$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft File: Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft (raw, json) Hash identifier: yU0tXPDOTyMVroTNRvoQ1WUdZ7ECW8/YzWXjF1ZzUkw= Subject key identifier: 8E:69:9A:79:E9:DD:49:C8:C9:AE:C5:37:2B:E6:C7:D2:B5:75:2D:70 Authority key identifier: 43:54:A4:19:22:5D:5D:79:F4:A1:AE:15:20:A3:B1:A5:6D:45:26:8C Certificate issuer: /CN=4354a419225d5d79f4a1ae1520a3b1a56d45268c Certificate serial: 0197B70E7854166EB68F07E8ABBDA13A7719 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft Manifest number: 0928 Signing time: Sat 28 Jun 2025 15:01:08 +0000 Manifest this update: Sat 28 Jun 2025 15:01:08 +0000 Manifest next update: Sun 29 Jun 2025 15:01:08 +0000 Files and hashes: 1: 0pA9jqxxzLz7rK77xH9_gAV2Ddc.roa (hash: kuW3cMupmnzRroMZH+onX29Wp3xp+NRO+gRxYcXjYi4=) 2: 2TnqZvmmysxhyiNZrk30acF9SlI.roa (hash: WiwIIXJhkAErUqVwl7rpQhJM1V3EKt+e61vZ4TyGts0=) 3: Dw3X8fWhKPYb3Mn-3k0h1r_9KbU.roa (hash: TMxwGgTVPG6mIC+cdCWlxe1kZRGY132KC9x3rO2T5lU=) 4: DwPcfSHFXNqM7rUhdUmfwPDUgE4.roa (hash: TJWMP4o9L/gCTxpzvrb7aiWTaCJtkInjMyTtZ8ZQv6w=) 5: I0so05T8WJ0IrbDuX6UjLySLqmI.roa (hash: dR+mdnDCO20UWtvzil7AKdca65/eFTAOBYqBvQ7au8Y=) 6: Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl (hash: ezcmr5RDEfeR3rq/33BckkBZG4wiwXtF/juNcJdVHPk=) 7: SFaGChEcecBfMkYfUdNCUJpmOZs.roa (hash: urAyNSsYssS08ZQ9VO9nXj8k0R3NhqQ1uecoM5zn4Xg=) 8: VdXHdlxLvSXMtikY4Tkq1ivw7b0.roa (hash: d4XyYarFCX7iHNvauLVhaF+5yte4Mx2+kXf0dxCZBfg=) 9: VzB0p7pCZsQMiGHUlZc1UelTzYY.roa (hash: BzzAqeicP4DohtRLpuezZoWn//Z3/wAyEJHVc5sVYtU=) 10: XkP13qdKiUI4ksMyPnhV_Dq7ZH8.roa (hash: YloS2aXtag5qQ1JTIqYqkyKRVfkw4jImfuhbP08yNwU=) 11: _okwze0rSlq8LhXlB7FWi8OlsK4.roa (hash: 3wzhS+5DOCgktIdxwao39vX+OQv7jnEn/glBS5LioaY=) 12: aaPCQ3vYc10mi-8M5KP_x-4UjqI.roa (hash: k87j6NF+EKH8P+VssVknz/tteS+89PmRGUWHWReOd5U=) 13: keRc_cuZtJ4i5Jvsc90Pj2Jghdg.roa (hash: gciROLJg7+/w52qQUKA87ZvQS+qeyeOp3E1ngvwPEK4=) 14: mReJXjEFw2vH3gsylG3516bpkxI.roa (hash: orfciGxm8QNpQKbu93OyqVEi/aKCukxyiFS74rnLbXg=) 15: t2p4-i0-AMgrPWWbLPjsZticI0E.roa (hash: /e/8T+eYaFYAkJQaQBKZKZelhBajXo5oP/zmVdgWK8A=) 16: wXmD77ivrLBnzkfNVUx9GVYS9fw.roa (hash: tE/07N+y9ScJvAqYYnDp5CmkVEB1T6atwgfCQwskaeM=) 17: xzcqcrFf-ra6k9gJVEfYsUOL7r0.roa (hash: tLEmQ4Ip0nJAlYr4VF0AY9UERYkLlEbUUc3k5bIYBQM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 15:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:b7:0e:78:54:16:6e:b6:8f:07:e8:ab:bd:a1:3a:77:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4354a419225d5d79f4a1ae1520a3b1a56d45268c Validity Not Before: Jun 28 15:01:08 2025 GMT Not After : Jun 29 15:01:08 2025 GMT Subject: CN=8e699a79e9dd49c8c9aec5372be6c7d2b5752d70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8b:73:db:28:2f:41:7d:6b:86:d4:11:5a:8a: 43:de:39:ed:62:f5:d5:c3:da:19:57:68:ca:74:09: e0:ae:67:c8:55:f2:db:72:aa:c4:71:5c:95:23:d1: 34:29:aa:c7:d7:58:cf:1c:64:0b:e0:b9:42:68:fc: b2:73:94:ac:fe:83:1b:64:c7:33:c1:7a:53:82:d0: 64:86:81:f0:e9:e8:f1:8e:50:b2:1d:57:ff:fc:2e: 3f:21:0f:43:83:12:ea:df:7b:b8:06:79:61:28:e4: 04:06:f3:c7:ae:0f:61:65:e9:35:36:3f:2c:c7:ad: c4:61:c6:39:54:44:a3:0f:a9:71:fd:18:c1:12:dd: 83:35:0c:d0:fd:53:dc:ae:38:dd:df:dd:9d:be:27: 85:96:51:82:5b:cf:28:2b:9f:e8:50:bb:b2:2c:4d: 1f:61:0c:18:31:43:d2:b8:e3:a8:9a:54:40:c0:14: 8f:db:fb:4d:16:f1:7e:d0:70:ea:49:60:26:17:25: 7c:a5:40:c1:80:b8:2a:c7:d4:60:6e:29:fa:c1:9b: e1:63:39:a4:8f:2a:5e:fc:8e:e0:1b:76:6e:b7:76: 27:89:97:52:20:09:98:87:1e:e0:2c:97:25:77:22: cc:20:90:39:c6:44:38:71:68:92:3b:7e:ad:ee:4c: 8c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:69:9A:79:E9:DD:49:C8:C9:AE:C5:37:2B:E6:C7:D2:B5:75:2D:70 X509v3 Authority Key Identifier: keyid:43:54:A4:19:22:5D:5D:79:F4:A1:AE:15:20:A3:B1:A5:6D:45:26:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:c1:7d:67:d6:5a:cc:29:6a:19:52:93:d4:e7:ce:6b:50:72: ee:4b:10:7c:9d:24:0c:87:6a:23:99:f2:72:27:c9:03:61:25: 4c:47:f9:16:58:d8:6e:f6:d5:b9:a1:61:4a:11:38:d5:0a:3a: 38:ee:1a:df:13:7d:f6:2a:ca:f1:8b:9f:a1:59:98:40:a2:99: a4:3f:cf:6d:b9:88:4f:81:82:8f:c0:de:bf:55:0f:1d:55:fa: b6:18:f4:77:a2:a2:ac:95:30:4d:73:34:26:99:c3:e3:7f:d7: d5:80:79:c9:91:69:a3:bc:74:e3:bd:50:17:2d:bb:68:6b:2c: d1:fb:d8:b5:29:df:b2:bb:e0:ed:54:4c:9d:f1:e0:2e:1b:b4: f8:fa:8d:83:08:a6:56:86:5f:d3:f3:5d:90:28:98:7d:b0:e9: f3:e1:46:48:53:a8:40:f8:02:96:5d:31:1f:f5:50:75:4b:71: cb:d8:ac:1f:b1:a8:ce:3e:75:9a:6a:df:22:0f:8e:5d:17:11: b9:e8:b6:f4:65:6b:43:3e:09:08:4c:04:8c:f7:58:35:fa:77: a3:65:87:ec:88:12:bd:ff:50:c2:ec:08:9a:4c:88:ef:15:7b: c4:ed:62:79:7c:46:86:bd:74:da:84:ea:a5:1e:99:21:05:da: ed:87:21:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZe3DnhUFm62jwfoq72hOncZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzNTRhNDE5MjI1ZDVkNzlmNGExYWUxNTIwYTNiMWE1NmQ0 NTI2OGMwHhcNMjUwNjI4MTUwMTA4WhcNMjUwNjI5MTUwMTA4WjAzMTEwLwYDVQQD Eyg4ZTY5OWE3OWU5ZGQ0OWM4YzlhZWM1MzcyYmU2YzdkMmI1NzUyZDcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Ytz2ygvQX1rhtQRWopD3jntYvXV w9oZV2jKdAngrmfIVfLbcqrEcVyVI9E0KarH11jPHGQL4LlCaPyyc5Ss/oMbZMcz wXpTgtBkhoHw6ejxjlCyHVf//C4/IQ9DgxLq33u4BnlhKOQEBvPHrg9hZek1Nj8s x63EYcY5VESjD6lx/RjBEt2DNQzQ/VPcrjjd392dvieFllGCW88oK5/oULuyLE0f YQwYMUPSuOOomlRAwBSP2/tNFvF+0HDqSWAmFyV8pUDBgLgqx9Rgbin6wZvhYzmk jype/I7gG3Zut3YniZdSIAmYhx7gLJcldyLMIJA5xkQ4cWiSO36t7kyMowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI5pmnnp3UnIya7FNyvmx9K1dS1wMB8GA1UdIwQY MBaAFENUpBkiXV159KGuFSCjsaVtRSaMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTFTa0dTSmRYWG4wb2E0VklLT3hwVzFGSm93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny8wZmRkZjAtOGJiZi00MzUwLWJmZmEt Njg4ZDUxYTQ0NDQ4LzEvUTFTa0dTSmRYWG4wb2E0VklLT3hwVzFGSm93Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny8wZmRkZjAtOGJiZi00MzUwLWJmZmEtNjg4ZDUxYTQ0NDQ4 LzEvUTFTa0dTSmRYWG4wb2E0VklLT3hwVzFGSm93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe8F9Z9Za zClqGVKT1OfOa1By7ksQfJ0kDIdqI5nycifJA2ElTEf5FljYbvbVuaFhShE41Qo6 OO4a3xN99irK8YufoVmYQKKZpD/PbbmIT4GCj8Dev1UPHVX6thj0d6KirJUwTXM0 JpnD43/X1YB5yZFpo7x0471QFy27aGss0fvYtSnfsrvg7VRMnfHgLhu0+PqNgwim VoZf0/NdkCiYfbDp8+FGSFOoQPgCll0xH/VQdUtxy9isH7Gozj51mmrfIg+OXRcR uei29GVrQz4JCEwEjPdYNfp3o2WH7IgSvf9QwuwImkyI7xV7xO1ieXxGhr102oTq pR6ZIQXa7YchlQ== -----END CERTIFICATE-----Generated at Sat Jun 28 23:22:38 2025 by rpki-client