$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft File: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft (raw, json) Hash identifier: iBgh5lvEMzdOK0DR2muwUi6XjMSoeXNTFTe5I4V+PBw= Subject key identifier: 5F:21:F3:EF:36:54:F6:2D:37:00:65:3B:E9:BF:B6:56:AC:B4:53:77 Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Certificate serial: 0199FC8F97932FB758114361DD1BC478BA37 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft Manifest number: 170A Signing time: Sun 19 Oct 2025 13:01:32 +0000 Manifest this update: Sun 19 Oct 2025 13:01:32 +0000 Manifest next update: Mon 20 Oct 2025 13:01:32 +0000 Files and hashes: 1: 08x65D62xajmjuWxGOGX--5GFZ4.roa (hash: ku01TCluM3ObD1DEPpsLr/8jGhA1O5espf/zteTKSkk=) 2: 1-fxNLZQMykWE3SLBLsEKwibzn3o.roa (hash: U9t8UfOKITE6D0gBLc/Dtn9zr6EfXzJkxHJL0LBQvTo=) 3: FDmDvOACHulfshItBSDCX5mBYSQ.roa (hash: aexzHKGvD/WM+wZ6/qx7vyWxEHAqx7gswtzEcmCk74k=) 4: FzyJ-A4chBzu8lQqhpLh4dfVe9s.roa (hash: kikBFtCVFZZA5yK1FlsJJ2Y15ol/mIm/K3+f2pwmt3Q=) 5: JRfXlKgZScSlnAP9_s4mWUCHMzI.roa (hash: Yofq9QzaUqxyhMLfnSLcXXtmS3vz0xWVOjl3kItQ1gM=) 6: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl (hash: 0XM6TZzCYcLs0OpkyOgpeCONLMHsJL0KHYmgmhJRgsw=) 7: RV1rjCwSnXKPzqWOYcizuue6Tmw.roa (hash: ZJyuiQwoYun/WqH4NVoy2nm760NToV5F7bd+tbvhpZI=) 8: UI2cnhatNs5ZeysmslxEpLBSTew.roa (hash: axZPCQgEFKrONNIyjteNC+Y0RYmX6khaCS5yj1K7lFE=) 9: XIqtTjvuJ5glY39EaIP6KmILhoo.roa (hash: oyK+JoJZ3ZJXn7BAWGpujgyfoF5xI3Ds91YiwWdI2PE=) 10: XwhTClSP1UI8joFe2laQDXk_PGU.roa (hash: Vu9nNK134kjM8iGZdGpKi0T5ZrLtuDBr7FKT4joBB3w=) 11: b_MAVuI29oBciIh7vGGq0NJVEzc.roa (hash: hDxp3S5bhbbLqI6OACypq5MMFaQlI+7lCsYe3tJ2F9c=) 12: dOfaSe3fIYIhGR1xcwXjfUk3OeI.roa (hash: uz8UfxMH6M1zEnn7EFrd8TVCQANQpajV/Ux4YkN59Jk=) 13: ivBw7pb2lERE4O4pT70f-IjK-H8.roa (hash: 9+du4uvg6+sqYU99LVsbimMbdhpdO5ppSVPQO3/HDIY=) 14: vaL0J_r43BzBTm5r8Bo75j0pTF8.roa (hash: 75FzmVXUE4MjGcr9LiSgeGxgqkVwVmsZ6mF1xXYO59Y=) 15: zhtRFI1IbB8hGc_SM2h4CISUl7A.roa (hash: bLD1C+K9v2CYIV0aCijm7HOS8Af4YKVs8VztsZsW80w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 06:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:fc:8f:97:93:2f:b7:58:11:43:61:dd:1b:c4:78:ba:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Validity Not Before: Oct 19 13:01:32 2025 GMT Not After : Oct 20 13:01:32 2025 GMT Subject: CN=5f21f3ef3654f62d3700653be9bfb656acb45377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:11:dc:b7:24:06:e8:a2:19:47:8e:37:d3:b0: 60:58:c7:f9:e8:ae:be:fa:7e:c0:c2:a6:67:7b:24: bd:b7:7a:58:70:c1:94:a7:69:25:54:8a:ff:dc:49: 51:01:a2:63:b2:7c:cf:a3:b1:d9:8a:0d:d1:87:46: 87:ac:62:be:9c:f8:8a:83:f2:08:64:2f:ba:54:09: 1b:46:35:4a:42:03:d8:04:8e:20:ee:2a:c7:ec:52: fb:4b:7f:d0:e6:ee:f6:a7:00:30:76:f4:38:5f:8c: c4:e3:df:ff:0a:4f:5f:8c:1a:28:c3:96:5f:f7:e7: 9b:a7:4c:f5:d3:ab:41:72:1b:b4:6a:80:b7:19:ff: 75:27:53:9e:d5:28:46:7f:5f:6b:fb:a9:f3:d8:a2: 29:92:ba:ea:b3:3f:98:bc:e8:af:73:bb:77:e4:da: fe:bf:fa:aa:d3:d8:e5:a8:34:73:15:81:c8:cf:a1: f5:61:dc:9e:30:61:9b:cf:a7:05:53:00:bf:6b:70: c1:bf:92:1b:bc:4f:f8:39:ac:6b:41:c6:6b:f0:e6: e3:79:84:f7:d3:ed:0c:87:46:09:83:66:57:1e:d1: 88:af:cc:30:67:45:e4:83:9e:1c:98:4e:08:c1:52: cf:46:66:c6:bb:7b:2e:83:14:2a:3a:71:84:7e:a9: 9b:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:21:F3:EF:36:54:F6:2D:37:00:65:3B:E9:BF:B6:56:AC:B4:53:77 X509v3 Authority Key Identifier: keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:23:eb:b8:d0:21:f1:e0:78:35:e8:ba:bf:30:58:61:08:3e: fa:c2:a6:37:b7:b7:60:ee:43:3e:4b:5f:77:ea:02:59:48:fa: 91:25:3e:06:07:30:a6:db:36:9e:c4:2b:b8:0f:25:2b:aa:a0: 34:e6:0e:fe:e0:8f:16:8f:57:bd:9c:1c:3e:f5:b6:ed:81:cb: 01:a8:b7:44:bb:22:75:94:e4:aa:d5:7d:81:50:ec:da:dc:9d: a4:10:1c:a3:20:48:30:9e:20:fc:c3:77:93:5d:79:04:50:df: a6:8a:d0:4c:64:1c:f6:ce:d1:45:3b:92:82:30:40:92:78:d0: 34:d4:f7:a6:8b:33:5e:bc:e7:49:d3:5f:04:04:a6:8d:c7:b9: 77:fc:4c:3c:f2:99:3a:ce:03:4b:10:66:fe:98:0d:0d:37:a7: 81:81:a9:01:21:01:1a:96:3f:db:82:a3:05:94:d3:62:db:80: 61:7b:47:a4:f5:fe:22:29:89:fd:b3:cd:41:8f:31:a9:4c:85: 9b:64:4b:10:0c:d7:9b:9d:19:0f:33:5e:dd:17:b9:26:aa:ac: 63:07:35:e3:fe:5f:14:83:e9:69:db:41:65:df:d7:5c:37:70: 60:66:d1:f6:c1:cf:8d:7e:ff:d4:55:56:b7:4b:77:d7:65:be: fa:1b:5e:5e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZn8j5eTL7dYEUNh3RvEeLo3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNDc0YWM3Y2E4NWUwOWMyZDQ4YjMzZTdiZjY2ZjhlZDc2 NGRlMGYwHhcNMjUxMDE5MTMwMTMyWhcNMjUxMDIwMTMwMTMyWjAzMTEwLwYDVQQD Eyg1ZjIxZjNlZjM2NTRmNjJkMzcwMDY1M2JlOWJmYjY1NmFjYjQ1Mzc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBHctyQG6KIZR44307BgWMf56K6+ +n7AwqZneyS9t3pYcMGUp2klVIr/3ElRAaJjsnzPo7HZig3Rh0aHrGK+nPiKg/II ZC+6VAkbRjVKQgPYBI4g7irH7FL7S3/Q5u72pwAwdvQ4X4zE49//Ck9fjBoow5Zf 9+ebp0z106tBchu0aoC3Gf91J1Oe1ShGf19r+6nz2KIpkrrqsz+YvOivc7t35Nr+ v/qq09jlqDRzFYHIz6H1YdyeMGGbz6cFUwC/a3DBv5IbvE/4OaxrQcZr8ObjeYT3 0+0Mh0YJg2ZXHtGIr8wwZ0Xkg54cmE4IwVLPRmbGu3sugxQqOnGEfqmbHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF8h8+82VPYtNwBlO+m/tlastFN3MB8GA1UdIwQY MBaAFDJHSsfKheCcLUizPnv2b47XZN4PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzkt MTJlYzIyYzljNWEyLzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzktMTJlYzIyYzljNWEy LzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfSPruNAh 8eB4Nei6vzBYYQg++sKmN7e3YO5DPktfd+oCWUj6kSU+Bgcwpts2nsQruA8lK6qg NOYO/uCPFo9XvZwcPvW27YHLAai3RLsidZTkqtV9gVDs2tydpBAcoyBIMJ4g/MN3 k115BFDfporQTGQc9s7RRTuSgjBAknjQNNT3poszXrznSdNfBASmjce5d/xMPPKZ Os4DSxBm/pgNDTengYGpASEBGpY/24KjBZTTYtuAYXtHpPX+IimJ/bPNQY8xqUyF m2RLEAzXm50ZDzNe3Re5JqqsYwc14/5fFIPpadtBZd/XXDdwYGbR9sHPjX7/1FVW t0t312W++hteXg== -----END CERTIFICATE-----Generated at Sun Oct 19 15:08:23 2025 by rpki-client