$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft File: YzkukpMXrmveCKWjuYorcB3biTo.mft (raw, json) Hash identifier: BVR2jSot3JX7ZcpB0H/ZZPweiKBbE1whM2rNNb2cSFE= Subject key identifier: 92:F2:88:7B:A8:DD:89:44:DF:18:FE:69:FE:21:E3:BB:DA:82:25:D1 Authority key identifier: 63:39:2E:92:93:17:AE:6B:DE:08:A5:A3:B9:8A:2B:70:1D:DB:89:3A Certificate issuer: /CN=63392e929317ae6bde08a5a3b98a2b701ddb893a Certificate serial: 0199FE7E418614B7A6F624FDA8C5B5A723F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YzkukpMXrmveCKWjuYorcB3biTo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft Manifest number: 055B Signing time: Sun 19 Oct 2025 22:01:51 +0000 Manifest this update: Sun 19 Oct 2025 22:01:51 +0000 Manifest next update: Mon 20 Oct 2025 22:01:51 +0000 Files and hashes: 1: 3Tq13WIcjE4wrF9fmJGXuJJ3EA0.roa (hash: GyLSfZMIbW5GjQFGTgFakvct5lf6SBp5gMlZA4ZRfho=) 2: 7t0ruCwwheWDY1iuc2ABz5OkuLU.roa (hash: Wsc9jgqPgNqZ76JLps6IqRa7nxD3XGEuiy4WXzWnIxU=) 3: ImvsPyGjqHzil2zJhiiakufkk1I.roa (hash: 29vZWJ1xOkBr4giAfRXD6EraUbozMao9ed7L/bRqJaU=) 4: Qf3xuPjCoTEQLfLo_UoAbyihOBg.roa (hash: upxdgtTwbpkR0XgQ85zaD7BvaiRt7M2499aUCky2ako=) 5: Smlnej5n6B69IkLJuHE_uEPKvkM.roa (hash: ZGTm9kLyb+TVFfvRl0Z+2C+98Be3iA8+F42uOm7E6Cg=) 6: XtfitIKECL4Esn5wVQYquZKD0aY.roa (hash: Rusmu3puclElkF3Iw8mfUgThxObk4QDJvsuY23x3w40=) 7: YzkukpMXrmveCKWjuYorcB3biTo.crl (hash: BkdetQl7n9+v0VFKNrD8in9GAncceq3NGVD0dBbB7pE=) 8: ZtBVD_gU9JHOidmFecie_EQftRo.roa (hash: TATv9KEl0G9zS/KJs9wWiYzEnpI8uOZdyHODf/h2Zv8=) 9: fY9Iy2JY1E_TXtYJ0FV4aeZ6v-Y.roa (hash: eNIrQiQ2SfuQFshYez06LL23c6mQrj9GfYgkzxup5Xw=) 10: w-kDsP50J75PL4Ya6eQkdiS7MmA.roa (hash: e/heTB6HI2crd/P6O3UvBg+yFEyLCizumo10MAmv0a0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft rsync://rpki.ripe.net/repository/DEFAULT/YzkukpMXrmveCKWjuYorcB3biTo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 20:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:fe:7e:41:86:14:b7:a6:f6:24:fd:a8:c5:b5:a7:23:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63392e929317ae6bde08a5a3b98a2b701ddb893a Validity Not Before: Oct 19 22:01:51 2025 GMT Not After : Oct 20 22:01:51 2025 GMT Subject: CN=92f2887ba8dd8944df18fe69fe21e3bbda8225d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7d:75:29:e6:2b:81:66:c9:5b:39:c8:e3:a6: cc:2d:7c:ae:83:b1:71:b8:8e:68:ce:09:ae:19:9d: 49:ab:ff:a5:8b:2d:eb:73:15:05:05:b7:27:95:a4: 6d:da:4f:41:9a:35:40:67:a4:9c:30:45:50:21:6e: 1a:88:22:2f:d4:bb:ea:e4:32:c0:8d:0c:bf:90:86: 12:a0:fd:b1:95:ac:31:d8:a5:3f:d3:dd:84:fb:07: 1d:f6:0a:14:2d:3d:79:91:48:52:98:22:72:13:0f: 4b:46:03:3f:97:1d:19:de:ff:f4:72:42:95:54:bb: 9d:2c:66:8d:3b:7f:8d:7e:1a:70:0e:73:70:4d:63: 92:67:a4:0a:c7:d8:cb:3a:57:8c:28:7f:e4:b1:c6: ad:2a:37:1f:31:37:20:b5:2d:9c:b4:a1:66:dc:79: d9:80:9a:51:3c:21:4c:47:41:0b:83:da:6b:4c:3f: b2:b0:ec:cd:8d:e4:0a:c1:7c:32:21:f7:a9:a4:04: 07:81:e8:08:a0:e8:18:39:82:59:1a:41:dd:61:07: 5f:a5:74:b0:a9:9a:08:4d:68:ec:c7:7a:6c:a7:21: 35:06:18:f8:b6:3d:8b:7b:96:d0:5f:a6:db:db:25: 64:25:28:15:51:48:67:0e:6d:3c:38:77:f1:59:02: ae:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:F2:88:7B:A8:DD:89:44:DF:18:FE:69:FE:21:E3:BB:DA:82:25:D1 X509v3 Authority Key Identifier: keyid:63:39:2E:92:93:17:AE:6B:DE:08:A5:A3:B9:8A:2B:70:1D:DB:89:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YzkukpMXrmveCKWjuYorcB3biTo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:8b:8e:4c:c2:4e:99:f4:f8:94:ba:04:27:c2:60:63:89:32: 2b:a8:de:65:d7:02:de:db:fb:44:c8:06:71:68:07:aa:bb:75: a8:9e:cb:68:22:28:5c:51:5f:58:c3:35:2e:46:21:77:77:3f: f4:b2:51:7e:82:bd:1c:b2:b5:5a:54:d0:7b:23:fe:05:bb:e1: e1:11:01:68:b2:57:1c:6d:31:74:fe:db:e5:46:3f:38:82:af: 75:69:5d:93:56:c4:f6:aa:66:8c:d7:34:85:7d:5c:ea:35:a3: e1:c7:3d:f7:6d:b5:3d:56:f9:13:4c:92:93:e6:8e:8b:5f:ef: b1:a4:f8:da:be:38:c1:a9:b4:a5:31:4e:01:e2:17:b4:16:ac: 17:f7:6b:76:31:86:c5:42:ba:8c:a8:be:06:a5:bb:dd:2d:1c: 84:92:54:e5:99:b1:e7:e6:7d:90:16:47:21:c5:b8:58:64:81: 98:e7:90:24:f7:68:17:84:56:d5:2e:cb:0a:2f:f8:ff:47:36: 9c:a0:16:d4:57:31:d4:20:f1:5c:4b:11:bc:36:b5:8a:ad:67: ba:c4:19:02:fd:6c:e9:38:13:63:15:47:dc:f5:38:a3:d0:c1: e2:bc:92:65:f2:d3:50:e0:23:02:c4:6d:20:77:a0:9c:35:8b: 3f:8b:18:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZn+fkGGFLem9iT9qMW1pyPwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzMzkyZTkyOTMxN2FlNmJkZTA4YTVhM2I5OGEyYjcwMWRk Yjg5M2EwHhcNMjUxMDE5MjIwMTUxWhcNMjUxMDIwMjIwMTUxWjAzMTEwLwYDVQQD Eyg5MmYyODg3YmE4ZGQ4OTQ0ZGYxOGZlNjlmZTIxZTNiYmRhODIyNWQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArX11KeYrgWbJWznI46bMLXyug7Fx uI5ozgmuGZ1Jq/+liy3rcxUFBbcnlaRt2k9BmjVAZ6ScMEVQIW4aiCIv1Lvq5DLA jQy/kIYSoP2xlawx2KU/092E+wcd9goULT15kUhSmCJyEw9LRgM/lx0Z3v/0ckKV VLudLGaNO3+NfhpwDnNwTWOSZ6QKx9jLOleMKH/kscatKjcfMTcgtS2ctKFm3HnZ gJpRPCFMR0ELg9prTD+ysOzNjeQKwXwyIfeppAQHgegIoOgYOYJZGkHdYQdfpXSw qZoITWjsx3pspyE1Bhj4tj2Le5bQX6bb2yVkJSgVUUhnDm08OHfxWQKulwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJLyiHuo3YlE3xj+af4h47vagiXRMB8GA1UdIwQY MBaAFGM5LpKTF65r3gilo7mKK3Ad24k6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXprdWtwTVhybXZlQ0tXanVZb3JjQjNiaVRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9mZTcwMmUtYzI2Yi00NDI5LTk5YzEt ODcyNTBmNWEwN2NjLzEvWXprdWtwTVhybXZlQ0tXanVZb3JjQjNiaVRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC9mZTcwMmUtYzI2Yi00NDI5LTk5YzEtODcyNTBmNWEwN2Nj LzEvWXprdWtwTVhybXZlQ0tXanVZb3JjQjNiaVRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmIuOTMJO mfT4lLoEJ8JgY4kyK6jeZdcC3tv7RMgGcWgHqrt1qJ7LaCIoXFFfWMM1LkYhd3c/ 9LJRfoK9HLK1WlTQeyP+Bbvh4REBaLJXHG0xdP7b5UY/OIKvdWldk1bE9qpmjNc0 hX1c6jWj4cc99221PVb5E0ySk+aOi1/vsaT42r44wam0pTFOAeIXtBasF/drdjGG xUK6jKi+BqW73S0chJJU5Zmx5+Z9kBZHIcW4WGSBmOeQJPdoF4RW1S7LCi/4/0c2 nKAW1Fcx1CDxXEsRvDa1iq1nusQZAv1s6TgTYxVH3PU4o9DB4rySZfLTUOAjAsRt IHegnDWLP4sYVw== -----END CERTIFICATE-----Generated at Mon Oct 20 05:07:46 2025 by rpki-client