$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft File: YzkukpMXrmveCKWjuYorcB3biTo.mft (raw, json) Hash identifier: 1DkX00uoMidqCk/sNnUmpCgQ7+eNMmKPcX+dR4tJUWA= Subject key identifier: 71:D1:A2:BE:2C:8E:5F:10:77:F9:7F:B5:D4:69:9F:B9:DA:A0:09:4A Authority key identifier: 63:39:2E:92:93:17:AE:6B:DE:08:A5:A3:B9:8A:2B:70:1D:DB:89:3A Certificate issuer: /CN=63392e929317ae6bde08a5a3b98a2b701ddb893a Certificate serial: 0198D4E0600C3043762E9970AB5BC2C70BE0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YzkukpMXrmveCKWjuYorcB3biTo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft Manifest number: 04BD Signing time: Sat 23 Aug 2025 03:02:10 +0000 Manifest this update: Sat 23 Aug 2025 03:02:10 +0000 Manifest next update: Sun 24 Aug 2025 03:02:10 +0000 Files and hashes: 1: 149n__WzdkzcvdiXj75CSwt4Ke0.roa (hash: oADfnpg1xyxZ/pO3JlbyLqogHqwwtBMcwMf9vhuxjOk=) 2: 1QgqhoL1f8rVrZsBTbv_ukiW3_U.roa (hash: FtHGg2smc+8B3MpNfm7Vb9xIWP4EyZ43pe81r6EdMLE=) 3: 3Tq13WIcjE4wrF9fmJGXuJJ3EA0.roa (hash: GyLSfZMIbW5GjQFGTgFakvct5lf6SBp5gMlZA4ZRfho=) 4: 8seIeZYPp9rqcCK7TPZgkaEa2sM.roa (hash: lEY9JvA1Y/ZcT+qZ2KmpcWEYT64xi9Y1CYu2FswtJsM=) 5: ABDpUe6jePBPX3_7idJW6VskjUI.roa (hash: 2uJVw8Yy1UzBrXOxGkJR0fZMeZhMvBwUcqLsaXLYQjE=) 6: Bs4lhpAgPxLI2sivKmGtlx_Lp3k.roa (hash: qE6cO8k8x/RBn9klunLlEIx8ylpZgmFO4HaBZgdaXEY=) 7: Smlnej5n6B69IkLJuHE_uEPKvkM.roa (hash: ZGTm9kLyb+TVFfvRl0Z+2C+98Be3iA8+F42uOm7E6Cg=) 8: WNd31FKfDVJsTEByrggsuNBHueg.roa (hash: tedpCisNTHVOKJzXOyZVhC8FIa9J18s6krEoaMi/yH0=) 9: YzkukpMXrmveCKWjuYorcB3biTo.crl (hash: 4Eowplm3DEVy4FbhEqHWLzY8h7Yq7cPJXiP7wS7zuNc=) 10: ZtBVD_gU9JHOidmFecie_EQftRo.roa (hash: TATv9KEl0G9zS/KJs9wWiYzEnpI8uOZdyHODf/h2Zv8=) 11: _irPLRofiW2yAiqGHceh7pxbGfo.roa (hash: LcENOil0eGI9fBrHK+Rr0FvqGbc2XbDucHTRV9ZcpPY=) 12: j7OTX4J28Js-0w5isT2PIZS_18Q.roa (hash: frKELQxJcl50qW1No3dGQO6ukFhHZwkNa2ShR84gmOI=) 13: mJz6Vh5vX_Z8nl77wAqDRKiONe0.roa (hash: kZsXj53UOHVZH65D+DagMxEuLkLg5qPiHvCvjzQpYs0=) 14: uqLYyX7fpTti8-AF-6r_j-EcjDY.roa (hash: UbDlJKnkkpKS4MFq+3EvkRXJ4h5CCs/Q6DUr0IXogUA=) 15: wtC2uqCyAY1EaN9QwS8TP1Kn0VI.roa (hash: db0oe3co74b5HA+JQAKN4n6gQCMTGZCJAz+X0/LsIjQ=) 16: y0NhIWgTEJUn3OyUdcDPuX30xHU.roa (hash: RhHl7+/yQQJ2O2zcuVJ2Qb8j0j9FdT6wy4ZLGMABh6o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft rsync://rpki.ripe.net/repository/DEFAULT/YzkukpMXrmveCKWjuYorcB3biTo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 03:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:d4:e0:60:0c:30:43:76:2e:99:70:ab:5b:c2:c7:0b:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63392e929317ae6bde08a5a3b98a2b701ddb893a Validity Not Before: Aug 23 03:02:10 2025 GMT Not After : Aug 24 03:02:10 2025 GMT Subject: CN=71d1a2be2c8e5f1077f97fb5d4699fb9daa0094a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e7:bf:04:ad:b7:ee:b9:be:7a:cf:f2:14:c6: d8:53:d8:a6:3c:a1:5a:94:94:42:35:fc:b1:a2:68: 8b:44:d6:2f:e6:8b:5c:99:9f:b0:b1:28:b9:14:38: 34:27:a9:33:1e:f6:f9:e9:4f:ad:68:3e:e9:9c:6c: b0:49:91:d4:3d:f3:24:26:03:ca:d7:70:48:86:ac: e7:f3:87:33:a2:d2:85:8c:6f:8e:ab:8a:43:20:a4: 4b:72:c2:a8:c8:f6:0b:b0:38:36:f4:e1:dc:02:ef: ca:64:24:d3:31:c1:5c:3f:69:e3:00:77:a7:16:ee: 95:f9:df:d5:a1:11:2b:3e:11:08:01:3e:c1:56:60: 93:3c:7b:50:30:2e:5d:5b:94:f6:c8:d4:cd:4b:da: 78:aa:44:5c:4f:17:59:3f:aa:65:c8:0f:0c:06:16: dc:91:dc:04:95:45:15:d2:66:b4:4f:b8:a0:bc:24: 9c:c0:ad:4f:d9:68:a0:50:93:b6:e6:9d:2a:c2:40: ae:b3:94:77:ac:22:fb:c9:84:28:f5:94:57:be:75: 56:68:d5:c8:5d:70:7e:47:96:34:b8:1e:9c:d3:1d: 31:57:bc:33:32:bc:29:5b:92:3e:b8:ed:90:21:04: 24:99:26:9b:dc:a1:50:65:dc:2e:fe:57:39:b5:02: 3f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:D1:A2:BE:2C:8E:5F:10:77:F9:7F:B5:D4:69:9F:B9:DA:A0:09:4A X509v3 Authority Key Identifier: keyid:63:39:2E:92:93:17:AE:6B:DE:08:A5:A3:B9:8A:2B:70:1D:DB:89:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YzkukpMXrmveCKWjuYorcB3biTo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:ed:5a:1c:18:aa:46:28:b3:d3:71:b3:3e:70:53:61:9c:e9: 2b:68:31:ef:71:82:03:1f:51:b3:54:ae:85:7b:bf:f9:2a:9f: a4:41:f7:0d:03:b4:3f:35:d3:27:3c:95:29:2e:1f:09:92:7f: 9d:81:5f:3f:12:cd:04:08:e7:3b:17:d0:c8:b9:78:e8:da:1c: c0:69:bd:a3:8e:3f:98:42:36:60:5d:40:16:9c:77:65:10:fa: 1f:d7:f6:97:99:ee:37:13:cc:a1:63:0b:bd:84:c3:52:31:cb: 65:c6:9b:62:98:60:a3:4c:45:50:d0:30:73:8b:db:dc:4f:c9: 25:3e:77:8c:00:3a:d5:58:df:78:f6:4d:c2:d8:ed:7a:bb:fb: b1:33:23:03:d5:2f:87:92:ca:e5:4e:66:b4:75:0a:28:df:a7: ee:af:c4:d2:f0:9a:bf:d9:ea:f1:1d:2a:f5:e1:93:9c:44:28: 2b:51:76:7b:5c:5a:e8:05:ed:70:4e:32:72:6c:51:b7:c6:9d: 4e:c0:de:98:2b:40:ed:80:96:e7:3d:cf:01:2b:89:28:ea:8a: 0f:10:fc:58:00:11:90:7a:fd:5b:5d:60:e5:f0:af:aa:fc:44: a4:10:30:6f:0e:3c:d6:a7:2a:dc:71:60:14:76:ae:55:de:3c: 6f:e9:9e:df -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjU4GAMMEN2Lplwq1vCxwvgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzMzkyZTkyOTMxN2FlNmJkZTA4YTVhM2I5OGEyYjcwMWRk Yjg5M2EwHhcNMjUwODIzMDMwMjEwWhcNMjUwODI0MDMwMjEwWjAzMTEwLwYDVQQD Eyg3MWQxYTJiZTJjOGU1ZjEwNzdmOTdmYjVkNDY5OWZiOWRhYTAwOTRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxee/BK237rm+es/yFMbYU9imPKFa lJRCNfyxomiLRNYv5otcmZ+wsSi5FDg0J6kzHvb56U+taD7pnGywSZHUPfMkJgPK 13BIhqzn84czotKFjG+Oq4pDIKRLcsKoyPYLsDg29OHcAu/KZCTTMcFcP2njAHen Fu6V+d/VoRErPhEIAT7BVmCTPHtQMC5dW5T2yNTNS9p4qkRcTxdZP6plyA8MBhbc kdwElUUV0ma0T7igvCScwK1P2WigUJO25p0qwkCus5R3rCL7yYQo9ZRXvnVWaNXI XXB+R5Y0uB6c0x0xV7wzMrwpW5I+uO2QIQQkmSab3KFQZdwu/lc5tQI/NQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHHRor4sjl8Qd/l/tdRpn7naoAlKMB8GA1UdIwQY MBaAFGM5LpKTF65r3gilo7mKK3Ad24k6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXprdWtwTVhybXZlQ0tXanVZb3JjQjNiaVRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9mZTcwMmUtYzI2Yi00NDI5LTk5YzEt ODcyNTBmNWEwN2NjLzEvWXprdWtwTVhybXZlQ0tXanVZb3JjQjNiaVRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC9mZTcwMmUtYzI2Yi00NDI5LTk5YzEtODcyNTBmNWEwN2Nj LzEvWXprdWtwTVhybXZlQ0tXanVZb3JjQjNiaVRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS+1aHBiq Riiz03GzPnBTYZzpK2gx73GCAx9Rs1SuhXu/+SqfpEH3DQO0PzXTJzyVKS4fCZJ/ nYFfPxLNBAjnOxfQyLl46NocwGm9o44/mEI2YF1AFpx3ZRD6H9f2l5nuNxPMoWML vYTDUjHLZcabYphgo0xFUNAwc4vb3E/JJT53jAA61VjfePZNwtjterv7sTMjA9Uv h5LK5U5mtHUKKN+n7q/E0vCav9nq8R0q9eGTnEQoK1F2e1xa6AXtcE4ycmxRt8ad TsDemCtA7YCW5z3PASuJKOqKDxD8WAARkHr9W11g5fCvqvxEpBAwbw481qcq3HFg FHauVd48b+me3w== -----END CERTIFICATE-----Generated at Sat Aug 23 14:04:06 2025 by rpki-client