$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft File: Kfp91j8uLYe194UAk8dDu_vhTkQ.mft (raw, json) Hash identifier: Qhz2Qc0sRtChhFX+YTQu1dkLFK2qtEkeScU/ste6w7w= Subject key identifier: CE:8F:14:54:0A:46:D1:94:E3:36:97:DD:3A:F7:AA:B6:73:F7:86:F1 Authority key identifier: 29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 Certificate issuer: /CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Certificate serial: 0198D4E026419D4A936C404FB0CB4CBB789F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft Manifest number: 04FA Signing time: Sat 23 Aug 2025 03:01:56 +0000 Manifest this update: Sat 23 Aug 2025 03:01:56 +0000 Manifest next update: Sun 24 Aug 2025 03:01:56 +0000 Files and hashes: 1: 05o0ilxpLPFj724SFa-brN8vzXk.roa (hash: CPN9MrS7MYDAN7zH2nr9vN3ZoOoKTAOXjde0z1Y3r4g=) 2: 5h88FMdyJ4BKxPsdcgHQyCeiggw.roa (hash: Owv+GMEcs1uONJHFnOZ4mKs3NxskXYOAjZpyCXtz47Y=) 3: 7HfOX3VXYMpd2AIPBc7-S-uMs_8.roa (hash: k5M6cr3ux0zaC3HrK4AQu/eEDnL7gIrijJy4BZ0Nw4M=) 4: 7OOt-MnHsX07hiPdKHIMZaJ8wrg.roa (hash: 7nZ90mtRGZWhPbm1Puw7IzZkWIgR1R3W35D51WFY05w=) 5: BT9PpbhARp2PKEupubiiio8TvBc.roa (hash: PoRHUsj11iEWOHUhXg6p185DLswF97IfYO5dpNwM+4k=) 6: F1OWe033_DuZ-JjrisCh6PYvi1s.roa (hash: bLONjsizRZ/N6QYxCW6KHMn5K6t8a7PJWP3/t57vEJk=) 7: K3PHjFr5iZQBePAHzZD7020H3CQ.roa (hash: cYqNDwyqOAThtjZwtvIGK4yhgMYUiG7kHacZddA60SQ=) 8: Kfp91j8uLYe194UAk8dDu_vhTkQ.crl (hash: COJ+u1j+y+O+kzAGi1jrM0e/o3foCtzOXuhGz2atc90=) 9: PwDUcjqBkiIEULzXxKTVGmmTWG4.roa (hash: FRJ/j45X7Ib31MDYnkP96sRJLV09a4YTIEwHH8GRm+c=) 10: SGJaxM1tftN6eWW_JhWZIZdq6Hs.roa (hash: i3+GB/wkLsPOj8TleSkbJUTDI0kj7dMA6dFb0QRWP+8=) 11: X-V1c33BeHLMq6YPZ6efCsl3cMM.roa (hash: qD2GqEyAmd2okDBw6OR3DlzX+O8r0bDHBHVLHEg9U3g=) 12: X6A7ZOxQkF-N5TBF6hNZ0D-sPxQ.roa (hash: sOJamuYIhYJWJLrvAE1wd1xA2gh7NgXmer7n43KBLdc=) 13: Y68HM_eE8K1w4SS6fxm68_4816Q.roa (hash: j5XSBxx8t0t2IG8jaeix/JPoU5Vp2pcHE0yvoVN43nY=) 14: eM7RoSEq3C715iKtcwBUqsiVTDM.roa (hash: U7xNVv9g2fKrI4EOjzXQcIX1ekwna/aEJqfXxfKaR90=) 15: u-M1H4DlyfJcf3cI4KPf60AAf5E.roa (hash: rqvHkJ1B+GOatMUS6IQfjBMvmK91Ea22MfD3TS1yuVM=) 16: us6ukJjPwguMUHmhc8SpjnjeHOE.roa (hash: RuHDwxtF2zmik+S8Nhu0t8NrGvwHVQJraNmp1nORf/c=) 17: zvMqPtiLMOCgjOxqm6euJp83YNA.roa (hash: jIvx8RFgHAKB/kauSEcxDljiE/0sDn1/Jfcw3a0iCKU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 03:01:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:d4:e0:26:41:9d:4a:93:6c:40:4f:b0:cb:4c:bb:78:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Validity Not Before: Aug 23 03:01:56 2025 GMT Not After : Aug 24 03:01:56 2025 GMT Subject: CN=ce8f14540a46d194e33697dd3af7aab673f786f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:82:16:95:3d:e6:76:4f:a6:91:0a:21:7d:d7: 61:ce:51:1a:2c:eb:a3:24:a0:7b:1c:a1:76:73:3f: 5e:82:8f:a6:9a:33:93:38:15:94:25:40:01:2f:08: 15:07:05:de:bc:01:ba:6d:21:51:0b:5c:81:88:c7: 09:71:4d:f1:5f:8c:b0:b6:0d:36:4c:e8:8b:f0:43: 89:26:7e:2a:3e:71:90:f6:fc:70:f6:6c:22:3b:bd: e1:1a:dd:a7:bd:e1:33:cd:b4:13:a7:a6:33:a8:c7: 78:f7:aa:90:71:fd:60:1d:84:81:16:ad:56:6a:a9: c3:dc:22:f0:65:60:bc:21:4d:32:49:cc:3b:58:ec: aa:0f:cf:4a:61:64:11:dc:69:5a:4f:95:16:07:a4: 0e:8a:bb:22:7d:90:89:b4:f3:48:3e:87:e3:45:2b: 69:a0:5d:10:62:20:d7:71:ac:3f:3b:d6:2c:53:ad: 53:c1:87:8a:c7:39:fd:2d:49:c6:ef:8f:6e:a7:2b: 30:d6:ed:f2:da:3b:92:07:63:b3:e1:9e:55:e9:5b: 81:eb:a0:39:80:76:70:21:08:05:44:1b:bc:f5:50: 17:13:10:ab:66:e1:1e:68:20:0f:00:9a:77:24:2f: fb:25:48:e0:ab:c2:9e:3d:9d:8f:71:ba:e4:85:3b: 6d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:8F:14:54:0A:46:D1:94:E3:36:97:DD:3A:F7:AA:B6:73:F7:86:F1 X509v3 Authority Key Identifier: keyid:29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:52:68:9c:7a:88:d8:b2:e2:a8:74:9f:c1:06:05:68:89:cc: f7:b0:b3:43:17:10:d6:1d:28:b3:4a:c0:39:00:d5:b1:e2:b4: fd:89:60:31:3c:22:7b:87:bc:8d:e6:5d:5e:46:b4:da:12:2d: 32:f2:c6:03:5c:a5:1f:23:36:21:d1:19:b4:d5:7f:de:97:7c: d6:c7:08:68:1a:f7:14:07:a7:c8:1a:71:3b:f3:9d:ed:2d:81: 49:76:6c:44:f9:41:32:62:df:8d:a7:22:15:16:a0:fa:b6:05: 62:54:77:95:17:0e:cb:90:55:aa:2a:72:cf:89:71:cb:9a:c1: fd:8f:63:17:3c:97:80:db:17:ba:15:ab:f9:9b:e7:c2:4c:16: 96:0c:e2:08:d7:13:25:04:98:e5:f5:21:bc:53:56:3e:d6:da: 06:3f:a6:d1:2d:c1:1a:8b:a7:9b:1a:a4:14:f6:e3:7c:bf:b5: 68:64:d0:6d:12:c7:e7:aa:f8:7c:3a:fe:55:11:55:dd:c4:2a: c4:49:28:cb:ee:8e:b8:b1:00:d9:cf:f6:94:f0:9f:93:73:f8: c8:5d:f3:ed:ed:cc:e8:db:3d:45:68:85:cd:9b:6d:d0:de:ab: 67:53:93:eb:00:e6:bd:70:9e:a3:b0:3b:3b:a7:5b:1e:8d:dd: 8f:95:f9:a4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjU4CZBnUqTbEBPsMtMu3ifMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZmE3ZGQ2M2YyZTJkODdiNWY3ODUwMDkzYzc0M2JiZmJl MTRlNDQwHhcNMjUwODIzMDMwMTU2WhcNMjUwODI0MDMwMTU2WjAzMTEwLwYDVQQD EyhjZThmMTQ1NDBhNDZkMTk0ZTMzNjk3ZGQzYWY3YWFiNjczZjc4NmYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl4IWlT3mdk+mkQohfddhzlEaLOuj JKB7HKF2cz9ego+mmjOTOBWUJUABLwgVBwXevAG6bSFRC1yBiMcJcU3xX4ywtg02 TOiL8EOJJn4qPnGQ9vxw9mwiO73hGt2nveEzzbQTp6YzqMd496qQcf1gHYSBFq1W aqnD3CLwZWC8IU0yScw7WOyqD89KYWQR3GlaT5UWB6QOirsifZCJtPNIPofjRStp oF0QYiDXcaw/O9YsU61TwYeKxzn9LUnG749upysw1u3y2juSB2Oz4Z5V6VuB66A5 gHZwIQgFRBu89VAXExCrZuEeaCAPAJp3JC/7JUjgq8KePZ2PcbrkhTtt9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM6PFFQKRtGU4zaX3Tr3qrZz94bxMB8GA1UdIwQY MBaAFCn6fdY/Li2HtfeFAJPHQ7v74U5EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUt NzlmN2I2ZWE3YzE0LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUtNzlmN2I2ZWE3YzE0 LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEVJonHqI 2LLiqHSfwQYFaInM97CzQxcQ1h0os0rAOQDVseK0/YlgMTwie4e8jeZdXka02hIt MvLGA1ylHyM2IdEZtNV/3pd81scIaBr3FAenyBpxO/Od7S2BSXZsRPlBMmLfjaci FRag+rYFYlR3lRcOy5BVqipyz4lxy5rB/Y9jFzyXgNsXuhWr+ZvnwkwWlgziCNcT JQSY5fUhvFNWPtbaBj+m0S3BGounmxqkFPbjfL+1aGTQbRLH56r4fDr+VRFV3cQq xEkoy+6OuLEA2c/2lPCfk3P4yF3z7e3M6Ns9RWiFzZtt0N6rZ1OT6wDmvXCeo7A7 O6dbHo3dj5X5pA== -----END CERTIFICATE-----Generated at Sat Aug 23 12:12:49 2025 by rpki-client