$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.mft File: h3itgWjgnPktTgSYJX-OnOq_BpI.mft (raw, json) Hash identifier: SKm9JqVaPUoHopeblJozzeT+K3UDOffUfVSFvNy8a8Y= Subject key identifier: 36:A2:D5:59:77:AB:F2:A9:CC:A2:94:80:0A:9A:B6:E3:CE:63:9F:31 Authority key identifier: 87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92 Certificate issuer: /CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692 Certificate serial: 0197B890463DA5E7C8C7E7EC0E258BCCABFA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.mft Manifest number: 15D3 Signing time: Sat 28 Jun 2025 22:02:32 +0000 Manifest this update: Sat 28 Jun 2025 22:02:32 +0000 Manifest next update: Sun 29 Jun 2025 22:02:32 +0000 Files and hashes: 1: 3VQFHIG_0NRiYGSMTzNDYelPmMs.roa (hash: T8N7lYcGBn0m7uBQBcevnqsWbvysQD6cxVHO1RDwUvg=) 2: 41kwTSa8H9b9pjrkUzwf85FQ470.roa (hash: 6DgsyUX2uyntOPFl8yDMIgTXXXs0mzyQ219673BzCzU=) 3: CdQNI5gcW0_1cf24cLvP-tL_omw.roa (hash: fyArCRfx7SbzhmzmpSevkzJflw0c7SkqK2TimwbjqzM=) 4: RXJMzhMtehSuCCi6uqljNw1_L-s.roa (hash: Xot9S/JUju+/cZl9baS7ZUR4Rh18U5S5qk4hiX6txpg=) 5: TpqMtUwJukfz53BZIUdbM-kP9dU.roa (hash: sJ+1FquCHUKBx1oFow8K9ca95AgoJ61IjnusPLlcDN8=) 6: WEKuOaRTTX2rTln9asflqP9Y2Os.roa (hash: EcqtEEKcbvmbmPvboEcXGauHM+e7HHmS4JSP0Le2t4o=) 7: XmOvv05xULfAWuDqrX7juNO-0qI.roa (hash: eJeMTOSpJLyqSZNQmSL2OZUvlINOSkmPnV9aTneLjHg=) 8: Xzib8AfEYqY2cHmuuM-ww_w5sW0.roa (hash: 6XHRFIs5VNl1aw2+x8Rz4IQniQIfYw9CyiplPPtk5bE=) 9: aMv6gEqWxpGKwwWm6t5nV_iaM3Q.roa (hash: +a48j1hsLG2vzEIY2MRVBswlr1+jm51V+Dk+4EhL/9Y=) 10: h3itgWjgnPktTgSYJX-OnOq_BpI.crl (hash: Qg4WKsaDZjQTY93Q5XG/C2gZ0UsyEMBAI/qhmqubOOc=) 11: jF6aKXBNyHTawjaz9GVexS6_Vps.roa (hash: FiDTfOMoZak8gOhtJT/8yhL0tIdZjUn13AvzOxfMN0E=) 12: s6XbpS6zvG-OGcqP78qsGOOoOlQ.roa (hash: vai/46FuXyssCtnAk+MIcYY2mUqRBxwISqAf2lFmzsg=) 13: vsuobB7Q7M7H0d2b7icsBX46rF8.roa (hash: 7WzZ613I/LXa4Zefx9tEqY2ZhSRre3hj1QC98fA5RuY=) 14: xP11eIeQX9x-FJdxDPaYbALauGA.roa (hash: X/B/3lK+XxCa5BQgDlvPLTFtIiO9rYw/6L5OCGSXKQE=) 15: xT7aM3kUy4b46Qb4CAkkSam9t5g.roa (hash: Rfd0mKt9HyiAqh5+s2geHZ1SUFHa0fSNkwoTUgmAYpI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.mft rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 22:02:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:b8:90:46:3d:a5:e7:c8:c7:e7:ec:0e:25:8b:cc:ab:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692 Validity Not Before: Jun 28 22:02:32 2025 GMT Not After : Jun 29 22:02:32 2025 GMT Subject: CN=36a2d55977abf2a9cca294800a9ab6e3ce639f31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:29:37:75:79:6e:99:e7:7c:e3:4e:a0:53:ac: 90:3a:3e:62:90:be:cb:cc:cd:05:fb:53:c3:4c:60: e8:cd:77:bb:2c:ca:5a:36:1c:01:e9:08:ff:72:32: 39:15:91:b8:a2:7a:ff:12:86:0f:34:74:17:a9:52: ce:92:6c:a2:e9:cf:8d:17:2b:97:bc:bb:21:ff:bd: 11:6a:44:49:ab:3e:e2:ae:37:de:ce:ac:9b:a6:0f: 4a:75:7f:e4:59:2a:43:63:fd:60:a7:48:43:df:2d: 34:1e:fd:7a:3e:91:af:4b:2c:0b:27:67:3b:47:48: e5:41:83:e5:4c:67:9d:5a:75:35:45:a7:54:e6:d0: 69:82:11:9e:8d:eb:72:e5:53:2d:89:ee:24:33:32: fc:59:94:a7:cc:6d:1c:a9:1c:bd:f2:e7:9d:6e:33: 1e:51:ef:b9:54:c2:7b:ae:f4:c1:7d:b3:bb:c2:9e: 5a:40:19:2c:fc:29:ac:e0:a5:e6:13:c7:3a:b1:c4: 96:55:62:e1:b2:20:1b:aa:6c:94:c5:5a:7b:0c:30: 9a:41:df:fe:40:63:20:a2:fe:f7:a7:81:29:05:60: 55:97:23:4e:fe:d3:68:24:2e:57:60:24:59:44:f6: 58:23:6a:29:09:6e:d5:ff:f3:09:27:7c:fc:96:72: 1a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:A2:D5:59:77:AB:F2:A9:CC:A2:94:80:0A:9A:B6:E3:CE:63:9F:31 X509v3 Authority Key Identifier: keyid:87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:a0:d1:f8:31:db:e0:6b:78:d1:40:c5:1f:bd:e5:d8:4a:7f: 20:51:c3:16:64:b0:c4:98:bb:1d:55:2c:b1:a5:c4:98:1d:ce: c3:03:1f:d4:a8:46:76:d7:65:f0:67:e3:58:d1:4c:47:7d:73: df:86:d8:cd:33:28:d2:91:5c:a9:91:1f:8b:d9:2d:9e:26:9e: 76:87:77:c6:dc:61:1f:1f:5b:ef:9d:42:e6:28:dc:f2:5c:dc: 4c:c7:ba:5e:a0:c1:85:ef:3c:1d:68:e0:b3:bc:db:89:dc:0f: 4d:4d:b9:30:50:26:32:d8:fc:d3:86:12:8d:00:ea:b1:89:4c: 60:de:31:b4:44:6c:f3:a2:92:04:ec:27:8c:27:c9:5c:0b:5a: d8:65:c2:11:c0:b7:dc:7f:6b:da:b3:b4:48:1c:24:33:2f:03: f2:8a:c2:d6:e5:af:92:ba:d0:8d:15:15:47:96:c6:a3:a5:80: 26:68:ad:4b:c5:76:3f:b7:22:56:e4:ba:46:23:cb:d8:b4:9b: 9c:49:c6:92:35:b2:73:a7:09:50:e6:64:f9:23:7d:5b:af:06: e7:0f:d4:a3:60:c5:30:62:c0:1a:1e:ff:a0:3e:cc:19:2f:37: a2:e1:3f:8b:6f:ad:0d:b1:6c:eb:63:e8:85:f6:29:10:63:e4: 42:93:dc:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZe4kEY9pefIx+fsDiWLzKv6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3NzhhZDgxNjhlMDljZjkyZDRlMDQ5ODI1N2Y4ZTljZWFi ZjA2OTIwHhcNMjUwNjI4MjIwMjMyWhcNMjUwNjI5MjIwMjMyWjAzMTEwLwYDVQQD EygzNmEyZDU1OTc3YWJmMmE5Y2NhMjk0ODAwYTlhYjZlM2NlNjM5ZjMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmik3dXlumed8406gU6yQOj5ikL7L zM0F+1PDTGDozXe7LMpaNhwB6Qj/cjI5FZG4onr/EoYPNHQXqVLOkmyi6c+NFyuX vLsh/70RakRJqz7irjfezqybpg9KdX/kWSpDY/1gp0hD3y00Hv16PpGvSywLJ2c7 R0jlQYPlTGedWnU1RadU5tBpghGejety5VMtie4kMzL8WZSnzG0cqRy98uedbjMe Ue+5VMJ7rvTBfbO7wp5aQBks/Cms4KXmE8c6scSWVWLhsiAbqmyUxVp7DDCaQd/+ QGMgov73p4EpBWBVlyNO/tNoJC5XYCRZRPZYI2opCW7V//MJJ3z8lnIaIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDai1Vl3q/KpzKKUgAqatuPOY58xMB8GA1UdIwQY MBaAFId4rYFo4Jz5LU4EmCV/jpzqvwaSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDNpdGdXamduUGt0VGdTWUpYLU9uT3FfQnBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9mMDdmOGQtOWRmMC00OWM2LWIyZjAt YWE5ZDY5MTgxMWU3LzEvaDNpdGdXamduUGt0VGdTWUpYLU9uT3FfQnBJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi9mMDdmOGQtOWRmMC00OWM2LWIyZjAtYWE5ZDY5MTgxMWU3 LzEvaDNpdGdXamduUGt0VGdTWUpYLU9uT3FfQnBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgqDR+DHb 4Gt40UDFH73l2Ep/IFHDFmSwxJi7HVUssaXEmB3OwwMf1KhGdtdl8GfjWNFMR31z 34bYzTMo0pFcqZEfi9ktniaedod3xtxhHx9b751C5ijc8lzcTMe6XqDBhe88HWjg s7zbidwPTU25MFAmMtj804YSjQDqsYlMYN4xtERs86KSBOwnjCfJXAta2GXCEcC3 3H9r2rO0SBwkMy8D8orC1uWvkrrQjRUVR5bGo6WAJmitS8V2P7ciVuS6RiPL2LSb nEnGkjWyc6cJUOZk+SN9W68G5w/Uo2DFMGLAGh7/oD7MGS83ouE/i2+tDbFs62Po hfYpEGPkQpPcuQ== -----END CERTIFICATE-----Generated at Sun Jun 29 06:17:57 2025 by rpki-client