$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft File: Kfp91j8uLYe194UAk8dDu_vhTkQ.mft (raw, json) Hash identifier: XycCGo4aFWJeGT3qoO9qwM0B3rT4m6V1KSvgfk3LWy0= Subject key identifier: DA:83:EE:B0:9A:00:97:E4:33:8E:BF:4E:03:56:A0:E9:37:20:CD:2F Authority key identifier: 29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 Certificate issuer: /CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Certificate serial: 0199FE474C3E7EE34934CC3762531178A598 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft Manifest number: 0594 Signing time: Sun 19 Oct 2025 21:01:49 +0000 Manifest this update: Sun 19 Oct 2025 21:01:49 +0000 Manifest next update: Mon 20 Oct 2025 21:01:49 +0000 Files and hashes: 1: 05o0ilxpLPFj724SFa-brN8vzXk.roa (hash: CPN9MrS7MYDAN7zH2nr9vN3ZoOoKTAOXjde0z1Y3r4g=) 2: 5h88FMdyJ4BKxPsdcgHQyCeiggw.roa (hash: Owv+GMEcs1uONJHFnOZ4mKs3NxskXYOAjZpyCXtz47Y=) 3: 7HfOX3VXYMpd2AIPBc7-S-uMs_8.roa (hash: k5M6cr3ux0zaC3HrK4AQu/eEDnL7gIrijJy4BZ0Nw4M=) 4: 7OOt-MnHsX07hiPdKHIMZaJ8wrg.roa (hash: 7nZ90mtRGZWhPbm1Puw7IzZkWIgR1R3W35D51WFY05w=) 5: BT9PpbhARp2PKEupubiiio8TvBc.roa (hash: PoRHUsj11iEWOHUhXg6p185DLswF97IfYO5dpNwM+4k=) 6: F1OWe033_DuZ-JjrisCh6PYvi1s.roa (hash: bLONjsizRZ/N6QYxCW6KHMn5K6t8a7PJWP3/t57vEJk=) 7: K3PHjFr5iZQBePAHzZD7020H3CQ.roa (hash: cYqNDwyqOAThtjZwtvIGK4yhgMYUiG7kHacZddA60SQ=) 8: Kfp91j8uLYe194UAk8dDu_vhTkQ.crl (hash: Hbt3zX2YM3mtcvfH2lTfDtcpu4p2U0d+EEb6DaLvZgQ=) 9: PwDUcjqBkiIEULzXxKTVGmmTWG4.roa (hash: FRJ/j45X7Ib31MDYnkP96sRJLV09a4YTIEwHH8GRm+c=) 10: SGJaxM1tftN6eWW_JhWZIZdq6Hs.roa (hash: i3+GB/wkLsPOj8TleSkbJUTDI0kj7dMA6dFb0QRWP+8=) 11: X-V1c33BeHLMq6YPZ6efCsl3cMM.roa (hash: qD2GqEyAmd2okDBw6OR3DlzX+O8r0bDHBHVLHEg9U3g=) 12: X6A7ZOxQkF-N5TBF6hNZ0D-sPxQ.roa (hash: sOJamuYIhYJWJLrvAE1wd1xA2gh7NgXmer7n43KBLdc=) 13: Y68HM_eE8K1w4SS6fxm68_4816Q.roa (hash: j5XSBxx8t0t2IG8jaeix/JPoU5Vp2pcHE0yvoVN43nY=) 14: eM7RoSEq3C715iKtcwBUqsiVTDM.roa (hash: U7xNVv9g2fKrI4EOjzXQcIX1ekwna/aEJqfXxfKaR90=) 15: u-M1H4DlyfJcf3cI4KPf60AAf5E.roa (hash: rqvHkJ1B+GOatMUS6IQfjBMvmK91Ea22MfD3TS1yuVM=) 16: us6ukJjPwguMUHmhc8SpjnjeHOE.roa (hash: RuHDwxtF2zmik+S8Nhu0t8NrGvwHVQJraNmp1nORf/c=) 17: zvMqPtiLMOCgjOxqm6euJp83YNA.roa (hash: jIvx8RFgHAKB/kauSEcxDljiE/0sDn1/Jfcw3a0iCKU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 20:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:fe:47:4c:3e:7e:e3:49:34:cc:37:62:53:11:78:a5:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Validity Not Before: Oct 19 21:01:49 2025 GMT Not After : Oct 20 21:01:49 2025 GMT Subject: CN=da83eeb09a0097e4338ebf4e0356a0e93720cd2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ab:66:e3:cc:d2:97:b3:d7:d8:20:eb:1f:c4: c7:a1:d1:a6:50:c8:ac:f0:cc:f2:6e:0c:ee:47:33: f5:c3:66:f0:e9:40:af:9e:05:9a:19:aa:53:77:a0: 99:a2:9e:5e:6d:de:56:87:dc:dc:cf:55:73:7d:ed: 25:27:d5:9e:13:9d:31:52:f5:74:30:70:98:2c:10: 7e:47:51:0f:cb:e7:d5:11:00:2a:91:5d:20:7d:d6: 61:92:b6:de:50:b9:b0:69:22:b5:d6:f2:77:ff:c1: 57:27:22:d2:54:b6:b8:32:70:91:0d:70:8e:d7:c2: bc:ad:0d:f7:81:8c:8f:d4:ae:35:42:5a:b1:d0:b0: a3:87:7d:6c:e7:e2:e1:65:88:11:3b:5a:93:fc:cf: 54:b4:1e:26:8b:41:df:a5:c0:d2:fe:0d:72:e6:9d: 9c:70:55:73:dc:a6:42:7d:71:2d:b2:ec:09:0d:df: c7:1f:51:12:bb:04:05:73:41:aa:23:8d:5c:74:81: 03:69:c4:cf:b1:33:9a:9f:72:b3:7c:94:06:f4:aa: 6a:bf:b7:3b:df:c6:18:97:81:b0:45:b4:6d:a1:de: d4:47:f6:b0:8a:63:14:64:db:b9:ed:0f:6c:4a:c9: 8b:51:c2:01:2a:ba:4d:b1:40:4e:23:af:96:ef:f2: fb:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:83:EE:B0:9A:00:97:E4:33:8E:BF:4E:03:56:A0:E9:37:20:CD:2F X509v3 Authority Key Identifier: keyid:29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:41:9d:f0:bd:ab:c5:44:87:c0:32:48:f8:7e:52:d1:65:17: 1e:44:00:82:0d:b1:14:f7:62:40:33:54:43:d0:06:0d:92:b1: 6f:75:de:2b:38:2c:35:2f:f0:81:ed:34:00:c9:20:84:e0:d7: 88:41:c5:48:a6:61:a9:f7:45:35:ea:ba:c0:a2:06:7d:62:4a: cb:ae:dc:4e:0d:20:a4:a0:f6:1f:24:25:51:ab:35:ec:67:1c: d5:d2:b5:e2:10:ba:b8:00:e3:84:71:3f:cb:40:62:ac:c5:62: 55:77:cc:a5:20:e6:36:1b:88:b2:bf:4f:48:07:f6:01:d3:72: cf:56:bc:6a:b3:b8:14:5d:5d:9f:d0:17:82:8a:85:a7:87:22: a3:88:18:d7:9f:6d:82:c8:9c:14:03:89:4a:70:dd:17:2b:4d: 1b:95:6a:1f:79:8d:27:c6:96:f1:cc:34:34:3e:10:9a:8d:2a: 68:85:4c:37:b3:a8:5e:d3:02:f4:c8:80:12:71:2d:bc:d7:03: 24:f6:b7:df:68:37:29:a5:75:e0:6e:03:2e:dc:d7:f2:ef:37: d9:5e:64:e6:58:5e:3d:ab:a0:3e:42:20:f1:4d:4a:e2:28:92: be:52:9e:19:e5:94:64:6c:76:76:e5:ad:7f:8e:88:64:12:9c: 2b:33:1e:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZn+R0w+fuNJNMw3YlMReKWYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZmE3ZGQ2M2YyZTJkODdiNWY3ODUwMDkzYzc0M2JiZmJl MTRlNDQwHhcNMjUxMDE5MjEwMTQ5WhcNMjUxMDIwMjEwMTQ5WjAzMTEwLwYDVQQD EyhkYTgzZWViMDlhMDA5N2U0MzM4ZWJmNGUwMzU2YTBlOTM3MjBjZDJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs6tm48zSl7PX2CDrH8THodGmUMis 8MzybgzuRzP1w2bw6UCvngWaGapTd6CZop5ebd5Wh9zcz1Vzfe0lJ9WeE50xUvV0 MHCYLBB+R1EPy+fVEQAqkV0gfdZhkrbeULmwaSK11vJ3/8FXJyLSVLa4MnCRDXCO 18K8rQ33gYyP1K41Qlqx0LCjh31s5+LhZYgRO1qT/M9UtB4mi0HfpcDS/g1y5p2c cFVz3KZCfXEtsuwJDd/HH1ESuwQFc0GqI41cdIEDacTPsTOan3KzfJQG9Kpqv7c7 38YYl4GwRbRtod7UR/awimMUZNu57Q9sSsmLUcIBKrpNsUBOI6+W7/L7AwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNqD7rCaAJfkM46/TgNWoOk3IM0vMB8GA1UdIwQY MBaAFCn6fdY/Li2HtfeFAJPHQ7v74U5EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUt NzlmN2I2ZWE3YzE0LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUtNzlmN2I2ZWE3YzE0 LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAokGd8L2r xUSHwDJI+H5S0WUXHkQAgg2xFPdiQDNUQ9AGDZKxb3XeKzgsNS/wge00AMkghODX iEHFSKZhqfdFNeq6wKIGfWJKy67cTg0gpKD2HyQlUas17Gcc1dK14hC6uADjhHE/ y0BirMViVXfMpSDmNhuIsr9PSAf2AdNyz1a8arO4FF1dn9AXgoqFp4cio4gY159t gsicFAOJSnDdFytNG5VqH3mNJ8aW8cw0ND4Qmo0qaIVMN7OoXtMC9MiAEnEtvNcD JPa332g3KaV14G4DLtzX8u832V5k5lhePaugPkIg8U1K4iiSvlKeGeWUZGx2duWt f46IZBKcKzMeNw== -----END CERTIFICATE-----Generated at Mon Oct 20 04:56:43 2025 by rpki-client