$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.mft File: 71fC2dk6x8-bLxfKp4WbaYWzm50.mft (raw, json) Hash identifier: ZTgqgr6qExLdpbp0mIC0ovVH5dJmvV/n4KBeAB+Ci30= Subject key identifier: 6E:19:67:C8:04:06:A3:70:19:44:C4:73:91:D2:D0:0E:95:C0:CF:B6 Authority key identifier: EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D Certificate issuer: /CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d Certificate serial: 0197B7EA7742C1990EE109E03D66CA507227 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.mft Manifest number: 11EE Signing time: Sat 28 Jun 2025 19:01:25 +0000 Manifest this update: Sat 28 Jun 2025 19:01:25 +0000 Manifest next update: Sun 29 Jun 2025 19:01:25 +0000 Files and hashes: 1: 0SnEDSu2fch50mXfNCrgepjBXHI.roa (hash: An4Aho4+/IQv1xSA0visBRO6r1aot3IcatgSZ0mIirs=) 2: 71fC2dk6x8-bLxfKp4WbaYWzm50.crl (hash: IiaXIgt+CxS1kunZypMVI6GHoGPGfBwegiLVGXV5aaY=) 3: CFEprGG9zI2SPXEkfveiqcGkxys.roa (hash: zwoMXpp3WPmfn1e+WeBEAccAThpouC8C+SBbtldgA/c=) 4: RLjWAiBDW7OGzF_VcCkKg-SuzTE.roa (hash: DCBINTtLxKJQkC6BRMLb3TMqWlrNb5ZnwJro+/q+QhU=) 5: Xd2QaW60upMnqwQIBHXXIoPXPzs.roa (hash: +i6BQOs/QyU2pk+3pSoh+wtk4Cf+VFJXifr7WtqVoY4=) 6: ZWH5dik-57qT_VKYcibYh0fZMes.roa (hash: V4HyXcC7GD93JW+xBhzBdGWwVycZxFz98efL+J+3t6c=) 7: d3w3nqB5Kl-FSC0jSCG-gsD4dlY.roa (hash: 33QNQ+kF6mFEetO5Rno9ayPExXyzerB4sZWFH0Ulruk=) 8: kaXih0ftxLoxKevElyyNGY3Am90.roa (hash: VV+Kmbg3++xVZSuR6z9QplDGDyuGw9lzxK6+uDRXc2k=) 9: mMAwso5PyMiUkBDuP91mCU2ukBI.roa (hash: 8lAOzf9Ul80EHkivmkCJNmV8WShjC87n8hXocC2Jg4o=) 10: n8t1FbmmcHRL1T025PodTqR3IcA.roa (hash: 449VA6EYanQ2mGU5FM+jEwpoRl0iEuk30UHtcfYkgJs=) 11: rL6AzulHQOLcRfhqRrPdMX43AzM.roa (hash: /p4sN3vL44k5lwQiWwAvoayVUuPAubPMAhf99ERn0+c=) 12: xE9QBs_-I-okZvOErWXLkoKDqmk.roa (hash: PCh0aczn6Bj3Hiz+iIpjZK10Xg+FpiTDJMX+WibJh2o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.mft rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 19:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:b7:ea:77:42:c1:99:0e:e1:09:e0:3d:66:ca:50:72:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d Validity Not Before: Jun 28 19:01:25 2025 GMT Not After : Jun 29 19:01:25 2025 GMT Subject: CN=6e1967c80406a3701944c47391d2d00e95c0cfb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:df:30:fb:62:96:e9:3e:62:f5:be:66:2e:7c: a8:39:4c:20:69:ce:a2:e4:f0:98:e5:ad:84:f7:bd: 79:5f:c5:27:4f:1b:14:db:81:90:11:cb:c9:7e:29: 7f:7c:c8:94:d9:d0:82:45:fd:55:ab:f3:5d:30:03: 94:ea:01:26:df:34:80:c9:f8:2d:96:16:d2:79:32: 29:17:67:07:e1:48:02:65:72:6a:64:56:1a:cf:c6: 58:e7:77:ae:7f:df:e9:ae:3e:2e:b8:81:01:01:d0: d3:bb:02:db:af:34:f9:38:21:79:eb:53:27:0c:c5: 7a:35:70:fe:f1:1f:2d:4d:c1:4a:56:67:42:15:64: 08:51:b0:c9:d9:e0:79:2e:22:2b:56:b3:29:80:dc: f6:3d:07:25:65:8f:fc:07:24:b0:50:63:f0:d6:28: 46:05:6d:f9:b0:68:50:ac:61:f1:a6:4a:6b:18:e0: 89:36:ab:47:94:c1:25:98:eb:62:e7:4f:55:f7:11: 12:0a:55:e5:2e:f7:75:e8:12:4d:60:68:66:54:4f: 8a:31:cb:de:38:77:f1:47:d1:44:60:b0:7d:7f:d7: 3d:ce:5a:ff:88:2f:a2:aa:5e:11:06:d8:71:d0:2c: 38:2c:21:6b:88:d2:65:be:47:80:3d:0b:3b:e0:01: 6a:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:19:67:C8:04:06:A3:70:19:44:C4:73:91:D2:D0:0E:95:C0:CF:B6 X509v3 Authority Key Identifier: keyid:EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d3:49:b2:9e:11:88:f4:60:ff:4f:4b:cd:d1:43:99:43:81:28: aa:51:00:64:b0:7c:ea:3b:9e:28:ef:81:ed:18:57:1e:cf:81: dd:e5:ff:79:e5:48:ac:6e:a6:5b:89:aa:9f:31:d7:2b:10:63: fb:2d:50:b6:67:bb:3e:f4:ef:89:c0:c5:8d:90:6a:0d:a1:9d: c8:1f:69:0c:16:37:ab:25:65:d5:97:8a:6b:96:29:98:2b:cf: cf:8f:44:2d:26:e5:8a:f2:35:07:da:51:fa:a3:39:a2:c6:de: bd:11:00:08:1f:03:77:2b:06:f4:da:a1:67:8c:be:57:58:67: 17:60:86:24:03:ce:ee:42:93:6e:62:18:31:63:29:7f:1c:38: c4:3a:68:ec:7a:00:b3:00:82:19:c9:d1:19:e1:00:79:fb:66: 57:94:44:d9:52:7e:85:b4:d6:cb:8f:7f:63:38:2d:e4:ae:65: 64:49:53:c2:66:59:e3:43:a0:9e:8b:f0:7f:f0:8e:5c:1b:03: ff:2b:7c:cc:fb:07:15:6c:da:94:a1:54:ba:42:4a:76:f2:3f: f6:71:35:9c:ba:21:5d:10:ac:6a:31:df:73:50:e0:4a:08:7d: ea:80:3b:59:41:49:ad:01:48:6f:fa:d5:35:1b:a6:11:49:5c: be:30:f8:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZe36ndCwZkO4QngPWbKUHInMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmNTdjMmQ5ZDkzYWM3Y2Y5YjJmMTdjYWE3ODU5YjY5ODVi MzliOWQwHhcNMjUwNjI4MTkwMTI1WhcNMjUwNjI5MTkwMTI1WjAzMTEwLwYDVQQD Eyg2ZTE5NjdjODA0MDZhMzcwMTk0NGM0NzM5MWQyZDAwZTk1YzBjZmI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0d8w+2KW6T5i9b5mLnyoOUwgac6i 5PCY5a2E9715X8UnTxsU24GQEcvJfil/fMiU2dCCRf1Vq/NdMAOU6gEm3zSAyfgt lhbSeTIpF2cH4UgCZXJqZFYaz8ZY53euf9/prj4uuIEBAdDTuwLbrzT5OCF561Mn DMV6NXD+8R8tTcFKVmdCFWQIUbDJ2eB5LiIrVrMpgNz2PQclZY/8BySwUGPw1ihG BW35sGhQrGHxpkprGOCJNqtHlMElmOti509V9xESClXlLvd16BJNYGhmVE+KMcve OHfxR9FEYLB9f9c9zlr/iC+iql4RBthx0Cw4LCFriNJlvkeAPQs74AFq4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG4ZZ8gEBqNwGUTEc5HS0A6VwM+2MB8GA1UdIwQY MBaAFO9XwtnZOsfPmy8XyqeFm2mFs5udMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzFmQzJkazZ4OC1iTHhmS3A0V2JhWVd6bTUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8xZTA0YjgtMTAzMS00M2Y5LTk2Njct OGU2Zjg3OGRiNWY0LzEvNzFmQzJkazZ4OC1iTHhmS3A0V2JhWVd6bTUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8xZTA0YjgtMTAzMS00M2Y5LTk2NjctOGU2Zjg3OGRiNWY0 LzEvNzFmQzJkazZ4OC1iTHhmS3A0V2JhWVd6bTUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA00mynhGI 9GD/T0vN0UOZQ4EoqlEAZLB86jueKO+B7RhXHs+B3eX/eeVIrG6mW4mqnzHXKxBj +y1Qtme7PvTvicDFjZBqDaGdyB9pDBY3qyVl1ZeKa5YpmCvPz49ELSblivI1B9pR +qM5osbevREACB8DdysG9NqhZ4y+V1hnF2CGJAPO7kKTbmIYMWMpfxw4xDpo7HoA swCCGcnRGeEAeftmV5RE2VJ+hbTWy49/Yzgt5K5lZElTwmZZ40Ognovwf/COXBsD /yt8zPsHFWzalKFUukJKdvI/9nE1nLohXRCsajHfc1DgSgh96oA7WUFJrQFIb/rV NRumEUlcvjD47Q== -----END CERTIFICATE-----Generated at Sun Jun 29 04:31:57 2025 by rpki-client