$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft File: Kfp91j8uLYe194UAk8dDu_vhTkQ.mft (raw, json) Hash identifier: 1xugvpZvmuZMPCLr72ZkL+gjtwfMsundTWgI8ii9+G0= Subject key identifier: 59:FD:31:60:14:78:7E:39:98:59:5E:5D:B4:A8:49:1B:66:F2:0A:AF Authority key identifier: 29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 Certificate issuer: /CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Certificate serial: 0197B8FCE579D45E139B1C2FEF9CBF4F4126 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft Manifest number: 0467 Signing time: Sun 29 Jun 2025 00:01:10 +0000 Manifest this update: Sun 29 Jun 2025 00:01:10 +0000 Manifest next update: Mon 30 Jun 2025 00:01:10 +0000 Files and hashes: 1: 05o0ilxpLPFj724SFa-brN8vzXk.roa (hash: CPN9MrS7MYDAN7zH2nr9vN3ZoOoKTAOXjde0z1Y3r4g=) 2: 5h88FMdyJ4BKxPsdcgHQyCeiggw.roa (hash: Owv+GMEcs1uONJHFnOZ4mKs3NxskXYOAjZpyCXtz47Y=) 3: 7HfOX3VXYMpd2AIPBc7-S-uMs_8.roa (hash: k5M6cr3ux0zaC3HrK4AQu/eEDnL7gIrijJy4BZ0Nw4M=) 4: 7OOt-MnHsX07hiPdKHIMZaJ8wrg.roa (hash: 7nZ90mtRGZWhPbm1Puw7IzZkWIgR1R3W35D51WFY05w=) 5: BT9PpbhARp2PKEupubiiio8TvBc.roa (hash: PoRHUsj11iEWOHUhXg6p185DLswF97IfYO5dpNwM+4k=) 6: F1OWe033_DuZ-JjrisCh6PYvi1s.roa (hash: bLONjsizRZ/N6QYxCW6KHMn5K6t8a7PJWP3/t57vEJk=) 7: K3PHjFr5iZQBePAHzZD7020H3CQ.roa (hash: cYqNDwyqOAThtjZwtvIGK4yhgMYUiG7kHacZddA60SQ=) 8: Kfp91j8uLYe194UAk8dDu_vhTkQ.crl (hash: QVQaZ5HJWu7S/GJGFB8GUFhfhWHvN+2JZUthoCqReVs=) 9: PwDUcjqBkiIEULzXxKTVGmmTWG4.roa (hash: FRJ/j45X7Ib31MDYnkP96sRJLV09a4YTIEwHH8GRm+c=) 10: SGJaxM1tftN6eWW_JhWZIZdq6Hs.roa (hash: i3+GB/wkLsPOj8TleSkbJUTDI0kj7dMA6dFb0QRWP+8=) 11: X-V1c33BeHLMq6YPZ6efCsl3cMM.roa (hash: qD2GqEyAmd2okDBw6OR3DlzX+O8r0bDHBHVLHEg9U3g=) 12: X6A7ZOxQkF-N5TBF6hNZ0D-sPxQ.roa (hash: sOJamuYIhYJWJLrvAE1wd1xA2gh7NgXmer7n43KBLdc=) 13: Y68HM_eE8K1w4SS6fxm68_4816Q.roa (hash: j5XSBxx8t0t2IG8jaeix/JPoU5Vp2pcHE0yvoVN43nY=) 14: eM7RoSEq3C715iKtcwBUqsiVTDM.roa (hash: U7xNVv9g2fKrI4EOjzXQcIX1ekwna/aEJqfXxfKaR90=) 15: u-M1H4DlyfJcf3cI4KPf60AAf5E.roa (hash: rqvHkJ1B+GOatMUS6IQfjBMvmK91Ea22MfD3TS1yuVM=) 16: us6ukJjPwguMUHmhc8SpjnjeHOE.roa (hash: RuHDwxtF2zmik+S8Nhu0t8NrGvwHVQJraNmp1nORf/c=) 17: zvMqPtiLMOCgjOxqm6euJp83YNA.roa (hash: jIvx8RFgHAKB/kauSEcxDljiE/0sDn1/Jfcw3a0iCKU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 19:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:b8:fc:e5:79:d4:5e:13:9b:1c:2f:ef:9c:bf:4f:41:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Validity Not Before: Jun 29 00:01:10 2025 GMT Not After : Jun 30 00:01:10 2025 GMT Subject: CN=59fd316014787e3998595e5db4a8491b66f20aaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:41:38:9d:f1:b3:e3:c8:1b:7e:3f:25:c5:55: 03:a5:8a:bd:a3:fe:b5:df:f7:7d:f9:48:6c:55:c7: 4d:46:5b:67:a2:7c:58:23:16:5c:81:b1:fb:a8:11: 01:de:cb:30:f5:7a:07:94:8f:74:fe:81:94:5f:a3: ff:b3:6f:30:3e:eb:12:1f:c8:62:d2:c0:d4:7d:66: c5:c6:e7:b6:42:f9:fd:6b:12:e9:10:e3:21:69:45: 4f:52:04:c3:49:2b:25:70:29:35:35:45:72:e4:48: dc:e8:15:7d:e5:03:b7:16:c6:cb:8a:a8:a5:99:d7: 88:67:bf:08:a2:19:c5:12:74:4b:07:4e:bf:aa:57: 43:d0:d2:8f:ae:3d:77:c9:41:14:9e:26:ba:54:df: 06:60:4d:4e:9a:4a:70:6f:d5:a2:50:e0:5b:65:72: 5e:bd:c4:32:4f:8a:a6:5d:ca:10:5b:17:91:aa:8c: 44:5d:1e:fd:cf:9f:75:ee:31:f5:a0:e7:ab:49:ec: 56:6d:2c:7a:b5:4a:ad:79:24:c6:96:46:7d:1c:ba: 1a:50:7c:34:88:f4:9a:4e:92:f8:d1:c4:25:93:09: ae:6f:fd:87:e4:bb:5a:5d:a9:87:c0:1f:30:52:bd: 97:b9:6f:3c:f7:19:0b:7a:20:27:91:37:6e:ea:42: 42:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:FD:31:60:14:78:7E:39:98:59:5E:5D:B4:A8:49:1B:66:F2:0A:AF X509v3 Authority Key Identifier: keyid:29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:2a:c5:08:eb:99:6b:df:b1:53:2b:fe:1a:bd:54:9c:47:15: 72:c7:ea:50:65:60:0e:eb:92:c2:d6:9c:af:57:df:6b:d2:49: 20:39:0b:00:20:8c:f6:08:0a:3c:28:6d:7c:34:a8:64:4f:7c: 20:39:3b:fa:2d:57:b3:75:18:b1:2c:02:61:b5:9f:9d:84:14: dc:b2:d6:69:67:64:03:89:9a:e7:d6:4a:65:eb:59:67:af:b3: 08:f9:ba:62:60:08:d3:35:88:dc:cc:91:83:ea:58:ee:8b:6d: 30:20:d4:d5:13:47:aa:c4:16:5c:96:f0:15:94:fb:42:32:f7: 4e:c4:4c:bf:7e:db:24:5a:76:64:66:a6:7d:00:db:46:b3:1d: 1e:63:5d:5d:8b:40:fe:b9:84:d6:b8:73:75:df:4a:f0:66:b1: 58:78:4f:62:55:4b:18:34:6a:5e:4e:72:05:35:d1:9c:83:f5: 42:19:36:3e:82:ed:7f:f5:0f:55:e7:c1:cd:47:a0:1e:f2:f4: f1:25:ab:59:c0:34:fb:bc:9f:dd:a4:e7:a2:48:f2:37:61:7f: 18:5c:93:9d:07:26:34:d4:27:cc:c0:65:75:e3:18:e0:2d:6e: b5:62:b6:5f:f2:9e:bf:e6:b3:2e:6b:c3:e5:be:98:a2:02:dd: 56:aa:11:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZe4/OV51F4Tmxwv75y/T0EmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZmE3ZGQ2M2YyZTJkODdiNWY3ODUwMDkzYzc0M2JiZmJl MTRlNDQwHhcNMjUwNjI5MDAwMTEwWhcNMjUwNjMwMDAwMTEwWjAzMTEwLwYDVQQD Eyg1OWZkMzE2MDE0Nzg3ZTM5OTg1OTVlNWRiNGE4NDkxYjY2ZjIwYWFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzUE4nfGz48gbfj8lxVUDpYq9o/61 3/d9+UhsVcdNRltnonxYIxZcgbH7qBEB3ssw9XoHlI90/oGUX6P/s28wPusSH8hi 0sDUfWbFxue2Qvn9axLpEOMhaUVPUgTDSSslcCk1NUVy5Ejc6BV95QO3FsbLiqil mdeIZ78IohnFEnRLB06/qldD0NKPrj13yUEUnia6VN8GYE1Omkpwb9WiUOBbZXJe vcQyT4qmXcoQWxeRqoxEXR79z5917jH1oOerSexWbSx6tUqteSTGlkZ9HLoaUHw0 iPSaTpL40cQlkwmub/2H5LtaXamHwB8wUr2XuW889xkLeiAnkTdu6kJCMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFn9MWAUeH45mFleXbSoSRtm8gqvMB8GA1UdIwQY MBaAFCn6fdY/Li2HtfeFAJPHQ7v74U5EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUt NzlmN2I2ZWE3YzE0LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUtNzlmN2I2ZWE3YzE0 LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACCrFCOuZ a9+xUyv+Gr1UnEcVcsfqUGVgDuuSwtacr1ffa9JJIDkLACCM9ggKPChtfDSoZE98 IDk7+i1Xs3UYsSwCYbWfnYQU3LLWaWdkA4ma59ZKZetZZ6+zCPm6YmAI0zWI3MyR g+pY7ottMCDU1RNHqsQWXJbwFZT7QjL3TsRMv37bJFp2ZGamfQDbRrMdHmNdXYtA /rmE1rhzdd9K8GaxWHhPYlVLGDRqXk5yBTXRnIP1Qhk2PoLtf/UPVefBzUegHvL0 8SWrWcA0+7yf3aTnokjyN2F/GFyTnQcmNNQnzMBldeMY4C1utWK2X/Kev+azLmvD 5b6YogLdVqoRoA== -----END CERTIFICATE-----Generated at Sun Jun 29 04:21:21 2025 by rpki-client