$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft File: 3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft (raw, json) Hash identifier: sE/039/BIHTqkXT3WEDcDUVTZHT+k5ssP+3uPqgub90= Subject key identifier: AE:BD:47:F2:19:8D:F4:39:75:58:22:7D:D6:37:7F:F3:C8:12:1D:4A Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89 Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589 Certificate serial: 0197B77C2C81B8B43A4069ED16EC72B1B2C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft Manifest number: 1528 Signing time: Sat 28 Jun 2025 17:00:57 +0000 Manifest this update: Sat 28 Jun 2025 17:00:57 +0000 Manifest next update: Sun 29 Jun 2025 17:00:57 +0000 Files and hashes: 1: 3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl (hash: C96gLzf/NDUmNIgBuKTYfXNKGWz2JNRXAhFPdGAKT3s=) 2: 41fVJkrPbHKQA079D4QVuoSoMHA.roa (hash: sr+TybZqUtIImaDgTqztSGD1XE6oloq4BZ2M4Xpg+u0=) 3: 4pf6JhZ2ZrbzDs3KIhxGjElBlaw.roa (hash: vXT1uBYUu9e7P+u/IiXkrVdl2Zw3UbzSeW2UWFK34Jw=) 4: 6klSWkjjUTbGuPtDfN8cALab9cs.roa (hash: sdgQjkXScGhQKnR4al8+skMwfxtoqagBTslhZkfSKNY=) 5: B3w7E9gvZEzFwMrG99Xq-T1MEBw.roa (hash: X2c/+qNKKXp5+FBng9aKxlFFZbDBWHiqkfhHgQbP6bg=) 6: C2H1BSmYMIrZggVB3V-MZ8CR5SY.roa (hash: MAmDjDLmFQyW+O4vZbG4q4tWTwrvQlayeoQlXr+Fu/8=) 7: DJ2HKm_1c1O48zC-cc12FURV1-w.roa (hash: odPYR1sTJx4nskAcxBKfAydZplTxWpbfAnjmQhPzJX8=) 8: GmlPqmYgpg61oCrtTG9RzmgTZRQ.roa (hash: lOFhsoN8S3GIIvzatAuS7mkyT16CCVPA77MjKa8aWWc=) 9: RZCNuFYkMVfet6khSeCWtqT4r3s.roa (hash: bz5sfARWaL0oWhzQTAMOexVtHrjfBeAF+vBi8eYpl/U=) 10: Sn1YHf-JTelJa8AbFEu9eCrJc-Y.roa (hash: 4RQ4/nSSdbUjaSMtOe+F2ienAydzSYTXwrbRmuUcEJY=) 11: UE3TFsD19f6wQr0gTHDaiwhGdqA.roa (hash: h9a9K3MMF0WQfDnzSvLb5P+n54cp7dIKew88pGDYldk=) 12: VicyF_0e_bvvcn0fKM8q40zu1n8.roa (hash: C5AQCG/2PEYP519Z6IOs4YDYOnLl0s41qulpvbJvJ4g=) 13: _HxOSGDLp42EFmYvwzkWMgsUDRc.roa (hash: ld3Ed4rdMoSUbT+R2+5BJt8zZUTSFFBqMJ22iFdBG+s=) 14: cHLxjuzlgoGDINIVaFsru4PZ9BE.roa (hash: o3eUI2kqgbIKISwJ6D+XZ6uUN50wRiiahX5yY1sTPn4=) 15: lknEfiAWsTgVxunxpJ4Cim6vi_Y.roa (hash: 9nT6QBaPn6YGSLcfszLUc2cPb60rXG8wS9MlLTeVBhw=) 16: mdB3D_zcc3ZMQewiv3J0UZ_sUlo.roa (hash: NsB59ITpkzoeK9pRuPozIMWrvt6Lae+60ChrUSCRg50=) 17: mjTSWLEuvIRJ-mDUVhSblHWE7N4.roa (hash: rmzWSKN3Yb/xA6p/q8UxEXQjDhun2rkoNnE76zOjZHo=) 18: pxtXnWk-oYZ7Qby89ddSCgu91ts.roa (hash: RB8UdezmP543bft1AFoJ1CEu6eopqGc7lCF9jSa1eTc=) 19: q74_W6xdG6goIDi1c08_8gJ6uTE.roa (hash: pxdR0KPAM6OXX14ayHaIWzZB+fjREFkJhs6uGstYGhI=) 20: r3Ck7fpoOKp57Mk1jJgw8XHWAxg.roa (hash: jDsvxvKf5uFW/4bW6b3NOwjRJy48sDgwtQTJJofZqGM=) 21: v99_kaWjoTKnpnOcBogb8Emjk4M.roa (hash: unshnZnS3tg5XPSrGj9Iy+gxnhESQoD/3z5Y8oIxogo=) 22: y38_fk_dl6De5uovg7WKuAzPolA.roa (hash: PsHTMj/SkJczqFC8znjT596YhybynG/bm1yXYsS6Cxs=) 23: z6d9djVL2RnXuevi6Ot8E8e62tc.roa (hash: o9Kh9fFp+5NbfQXFw6W0ABs1khVR+g751jXSLlxLU4c=) 24: zUeLco_9U8ifNR5PMJI3zpijW74.roa (hash: 3lduL1beP27BPGmbMBwONs6g5YeSTXx0lXyH1JulpN4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 17:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:b7:7c:2c:81:b8:b4:3a:40:69:ed:16:ec:72:b1:b2:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589 Validity Not Before: Jun 28 17:00:57 2025 GMT Not After : Jun 29 17:00:57 2025 GMT Subject: CN=aebd47f2198df4397558227dd6377ff3c8121d4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:02:a2:b8:e2:7f:b1:44:b2:b6:86:45:19:fe: 32:d3:f5:0c:81:b4:7d:f4:c3:b1:9d:2e:da:bd:e4: e1:e4:80:d9:df:c0:ea:a8:a0:9d:72:7b:43:ad:34: fa:5a:ae:ed:c5:7b:ae:66:3e:36:e9:34:88:08:5e: 91:cb:8e:b5:48:42:86:78:b1:5e:04:f8:06:67:75: 9c:75:b4:88:ad:48:7c:38:3e:5e:0d:b7:a8:ae:08: cb:ec:52:9e:0e:9c:3e:e6:f7:ad:ef:2d:6b:55:af: 33:1f:5c:40:c2:9f:a9:55:48:6e:68:ae:61:82:62: e6:66:be:ae:cd:a2:3e:27:c9:45:1a:4f:e6:96:12: f4:9c:d6:c3:67:91:32:62:3f:3a:5d:5f:8b:3d:1a: c3:4b:2d:21:84:6d:c2:e5:1a:ae:de:4a:d3:e1:31: 1c:79:81:c8:4c:9d:2a:b2:5c:aa:b0:fa:4f:9e:29: d4:c1:c9:de:a0:4a:a2:83:a1:71:ad:6f:b5:a2:33: 74:3e:50:09:ab:8c:c7:31:1d:92:96:ce:31:e3:e5: a2:aa:3d:3b:87:ce:7a:fe:1d:37:ef:c9:f8:4f:e9: 92:5e:d6:81:db:29:85:e4:59:a6:c0:52:b3:fb:5a: d3:91:8c:3a:ac:15:e8:64:09:dd:ad:8f:56:af:f3: 88:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:BD:47:F2:19:8D:F4:39:75:58:22:7D:D6:37:7F:F3:C8:12:1D:4A X509v3 Authority Key Identifier: keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:54:6c:9b:08:63:5d:1e:6f:e6:15:3e:76:b8:b5:07:e4:80: 22:91:14:6d:19:90:9f:da:53:3f:24:0b:cb:be:6b:35:cf:c0: 06:9d:13:2d:6d:a9:3c:c4:27:bd:0a:36:a6:b8:17:ba:a6:15: e1:e7:29:85:40:e9:2c:50:f9:7b:59:ba:2c:54:85:10:32:0c: 66:39:8e:41:a7:02:1a:e4:ef:b7:4b:5a:5b:54:16:0b:28:2d: 92:49:d8:9f:3e:19:0f:d3:61:06:8b:12:23:a4:a2:cc:a6:d2: d3:71:9f:29:f6:9b:fb:48:c4:0c:43:64:be:82:1a:54:41:eb: 4e:d0:b3:55:c4:c8:90:1d:87:8d:44:55:7e:94:96:7e:75:1c: 95:49:13:8f:c6:23:19:78:7d:cf:a7:ba:a2:3f:c4:21:39:70: 42:92:b0:13:52:f4:59:8b:5c:b1:40:c8:e8:e5:00:42:97:97: 0d:db:3e:3a:91:c1:bc:dd:8e:fa:1b:80:ae:c7:86:ae:02:69: 85:f2:09:e0:45:5a:44:cc:e1:e4:d3:0a:9e:38:17:00:14:2c: 2d:83:db:a1:78:e3:3a:65:de:11:bd:cf:a7:61:d2:eb:c7:a8: d4:bb:b0:14:3b:49:47:ab:6f:bc:81:ce:e8:05:56:aa:a6:a6: 98:93:58:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZe3fCyBuLQ6QGntFuxysbLEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjZWY1OGQ0Y2ZhMzU1NDNmODQ4OGEyNzU2ZTY5MjRlNjQ3 YjQ1ODkwHhcNMjUwNjI4MTcwMDU3WhcNMjUwNjI5MTcwMDU3WjAzMTEwLwYDVQQD EyhhZWJkNDdmMjE5OGRmNDM5NzU1ODIyN2RkNjM3N2ZmM2M4MTIxZDRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5QKiuOJ/sUSytoZFGf4y0/UMgbR9 9MOxnS7aveTh5IDZ38DqqKCdcntDrTT6Wq7txXuuZj426TSICF6Ry461SEKGeLFe BPgGZ3WcdbSIrUh8OD5eDbeorgjL7FKeDpw+5vet7y1rVa8zH1xAwp+pVUhuaK5h gmLmZr6uzaI+J8lFGk/mlhL0nNbDZ5EyYj86XV+LPRrDSy0hhG3C5Rqu3krT4TEc eYHITJ0qslyqsPpPninUwcneoEqig6FxrW+1ojN0PlAJq4zHMR2Sls4x4+Wiqj07 h856/h0378n4T+mSXtaB2ymF5FmmwFKz+1rTkYw6rBXoZAndrY9Wr/OIyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK69R/IZjfQ5dVgifdY3f/PIEh1KMB8GA1UdIwQY MBaAFNzvWNTPo1VD+EiKJ1bmkk5ke0WJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9lYTQ0NTUtNzgzNi00NGM0LWIyYTMt MmVjZTA0ZTE4NWMyLzEvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS9lYTQ0NTUtNzgzNi00NGM0LWIyYTMtMmVjZTA0ZTE4NWMy LzEvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYVRsmwhj XR5v5hU+dri1B+SAIpEUbRmQn9pTPyQLy75rNc/ABp0TLW2pPMQnvQo2prgXuqYV 4ecphUDpLFD5e1m6LFSFEDIMZjmOQacCGuTvt0taW1QWCygtkknYnz4ZD9NhBosS I6SizKbS03GfKfab+0jEDENkvoIaVEHrTtCzVcTIkB2HjURVfpSWfnUclUkTj8Yj GXh9z6e6oj/EITlwQpKwE1L0WYtcsUDI6OUAQpeXDds+OpHBvN2O+huArseGrgJp hfIJ4EVaRMzh5NMKnjgXABQsLYPboXjjOmXeEb3Pp2HS68eo1LuwFDtJR6tvvIHO 6AVWqqammJNYTA== -----END CERTIFICATE-----Generated at Sun Jun 29 01:46:59 2025 by rpki-client