$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft File: 3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft (raw, json) Hash identifier: +sJmVVmGM54N86Bpx8x3vjd5Lbr930S8mLr2Dx1fr48= Subject key identifier: 8A:1F:F5:CA:D2:A9:7E:4F:18:3A:0C:D4:E1:95:1A:19:3B:88:61:0F Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89 Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589 Certificate serial: 0198D54DE181AF46461F805E3937426028C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft Manifest number: 15BC Signing time: Sat 23 Aug 2025 05:01:47 +0000 Manifest this update: Sat 23 Aug 2025 05:01:47 +0000 Manifest next update: Sun 24 Aug 2025 05:01:47 +0000 Files and hashes: 1: 3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl (hash: MmwUwcs8hjpDriqRWbwUJr6TdQOxeFyAdxoEp+E/uU0=) 2: 41fVJkrPbHKQA079D4QVuoSoMHA.roa (hash: sr+TybZqUtIImaDgTqztSGD1XE6oloq4BZ2M4Xpg+u0=) 3: 4pf6JhZ2ZrbzDs3KIhxGjElBlaw.roa (hash: vXT1uBYUu9e7P+u/IiXkrVdl2Zw3UbzSeW2UWFK34Jw=) 4: 6klSWkjjUTbGuPtDfN8cALab9cs.roa (hash: sdgQjkXScGhQKnR4al8+skMwfxtoqagBTslhZkfSKNY=) 5: B3w7E9gvZEzFwMrG99Xq-T1MEBw.roa (hash: X2c/+qNKKXp5+FBng9aKxlFFZbDBWHiqkfhHgQbP6bg=) 6: C2H1BSmYMIrZggVB3V-MZ8CR5SY.roa (hash: MAmDjDLmFQyW+O4vZbG4q4tWTwrvQlayeoQlXr+Fu/8=) 7: DJ2HKm_1c1O48zC-cc12FURV1-w.roa (hash: odPYR1sTJx4nskAcxBKfAydZplTxWpbfAnjmQhPzJX8=) 8: GmlPqmYgpg61oCrtTG9RzmgTZRQ.roa (hash: lOFhsoN8S3GIIvzatAuS7mkyT16CCVPA77MjKa8aWWc=) 9: RZCNuFYkMVfet6khSeCWtqT4r3s.roa (hash: bz5sfARWaL0oWhzQTAMOexVtHrjfBeAF+vBi8eYpl/U=) 10: Sn1YHf-JTelJa8AbFEu9eCrJc-Y.roa (hash: 4RQ4/nSSdbUjaSMtOe+F2ienAydzSYTXwrbRmuUcEJY=) 11: UE3TFsD19f6wQr0gTHDaiwhGdqA.roa (hash: h9a9K3MMF0WQfDnzSvLb5P+n54cp7dIKew88pGDYldk=) 12: VicyF_0e_bvvcn0fKM8q40zu1n8.roa (hash: C5AQCG/2PEYP519Z6IOs4YDYOnLl0s41qulpvbJvJ4g=) 13: _HxOSGDLp42EFmYvwzkWMgsUDRc.roa (hash: ld3Ed4rdMoSUbT+R2+5BJt8zZUTSFFBqMJ22iFdBG+s=) 14: cHLxjuzlgoGDINIVaFsru4PZ9BE.roa (hash: o3eUI2kqgbIKISwJ6D+XZ6uUN50wRiiahX5yY1sTPn4=) 15: lknEfiAWsTgVxunxpJ4Cim6vi_Y.roa (hash: 9nT6QBaPn6YGSLcfszLUc2cPb60rXG8wS9MlLTeVBhw=) 16: mdB3D_zcc3ZMQewiv3J0UZ_sUlo.roa (hash: NsB59ITpkzoeK9pRuPozIMWrvt6Lae+60ChrUSCRg50=) 17: mjTSWLEuvIRJ-mDUVhSblHWE7N4.roa (hash: rmzWSKN3Yb/xA6p/q8UxEXQjDhun2rkoNnE76zOjZHo=) 18: pxtXnWk-oYZ7Qby89ddSCgu91ts.roa (hash: RB8UdezmP543bft1AFoJ1CEu6eopqGc7lCF9jSa1eTc=) 19: q74_W6xdG6goIDi1c08_8gJ6uTE.roa (hash: pxdR0KPAM6OXX14ayHaIWzZB+fjREFkJhs6uGstYGhI=) 20: r3Ck7fpoOKp57Mk1jJgw8XHWAxg.roa (hash: jDsvxvKf5uFW/4bW6b3NOwjRJy48sDgwtQTJJofZqGM=) 21: v99_kaWjoTKnpnOcBogb8Emjk4M.roa (hash: unshnZnS3tg5XPSrGj9Iy+gxnhESQoD/3z5Y8oIxogo=) 22: y38_fk_dl6De5uovg7WKuAzPolA.roa (hash: PsHTMj/SkJczqFC8znjT596YhybynG/bm1yXYsS6Cxs=) 23: z6d9djVL2RnXuevi6Ot8E8e62tc.roa (hash: o9Kh9fFp+5NbfQXFw6W0ABs1khVR+g751jXSLlxLU4c=) 24: zUeLco_9U8ifNR5PMJI3zpijW74.roa (hash: 3lduL1beP27BPGmbMBwONs6g5YeSTXx0lXyH1JulpN4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 05:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:d5:4d:e1:81:af:46:46:1f:80:5e:39:37:42:60:28:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589 Validity Not Before: Aug 23 05:01:47 2025 GMT Not After : Aug 24 05:01:47 2025 GMT Subject: CN=8a1ff5cad2a97e4f183a0cd4e1951a193b88610f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0e:6f:df:34:78:fa:91:03:98:ed:09:9a:e5: c8:e2:b7:26:89:33:0f:36:b5:e0:b0:7c:31:4c:ed: 8b:16:d8:ed:2a:60:0b:b0:53:3e:be:61:d9:98:bc: 74:02:62:b1:06:4a:ed:60:81:25:c5:c6:0b:f8:6a: f2:0a:a2:95:25:7b:a8:35:36:0d:e4:6a:8a:40:36: 14:18:68:5d:49:a4:ab:da:28:57:6a:ef:aa:cd:cc: e2:4f:99:55:99:fb:ba:1d:4f:1d:e4:42:8c:b4:a0: f1:7f:c5:07:8c:2a:7e:79:2d:26:c0:3d:df:ec:90: f9:f8:a1:04:5b:d7:b5:83:37:0b:97:bd:68:a5:97: d8:ca:40:51:82:06:3b:5a:32:64:9f:04:4f:6e:b4: 1a:e2:8f:da:25:86:c2:9f:59:2e:9a:f0:e0:25:8f: d6:92:7e:8b:77:0a:e7:34:0b:b5:ed:99:f3:29:18: 63:71:52:7e:0a:5e:12:98:e2:3a:55:5b:8f:a5:98: 32:0d:a0:8e:de:67:42:65:53:ea:56:fc:3a:ab:36: 65:76:fb:c1:5a:e6:c4:30:6a:99:fc:7e:ff:a0:1c: ac:c9:5a:3f:fc:94:59:68:f1:99:9e:1f:7a:93:ae: dc:9d:47:89:f4:a8:21:68:41:56:40:1f:fe:68:5b: 15:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:1F:F5:CA:D2:A9:7E:4F:18:3A:0C:D4:E1:95:1A:19:3B:88:61:0F X509v3 Authority Key Identifier: keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:82:6d:dd:c5:3f:0f:eb:98:7e:6f:a8:8d:e0:41:dd:b9:e9: a5:88:76:aa:7a:eb:97:9f:41:29:f0:df:c0:c7:04:25:79:83: 65:b8:61:1d:2d:56:77:b3:1c:f8:eb:08:88:57:89:a6:08:d8: f0:3b:2b:1d:5c:76:28:57:18:db:39:77:63:ee:3d:96:79:d4: 10:9a:b1:90:6f:29:0a:fa:b9:b6:32:a1:3f:de:a5:0b:15:e7: da:b0:49:42:ab:56:ed:3d:6a:f1:bd:bd:ff:82:3d:6d:27:da: 62:5a:96:73:d9:f4:d2:83:46:e1:d4:1c:fc:0d:a4:3b:54:e0: 1f:a0:86:55:e6:7f:09:46:12:8b:84:10:20:75:69:b5:60:50: bc:9d:9d:b0:d5:fe:bb:cf:8b:3c:73:e2:e8:18:15:cc:16:8a: 97:74:3a:78:00:a2:a9:e4:c8:04:60:51:a2:c2:6c:f7:1d:8e: 6f:14:ef:36:13:6b:d5:1c:59:3f:de:c0:58:2f:ab:da:fa:64: d8:12:b5:06:a0:97:36:b3:49:38:41:73:3d:de:8d:c1:0a:5d: f4:da:85:63:8b:e1:05:2b:b7:2d:49:9f:f9:5c:7c:5d:b1:e7: 9c:e3:5f:99:17:57:a4:02:e6:51:46:41:a9:52:22:b3:b4:fa: a5:aa:08:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjVTeGBr0ZGH4BeOTdCYCjCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjZWY1OGQ0Y2ZhMzU1NDNmODQ4OGEyNzU2ZTY5MjRlNjQ3 YjQ1ODkwHhcNMjUwODIzMDUwMTQ3WhcNMjUwODI0MDUwMTQ3WjAzMTEwLwYDVQQD Eyg4YTFmZjVjYWQyYTk3ZTRmMTgzYTBjZDRlMTk1MWExOTNiODg2MTBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsQ5v3zR4+pEDmO0JmuXI4rcmiTMP NrXgsHwxTO2LFtjtKmALsFM+vmHZmLx0AmKxBkrtYIElxcYL+GryCqKVJXuoNTYN 5GqKQDYUGGhdSaSr2ihXau+qzcziT5lVmfu6HU8d5EKMtKDxf8UHjCp+eS0mwD3f 7JD5+KEEW9e1gzcLl71opZfYykBRggY7WjJknwRPbrQa4o/aJYbCn1kumvDgJY/W kn6LdwrnNAu17ZnzKRhjcVJ+Cl4SmOI6VVuPpZgyDaCO3mdCZVPqVvw6qzZldvvB WubEMGqZ/H7/oBysyVo//JRZaPGZnh96k67cnUeJ9KghaEFWQB/+aFsV6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIof9crSqX5PGDoM1OGVGhk7iGEPMB8GA1UdIwQY MBaAFNzvWNTPo1VD+EiKJ1bmkk5ke0WJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9lYTQ0NTUtNzgzNi00NGM0LWIyYTMt MmVjZTA0ZTE4NWMyLzEvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS9lYTQ0NTUtNzgzNi00NGM0LWIyYTMtMmVjZTA0ZTE4NWMy LzEvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApIJt3cU/ D+uYfm+ojeBB3bnppYh2qnrrl59BKfDfwMcEJXmDZbhhHS1Wd7Mc+OsIiFeJpgjY 8DsrHVx2KFcY2zl3Y+49lnnUEJqxkG8pCvq5tjKhP96lCxXn2rBJQqtW7T1q8b29 /4I9bSfaYlqWc9n00oNG4dQc/A2kO1TgH6CGVeZ/CUYSi4QQIHVptWBQvJ2dsNX+ u8+LPHPi6BgVzBaKl3Q6eACiqeTIBGBRosJs9x2ObxTvNhNr1RxZP97AWC+r2vpk 2BK1BqCXNrNJOEFzPd6NwQpd9NqFY4vhBSu3LUmf+Vx8XbHnnONfmRdXpALmUUZB qVIis7T6paoIiw== -----END CERTIFICATE-----Generated at Sat Aug 23 12:14:16 2025 by rpki-client