$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.mft File: h3itgWjgnPktTgSYJX-OnOq_BpI.mft (raw, json) Hash identifier: nj1Oglo47Jz0d8IU2NrG0Jw4F3V/rNdkCyrHdh1tZSA= Subject key identifier: B0:E8:85:23:EC:43:12:4D:18:57:5A:FD:3E:9B:30:6D:CB:C6:95:FD Authority key identifier: 87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92 Certificate issuer: /CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692 Certificate serial: 0198D84F16260CA38F648F1DA4F670EB24D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.mft Manifest number: 1668 Signing time: Sat 23 Aug 2025 19:01:58 +0000 Manifest this update: Sat 23 Aug 2025 19:01:58 +0000 Manifest next update: Sun 24 Aug 2025 19:01:58 +0000 Files and hashes: 1: 3VQFHIG_0NRiYGSMTzNDYelPmMs.roa (hash: T8N7lYcGBn0m7uBQBcevnqsWbvysQD6cxVHO1RDwUvg=) 2: 41kwTSa8H9b9pjrkUzwf85FQ470.roa (hash: 6DgsyUX2uyntOPFl8yDMIgTXXXs0mzyQ219673BzCzU=) 3: CdQNI5gcW0_1cf24cLvP-tL_omw.roa (hash: fyArCRfx7SbzhmzmpSevkzJflw0c7SkqK2TimwbjqzM=) 4: RXJMzhMtehSuCCi6uqljNw1_L-s.roa (hash: Xot9S/JUju+/cZl9baS7ZUR4Rh18U5S5qk4hiX6txpg=) 5: TpqMtUwJukfz53BZIUdbM-kP9dU.roa (hash: sJ+1FquCHUKBx1oFow8K9ca95AgoJ61IjnusPLlcDN8=) 6: WEKuOaRTTX2rTln9asflqP9Y2Os.roa (hash: EcqtEEKcbvmbmPvboEcXGauHM+e7HHmS4JSP0Le2t4o=) 7: XmOvv05xULfAWuDqrX7juNO-0qI.roa (hash: eJeMTOSpJLyqSZNQmSL2OZUvlINOSkmPnV9aTneLjHg=) 8: Xzib8AfEYqY2cHmuuM-ww_w5sW0.roa (hash: 6XHRFIs5VNl1aw2+x8Rz4IQniQIfYw9CyiplPPtk5bE=) 9: aMv6gEqWxpGKwwWm6t5nV_iaM3Q.roa (hash: +a48j1hsLG2vzEIY2MRVBswlr1+jm51V+Dk+4EhL/9Y=) 10: h3itgWjgnPktTgSYJX-OnOq_BpI.crl (hash: UT34Kq29oRrPZdv0oZDkAyIQXYdCmxA+GNx7J5YuktI=) 11: jF6aKXBNyHTawjaz9GVexS6_Vps.roa (hash: FiDTfOMoZak8gOhtJT/8yhL0tIdZjUn13AvzOxfMN0E=) 12: s6XbpS6zvG-OGcqP78qsGOOoOlQ.roa (hash: vai/46FuXyssCtnAk+MIcYY2mUqRBxwISqAf2lFmzsg=) 13: vsuobB7Q7M7H0d2b7icsBX46rF8.roa (hash: 7WzZ613I/LXa4Zefx9tEqY2ZhSRre3hj1QC98fA5RuY=) 14: xP11eIeQX9x-FJdxDPaYbALauGA.roa (hash: X/B/3lK+XxCa5BQgDlvPLTFtIiO9rYw/6L5OCGSXKQE=) 15: xT7aM3kUy4b46Qb4CAkkSam9t5g.roa (hash: Rfd0mKt9HyiAqh5+s2geHZ1SUFHa0fSNkwoTUgmAYpI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.mft rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:d8:4f:16:26:0c:a3:8f:64:8f:1d:a4:f6:70:eb:24:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692 Validity Not Before: Aug 23 19:01:58 2025 GMT Not After : Aug 24 19:01:58 2025 GMT Subject: CN=b0e88523ec43124d18575afd3e9b306dcbc695fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:20:90:4a:97:4e:cd:80:27:72:03:11:fd:20: f3:79:6a:4d:55:0a:fd:76:d9:ee:fe:1c:49:eb:06: bb:b9:07:da:cd:f5:ce:95:52:be:70:01:f8:71:b3: 2f:5a:d8:cc:29:f5:7e:ce:81:5c:ec:98:98:2d:2d: 9d:61:11:bf:b9:c0:31:45:83:35:fd:85:7d:ee:73: 80:5b:56:4a:f5:0b:ff:d6:40:0f:37:6e:c9:15:7f: 76:e6:db:46:13:78:f5:19:55:81:38:89:d4:7c:d3: 43:e8:f4:3b:e0:44:87:da:89:17:62:7d:68:8b:c5: 4b:d0:68:8c:10:9b:6a:1c:ad:65:3d:94:bd:bc:25: da:84:7d:ca:9b:c6:f7:a1:d7:77:d4:15:8e:73:25: 67:2c:cc:1a:a3:4f:82:65:8c:d5:dd:36:b5:b7:fa: 8a:45:00:07:f3:1b:09:e0:ed:fc:71:54:2b:b9:2f: 7d:d8:25:bd:f0:3c:31:ec:65:01:e2:f0:2e:cb:9c: ae:45:88:0d:51:56:13:2b:f7:c8:c0:b2:d7:15:5d: 68:b4:f4:3d:9c:7d:36:a5:4c:16:1a:47:38:68:07: 72:16:b2:7e:55:13:69:f3:58:53:bc:0a:aa:06:5b: e6:26:06:29:ca:2b:65:b0:2f:49:28:29:12:6d:ce: e3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:E8:85:23:EC:43:12:4D:18:57:5A:FD:3E:9B:30:6D:CB:C6:95:FD X509v3 Authority Key Identifier: keyid:87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:5b:08:84:28:fd:db:58:cb:52:72:53:0a:59:65:ec:c2:84: 4a:41:04:d0:d8:a5:41:19:31:02:5a:3e:55:87:0d:98:06:4f: 3d:8c:17:9e:43:6d:8a:f2:21:9e:6d:58:80:82:4b:b2:1b:3e: 9b:06:89:35:68:05:2d:f4:70:71:db:bd:22:51:6f:af:e1:fd: 22:63:31:e0:c9:7e:59:a7:c2:b6:5a:18:e8:db:f1:a2:37:6f: dc:04:49:1b:06:15:4f:c0:ae:41:4e:bc:74:39:6b:6a:6e:b5: ca:cc:90:63:ce:1a:db:a5:6a:8f:0c:4a:86:c3:ab:7e:51:20: 91:f5:a2:c0:03:74:3e:a0:fd:86:67:1e:0e:95:e9:c8:e0:08: c0:73:50:65:39:4a:f7:b9:cb:f5:1f:1e:e3:cf:8b:d6:a7:4d: 6c:86:46:c4:13:a4:82:e8:c1:a8:12:2c:84:d4:9b:87:c3:34: 34:97:1b:27:28:f5:7f:e0:bf:2f:8a:5e:14:f0:49:40:12:a6: a4:55:0d:12:25:c3:b5:f2:8d:76:03:22:20:3e:c4:f9:86:b3: 7b:e4:18:f4:05:9d:5a:6d:3f:54:d0:87:bd:83:13:a8:29:55: 18:82:6d:8f:3f:a6:08:90:c3:37:f0:e1:67:75:17:7c:f0:2e: 0f:56:32:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjYTxYmDKOPZI8dpPZw6yTXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3NzhhZDgxNjhlMDljZjkyZDRlMDQ5ODI1N2Y4ZTljZWFi ZjA2OTIwHhcNMjUwODIzMTkwMTU4WhcNMjUwODI0MTkwMTU4WjAzMTEwLwYDVQQD EyhiMGU4ODUyM2VjNDMxMjRkMTg1NzVhZmQzZTliMzA2ZGNiYzY5NWZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwiCQSpdOzYAncgMR/SDzeWpNVQr9 dtnu/hxJ6wa7uQfazfXOlVK+cAH4cbMvWtjMKfV+zoFc7JiYLS2dYRG/ucAxRYM1 /YV97nOAW1ZK9Qv/1kAPN27JFX925ttGE3j1GVWBOInUfNND6PQ74ESH2okXYn1o i8VL0GiMEJtqHK1lPZS9vCXahH3Km8b3odd31BWOcyVnLMwao0+CZYzV3Ta1t/qK RQAH8xsJ4O38cVQruS992CW98Dwx7GUB4vAuy5yuRYgNUVYTK/fIwLLXFV1otPQ9 nH02pUwWGkc4aAdyFrJ+VRNp81hTvAqqBlvmJgYpyitlsC9JKCkSbc7jrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLDohSPsQxJNGFda/T6bMG3LxpX9MB8GA1UdIwQY MBaAFId4rYFo4Jz5LU4EmCV/jpzqvwaSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDNpdGdXamduUGt0VGdTWUpYLU9uT3FfQnBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9mMDdmOGQtOWRmMC00OWM2LWIyZjAt YWE5ZDY5MTgxMWU3LzEvaDNpdGdXamduUGt0VGdTWUpYLU9uT3FfQnBJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi9mMDdmOGQtOWRmMC00OWM2LWIyZjAtYWE5ZDY5MTgxMWU3 LzEvaDNpdGdXamduUGt0VGdTWUpYLU9uT3FfQnBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANFsIhCj9 21jLUnJTClll7MKESkEE0NilQRkxAlo+VYcNmAZPPYwXnkNtivIhnm1YgIJLshs+ mwaJNWgFLfRwcdu9IlFvr+H9ImMx4Ml+WafCtloY6Nvxojdv3ARJGwYVT8CuQU68 dDlram61ysyQY84a26VqjwxKhsOrflEgkfWiwAN0PqD9hmceDpXpyOAIwHNQZTlK 97nL9R8e48+L1qdNbIZGxBOkgujBqBIshNSbh8M0NJcbJyj1f+C/L4peFPBJQBKm pFUNEiXDtfKNdgMiID7E+Yaze+QY9AWdWm0/VNCHvYMTqClVGIJtjz+mCJDDN/Dh Z3UXfPAuD1YyQQ== -----END CERTIFICATE-----Generated at Sat Aug 23 21:56:16 2025 by rpki-client