$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.mft File: h3itgWjgnPktTgSYJX-OnOq_BpI.mft (raw, json) Hash identifier: 2X5Fjad3eKkicAeQNQkn5KmJtrjlvPpNVV1HV+6RimA= Subject key identifier: 41:CC:FB:9A:BB:30:1B:87:94:5D:0A:79:34:E0:BE:18:23:67:A5:D3 Authority key identifier: 87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92 Certificate issuer: /CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692 Certificate serial: 0199FBB35EE5BB4C11DD63BF7CAB550815EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.mft Manifest number: 16FF Signing time: Sun 19 Oct 2025 09:01:00 +0000 Manifest this update: Sun 19 Oct 2025 09:01:00 +0000 Manifest next update: Mon 20 Oct 2025 09:01:00 +0000 Files and hashes: 1: 3VQFHIG_0NRiYGSMTzNDYelPmMs.roa (hash: T8N7lYcGBn0m7uBQBcevnqsWbvysQD6cxVHO1RDwUvg=) 2: 41kwTSa8H9b9pjrkUzwf85FQ470.roa (hash: 6DgsyUX2uyntOPFl8yDMIgTXXXs0mzyQ219673BzCzU=) 3: CdQNI5gcW0_1cf24cLvP-tL_omw.roa (hash: fyArCRfx7SbzhmzmpSevkzJflw0c7SkqK2TimwbjqzM=) 4: RXJMzhMtehSuCCi6uqljNw1_L-s.roa (hash: Xot9S/JUju+/cZl9baS7ZUR4Rh18U5S5qk4hiX6txpg=) 5: TpqMtUwJukfz53BZIUdbM-kP9dU.roa (hash: sJ+1FquCHUKBx1oFow8K9ca95AgoJ61IjnusPLlcDN8=) 6: WEKuOaRTTX2rTln9asflqP9Y2Os.roa (hash: EcqtEEKcbvmbmPvboEcXGauHM+e7HHmS4JSP0Le2t4o=) 7: XmOvv05xULfAWuDqrX7juNO-0qI.roa (hash: eJeMTOSpJLyqSZNQmSL2OZUvlINOSkmPnV9aTneLjHg=) 8: Xzib8AfEYqY2cHmuuM-ww_w5sW0.roa (hash: 6XHRFIs5VNl1aw2+x8Rz4IQniQIfYw9CyiplPPtk5bE=) 9: aMv6gEqWxpGKwwWm6t5nV_iaM3Q.roa (hash: +a48j1hsLG2vzEIY2MRVBswlr1+jm51V+Dk+4EhL/9Y=) 10: h3itgWjgnPktTgSYJX-OnOq_BpI.crl (hash: A1x0kDh+HYkOzIesGXmcYx0Aw/XfdperXOKZpyvTezI=) 11: jF6aKXBNyHTawjaz9GVexS6_Vps.roa (hash: FiDTfOMoZak8gOhtJT/8yhL0tIdZjUn13AvzOxfMN0E=) 12: s6XbpS6zvG-OGcqP78qsGOOoOlQ.roa (hash: vai/46FuXyssCtnAk+MIcYY2mUqRBxwISqAf2lFmzsg=) 13: vsuobB7Q7M7H0d2b7icsBX46rF8.roa (hash: 7WzZ613I/LXa4Zefx9tEqY2ZhSRre3hj1QC98fA5RuY=) 14: xP11eIeQX9x-FJdxDPaYbALauGA.roa (hash: X/B/3lK+XxCa5BQgDlvPLTFtIiO9rYw/6L5OCGSXKQE=) 15: xT7aM3kUy4b46Qb4CAkkSam9t5g.roa (hash: Rfd0mKt9HyiAqh5+s2geHZ1SUFHa0fSNkwoTUgmAYpI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.mft rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 06:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:fb:b3:5e:e5:bb:4c:11:dd:63:bf:7c:ab:55:08:15:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692 Validity Not Before: Oct 19 09:01:00 2025 GMT Not After : Oct 20 09:01:00 2025 GMT Subject: CN=41ccfb9abb301b87945d0a7934e0be182367a5d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:76:a9:f5:11:be:9c:e6:33:53:a1:9e:7c:95: 6a:7e:a9:2b:6d:fd:c1:6d:f7:db:d0:e2:a4:fd:6f: af:ee:22:1d:ca:4d:28:5d:40:51:0a:c5:b2:a2:f6: f2:a3:6f:be:18:cf:04:e3:15:df:fd:fd:e9:7d:54: 5c:0c:e1:a2:c1:01:83:4d:79:df:b3:1e:a9:9f:e7: bc:7e:c5:e7:63:69:5b:22:51:a8:60:1a:27:e4:7a: 7d:3c:e0:70:31:96:45:8b:ff:e5:35:6b:89:a1:c3: 7c:c7:cf:73:45:5c:1e:83:91:ad:53:45:1b:00:01: 2d:85:e9:77:75:95:5e:59:66:27:b2:0a:f2:96:b9: c9:80:e2:b5:29:43:50:97:71:82:ac:7e:1a:fc:05: 2d:c7:3f:1b:30:ba:e9:59:16:b0:46:a4:f3:14:fc: 66:b4:2a:b0:96:a8:70:17:a5:fc:c4:77:03:0b:bc: 01:32:67:3c:15:1f:d7:e4:43:bd:19:60:eb:08:6a: 4b:62:27:50:ae:42:5e:36:d0:7e:cc:53:7b:c5:93: df:ca:2b:a0:5d:f1:8e:90:26:dc:26:7a:ef:57:8c: 8b:27:a3:76:15:f3:1b:95:d8:13:67:10:a4:27:ec: 8d:26:ba:49:0f:90:74:75:ef:96:cd:6a:c9:d7:ea: e8:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:CC:FB:9A:BB:30:1B:87:94:5D:0A:79:34:E0:BE:18:23:67:A5:D3 X509v3 Authority Key Identifier: keyid:87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:6a:3f:b3:3b:da:89:1b:1e:69:b9:aa:8c:6d:d5:95:21:66: 8c:c6:0a:9d:d4:9b:74:48:4a:00:45:09:cf:44:08:84:74:7b: 44:00:20:2d:c5:15:39:f8:41:98:cc:ae:84:03:e1:61:56:24: 59:d4:65:b4:15:3a:1f:1c:d1:b2:fe:15:c6:ac:a2:7e:74:2e: 89:03:a5:46:e9:48:f8:e4:80:f0:2a:fe:df:50:b8:82:6b:5b: cd:c7:81:b0:af:16:64:69:e8:41:8f:af:4b:9f:d3:ab:a0:63: 31:6d:2a:26:65:84:2f:99:d7:4a:37:ca:68:fe:8d:bb:22:83: 23:1a:46:25:55:f2:1b:b4:84:a2:79:b3:a7:56:52:1d:ed:54: 12:d2:9e:3c:cc:a5:23:a8:53:0c:53:85:00:2c:ff:7f:cd:93: 2b:36:90:13:e2:f5:c2:0f:ec:ba:5a:2f:45:cd:e9:56:07:03: f3:1c:9a:b9:09:ad:f6:db:24:d3:db:9f:5d:a5:2b:fd:56:cb: 86:2f:25:2d:3e:22:34:25:99:95:b6:49:fd:2e:af:7a:3f:90: c6:19:e8:19:fe:04:62:77:be:b8:1a:09:2c:81:96:bd:59:78: 6f:0f:e2:53:d0:dd:05:bb:83:e5:09:ac:e9:c3:b3:58:a4:fc: 7a:20:05:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZn7s17lu0wR3WO/fKtVCBXqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3NzhhZDgxNjhlMDljZjkyZDRlMDQ5ODI1N2Y4ZTljZWFi ZjA2OTIwHhcNMjUxMDE5MDkwMTAwWhcNMjUxMDIwMDkwMTAwWjAzMTEwLwYDVQQD Eyg0MWNjZmI5YWJiMzAxYjg3OTQ1ZDBhNzkzNGUwYmUxODIzNjdhNWQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwXap9RG+nOYzU6GefJVqfqkrbf3B bffb0OKk/W+v7iIdyk0oXUBRCsWyovbyo2++GM8E4xXf/f3pfVRcDOGiwQGDTXnf sx6pn+e8fsXnY2lbIlGoYBon5Hp9POBwMZZFi//lNWuJocN8x89zRVweg5GtU0Ub AAEthel3dZVeWWYnsgrylrnJgOK1KUNQl3GCrH4a/AUtxz8bMLrpWRawRqTzFPxm tCqwlqhwF6X8xHcDC7wBMmc8FR/X5EO9GWDrCGpLYidQrkJeNtB+zFN7xZPfyiug XfGOkCbcJnrvV4yLJ6N2FfMbldgTZxCkJ+yNJrpJD5B0de+WzWrJ1+rokQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEHM+5q7MBuHlF0KeTTgvhgjZ6XTMB8GA1UdIwQY MBaAFId4rYFo4Jz5LU4EmCV/jpzqvwaSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDNpdGdXamduUGt0VGdTWUpYLU9uT3FfQnBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9mMDdmOGQtOWRmMC00OWM2LWIyZjAt YWE5ZDY5MTgxMWU3LzEvaDNpdGdXamduUGt0VGdTWUpYLU9uT3FfQnBJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi9mMDdmOGQtOWRmMC00OWM2LWIyZjAtYWE5ZDY5MTgxMWU3 LzEvaDNpdGdXamduUGt0VGdTWUpYLU9uT3FfQnBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVmo/szva iRseabmqjG3VlSFmjMYKndSbdEhKAEUJz0QIhHR7RAAgLcUVOfhBmMyuhAPhYVYk WdRltBU6HxzRsv4VxqyifnQuiQOlRulI+OSA8Cr+31C4gmtbzceBsK8WZGnoQY+v S5/Tq6BjMW0qJmWEL5nXSjfKaP6NuyKDIxpGJVXyG7SEonmzp1ZSHe1UEtKePMyl I6hTDFOFACz/f82TKzaQE+L1wg/sulovRc3pVgcD8xyauQmt9tsk09ufXaUr/VbL hi8lLT4iNCWZlbZJ/S6vej+QxhnoGf4EYne+uBoJLIGWvVl4bw/iU9DdBbuD5Qms 6cOzWKT8eiAF9w== -----END CERTIFICATE-----Generated at Sun Oct 19 13:14:22 2025 by rpki-client