:9a:cc:c8:80:95:a3:54: fb:a5:f1:ef:68:af:da:3e:7c:c1:de:c7:0f:5f:c5:b8:81:61: eb:2d:77:42:cf:41:a8:0c:de:fe:91:ad:01:b9:1c:b3:ba:0c: 54:23:0b:4c:71:14:33:66:86:87:ef:cb:d4:49:72:f4:a4:00: 7b:48:5d:14:d5:cb:9a:4b:d4:16:9a:3b:23:5c:15:c7:46:63: 57:65:f0:76:3a:01:ec:92:82:00:54:d8:47:e6:e4:2f:7f:7b: f7:56:3b:05:1d:05:8b:e6:d2:0b:78:59:65:de:52:83:1d:99: 87:80:4c:cf:c5:4e:66:11:39:50:aa:cc:62:f1:ca:3c:7a:84: 35:e3:35:49:9c:5a:c0:19:89:74:23:dc:6a:b4:a1:3b:19:27: 28:10:c4:c4:c5:78:72:70:f9:b7:e6:aa:f8:fc:b2:c2:08:4c: 08:3d:4a:a2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZn8/XOCanH55q9YTCySU6rrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5YmUwMmRlYTBhMDg2ZTk4ODBmNTY0Yzg2ODcyYmJjNTk3 Y2M2NzIwHhcNMjUxMDE5MTUwMTMyWhcNMjUxMDIwMTUwMTMyWjAzMTEwLwYDVQQD EygyYjA2YmVjZmVhNjMzYWYyOWFmOWNhYjc5NWMxMDMwY2VjMGE4ZmQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnPSjQZA4D3sEs9wBHU78/CaQNJI5 OsAxovTcOfujfpCDP5dCUUVc/eyTCp5Kfolgmk+GN1AwABPGoOlxFQCd8uVk7/O9 ne3l5YQPtaUH9eRDPnNEmDRVDgCwmiYCN1zkTr4mZvk5tkO1y7f+h9HwxnJPuZwF qJ+/2oBv1lJ0e41bzyg4wFcg9B2LesTQZhK8xYcs6KSEbQ/IU2Li6rpFm9Djvaxw HbWLouYJmEl3uOpr2sCe4yhbSNNGhsaPKYNuA52eBov+2MQwN38ZlzjfUFiUjSRc hPzLSViqpUb3Qnd3su+uzYBSA/Hb1Df1Pd/h32HVgQfLsfWxC74qdTVvOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCsGvs/qYzrymvnKt5XBAwzsCo/QMB8GA1UdIwQY MBaAFCm+At6goIbpiA9WTIaHK7xZfMZyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9lYTFjZmYtYWU4Zi00NzE5LTg5YjMt MDAzYTE1NjhiZjNmLzEvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS9lYTFjZmYtYWU4Zi00NzE5LTg5YjMtMDAzYTE1NjhiZjNm LzEvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcm//kLgj 7c83fDoTUXFsS8QUbrAcXO3+x742i676a+S54Xj313RjALQiGjtNcPwfP2o03CtF yWNxxqcbi+n1PPJZbQDxe62Gfgfbko8IdwqH65OazMiAlaNU+6Xx72iv2j58wd7H D1/FuIFh6y13Qs9BqAze/pGtAbkcs7oMVCMLTHEUM2aGh+/L1Ely9KQAe0hdFNXL mkvUFpo7I1wVx0ZjV2XwdjoB7JKCAFTYR+bkL39791Y7BR0Fi+bSC3hZZd5Sgx2Z h4BMz8VOZhE5UKrMYvHKPHqENeM1SZxawBmJdCPcarShOxknKBDExMV4cnD5t+aq +PyywghMCD1Kog== -----END CERTIFICATE-----Generated at Sun Oct 19 17:32:05 2025 by rpki-client