$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.mft File: 71fC2dk6x8-bLxfKp4WbaYWzm50.mft (raw, json) Hash identifier: H2V3jTpUjTTNGuGBTaiscz/g0p5J0com1Fz6mSGdujE= Subject key identifier: 61:D4:91:F4:6E:36:B0:DE:EA:5C:C3:E6:28:53:14:39:40:CB:69:DD Authority key identifier: EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D Certificate issuer: /CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d Certificate serial: 0199FB0F3CA82A29130E28D3060F9A036016 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.mft Manifest number: 1327 Signing time: Sun 19 Oct 2025 06:01:43 +0000 Manifest this update: Sun 19 Oct 2025 06:01:43 +0000 Manifest next update: Mon 20 Oct 2025 06:01:43 +0000 Files and hashes: 1: 0SnEDSu2fch50mXfNCrgepjBXHI.roa (hash: An4Aho4+/IQv1xSA0visBRO6r1aot3IcatgSZ0mIirs=) 2: 1-C-0JGDbp3Otc_z0iBBVBpQZuq4.roa (hash: YGNYUtklrL1awHGcBtsuKJFxwbJZ7yDvoZ7r6abN1Jo=) 3: 4cYZBaSCfKx4xdTyV36QiAtkYH8.roa (hash: 4TbdTxLmlk8EX546dkAWoaHsA8UX5a3+NdKi5edH1kY=) 4: 71fC2dk6x8-bLxfKp4WbaYWzm50.crl (hash: z9+e0hmWvTE3b+UdOIQuUzg/+u56NsoUOU/mV9KNJOA=) 5: CFEprGG9zI2SPXEkfveiqcGkxys.roa (hash: zwoMXpp3WPmfn1e+WeBEAccAThpouC8C+SBbtldgA/c=) 6: OKnFbF9P91_ZXtKJ3LL2trYGZZA.roa (hash: REsU/w11Yq/eW46cSLfnRZY+9FwY7bx6z/QbRrdcMvw=) 7: RLjWAiBDW7OGzF_VcCkKg-SuzTE.roa (hash: DCBINTtLxKJQkC6BRMLb3TMqWlrNb5ZnwJro+/q+QhU=) 8: Xd2QaW60upMnqwQIBHXXIoPXPzs.roa (hash: +i6BQOs/QyU2pk+3pSoh+wtk4Cf+VFJXifr7WtqVoY4=) 9: XoElMCWSXeZbJRYtXiEJ_Emiz2A.roa (hash: LbkB9E2yx3Leo0MqKyox9NLbqbqscRyng+tbBGiff/4=) 10: aQ3kSZGYrFWGAxsW5cMfgI6PR2k.roa (hash: WV200zuYmYOFQxibHNHmLysdFj/S1kHqxW3IuzyrxUs=) 11: d3w3nqB5Kl-FSC0jSCG-gsD4dlY.roa (hash: 33QNQ+kF6mFEetO5Rno9ayPExXyzerB4sZWFH0Ulruk=) 12: kaXih0ftxLoxKevElyyNGY3Am90.roa (hash: VV+Kmbg3++xVZSuR6z9QplDGDyuGw9lzxK6+uDRXc2k=) 13: mMAwso5PyMiUkBDuP91mCU2ukBI.roa (hash: 8lAOzf9Ul80EHkivmkCJNmV8WShjC87n8hXocC2Jg4o=) 14: rL6AzulHQOLcRfhqRrPdMX43AzM.roa (hash: /p4sN3vL44k5lwQiWwAvoayVUuPAubPMAhf99ERn0+c=) 15: uMNtY7j6z6AKDi4NCpmKU3y2WZI.roa (hash: DlfYC3q2Yb6qbTE9YAPELWXUrj/i/KCW+dkXJEGCxlI=) 16: xE9QBs_-I-okZvOErWXLkoKDqmk.roa (hash: PCh0aczn6Bj3Hiz+iIpjZK10Xg+FpiTDJMX+WibJh2o=) 17: yedI6EpedZ28jyB60XNo0uK6oF8.roa (hash: hWsq9urJIZSeMGg4SgxXz+gEuiBCoRbdm4v/CAFQ2CU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.mft rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 06:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:fb:0f:3c:a8:2a:29:13:0e:28:d3:06:0f:9a:03:60:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d Validity Not Before: Oct 19 06:01:43 2025 GMT Not After : Oct 20 06:01:43 2025 GMT Subject: CN=61d491f46e36b0deea5cc3e62853143940cb69dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:16:d8:c5:71:b7:6f:73:c4:7e:a3:34:a5:f0: d2:68:22:38:7e:e0:9e:ff:4f:30:10:c6:5a:e1:15: 1a:37:b6:79:0f:cf:7a:ac:a5:89:c9:2c:b3:b0:a2: bd:3f:bd:49:85:7e:9c:29:dd:2a:1c:cd:0a:f7:23: 99:fa:19:4d:50:95:92:3c:b5:bf:9e:79:f5:48:f8: 59:49:b4:42:92:55:8f:80:80:e5:66:3c:9d:08:8b: 3d:36:ea:b8:82:06:3d:ef:91:fa:5d:e5:6b:49:42: 1f:98:1a:1b:10:60:c3:a4:79:0c:a6:50:63:94:26: 85:27:43:98:11:72:ea:4b:dd:32:64:14:eb:fd:33: 96:67:ce:d6:10:54:19:80:e0:8c:20:5e:25:58:00: e6:b3:6f:db:f2:c7:00:95:b4:ed:2b:31:ee:70:97: f5:59:9b:84:f4:1e:3a:a2:80:b0:1b:d6:18:41:25: 5d:29:e5:c6:3c:34:31:a1:ef:34:53:3d:e5:d6:19: c9:41:d9:9e:6c:49:f7:f0:1a:a5:2a:c4:0d:d3:e9: 76:e3:67:3b:d7:72:58:74:67:92:fe:02:fd:6c:9b: 10:fe:37:34:76:6e:1d:1d:03:50:da:e6:f7:fc:f9: ad:49:28:1c:12:23:37:a8:88:c2:0d:c9:7d:f6:cd: 5f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:D4:91:F4:6E:36:B0:DE:EA:5C:C3:E6:28:53:14:39:40:CB:69:DD X509v3 Authority Key Identifier: keyid:EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:9e:0c:a9:e3:00:6b:af:ba:e0:1b:cd:13:0f:42:29:85:bc: a3:1d:60:fa:37:ff:67:6a:79:60:f2:ac:3f:10:50:ea:f4:4a: d0:75:df:06:2f:32:d2:68:3b:43:a8:41:a2:e7:9b:2b:6c:b7: 1e:00:e9:fa:fc:8b:65:a9:2e:62:9e:f8:ee:3f:12:27:74:bb: 1a:2c:eb:b0:e1:d5:d5:6f:79:4a:62:18:f3:62:56:d6:31:80: 82:fc:c6:22:12:d3:c2:b8:3a:5b:7a:bb:53:7a:0c:7d:aa:c0: 4b:aa:e0:ca:96:4e:9a:98:dc:cd:e2:0f:15:bd:00:e5:09:e9: 4d:91:ac:7c:b7:ca:31:5c:4b:29:ae:d3:68:4f:d4:58:fd:2e: 47:d8:56:77:e7:50:4c:f8:23:bc:d0:a8:ee:55:38:ac:ab:36: db:9d:80:02:ee:34:30:a4:95:6a:68:b8:2d:92:7b:a7:ea:fc: 17:19:c0:3e:91:b0:d4:2e:9f:6d:dd:de:61:cb:12:c3:5c:c0: e0:14:b0:c1:52:58:23:4a:f7:a6:a2:c6:78:0c:c4:50:d4:b9: 59:ab:7a:bb:d3:c0:9f:bd:a3:df:31:46:20:dc:51:29:53:8a: a5:58:2f:8e:11:4e:15:af:25:a0:b1:76:01:bd:70:d5:c0:cb: 78:f8:6a:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZn7DzyoKikTDijTBg+aA2AWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmNTdjMmQ5ZDkzYWM3Y2Y5YjJmMTdjYWE3ODU5YjY5ODVi MzliOWQwHhcNMjUxMDE5MDYwMTQzWhcNMjUxMDIwMDYwMTQzWjAzMTEwLwYDVQQD Eyg2MWQ0OTFmNDZlMzZiMGRlZWE1Y2MzZTYyODUzMTQzOTQwY2I2OWRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRbYxXG3b3PEfqM0pfDSaCI4fuCe /08wEMZa4RUaN7Z5D896rKWJySyzsKK9P71JhX6cKd0qHM0K9yOZ+hlNUJWSPLW/ nnn1SPhZSbRCklWPgIDlZjydCIs9Nuq4ggY975H6XeVrSUIfmBobEGDDpHkMplBj lCaFJ0OYEXLqS90yZBTr/TOWZ87WEFQZgOCMIF4lWADms2/b8scAlbTtKzHucJf1 WZuE9B46ooCwG9YYQSVdKeXGPDQxoe80Uz3l1hnJQdmebEn38BqlKsQN0+l242c7 13JYdGeS/gL9bJsQ/jc0dm4dHQNQ2ub3/PmtSSgcEiM3qIjCDcl99s1f5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGHUkfRuNrDe6lzD5ihTFDlAy2ndMB8GA1UdIwQY MBaAFO9XwtnZOsfPmy8XyqeFm2mFs5udMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzFmQzJkazZ4OC1iTHhmS3A0V2JhWVd6bTUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8xZTA0YjgtMTAzMS00M2Y5LTk2Njct OGU2Zjg3OGRiNWY0LzEvNzFmQzJkazZ4OC1iTHhmS3A0V2JhWVd6bTUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8xZTA0YjgtMTAzMS00M2Y5LTk2NjctOGU2Zjg3OGRiNWY0 LzEvNzFmQzJkazZ4OC1iTHhmS3A0V2JhWVd6bTUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnp4MqeMA a6+64BvNEw9CKYW8ox1g+jf/Z2p5YPKsPxBQ6vRK0HXfBi8y0mg7Q6hBouebK2y3 HgDp+vyLZakuYp747j8SJ3S7GizrsOHV1W95SmIY82JW1jGAgvzGIhLTwrg6W3q7 U3oMfarAS6rgypZOmpjczeIPFb0A5QnpTZGsfLfKMVxLKa7TaE/UWP0uR9hWd+dQ TPgjvNCo7lU4rKs2252AAu40MKSVami4LZJ7p+r8FxnAPpGw1C6fbd3eYcsSw1zA 4BSwwVJYI0r3pqLGeAzEUNS5Wat6u9PAn72j3zFGINxRKVOKpVgvjhFOFa8loLF2 Ab1w1cDLePhqrw== -----END CERTIFICATE-----Generated at Sun Oct 19 12:54:00 2025 by rpki-client