$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.mft File: 71fC2dk6x8-bLxfKp4WbaYWzm50.mft (raw, json) Hash identifier: v72H9HKRP1Gk6vhfgIhgR/KS1WsTl30DbilKb4ExGnk= Subject key identifier: 5F:E0:E0:D5:1A:A8:7B:52:A9:AF:24:DD:AA:D6:61:D6:2C:96:FE:4A Authority key identifier: EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D Certificate issuer: /CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d Certificate serial: 0198D65F6209600FA7D04F4F0CC487F3F423 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.mft Manifest number: 1288 Signing time: Sat 23 Aug 2025 10:00:31 +0000 Manifest this update: Sat 23 Aug 2025 10:00:31 +0000 Manifest next update: Sun 24 Aug 2025 10:00:31 +0000 Files and hashes: 1: 0SnEDSu2fch50mXfNCrgepjBXHI.roa (hash: An4Aho4+/IQv1xSA0visBRO6r1aot3IcatgSZ0mIirs=) 2: 4cYZBaSCfKx4xdTyV36QiAtkYH8.roa (hash: 4TbdTxLmlk8EX546dkAWoaHsA8UX5a3+NdKi5edH1kY=) 3: 71fC2dk6x8-bLxfKp4WbaYWzm50.crl (hash: zYGeQMGIPi36cpEpWVEobqpawBwk/olUh+IVVya1L4o=) 4: CFEprGG9zI2SPXEkfveiqcGkxys.roa (hash: zwoMXpp3WPmfn1e+WeBEAccAThpouC8C+SBbtldgA/c=) 5: EK6XW48thDOhbEqOrZVkF4wNviY.roa (hash: TaMn+E7YE9NMIOz64w+l5qs88ZBiuzDcpLepxVp30kM=) 6: RLjWAiBDW7OGzF_VcCkKg-SuzTE.roa (hash: DCBINTtLxKJQkC6BRMLb3TMqWlrNb5ZnwJro+/q+QhU=) 7: Xd2QaW60upMnqwQIBHXXIoPXPzs.roa (hash: +i6BQOs/QyU2pk+3pSoh+wtk4Cf+VFJXifr7WtqVoY4=) 8: ZWH5dik-57qT_VKYcibYh0fZMes.roa (hash: V4HyXcC7GD93JW+xBhzBdGWwVycZxFz98efL+J+3t6c=) 9: d3w3nqB5Kl-FSC0jSCG-gsD4dlY.roa (hash: 33QNQ+kF6mFEetO5Rno9ayPExXyzerB4sZWFH0Ulruk=) 10: dLVFM6LOXJ7fgmVbzXYVW8I5oYY.roa (hash: p6zpbFHToZdevuasfH2dIun4+77hBuovd01laS+bKxs=) 11: kaXih0ftxLoxKevElyyNGY3Am90.roa (hash: VV+Kmbg3++xVZSuR6z9QplDGDyuGw9lzxK6+uDRXc2k=) 12: mMAwso5PyMiUkBDuP91mCU2ukBI.roa (hash: 8lAOzf9Ul80EHkivmkCJNmV8WShjC87n8hXocC2Jg4o=) 13: rL6AzulHQOLcRfhqRrPdMX43AzM.roa (hash: /p4sN3vL44k5lwQiWwAvoayVUuPAubPMAhf99ERn0+c=) 14: xE9QBs_-I-okZvOErWXLkoKDqmk.roa (hash: PCh0aczn6Bj3Hiz+iIpjZK10Xg+FpiTDJMX+WibJh2o=) 15: yedI6EpedZ28jyB60XNo0uK6oF8.roa (hash: hWsq9urJIZSeMGg4SgxXz+gEuiBCoRbdm4v/CAFQ2CU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.mft rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 05:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:d6:5f:62:09:60:0f:a7:d0:4f:4f:0c:c4:87:f3:f4:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d Validity Not Before: Aug 23 10:00:31 2025 GMT Not After : Aug 24 10:00:31 2025 GMT Subject: CN=5fe0e0d51aa87b52a9af24ddaad661d62c96fe4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:be:92:a7:4d:ec:68:bc:42:00:d6:84:0d:50: 7f:9b:38:9c:e9:cb:92:25:b5:02:89:52:7b:c2:83: 9e:ca:03:a5:b0:1c:c4:55:b8:5d:63:8c:cb:90:d4: 3d:ae:12:34:8d:4e:48:ac:59:43:d4:03:97:c2:ed: 49:eb:5b:36:2c:ef:cf:16:61:b3:3a:8d:3c:34:b6: 31:7b:55:7e:4f:50:c1:58:19:32:07:dc:dd:f0:18: 48:ca:85:fe:8d:62:bb:dc:0f:b0:76:f2:8b:4e:e1: b4:cc:2e:3d:e7:61:6c:2b:da:65:3c:dd:dc:3a:0e: b8:0b:3e:ef:71:55:99:82:25:b9:a6:a6:91:6c:f3: 62:05:5b:ea:87:21:e3:5a:da:1f:bb:57:7d:0f:d7: 72:9d:79:ac:2b:8b:98:ea:2a:fd:91:e9:d5:d4:b8: 4d:b6:a4:a6:36:c4:55:e6:37:49:21:22:a1:cb:b2: 1e:79:1e:29:ba:04:26:16:63:f0:3c:85:a6:2d:39: 8e:a3:0d:0c:90:ea:54:70:e0:c7:6d:12:d9:bb:cb: e2:c0:d7:26:59:08:74:6c:8e:21:0a:6a:e9:af:bc: 29:55:b0:00:51:09:55:17:2a:80:43:2d:e0:fa:50: 70:2d:70:2f:ac:1c:3a:41:2a:21:26:a5:52:7f:a5: d8:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:E0:E0:D5:1A:A8:7B:52:A9:AF:24:DD:AA:D6:61:D6:2C:96:FE:4A X509v3 Authority Key Identifier: keyid:EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b6:18:a6:62:df:f9:41:61:75:fe:ae:49:2f:59:a9:33:ca:f9: ce:90:7e:57:26:3f:82:73:8e:b8:44:08:82:5e:ce:58:f7:0c: 90:4c:69:aa:cd:49:9d:30:de:82:7f:83:13:f5:1c:e4:3c:25: ab:5c:87:ef:d6:3d:06:e0:f2:a8:77:b9:10:cb:88:b5:f7:c5: 1f:48:92:bd:bd:6e:68:87:d4:bc:6d:95:0f:05:c5:39:25:34: c9:70:c7:26:92:05:60:80:16:99:eb:79:24:1a:94:af:7c:fb: 89:55:ce:71:1b:72:96:95:86:44:2a:34:62:12:f6:69:7e:41: 52:0d:ae:69:80:ed:f3:c1:c9:c0:ae:41:db:48:4e:07:46:a6: 27:ba:22:65:7d:bb:79:d9:3d:b4:52:69:ec:d3:bd:88:da:b2: c6:16:f4:06:e0:24:9f:fb:73:fc:82:a7:e7:63:e9:d5:73:88: c3:9e:ea:18:d8:f8:7c:5a:47:2d:30:ef:7b:88:4a:62:73:92: 7b:0a:ba:de:0b:8e:87:e9:ce:73:ab:95:e3:bf:21:13:26:12: 31:d8:be:cc:fd:55:b9:d9:98:42:7f:55:3b:00:62:fe:ea:f5: 84:72:0a:89:20:29:7f:1c:ee:be:f7:b0:d0:4c:7c:54:db:9a: 41:fa:9c:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjWX2IJYA+n0E9PDMSH8/QjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmNTdjMmQ5ZDkzYWM3Y2Y5YjJmMTdjYWE3ODU5YjY5ODVi MzliOWQwHhcNMjUwODIzMTAwMDMxWhcNMjUwODI0MTAwMDMxWjAzMTEwLwYDVQQD Eyg1ZmUwZTBkNTFhYTg3YjUyYTlhZjI0ZGRhYWQ2NjFkNjJjOTZmZTRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx76Sp03saLxCANaEDVB/mzic6cuS JbUCiVJ7woOeygOlsBzEVbhdY4zLkNQ9rhI0jU5IrFlD1AOXwu1J61s2LO/PFmGz Oo08NLYxe1V+T1DBWBkyB9zd8BhIyoX+jWK73A+wdvKLTuG0zC4952FsK9plPN3c Og64Cz7vcVWZgiW5pqaRbPNiBVvqhyHjWtofu1d9D9dynXmsK4uY6ir9kenV1LhN tqSmNsRV5jdJISKhy7IeeR4pugQmFmPwPIWmLTmOow0MkOpUcODHbRLZu8viwNcm WQh0bI4hCmrpr7wpVbAAUQlVFyqAQy3g+lBwLXAvrBw6QSohJqVSf6XYdwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF/g4NUaqHtSqa8k3arWYdYslv5KMB8GA1UdIwQY MBaAFO9XwtnZOsfPmy8XyqeFm2mFs5udMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzFmQzJkazZ4OC1iTHhmS3A0V2JhWVd6bTUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8xZTA0YjgtMTAzMS00M2Y5LTk2Njct OGU2Zjg3OGRiNWY0LzEvNzFmQzJkazZ4OC1iTHhmS3A0V2JhWVd6bTUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8xZTA0YjgtMTAzMS00M2Y5LTk2NjctOGU2Zjg3OGRiNWY0 LzEvNzFmQzJkazZ4OC1iTHhmS3A0V2JhWVd6bTUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAthimYt/5 QWF1/q5JL1mpM8r5zpB+VyY/gnOOuEQIgl7OWPcMkExpqs1JnTDegn+DE/Uc5Dwl q1yH79Y9BuDyqHe5EMuItffFH0iSvb1uaIfUvG2VDwXFOSU0yXDHJpIFYIAWmet5 JBqUr3z7iVXOcRtylpWGRCo0YhL2aX5BUg2uaYDt88HJwK5B20hOB0amJ7oiZX27 edk9tFJp7NO9iNqyxhb0BuAkn/tz/IKn52Pp1XOIw57qGNj4fFpHLTDve4hKYnOS ewq63guOh+nOc6uV478hEyYSMdi+zP1VudmYQn9VOwBi/ur1hHIKiSApfxzuvvew 0Ex8VNuaQfqc5A== -----END CERTIFICATE-----Generated at Sat Aug 23 12:14:41 2025 by rpki-client