$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft File: Kb4C3qCghumID1ZMhocrvFl8xnI.mft (raw, json) Hash identifier: j8q7Q7bV7Xhu/XzTmpAAi1KKmYtlXTxOOTAFcqEd9MY= Subject key identifier: 17:98:09:B3:05:F3:A1:3A:90:03:35:6B:6B:C1:72:B1:D5:55:9C:68 Authority key identifier: 29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72 Certificate issuer: /CN=29be02dea0a086e9880f564c86872bbc597cc672 Certificate serial: 0197B7B2F25367CE3DD7A18018910E5474F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft Manifest number: 13A6 Signing time: Sat 28 Jun 2025 18:00:47 +0000 Manifest this update: Sat 28 Jun 2025 18:00:47 +0000 Manifest next update: Sun 29 Jun 2025 18:00:47 +0000 Files and hashes: 1: 6KpBI63kEhQRzmhRvVQxSFsUBTI.roa (hash: Ckcyw44N8h4Yete0VsDquepnFPzly6G4UPrg1n68+p4=) 2: Bl50d2SW5pMGbeTLnaL144PRWUQ.roa (hash: bI5Yiq9+r3/RdML3fweIl1fiyaU2NaLiJvR9z1M6k50=) 3: Kb4C3qCghumID1ZMhocrvFl8xnI.crl (hash: QewMy9/pozuAQkcZiU7F7Sio4Ii5VlWhNWnv6rPIG1w=) 4: MLMPGj8H9Pi_UwBtlTfByiigjfM.roa (hash: pC0aw2jiKroOvxcRGHKOge3OdR3RFQ8raECTuPmJMXM=) 5: OHP3S03u5tMHflzGMFoSd5vTyZk.roa (hash: nGDY1zJo3dHSTN2PJe0pXCx8heywXO+QdXtgHJbEB2A=) 6: RZnwVTO26PBx3a68dhxrN-N2_9U.roa (hash: 2uzv1j/fxffpUq8amOpURgwfPrkNCx7YPSsxO/BHSJk=) 7: XkZDM_8IFwDF5TaEYGBCOeA1rnY.roa (hash: wJ3Nd2iWllTHLJTwVq5JnkwdVdkkialVRVjZAGjLaUA=) 8: aB7sKw4yBEcglwqSevB86YJRj7Y.roa (hash: PH14Cm3gVr59rgH3FX69SJ0GUOOG1kpk0YkBDPc5P9M=) 9: j1JcZG88WoDJIAs0TuxaORvfLro.roa (hash: yIeCKxXutjytoAiiGxkiUBSn0Vk24wB2GDbKm+IJthI=) 10: nwUsD1fndRShZT-s5ssppnOFmiI.roa (hash: 5Gw61qVpay4Kz2GbqbYja1rnv6svDc1Ma6KW2KgO/Fk=) 11: zphCyxB7JvvZfrdVh3qU9-FSl5c.roa (hash: PYY+kdRiBf7TYzIHyOP800eu0rdgwqkk9pHLsntWJR8=) 12: zvPA1UGui-igyOCxkJMwtvZ5S28.roa (hash: /AfKz5TxnkzdqXaxQMADqDtWb4d/fIp2oXqMIKdkCNA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 15:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:b7:b2:f2:53:67:ce:3d:d7:a1:80:18:91:0e:54:74:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29be02dea0a086e9880f564c86872bbc597cc672 Validity Not Before: Jun 28 18:00:47 2025 GMT Not After : Jun 29 18:00:47 2025 GMT Subject: CN=179809b305f3a13a9003356b6bc172b1d5559c68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ff:3e:31:a5:eb:ec:41:5f:9c:27:95:50:a4: a7:a6:e3:43:7f:30:02:11:33:28:82:51:91:c2:86: 49:a7:b9:7f:b5:ff:c7:c7:3f:5b:8e:ed:ff:18:3f: 01:bb:4d:7e:7b:90:73:cd:5e:66:4e:fe:04:fd:46: 69:4c:34:4a:c7:08:08:45:67:f7:0a:59:2a:3c:c9: 13:6a:ac:43:73:26:9e:3e:00:f1:da:fa:45:91:0f: cb:84:54:20:59:be:3e:1f:d2:66:56:06:ec:3a:69: 84:63:2c:6a:08:ac:0e:b8:f9:f0:09:6d:5c:9a:ec: e2:48:9d:0c:7a:0c:02:b6:b5:b6:e9:1e:41:ab:7c: a1:36:fd:02:06:d3:ad:be:6a:10:fe:a8:76:fb:25: 22:cd:da:a6:98:2d:7d:0b:b7:93:f6:4c:2b:03:90: 6f:db:3e:f1:d0:1c:b0:89:b0:e8:65:eb:88:21:15: 67:58:95:5a:fa:76:bd:ad:c5:19:4c:cb:44:1e:01: e0:16:db:3d:26:7b:2c:77:8f:46:07:e0:3a:59:78: 48:33:f7:65:9a:6b:76:9c:38:30:4d:b0:40:28:eb: 2a:d2:f8:7e:d1:95:bf:9a:0e:c3:bd:44:b4:2a:d1: 25:38:51:c2:f7:f3:d9:90:1a:74:ef:72:9a:b2:65: 9d:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:98:09:B3:05:F3:A1:3A:90:03:35:6B:6B:C1:72:B1:D5:55:9C:68 X509v3 Authority Key Identifier: keyid:29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:74:16:02:17:94:d8:a4:eb:5e:f1:5f:3d:4f:5b:c1:fd:b6: 60:56:45:cd:75:22:e1:c6:4a:8d:f6:8d:2a:37:e3:23:65:51: 36:2d:ab:1f:e7:ce:95:e1:05:06:61:0c:a0:9f:15:d9:42:aa: 2b:39:92:9f:f3:f3:10:9e:8e:e3:be:21:e5:76:2b:33:05:db: 66:ac:27:43:8f:27:83:b0:b1:e8:fe:80:ee:ed:6a:5e:5b:df: 40:b9:7e:a4:25:4e:a0:71:94:11:10:7d:02:39:d4:91:8d:c8: f8:97:b7:ed:83:27:e2:42:e6:ef:53:9c:62:2d:36:a5:f0:f8: 67:33:b0:32:66:01:a6:56:15:22:65:c8:69:3b:ba:46:e7:b7: 54:49:2e:9a:c9:cd:94:9b:ff:e2:5e:ec:fa:37:fa:c8:6f:bd: 0a:2d:5f:de:6c:ba:0b:b4:20:15:c6:ae:fe:0f:a2:89:34:bd: b4:aa:3a:98:16:f2:46:57:8f:b2:da:a4:34:eb:23:c5:2d:89: 71:d5:c7:e0:70:fb:4a:11:87:00:d7:68:e1:bc:a9:e6:67:62: d2:d1:d5:44:73:fb:b9:fb:ed:e1:37:f7:98:76:92:70:1b:9e: 7e:b5:fb:da:2a:95:07:17:f8:68:45:5d:28:5a:9c:ec:09:35: a3:b5:a2:f3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZe3svJTZ84916GAGJEOVHT5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5YmUwMmRlYTBhMDg2ZTk4ODBmNTY0Yzg2ODcyYmJjNTk3 Y2M2NzIwHhcNMjUwNjI4MTgwMDQ3WhcNMjUwNjI5MTgwMDQ3WjAzMTEwLwYDVQQD EygxNzk4MDliMzA1ZjNhMTNhOTAwMzM1NmI2YmMxNzJiMWQ1NTU5YzY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1v8+MaXr7EFfnCeVUKSnpuNDfzAC ETMoglGRwoZJp7l/tf/Hxz9bju3/GD8Bu01+e5BzzV5mTv4E/UZpTDRKxwgIRWf3 ClkqPMkTaqxDcyaePgDx2vpFkQ/LhFQgWb4+H9JmVgbsOmmEYyxqCKwOuPnwCW1c muziSJ0MegwCtrW26R5Bq3yhNv0CBtOtvmoQ/qh2+yUizdqmmC19C7eT9kwrA5Bv 2z7x0BywibDoZeuIIRVnWJVa+na9rcUZTMtEHgHgFts9Jnssd49GB+A6WXhIM/dl mmt2nDgwTbBAKOsq0vh+0ZW/mg7DvUS0KtElOFHC9/PZkBp073KasmWdGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBeYCbMF86E6kAM1a2vBcrHVVZxoMB8GA1UdIwQY MBaAFCm+At6goIbpiA9WTIaHK7xZfMZyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9lYTFjZmYtYWU4Zi00NzE5LTg5YjMt MDAzYTE1NjhiZjNmLzEvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS9lYTFjZmYtYWU4Zi00NzE5LTg5YjMtMDAzYTE1NjhiZjNm LzEvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMHQWAheU 2KTrXvFfPU9bwf22YFZFzXUi4cZKjfaNKjfjI2VRNi2rH+fOleEFBmEMoJ8V2UKq KzmSn/PzEJ6O474h5XYrMwXbZqwnQ48ng7Cx6P6A7u1qXlvfQLl+pCVOoHGUERB9 AjnUkY3I+Je37YMn4kLm71OcYi02pfD4ZzOwMmYBplYVImXIaTu6Rue3VEkumsnN lJv/4l7s+jf6yG+9Ci1f3my6C7QgFcau/g+iiTS9tKo6mBbyRlePstqkNOsjxS2J cdXH4HD7ShGHANdo4byp5mdi0tHVRHP7ufvt4Tf3mHaScBuefrX72iqVBxf4aEVd KFqc7Ak1o7Wi8w== -----END CERTIFICATE-----Generated at Sat Jun 28 20:46:34 2025 by rpki-client