$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft File: hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft (raw, json) Hash identifier: 3WQPlLXcj/Ig5ZIvfAZUF83WLP0w/Hd8mwGmUuYjfvM= Subject key identifier: 25:01:50:FC:04:0D:17:35:7D:8A:B3:AC:21:18:2C:B2:60:D8:77:70 Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd Certificate serial: 0198D6CCFD382EFD6F285BCD96FB3572F172 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft Manifest number: 126A Signing time: Sat 23 Aug 2025 12:00:14 +0000 Manifest this update: Sat 23 Aug 2025 12:00:14 +0000 Manifest next update: Sun 24 Aug 2025 12:00:14 +0000 Files and hashes: 1: 2Il6q-ZqOuI80bOhmO2ATk_4gjA.roa (hash: qZ2AvjwfuN5RofSpAulT+zvOokvk9hdo9R5gBG6wVV8=) 2: EqxVNlycylxq6ufI9ng2ltdK1KM.roa (hash: b+kpuQsONfGhMD7qgwxZkbzW/4IKkzNE5v/myC4W0qY=) 3: MceCU4XPd0t7fhZxTxvxReumv1Q.roa (hash: 5TdX80iYVUkF2JY7Z9ZEOYjAnRhS8f4vWckTIPnEXdo=) 4: QdYIwbhgXZFZDGrsD1bCfWnJfNM.roa (hash: GAa3KktDwm+TlBojUO7F6LnOQMJ0zxC/VLgeFCn23pI=) 5: V1rb0y6iu1TTOsIZQYPUPITNZdc.roa (hash: 4TLj9uQX2T55ymBodPD3FK/tTeE67Ngmw9g4awglSqU=) 6: Yjrt4HsK8wh6pJI81KOUWlnSEwg.roa (hash: XmuwPChIn1UvgMab/4oMWsQTN7bkJ51y5zUd1xVolH0=) 7: aaic0TQ08KDxqNotu0QjynGFp8k.roa (hash: y+rn4gyMmixGkyVVHgb8Zj+xOMFFm7BJm3FAMYf/M4M=) 8: cO2-NOuH2RV4sPciOdoA32su67Q.roa (hash: 9jc3V+7f0q1/c2NMI1faaA1MEEx9FCl4Vp7wxvOlyNU=) 9: euovkC8FzqkWizkBlJiIPuOidbU.roa (hash: NVQ3tcOFWDZctMMGjmKl2U9mGUa0NK9LjFLKrJC2iHM=) 10: gdNItxWNsM4KiGU05OylhksApCc.roa (hash: WiPvUqderzx9CicZMrqZIDKRBrczrFFx57GnwN1V0lI=) 11: hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl (hash: kVOMNaSb2To1gA1ffmmpF1plZ3jb5rpGXkDod33l68o=) 12: oMpZucICfk-8ZesIjg26RzH9z8Q.roa (hash: avfjdtl0mm9+afn2EBtC58m5oIaLp8/rBFhWdaYQq6o=) 13: zYeF4EOXDH9wga2Hl1a9xt43c_E.roa (hash: qprf7Kh7V9oLipnyoiqapOwT3fD2c8ij+cCs23g5KeE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 12:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:d6:cc:fd:38:2e:fd:6f:28:5b:cd:96:fb:35:72:f1:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd Validity Not Before: Aug 23 12:00:14 2025 GMT Not After : Aug 24 12:00:14 2025 GMT Subject: CN=250150fc040d17357d8ab3ac21182cb260d87770 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6f:fb:1a:09:36:c8:b7:1f:c8:64:fd:a0:30: 63:e9:75:d7:cb:0f:b4:d0:ce:70:15:2e:11:24:0c: 38:c8:6f:c3:10:99:ae:55:1b:31:dd:5e:8d:70:76: ad:a0:32:c9:55:c8:ad:ae:20:88:76:8b:a3:8c:2e: 88:c2:55:e7:20:68:d8:49:cd:a8:13:e0:7a:32:6e: 45:48:8d:7a:ec:22:15:31:bd:ff:05:a7:0a:e4:86: d6:fd:83:07:30:c3:17:1d:9f:fd:64:f9:25:30:8c: 45:d5:56:ca:79:98:a8:c6:c2:ee:6c:04:5c:f4:fd: 6b:a3:00:9d:8c:99:9a:fd:6d:08:27:73:bf:11:22: 1e:7d:2c:ea:62:40:c0:d4:a9:48:8a:5a:cd:39:26: b2:5f:30:e3:51:2f:e0:45:50:7b:d7:2c:34:7a:db: a8:85:e7:67:f6:32:74:6b:39:3a:b5:8c:da:25:74: a6:32:10:69:60:63:0c:1f:46:c7:1a:b3:67:d8:82: 60:ee:78:77:7e:ba:3a:30:a9:2c:ef:7e:a9:4d:2d: 6b:f0:08:7d:04:50:8f:9c:e8:fd:48:5d:ff:8d:d1: 40:69:c8:05:97:b6:20:06:52:30:70:23:53:a4:89: 5e:a4:ff:c4:14:7a:56:54:69:85:76:cd:25:85:05: 68:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:01:50:FC:04:0D:17:35:7D:8A:B3:AC:21:18:2C:B2:60:D8:77:70 X509v3 Authority Key Identifier: keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:69:23:c3:b0:e9:14:d1:76:99:dd:a4:c6:2e:06:14:2f:a7: 76:3d:d2:2a:b0:10:8f:03:2b:c9:27:4b:8e:ca:9c:20:8d:47: 75:40:e6:55:2e:d4:ba:be:1c:1a:c4:a6:c6:b7:ef:2d:07:5b: 4a:dd:bc:f6:20:82:34:ae:85:02:23:de:9d:bb:39:27:7c:46: 59:2e:d7:88:6e:09:76:96:53:2a:11:a2:e9:1b:f0:a1:45:12: 48:b0:ab:f4:72:8c:d6:75:04:08:d2:10:f6:32:f7:42:67:ad: 4b:ff:39:3d:51:5f:e3:fb:0c:5e:62:43:c7:fc:d4:bd:61:31: d6:b7:ee:c7:82:b0:e3:fe:31:11:50:d5:2c:b6:7a:f2:1b:12: 7e:ce:e0:7a:d9:c4:85:45:29:07:e2:44:a1:39:1b:e7:04:7b: a4:7b:83:2e:3d:41:2d:c7:7c:25:53:b6:1f:87:3f:a6:04:55: 02:02:26:07:b8:e6:69:d9:60:14:c1:8a:f7:62:36:df:b6:97: 37:25:2b:23:31:ec:39:b1:ee:5e:62:86:5e:d6:63:e7:4c:44: 07:e1:88:0f:81:c4:65:15:5a:d1:a2:6f:65:76:0a:00:eb:f6: 39:c2:87:c9:6a:5e:7a:0a:84:ad:d2:8b:20:16:70:cd:7b:a4: 21:dd:23:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjWzP04Lv1vKFvNlvs1cvFyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZDBlNzYzZjkzNWMxNzE2OTRmMTcyMDU2ZWI0NDIwOWRi MmUyY2QwHhcNMjUwODIzMTIwMDE0WhcNMjUwODI0MTIwMDE0WjAzMTEwLwYDVQQD EygyNTAxNTBmYzA0MGQxNzM1N2Q4YWIzYWMyMTE4MmNiMjYwZDg3NzcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw2/7Ggk2yLcfyGT9oDBj6XXXyw+0 0M5wFS4RJAw4yG/DEJmuVRsx3V6NcHatoDLJVcitriCIdoujjC6IwlXnIGjYSc2o E+B6Mm5FSI167CIVMb3/BacK5IbW/YMHMMMXHZ/9ZPklMIxF1VbKeZioxsLubARc 9P1rowCdjJma/W0IJ3O/ESIefSzqYkDA1KlIilrNOSayXzDjUS/gRVB71yw0etuo hedn9jJ0azk6tYzaJXSmMhBpYGMMH0bHGrNn2IJg7nh3fro6MKks736pTS1r8Ah9 BFCPnOj9SF3/jdFAacgFl7YgBlIwcCNTpIlepP/EFHpWVGmFds0lhQVoPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCUBUPwEDRc1fYqzrCEYLLJg2HdwMB8GA1UdIwQY MBaAFIXQ52P5NcFxaU8XIFbrRCCdsuLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2Qt ZjEyODM1ZjAyNDdiLzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2QtZjEyODM1ZjAyNDdi LzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf2kjw7Dp FNF2md2kxi4GFC+ndj3SKrAQjwMrySdLjsqcII1HdUDmVS7Uur4cGsSmxrfvLQdb St289iCCNK6FAiPenbs5J3xGWS7XiG4JdpZTKhGi6RvwoUUSSLCr9HKM1nUECNIQ 9jL3QmetS/85PVFf4/sMXmJDx/zUvWEx1rfux4Kw4/4xEVDVLLZ68hsSfs7getnE hUUpB+JEoTkb5wR7pHuDLj1BLcd8JVO2H4c/pgRVAgImB7jmadlgFMGK92I237aX NyUrIzHsObHuXmKGXtZj50xEB+GID4HEZRVa0aJvZXYKAOv2OcKHyWpeegqErdKL IBZwzXukId0jRA== -----END CERTIFICATE-----Generated at Sat Aug 23 19:15:28 2025 by rpki-client