$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft File: Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft (raw, json) Hash identifier: N5OLJyZrl2E920XcwsInK7FU9DUiL0AHppR5ws6MuUU= Subject key identifier: 64:43:E7:5C:B4:53:7A:6D:72:12:22:53:F0:E7:93:0F:D9:8C:66:CE Authority key identifier: 43:54:A4:19:22:5D:5D:79:F4:A1:AE:15:20:A3:B1:A5:6D:45:26:8C Certificate issuer: /CN=4354a419225d5d79f4a1ae1520a3b1a56d45268c Certificate serial: 0198D6CD7B5F32865765F5DE56CEB90D9C9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft Manifest number: 09BD Signing time: Sat 23 Aug 2025 12:00:47 +0000 Manifest this update: Sat 23 Aug 2025 12:00:47 +0000 Manifest next update: Sun 24 Aug 2025 12:00:47 +0000 Files and hashes: 1: 0pA9jqxxzLz7rK77xH9_gAV2Ddc.roa (hash: kuW3cMupmnzRroMZH+onX29Wp3xp+NRO+gRxYcXjYi4=) 2: 2TnqZvmmysxhyiNZrk30acF9SlI.roa (hash: WiwIIXJhkAErUqVwl7rpQhJM1V3EKt+e61vZ4TyGts0=) 3: Dw3X8fWhKPYb3Mn-3k0h1r_9KbU.roa (hash: TMxwGgTVPG6mIC+cdCWlxe1kZRGY132KC9x3rO2T5lU=) 4: DwPcfSHFXNqM7rUhdUmfwPDUgE4.roa (hash: TJWMP4o9L/gCTxpzvrb7aiWTaCJtkInjMyTtZ8ZQv6w=) 5: I0so05T8WJ0IrbDuX6UjLySLqmI.roa (hash: dR+mdnDCO20UWtvzil7AKdca65/eFTAOBYqBvQ7au8Y=) 6: Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl (hash: X/URsbHGUvTPqh1nng3R//Kb7Weuoa/QNXjnwYA6QIs=) 7: SFaGChEcecBfMkYfUdNCUJpmOZs.roa (hash: urAyNSsYssS08ZQ9VO9nXj8k0R3NhqQ1uecoM5zn4Xg=) 8: VdXHdlxLvSXMtikY4Tkq1ivw7b0.roa (hash: d4XyYarFCX7iHNvauLVhaF+5yte4Mx2+kXf0dxCZBfg=) 9: VzB0p7pCZsQMiGHUlZc1UelTzYY.roa (hash: BzzAqeicP4DohtRLpuezZoWn//Z3/wAyEJHVc5sVYtU=) 10: XkP13qdKiUI4ksMyPnhV_Dq7ZH8.roa (hash: YloS2aXtag5qQ1JTIqYqkyKRVfkw4jImfuhbP08yNwU=) 11: _okwze0rSlq8LhXlB7FWi8OlsK4.roa (hash: 3wzhS+5DOCgktIdxwao39vX+OQv7jnEn/glBS5LioaY=) 12: aaPCQ3vYc10mi-8M5KP_x-4UjqI.roa (hash: k87j6NF+EKH8P+VssVknz/tteS+89PmRGUWHWReOd5U=) 13: keRc_cuZtJ4i5Jvsc90Pj2Jghdg.roa (hash: gciROLJg7+/w52qQUKA87ZvQS+qeyeOp3E1ngvwPEK4=) 14: mReJXjEFw2vH3gsylG3516bpkxI.roa (hash: orfciGxm8QNpQKbu93OyqVEi/aKCukxyiFS74rnLbXg=) 15: t2p4-i0-AMgrPWWbLPjsZticI0E.roa (hash: /e/8T+eYaFYAkJQaQBKZKZelhBajXo5oP/zmVdgWK8A=) 16: wXmD77ivrLBnzkfNVUx9GVYS9fw.roa (hash: tE/07N+y9ScJvAqYYnDp5CmkVEB1T6atwgfCQwskaeM=) 17: xzcqcrFf-ra6k9gJVEfYsUOL7r0.roa (hash: tLEmQ4Ip0nJAlYr4VF0AY9UERYkLlEbUUc3k5bIYBQM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 12:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:d6:cd:7b:5f:32:86:57:65:f5:de:56:ce:b9:0d:9c:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4354a419225d5d79f4a1ae1520a3b1a56d45268c Validity Not Before: Aug 23 12:00:47 2025 GMT Not After : Aug 24 12:00:47 2025 GMT Subject: CN=6443e75cb4537a6d72122253f0e7930fd98c66ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7c:cd:03:c8:f3:c6:31:b1:22:ef:01:ca:47: 37:8e:a9:1f:7e:a0:ac:09:91:a4:88:97:c5:3f:76: 53:66:ed:50:c6:2f:e5:da:08:4d:6a:89:04:39:10: d2:58:96:84:d7:e8:68:7e:58:f5:7f:94:07:5b:8b: bf:11:45:19:79:4f:1e:36:27:93:c7:6c:46:f6:bf: e5:49:e9:e2:ff:cb:fd:be:05:99:1d:ed:27:5e:07: e4:a7:cc:5d:85:bc:c8:97:01:22:dd:79:82:08:6f: 99:38:fd:c6:19:aa:da:3c:9a:37:83:0c:e9:c3:29: a6:91:95:ae:b6:8d:b1:3f:9a:22:1d:1e:a5:58:a0: b2:54:9b:99:a6:f3:47:f7:98:4c:0a:ce:0e:33:49: 60:d9:5f:d0:bb:10:cd:8f:a6:f1:8a:eb:7c:3d:d5: d5:e2:82:a3:56:8f:c2:11:c6:bb:99:67:a9:2d:43: 20:a4:d1:a9:5f:09:a0:48:97:81:61:3e:eb:2c:2e: e1:db:1f:f6:e4:36:3f:f7:cc:78:e0:87:02:9f:ca: fe:62:a8:71:d0:b2:b0:05:e5:8e:cf:88:01:b2:33: a4:ec:c7:73:7b:c1:ef:75:86:13:40:1e:69:84:c6: 3b:c9:66:0a:68:42:c8:f5:de:cf:24:d4:4e:ac:89: e4:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:43:E7:5C:B4:53:7A:6D:72:12:22:53:F0:E7:93:0F:D9:8C:66:CE X509v3 Authority Key Identifier: keyid:43:54:A4:19:22:5D:5D:79:F4:A1:AE:15:20:A3:B1:A5:6D:45:26:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:82:40:79:ca:63:c4:da:fd:51:20:0e:fa:43:75:bd:56:88: cd:82:4b:cf:16:e9:7c:ac:07:28:e4:d7:99:73:75:ac:93:2a: 9e:e8:0d:69:7d:6e:7e:61:da:e5:1d:45:9f:13:31:e9:a3:51: 90:66:42:9c:b8:f0:7c:1d:51:78:f4:b4:d9:d3:b8:c7:e0:65: 1b:24:c6:17:85:cd:f3:e6:b3:5c:66:97:f6:b6:3d:5e:50:87: 71:77:17:69:20:b7:81:ae:fe:8e:85:4a:f0:2d:0f:a6:ef:39: 25:72:9e:6d:d6:e2:b4:e8:5e:5a:6d:fe:63:82:11:57:87:06: d8:05:0c:cd:20:1c:d0:67:1a:65:55:96:22:b5:94:1f:46:82: 63:ea:90:1e:e8:4f:0d:1d:9d:fb:62:21:3a:b8:6b:9f:2b:4e: bd:fe:96:c2:e9:09:13:61:ff:2a:f0:42:81:90:93:d3:ae:00: 87:b0:97:36:20:12:fe:ac:e4:ec:82:02:e4:24:d8:c3:b8:fe: 6b:fc:ff:81:2a:d5:93:ab:5e:b3:17:5b:ac:db:3c:4c:c0:1e: 09:c3:67:a6:da:f6:87:30:c8:c2:42:27:83:1e:97:53:1b:67: 3d:e0:ce:85:e3:1c:cc:d2:35:45:77:83:0f:b2:a6:21:77:12: 17:b1:81:8f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjWzXtfMoZXZfXeVs65DZybMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzNTRhNDE5MjI1ZDVkNzlmNGExYWUxNTIwYTNiMWE1NmQ0 NTI2OGMwHhcNMjUwODIzMTIwMDQ3WhcNMjUwODI0MTIwMDQ3WjAzMTEwLwYDVQQD Eyg2NDQzZTc1Y2I0NTM3YTZkNzIxMjIyNTNmMGU3OTMwZmQ5OGM2NmNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApHzNA8jzxjGxIu8Bykc3jqkffqCs CZGkiJfFP3ZTZu1Qxi/l2ghNaokEORDSWJaE1+hoflj1f5QHW4u/EUUZeU8eNieT x2xG9r/lSeni/8v9vgWZHe0nXgfkp8xdhbzIlwEi3XmCCG+ZOP3GGaraPJo3gwzp wymmkZWuto2xP5oiHR6lWKCyVJuZpvNH95hMCs4OM0lg2V/QuxDNj6bxiut8PdXV 4oKjVo/CEca7mWepLUMgpNGpXwmgSJeBYT7rLC7h2x/25DY/98x44IcCn8r+Yqhx 0LKwBeWOz4gBsjOk7Mdze8HvdYYTQB5phMY7yWYKaELI9d7PJNROrInkSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGRD51y0U3ptchIiU/Dnkw/ZjGbOMB8GA1UdIwQY MBaAFENUpBkiXV159KGuFSCjsaVtRSaMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTFTa0dTSmRYWG4wb2E0VklLT3hwVzFGSm93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny8wZmRkZjAtOGJiZi00MzUwLWJmZmEt Njg4ZDUxYTQ0NDQ4LzEvUTFTa0dTSmRYWG4wb2E0VklLT3hwVzFGSm93Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny8wZmRkZjAtOGJiZi00MzUwLWJmZmEtNjg4ZDUxYTQ0NDQ4 LzEvUTFTa0dTSmRYWG4wb2E0VklLT3hwVzFGSm93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqoJAecpj xNr9USAO+kN1vVaIzYJLzxbpfKwHKOTXmXN1rJMqnugNaX1ufmHa5R1FnxMx6aNR kGZCnLjwfB1RePS02dO4x+BlGyTGF4XN8+azXGaX9rY9XlCHcXcXaSC3ga7+joVK 8C0Ppu85JXKebdbitOheWm3+Y4IRV4cG2AUMzSAc0GcaZVWWIrWUH0aCY+qQHuhP DR2d+2IhOrhrnytOvf6WwukJE2H/KvBCgZCT064Ah7CXNiAS/qzk7IIC5CTYw7j+ a/z/gSrVk6tesxdbrNs8TMAeCcNnptr2hzDIwkIngx6XUxtnPeDOheMczNI1RXeD D7KmIXcSF7GBjw== -----END CERTIFICATE-----Generated at Sat Aug 23 18:20:59 2025 by rpki-client