$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft File: 3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft (raw, json) Hash identifier: azpWH82p7OiVrB0LuGAv7cGcU4gv5O0cmalnQFpMOKg= Subject key identifier: D9:D0:18:B6:47:2C:3C:05:59:B7:18:20:BA:09:79:C3:70:AD:C8:9D Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89 Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589 Certificate serial: 0199FAD7AF5C529EB344AF2D8F378E827DD9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft Manifest number: 1654 Signing time: Sun 19 Oct 2025 05:01:03 +0000 Manifest this update: Sun 19 Oct 2025 05:01:03 +0000 Manifest next update: Mon 20 Oct 2025 05:01:03 +0000 Files and hashes: 1: 3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl (hash: lezlCoyWsjeoZh1hOHUquM+WA4lSF2NncBsYL/PbF34=) 2: 41fVJkrPbHKQA079D4QVuoSoMHA.roa (hash: sr+TybZqUtIImaDgTqztSGD1XE6oloq4BZ2M4Xpg+u0=) 3: 4pf6JhZ2ZrbzDs3KIhxGjElBlaw.roa (hash: vXT1uBYUu9e7P+u/IiXkrVdl2Zw3UbzSeW2UWFK34Jw=) 4: 6klSWkjjUTbGuPtDfN8cALab9cs.roa (hash: sdgQjkXScGhQKnR4al8+skMwfxtoqagBTslhZkfSKNY=) 5: B3w7E9gvZEzFwMrG99Xq-T1MEBw.roa (hash: X2c/+qNKKXp5+FBng9aKxlFFZbDBWHiqkfhHgQbP6bg=) 6: C2H1BSmYMIrZggVB3V-MZ8CR5SY.roa (hash: MAmDjDLmFQyW+O4vZbG4q4tWTwrvQlayeoQlXr+Fu/8=) 7: DJ2HKm_1c1O48zC-cc12FURV1-w.roa (hash: odPYR1sTJx4nskAcxBKfAydZplTxWpbfAnjmQhPzJX8=) 8: GmlPqmYgpg61oCrtTG9RzmgTZRQ.roa (hash: lOFhsoN8S3GIIvzatAuS7mkyT16CCVPA77MjKa8aWWc=) 9: RZCNuFYkMVfet6khSeCWtqT4r3s.roa (hash: bz5sfARWaL0oWhzQTAMOexVtHrjfBeAF+vBi8eYpl/U=) 10: Sn1YHf-JTelJa8AbFEu9eCrJc-Y.roa (hash: 4RQ4/nSSdbUjaSMtOe+F2ienAydzSYTXwrbRmuUcEJY=) 11: UE3TFsD19f6wQr0gTHDaiwhGdqA.roa (hash: h9a9K3MMF0WQfDnzSvLb5P+n54cp7dIKew88pGDYldk=) 12: VicyF_0e_bvvcn0fKM8q40zu1n8.roa (hash: C5AQCG/2PEYP519Z6IOs4YDYOnLl0s41qulpvbJvJ4g=) 13: _HxOSGDLp42EFmYvwzkWMgsUDRc.roa (hash: ld3Ed4rdMoSUbT+R2+5BJt8zZUTSFFBqMJ22iFdBG+s=) 14: cHLxjuzlgoGDINIVaFsru4PZ9BE.roa (hash: o3eUI2kqgbIKISwJ6D+XZ6uUN50wRiiahX5yY1sTPn4=) 15: lknEfiAWsTgVxunxpJ4Cim6vi_Y.roa (hash: 9nT6QBaPn6YGSLcfszLUc2cPb60rXG8wS9MlLTeVBhw=) 16: mdB3D_zcc3ZMQewiv3J0UZ_sUlo.roa (hash: NsB59ITpkzoeK9pRuPozIMWrvt6Lae+60ChrUSCRg50=) 17: mjTSWLEuvIRJ-mDUVhSblHWE7N4.roa (hash: rmzWSKN3Yb/xA6p/q8UxEXQjDhun2rkoNnE76zOjZHo=) 18: pxtXnWk-oYZ7Qby89ddSCgu91ts.roa (hash: RB8UdezmP543bft1AFoJ1CEu6eopqGc7lCF9jSa1eTc=) 19: q74_W6xdG6goIDi1c08_8gJ6uTE.roa (hash: pxdR0KPAM6OXX14ayHaIWzZB+fjREFkJhs6uGstYGhI=) 20: r3Ck7fpoOKp57Mk1jJgw8XHWAxg.roa (hash: jDsvxvKf5uFW/4bW6b3NOwjRJy48sDgwtQTJJofZqGM=) 21: v99_kaWjoTKnpnOcBogb8Emjk4M.roa (hash: unshnZnS3tg5XPSrGj9Iy+gxnhESQoD/3z5Y8oIxogo=) 22: y38_fk_dl6De5uovg7WKuAzPolA.roa (hash: PsHTMj/SkJczqFC8znjT596YhybynG/bm1yXYsS6Cxs=) 23: z6d9djVL2RnXuevi6Ot8E8e62tc.roa (hash: o9Kh9fFp+5NbfQXFw6W0ABs1khVR+g751jXSLlxLU4c=) 24: zUeLco_9U8ifNR5PMJI3zpijW74.roa (hash: 3lduL1beP27BPGmbMBwONs6g5YeSTXx0lXyH1JulpN4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 05:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:fa:d7:af:5c:52:9e:b3:44:af:2d:8f:37:8e:82:7d:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589 Validity Not Before: Oct 19 05:01:03 2025 GMT Not After : Oct 20 05:01:03 2025 GMT Subject: CN=d9d018b6472c3c0559b71820ba0979c370adc89d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0c:39:5f:cd:f4:cd:e2:3b:6b:71:e5:05:71: eb:0b:72:bf:4f:bc:b3:47:45:a7:ca:a0:e9:7b:c8: 8a:3b:89:bd:ee:80:c7:b4:ee:40:ad:96:95:ee:82: d1:ed:51:f6:69:80:c1:d1:39:c9:a9:56:47:95:3c: 62:2b:13:e9:a3:52:d8:d9:65:cd:d6:84:c7:d6:e0: 7e:7e:a6:27:f2:10:50:d5:8c:2d:ac:9c:c0:8a:61: 16:e0:3a:91:83:7a:0b:41:11:b1:e4:5b:e0:44:67: 08:c6:9b:7d:75:a6:32:bb:2b:1b:a3:d0:4f:ba:de: 33:20:ee:13:63:8c:0f:4b:8e:6e:1e:67:3f:ab:79: bc:84:68:ae:c6:40:a1:05:62:c5:ec:56:73:be:9e: 5f:49:9c:7b:13:90:16:9e:66:14:e3:ca:67:58:f4: de:b2:cb:e8:f9:b8:ae:39:82:be:d3:c1:bd:e6:54: 6a:10:96:fa:32:e5:fa:cf:a9:59:ac:df:37:b1:99: 24:a1:70:88:ed:d9:0d:fd:6b:05:e0:e6:b6:04:44: 67:aa:d6:93:30:5a:ba:41:31:a2:9b:a9:9b:56:05: 74:eb:9f:db:09:1b:36:69:32:65:ac:9c:38:d2:fd: 4d:4c:42:48:c1:b0:20:9c:72:3f:08:63:0f:31:c8: fc:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:D0:18:B6:47:2C:3C:05:59:B7:18:20:BA:09:79:C3:70:AD:C8:9D X509v3 Authority Key Identifier: keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:0d:df:be:41:fc:c8:d8:14:f2:90:b4:96:9d:0d:e1:e9:93: cb:86:65:46:9c:17:90:73:00:25:cc:f5:6c:80:72:47:cf:38: bb:19:e2:86:5a:48:92:54:9d:60:06:3b:08:4e:5d:0e:e6:b6: b1:35:ab:02:f2:2e:ff:55:2e:79:2a:01:44:5a:eb:f2:ee:94: 0b:65:64:e1:cf:28:3e:94:d2:a9:b7:27:27:08:a7:a5:7d:fc: e2:f3:24:cf:fb:84:d8:a0:9d:90:ef:d9:8a:3b:22:fd:49:60: 34:69:45:9a:b4:a8:c3:b4:ac:e3:c9:4c:e9:44:f3:fd:da:07: 5d:65:98:09:32:6a:6c:43:89:1f:44:42:f2:19:1b:7c:b0:fd: b8:17:40:7a:dd:d7:60:c8:3b:e9:4a:4a:42:1b:46:29:74:34: 3f:c2:62:e0:2b:d7:f3:ca:59:f7:56:2b:08:33:3d:2e:9e:9a: 1b:ba:e5:95:5e:0f:8c:1e:85:c3:e2:11:ba:2e:75:9b:df:fd: 6b:fd:b0:cf:b4:99:6b:e8:cb:53:f6:7c:b1:55:39:25:54:fb: c8:df:18:2a:1f:36:a6:ba:cd:e6:78:cc:b8:74:39:ad:6d:8f: 8d:c4:98:7a:38:51:1a:6f:f7:66:e6:74:a7:bb:62:6e:0f:2b: 97:fd:97:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZn6169cUp6zRK8tjzeOgn3ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjZWY1OGQ0Y2ZhMzU1NDNmODQ4OGEyNzU2ZTY5MjRlNjQ3 YjQ1ODkwHhcNMjUxMDE5MDUwMTAzWhcNMjUxMDIwMDUwMTAzWjAzMTEwLwYDVQQD EyhkOWQwMThiNjQ3MmMzYzA1NTliNzE4MjBiYTA5NzljMzcwYWRjODlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtAw5X830zeI7a3HlBXHrC3K/T7yz R0WnyqDpe8iKO4m97oDHtO5ArZaV7oLR7VH2aYDB0TnJqVZHlTxiKxPpo1LY2WXN 1oTH1uB+fqYn8hBQ1YwtrJzAimEW4DqRg3oLQRGx5FvgRGcIxpt9daYyuysbo9BP ut4zIO4TY4wPS45uHmc/q3m8hGiuxkChBWLF7FZzvp5fSZx7E5AWnmYU48pnWPTe ssvo+biuOYK+08G95lRqEJb6MuX6z6lZrN83sZkkoXCI7dkN/WsF4Oa2BERnqtaT MFq6QTGim6mbVgV065/bCRs2aTJlrJw40v1NTEJIwbAgnHI/CGMPMcj8hwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNnQGLZHLDwFWbcYILoJecNwrcidMB8GA1UdIwQY MBaAFNzvWNTPo1VD+EiKJ1bmkk5ke0WJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9lYTQ0NTUtNzgzNi00NGM0LWIyYTMt MmVjZTA0ZTE4NWMyLzEvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS9lYTQ0NTUtNzgzNi00NGM0LWIyYTMtMmVjZTA0ZTE4NWMy LzEvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFw3fvkH8 yNgU8pC0lp0N4emTy4ZlRpwXkHMAJcz1bIByR884uxnihlpIklSdYAY7CE5dDua2 sTWrAvIu/1UueSoBRFrr8u6UC2Vk4c8oPpTSqbcnJwinpX384vMkz/uE2KCdkO/Z ijsi/UlgNGlFmrSow7Ss48lM6UTz/doHXWWYCTJqbEOJH0RC8hkbfLD9uBdAet3X YMg76UpKQhtGKXQ0P8Ji4CvX88pZ91YrCDM9Lp6aG7rllV4PjB6Fw+IRui51m9/9 a/2wz7SZa+jLU/Z8sVU5JVT7yN8YKh82prrN5njMuHQ5rW2PjcSYejhRGm/3ZuZ0 p7tibg8rl/2XoQ== -----END CERTIFICATE-----Generated at Sun Oct 19 15:08:02 2025 by rpki-client