$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft File: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft (raw, json) Hash identifier: l7IrioRwKJhGWtgVArgL25giMCrAZtlg3LXLI9uLNG8= Subject key identifier: 50:93:6D:B8:B8:1F:73:42:A6:C2:83:04:6B:1D:17:9C:CF:07:A2:FC Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Certificate serial: 0197B7EA21540130C3CF15FC8ADA6890DB07 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft Manifest number: 15D2 Signing time: Sat 28 Jun 2025 19:01:03 +0000 Manifest this update: Sat 28 Jun 2025 19:01:03 +0000 Manifest next update: Sun 29 Jun 2025 19:01:03 +0000 Files and hashes: 1: 08x65D62xajmjuWxGOGX--5GFZ4.roa (hash: ku01TCluM3ObD1DEPpsLr/8jGhA1O5espf/zteTKSkk=) 2: 1-fxNLZQMykWE3SLBLsEKwibzn3o.roa (hash: U9t8UfOKITE6D0gBLc/Dtn9zr6EfXzJkxHJL0LBQvTo=) 3: FzyJ-A4chBzu8lQqhpLh4dfVe9s.roa (hash: kikBFtCVFZZA5yK1FlsJJ2Y15ol/mIm/K3+f2pwmt3Q=) 4: JRfXlKgZScSlnAP9_s4mWUCHMzI.roa (hash: Yofq9QzaUqxyhMLfnSLcXXtmS3vz0xWVOjl3kItQ1gM=) 5: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl (hash: EpqHs2JQ3ZLAkmrEzz5akXFMdUPVyG1hUgmZH9Uy3+w=) 6: OOWsOYaSoAqJ3HO-R5wNTcf_irg.roa (hash: FHVKtTLfD9KJ5KSxDig6awJ13wpTnxgLs+NcZ0Q//g4=) 7: UI2cnhatNs5ZeysmslxEpLBSTew.roa (hash: axZPCQgEFKrONNIyjteNC+Y0RYmX6khaCS5yj1K7lFE=) 8: XIqtTjvuJ5glY39EaIP6KmILhoo.roa (hash: oyK+JoJZ3ZJXn7BAWGpujgyfoF5xI3Ds91YiwWdI2PE=) 9: b_MAVuI29oBciIh7vGGq0NJVEzc.roa (hash: hDxp3S5bhbbLqI6OACypq5MMFaQlI+7lCsYe3tJ2F9c=) 10: dOfaSe3fIYIhGR1xcwXjfUk3OeI.roa (hash: uz8UfxMH6M1zEnn7EFrd8TVCQANQpajV/Ux4YkN59Jk=) 11: ivBw7pb2lERE4O4pT70f-IjK-H8.roa (hash: 9+du4uvg6+sqYU99LVsbimMbdhpdO5ppSVPQO3/HDIY=) 12: mew8-eeZMjfWFrph1bkqTGd0o2o.roa (hash: ZTROpY1xzLgXXfO1lrdKWiIbYEdEw9dXrylpkOT7OWA=) 13: o56KW7qmKI89RBX7wwhJRJnWzxA.roa (hash: TSisfXvRUilLYjnEFcF1fY33OVEAWdRk4KyWKFaY7ZA=) 14: vaL0J_r43BzBTm5r8Bo75j0pTF8.roa (hash: 75FzmVXUE4MjGcr9LiSgeGxgqkVwVmsZ6mF1xXYO59Y=) 15: wjhfspu_G4HGizYS_OBNLClt3cU.roa (hash: bxfIFEAR3HaNo4msf1HR2PgJlfyMNGagLyOKrjbfFag=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 19:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:b7:ea:21:54:01:30:c3:cf:15:fc:8a:da:68:90:db:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Validity Not Before: Jun 28 19:01:03 2025 GMT Not After : Jun 29 19:01:03 2025 GMT Subject: CN=50936db8b81f7342a6c283046b1d179ccf07a2fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:32:5d:86:e7:bd:f4:1f:06:8c:ce:c3:5d:2e: 77:04:d2:7a:a2:6a:95:b1:6b:06:1e:b8:82:fb:4a: 2d:74:da:d4:b2:44:d2:cd:b9:91:e0:32:88:63:b7: 2c:34:6a:5a:6d:b4:91:82:58:ec:90:9c:50:52:21: ea:bd:df:d5:96:52:ee:46:2d:3e:4d:87:22:ec:f3: 1c:35:4d:77:bc:ba:0a:aa:ce:d5:01:88:5e:04:cf: 61:ca:54:d4:b2:a3:f1:74:eb:8c:b7:86:fa:47:0e: 56:50:db:d6:7e:2e:9b:eb:8f:1b:96:2b:de:ab:62: 99:6c:ca:51:86:6e:c2:87:33:25:7e:46:a4:b1:33: 2a:73:28:09:e5:81:3d:06:63:46:1d:e5:3c:00:28: c6:86:9f:00:e5:ad:45:59:72:0b:52:e5:ed:bb:4b: f0:b1:81:18:cf:1b:f8:37:12:db:78:87:3c:36:a7: 9b:95:c6:f0:7f:57:2f:d5:27:60:92:b1:92:f5:32: 46:c6:29:5a:a2:a3:89:cd:b3:88:96:f4:fb:c3:5e: 04:23:fc:e6:3e:03:90:ca:c4:e2:8a:d4:ef:02:72: b3:8a:ab:5d:99:28:d6:0a:be:1a:5d:ae:3b:14:7a: 19:99:ec:06:be:82:c5:85:8a:da:33:d0:49:07:c2: a6:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:93:6D:B8:B8:1F:73:42:A6:C2:83:04:6B:1D:17:9C:CF:07:A2:FC X509v3 Authority Key Identifier: keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:78:e8:e4:b0:7a:13:c6:50:0c:89:ef:70:4e:ed:c9:52:a5: 5a:d3:27:96:93:cc:fb:ce:1a:9c:c9:a4:82:82:d5:63:bf:ff: f5:95:11:a1:ef:bf:a2:85:43:47:be:dd:2a:df:5a:76:30:ff: 7f:c1:c6:f3:57:9f:23:1e:94:8d:df:f3:40:6e:c7:e0:06:2e: 83:07:a0:ef:07:c0:be:7e:a7:be:b5:b8:68:3d:13:0e:55:a0: 73:72:22:ee:3a:f5:cd:9b:e9:29:0f:5f:70:24:6d:ad:14:7d: 1d:b8:10:98:ca:a8:7a:4f:c6:01:82:13:c1:ec:3c:b9:d6:66: f1:0c:bd:ec:61:76:c5:b9:8b:5c:c6:63:6e:2b:00:f9:31:95: 00:c1:62:27:8c:10:74:99:52:0e:0d:a3:af:62:5d:2d:1b:df: be:d1:51:20:85:2b:5d:03:f6:81:4f:43:6d:ae:e7:29:5c:eb: 9f:13:21:2a:aa:fb:e5:a3:92:c4:82:25:87:43:25:a0:25:27: eb:d4:c4:5e:c8:51:74:58:41:04:ae:c5:cf:3d:43:9e:2d:3a: a7:4d:ab:68:ee:ab:66:49:51:a0:66:7c:2e:ce:7e:ab:ad:c5: 4c:dc:81:a8:c0:87:50:ec:f8:72:af:34:6b:21:9d:72:6b:ed: 28:5b:8c:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZe36iFUATDDzxX8itpokNsHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNDc0YWM3Y2E4NWUwOWMyZDQ4YjMzZTdiZjY2ZjhlZDc2 NGRlMGYwHhcNMjUwNjI4MTkwMTAzWhcNMjUwNjI5MTkwMTAzWjAzMTEwLwYDVQQD Eyg1MDkzNmRiOGI4MWY3MzQyYTZjMjgzMDQ2YjFkMTc5Y2NmMDdhMmZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4zJdhue99B8GjM7DXS53BNJ6omqV sWsGHriC+0otdNrUskTSzbmR4DKIY7csNGpabbSRgljskJxQUiHqvd/VllLuRi0+ TYci7PMcNU13vLoKqs7VAYheBM9hylTUsqPxdOuMt4b6Rw5WUNvWfi6b648blive q2KZbMpRhm7ChzMlfkaksTMqcygJ5YE9BmNGHeU8ACjGhp8A5a1FWXILUuXtu0vw sYEYzxv4NxLbeIc8Nqeblcbwf1cv1SdgkrGS9TJGxilaoqOJzbOIlvT7w14EI/zm PgOQysTiitTvAnKziqtdmSjWCr4aXa47FHoZmewGvoLFhYraM9BJB8KmtQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFCTbbi4H3NCpsKDBGsdF5zPB6L8MB8GA1UdIwQY MBaAFDJHSsfKheCcLUizPnv2b47XZN4PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzkt MTJlYzIyYzljNWEyLzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzktMTJlYzIyYzljNWEy LzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcXjo5LB6 E8ZQDInvcE7tyVKlWtMnlpPM+84anMmkgoLVY7//9ZURoe+/ooVDR77dKt9adjD/ f8HG81efIx6Ujd/zQG7H4AYugweg7wfAvn6nvrW4aD0TDlWgc3Ii7jr1zZvpKQ9f cCRtrRR9HbgQmMqoek/GAYITwew8udZm8Qy97GF2xbmLXMZjbisA+TGVAMFiJ4wQ dJlSDg2jr2JdLRvfvtFRIIUrXQP2gU9Dba7nKVzrnxMhKqr75aOSxIIlh0MloCUn 69TEXshRdFhBBK7Fzz1Dni06p02raO6rZklRoGZ8Ls5+q63FTNyBqMCHUOz4cq80 ayGdcmvtKFuMPA== -----END CERTIFICATE-----Generated at Sun Jun 29 01:36:50 2025 by rpki-client