$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft File: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft (raw, json) Hash identifier: NE3Np9VNhWHJvciImwBp1Ga3sPh0s97JyzTqmtQ4E8E= Subject key identifier: F6:20:29:7E:54:6C:F3:C2:EC:E5:63:E2:98:DE:11:B3:13:DD:C7:4A Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Certificate serial: 0198D4737BE04DE7CC6FB28C09732F91A32A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft Manifest number: 166A Signing time: Sat 23 Aug 2025 01:03:14 +0000 Manifest this update: Sat 23 Aug 2025 01:03:14 +0000 Manifest next update: Sun 24 Aug 2025 01:03:14 +0000 Files and hashes: 1: 08x65D62xajmjuWxGOGX--5GFZ4.roa (hash: ku01TCluM3ObD1DEPpsLr/8jGhA1O5espf/zteTKSkk=) 2: 1-fxNLZQMykWE3SLBLsEKwibzn3o.roa (hash: U9t8UfOKITE6D0gBLc/Dtn9zr6EfXzJkxHJL0LBQvTo=) 3: FDmDvOACHulfshItBSDCX5mBYSQ.roa (hash: aexzHKGvD/WM+wZ6/qx7vyWxEHAqx7gswtzEcmCk74k=) 4: FzyJ-A4chBzu8lQqhpLh4dfVe9s.roa (hash: kikBFtCVFZZA5yK1FlsJJ2Y15ol/mIm/K3+f2pwmt3Q=) 5: JRfXlKgZScSlnAP9_s4mWUCHMzI.roa (hash: Yofq9QzaUqxyhMLfnSLcXXtmS3vz0xWVOjl3kItQ1gM=) 6: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl (hash: iVySaNhSsoOLO9poKNLzwJlrGOJHqnHIyDfH0tiSooE=) 7: UI2cnhatNs5ZeysmslxEpLBSTew.roa (hash: axZPCQgEFKrONNIyjteNC+Y0RYmX6khaCS5yj1K7lFE=) 8: XIqtTjvuJ5glY39EaIP6KmILhoo.roa (hash: oyK+JoJZ3ZJXn7BAWGpujgyfoF5xI3Ds91YiwWdI2PE=) 9: b_MAVuI29oBciIh7vGGq0NJVEzc.roa (hash: hDxp3S5bhbbLqI6OACypq5MMFaQlI+7lCsYe3tJ2F9c=) 10: dOfaSe3fIYIhGR1xcwXjfUk3OeI.roa (hash: uz8UfxMH6M1zEnn7EFrd8TVCQANQpajV/Ux4YkN59Jk=) 11: ivBw7pb2lERE4O4pT70f-IjK-H8.roa (hash: 9+du4uvg6+sqYU99LVsbimMbdhpdO5ppSVPQO3/HDIY=) 12: vaL0J_r43BzBTm5r8Bo75j0pTF8.roa (hash: 75FzmVXUE4MjGcr9LiSgeGxgqkVwVmsZ6mF1xXYO59Y=) 13: vuqehHp6wdf7c9w4q3PwCUkqIno.roa (hash: k0nS6MUv/1Ak6MeFV78g2Z43zPuVwGJ6ExwWNcjv49M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 00:37:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:d4:73:7b:e0:4d:e7:cc:6f:b2:8c:09:73:2f:91:a3:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Validity Not Before: Aug 23 01:03:14 2025 GMT Not After : Aug 24 01:03:14 2025 GMT Subject: CN=f620297e546cf3c2ece563e298de11b313ddc74a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a5:69:26:b4:fe:1a:f6:df:7b:2a:ac:eb:e0: 95:b9:14:2e:da:67:ea:36:d1:bd:4a:f1:85:78:3b: 35:82:87:b3:aa:c7:53:3e:ee:e3:fc:39:18:47:4c: 9e:69:3d:1a:79:d1:2a:3a:47:9d:76:d6:00:64:56: 68:92:1c:1a:7b:56:20:5e:f8:3e:ab:2c:f9:da:a7: df:90:6b:fc:96:59:ca:a2:2a:84:d9:2b:4d:4f:c3: fe:61:dd:9e:5f:0d:11:26:7e:74:16:3d:93:d1:4d: 43:f3:75:88:6b:31:b7:09:6a:1c:6a:51:d5:d0:69: ab:d2:27:5c:cd:41:17:97:7a:32:22:fb:9c:b7:d7: e6:c6:eb:39:b5:2a:30:78:56:ca:a3:b7:16:ae:23: 6d:d2:ed:b0:e9:90:5a:26:1e:fa:3c:c5:84:16:73: 8f:01:7c:01:34:31:bc:24:74:52:f7:e5:03:fa:8f: 8c:e8:3d:bf:58:65:5a:cd:a0:b4:67:96:2a:91:2c: 67:2b:d2:7c:dc:1c:6e:b4:4e:a4:58:4a:5c:22:a9: c3:5b:92:e5:d5:44:a6:ee:e1:b7:55:8d:de:1a:72: da:79:83:b3:38:59:42:4a:af:26:b4:6b:d4:1e:80: b8:07:0b:f3:1b:86:3f:08:c5:10:a2:47:eb:d7:3e: f8:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:20:29:7E:54:6C:F3:C2:EC:E5:63:E2:98:DE:11:B3:13:DD:C7:4A X509v3 Authority Key Identifier: keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:36:39:55:b7:a4:a6:5c:55:28:1c:1a:e7:a2:ae:21:94:c2: 38:01:43:b1:bd:9b:db:4a:35:46:25:63:7d:eb:0f:eb:c9:11: 52:6d:7f:f4:4a:f9:9d:d7:60:aa:9b:9c:a5:51:39:45:e9:e0: 39:f6:56:ab:fa:0d:9a:a5:b7:2b:57:c6:b6:ff:c4:56:2c:a2: 11:fe:43:5a:5c:e0:d8:2b:76:78:f9:9c:bd:32:c0:a0:9d:62: 15:0d:a1:cb:7b:ac:f0:c3:e7:66:27:d4:f7:0f:fc:1e:b7:fe: 93:da:03:54:f2:d4:d0:2c:1b:60:6a:3e:a1:8a:20:ba:e5:a8: 87:47:60:87:8a:eb:95:99:e5:08:9a:09:49:d4:70:e7:c9:05: cf:ca:d9:0d:9d:23:c5:05:e8:50:04:12:df:c5:16:f3:5e:07: 67:ca:89:a1:df:56:07:71:34:a2:76:e1:c2:94:7e:68:2f:d6: 07:33:8c:bf:b1:b6:14:5c:89:9b:ef:7b:02:fa:19:a6:11:9d: e1:f4:7e:92:63:31:6b:13:f9:71:e8:98:a9:58:ab:0e:d8:0f: 9f:da:16:50:99:4a:bb:ed:85:d5:e5:ea:81:e4:34:7f:8b:ca: 49:7b:66:76:b7:71:53:3a:4c:68:b9:89:c5:38:c3:5a:78:ac: cf:88:bb:4d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjUc3vgTefMb7KMCXMvkaMqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNDc0YWM3Y2E4NWUwOWMyZDQ4YjMzZTdiZjY2ZjhlZDc2 NGRlMGYwHhcNMjUwODIzMDEwMzE0WhcNMjUwODI0MDEwMzE0WjAzMTEwLwYDVQQD EyhmNjIwMjk3ZTU0NmNmM2MyZWNlNTYzZTI5OGRlMTFiMzEzZGRjNzRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwqVpJrT+Gvbfeyqs6+CVuRQu2mfq NtG9SvGFeDs1goezqsdTPu7j/DkYR0yeaT0aedEqOkeddtYAZFZokhwae1YgXvg+ qyz52qffkGv8llnKoiqE2StNT8P+Yd2eXw0RJn50Fj2T0U1D83WIazG3CWocalHV 0Gmr0idczUEXl3oyIvuct9fmxus5tSoweFbKo7cWriNt0u2w6ZBaJh76PMWEFnOP AXwBNDG8JHRS9+UD+o+M6D2/WGVazaC0Z5YqkSxnK9J83BxutE6kWEpcIqnDW5Ll 1USm7uG3VY3eGnLaeYOzOFlCSq8mtGvUHoC4BwvzG4Y/CMUQokfr1z744QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPYgKX5UbPPC7OVj4pjeEbMT3cdKMB8GA1UdIwQY MBaAFDJHSsfKheCcLUizPnv2b47XZN4PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzkt MTJlYzIyYzljNWEyLzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzktMTJlYzIyYzljNWEy LzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHjY5Vbek plxVKBwa56KuIZTCOAFDsb2b20o1RiVjfesP68kRUm1/9Er5nddgqpucpVE5Reng OfZWq/oNmqW3K1fGtv/EViyiEf5DWlzg2Ct2ePmcvTLAoJ1iFQ2hy3us8MPnZifU 9w/8Hrf+k9oDVPLU0CwbYGo+oYoguuWoh0dgh4rrlZnlCJoJSdRw58kFz8rZDZ0j xQXoUAQS38UW814HZ8qJod9WB3E0onbhwpR+aC/WBzOMv7G2FFyJm+97AvoZphGd 4fR+kmMxaxP5ceiYqVirDtgPn9oWUJlKu+2F1eXqgeQ0f4vKSXtmdrdxUzpMaLmJ xTjDWnisz4i7TQ== -----END CERTIFICATE-----Generated at Sat Aug 23 10:14:48 2025 by rpki-client