$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft File: aZHFbxGnFxxhUyOXafVXvroQGC0.mft (raw, json) Hash identifier: JMAiFuu5+4KJq4AoO4vATuA2ss4YPQ+2RhLvGyriPf0= Subject key identifier: 5F:E8:BB:3E:43:59:87:7F:C8:38:18:8D:29:62:34:70:8E:D2:D6:3F Authority key identifier: 69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D Certificate issuer: /CN=6991c56f11a7171c6153239769f557beba10182d Certificate serial: 0199FDD96725115E3D25C40C39557FD48820 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft Manifest number: 0A5C Signing time: Sun 19 Oct 2025 19:01:47 +0000 Manifest this update: Sun 19 Oct 2025 19:01:47 +0000 Manifest next update: Mon 20 Oct 2025 19:01:47 +0000 Files and hashes: 1: 0ZnUbFz494YaFYXrrvpst6o3vps.roa (hash: OVgxGJmRNj8L4Akc46yjqXSfo2J2UzOCk6rafbqc2OA=) 2: 1gMhaWTt9SatCtzXb2x3evmqFAM.roa (hash: 6Y9a57NqqkLkQqCohM5S0/g04HJqvciLd/hsGJkposA=) 3: 2R9OObFNaEDkANSZ-coBJRfRpcg.roa (hash: PuD3VMT0jUQBkYxsd7Ldnl6ZWhsJPerlMMUp2zMDWgw=) 4: 3B48XSzrqRQbODZNf87x_kjUhNo.roa (hash: y14T24Ofee6GJVa1mI4/7qxhdq0jl8KEydSAoin8Qhg=) 5: 4Big0S_3eVdxzCi9Q5-ZazqY78k.roa (hash: MZj2ZauIX6SjNg/AhkH3xRZrKv7KoBeknyWj0YQB2/w=) 6: 5KCmcBzgBtGKXXIdhXDGwgQX-Nc.roa (hash: 3MBj03+qouTWcvDDud6sW23ZkQ0DtRDfsHdVwPfcmzA=) 7: Ge-sdc_RhsJevkQCq5DXSj7W5SM.roa (hash: cppMW1hN3HemsqcEnmgRLycbL6rv3c6Bv6GxyK4Dr7I=) 8: GzbjpWWbs-1PqotRsV09E9K9Lz4.roa (hash: DPdOn5R31znLhVjpEt/89hnY5IoUTo1sHiV7ubrKX6Q=) 9: IR0N93wyt194hpjTT9eshHBGwCY.roa (hash: hm8stnovqLivJRd1Zt72YsNy0Lv8colWOGD8fUtYhVw=) 10: Ipr3KewOoeNwtKcMjwWhhMZ4XGk.roa (hash: 3JCwXXZ0yyhMNw7g8hWZGcEbqAf0RiAf0XwSMEKW1/k=) 11: LiReZTb5eM73wM_EtDaxcTNj4Uc.roa (hash: VxzmF2kcB0hEh+Og8NMqll1d/dM5T/PwiOdBSWMF9+w=) 12: NdAX7Rrn7y-KonnG7TF23wCnJFU.roa (hash: 1r3koUbwGBNgbjNaxMGO8L4AUL4EQ4uI3dkO8TUFqEA=) 13: NxKKuEIzsEe5p3RwQBZ8j63Lsc4.roa (hash: mOT2nWmKWDEZ1VeM86bS3Qx+tjUuZhaB/QcxGF5t7y4=) 14: OxLywK9-WD8ykiaZCQkg8aVcCjY.roa (hash: iXcObwE6BigOurV7fYooDfgc8zyVyQ+nTBGFkUMqd08=) 15: Qjyx-VfeYJzhQ64OO3GeexbDjpo.roa (hash: rj+IOmmZrJFH/pGr6IiDQ9M39qURzS3Ek11UjeILldM=) 16: TvRgaW9-CsNjYomAsfORBTmW3OU.roa (hash: E1pW1tBEDD4gp+efpV/wAMGMYES5LCvHxLW4UcIoHuI=) 17: US4urt8SGYSwI0nrEmSfY23OtMo.roa (hash: WGkLaX+bRS10FeqEfnkw5XXJQ/dEDlUw6wG2fIeU7p0=) 18: UbTczMXH1DXAp6Y4rzAMo0-vjMY.roa (hash: /5fKT3FRRFYWFa0s/Qas8JVmnywA6hIsUQs3iIAfCSc=) 19: V9MunteQeVICf2ICr71lxQH0Fho.roa (hash: eyd5tdJUMOhtnb51XXGrnbSnVth9KptYyQQSksmwF/U=) 20: Xk5tmPIosW8yWOoBE4vC97DKTmI.roa (hash: n+WSuCldCqJF0J/zIrAAsy8W1NaktFT44ojEQwTF8/A=) 21: Y8kVBgTTg77JqceZAx8eeOkuigc.roa (hash: IFdbCND0Hr2WHlrHfsppyOn82/Cdt+j+/f3Y4nRrJM0=) 22: a0il1xPCzL5RX2zRZ16C5yrKQN0.roa (hash: jNHlYD8MG49p1qoIK36TKFr01Lgirahfew8083hVbhQ=) 23: a75rOpjpaPa3RoX99f00xHpyQQk.roa (hash: pBUN5kZ0kemGdrUfIg4JmP66bIvq4vhJcqUtu9xb4uk=) 24: aZHFbxGnFxxhUyOXafVXvroQGC0.crl (hash: ZKsaGn7NMRcOGxLJESU3fzYFEUW6Iau5/lZ7R/EhBZ4=) 25: eSDGXftwPU-DhjYptcEbu97gSEU.roa (hash: 298/MebJAxJVNu0RXxXXDu+aRB+xIjmk2sL/OavJmSI=) 26: e_ENa9NQtcVIjb5O_oQwLQrqTww.roa (hash: AVxIz7N9OcyxU6ZzRtu6hf2VS4z3pFTO7JZMHNOa9PI=) 27: gt8flTD_zJibygdA8dyeuF1l6X4.roa (hash: aubI8iptMgWbWF9zUBH11nChoCQulzBZponMqronaCU=) 28: h8jROV5bQoENdkPdOHcG_4qWdVY.roa (hash: glJfimln9Noz47bXSrY5ZJrPDNDjmCoZp6sAhb5XR58=) 29: hd5E-IfEq2TxeShk5Gaec24hUKw.roa (hash: gaGe3UUy/HO5uK3mGo4Jfk2cwdMRK/X0E0rPiNSPI88=) 30: mqFZ_6poK042LnYArfefb64YNZQ.roa (hash: z+bsA4ZcDvX2JPMlTZwVkKpOQPowKJ3wnhxnQ/pVUXU=) 31: qjt96n4RyTnwKt8f25Hzr4YOzU4.roa (hash: c+NeV173DV29fxhrcPqvFfp6/xCLnBsKjYjqezsWpbo=) 32: r72MZC6TP9HFp69hVblH2z8aLDw.roa (hash: 60a58tQ14AuL0odo9HIWNyGRLIp51J3Om0fY3oCEnBg=) 33: uuETfDd2MFEUFL6j7oWk0rsVxng.roa (hash: gq3xyqmM/tiK/h2Lc/3S6cQaZW777XfzMoLElI6p2tY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 11:18:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:fd:d9:67:25:11:5e:3d:25:c4:0c:39:55:7f:d4:88:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6991c56f11a7171c6153239769f557beba10182d Validity Not Before: Oct 19 19:01:47 2025 GMT Not After : Oct 20 19:01:47 2025 GMT Subject: CN=5fe8bb3e4359877fc838188d296234708ed2d63f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f2:d7:21:2f:50:27:24:7a:58:0e:e3:0e:43: 87:35:65:31:4a:6d:73:98:99:a9:02:4e:61:76:a6: 98:cd:bb:a4:7e:87:8a:b9:81:6f:5e:78:e5:f1:4c: ed:65:df:7a:96:c8:2e:26:78:c2:8e:85:40:91:a4: 57:7b:15:73:c5:45:de:c4:f9:af:07:a6:10:6d:42: c1:06:2e:13:58:26:d6:c8:6e:9f:c0:82:3b:97:98: ec:9f:b0:3c:17:f5:b5:8c:48:30:72:96:50:64:87: c5:03:55:ae:56:0c:04:e2:e4:b4:7f:ef:6a:6b:ca: a5:45:68:b2:78:64:92:2b:9d:64:f9:47:91:c1:89: bc:65:9a:27:09:8d:f2:dd:79:f7:1e:0c:3d:46:78: c8:6c:eb:c3:76:c4:e3:56:a6:b3:13:22:e4:21:fa: 25:21:25:b5:2f:c8:5a:1e:5c:6a:8f:0e:c9:4b:bf: 1a:94:c7:31:1f:99:a2:4c:02:a9:59:9e:21:50:88: 05:15:6a:58:30:88:69:e6:6c:99:6e:ec:1a:12:51: e0:b4:b1:fd:d6:b8:94:3b:7c:78:ce:f5:ea:59:ad: ee:40:b6:08:19:11:2b:3c:b0:67:92:90:2c:56:11: 15:54:70:44:02:f3:7b:1d:11:70:2b:1c:68:20:7b: 25:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:E8:BB:3E:43:59:87:7F:C8:38:18:8D:29:62:34:70:8E:D2:D6:3F X509v3 Authority Key Identifier: keyid:69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:31:63:7b:c6:bb:e0:c5:ae:03:aa:fa:d1:91:37:ca:6a:ad: 4c:55:c6:3c:b6:74:c8:1a:c8:ea:23:c9:c5:88:51:12:d7:4f: 5a:ae:5e:9b:98:02:a3:c1:71:7e:0b:92:1f:e2:8d:36:79:0b: 5b:c5:52:49:14:68:0a:e4:38:b1:5b:11:0a:3b:c7:c4:d1:f5: 5b:59:2e:c1:9e:07:bf:04:95:35:86:f1:ea:b4:30:fe:18:0f: 9a:0a:c6:14:7e:76:b7:72:48:ea:e3:91:5e:9e:4d:d1:be:0a: 38:f5:38:04:18:ec:52:c6:c5:15:0f:d0:84:93:ab:a7:2f:27: f2:8c:f8:e4:ef:fb:41:35:8e:38:11:59:77:88:c9:e4:09:54: be:94:f6:3d:45:73:99:b3:4e:0a:f3:51:78:de:3e:72:70:7d: 16:85:4e:76:9e:3a:c4:7a:b9:cb:2c:bb:87:57:a8:21:f8:63: fb:05:09:1a:dc:f8:7d:14:d7:03:8c:0f:d0:1b:c4:c2:18:1f: 96:75:fc:48:77:db:2f:cf:da:ab:af:78:b6:5a:02:51:1d:e4: fe:63:5e:3a:a7:a2:3b:d8:3f:26:90:09:63:d0:60:da:63:68: 1c:5d:79:2c:72:10:8e:c4:45:bd:a2:c0:ec:db:b4:43:4f:6b: 22:21:c0:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZn92WclEV49JcQMOVV/1IggMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5OTFjNTZmMTFhNzE3MWM2MTUzMjM5NzY5ZjU1N2JlYmEx MDE4MmQwHhcNMjUxMDE5MTkwMTQ3WhcNMjUxMDIwMTkwMTQ3WjAzMTEwLwYDVQQD Eyg1ZmU4YmIzZTQzNTk4NzdmYzgzODE4OGQyOTYyMzQ3MDhlZDJkNjNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqfLXIS9QJyR6WA7jDkOHNWUxSm1z mJmpAk5hdqaYzbukfoeKuYFvXnjl8UztZd96lsguJnjCjoVAkaRXexVzxUXexPmv B6YQbULBBi4TWCbWyG6fwII7l5jsn7A8F/W1jEgwcpZQZIfFA1WuVgwE4uS0f+9q a8qlRWiyeGSSK51k+UeRwYm8ZZonCY3y3Xn3Hgw9RnjIbOvDdsTjVqazEyLkIfol ISW1L8haHlxqjw7JS78alMcxH5miTAKpWZ4hUIgFFWpYMIhp5myZbuwaElHgtLH9 1riUO3x4zvXqWa3uQLYIGRErPLBnkpAsVhEVVHBEAvN7HRFwKxxoIHslQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF/ouz5DWYd/yDgYjSliNHCO0tY/MB8GA1UdIwQY MBaAFGmRxW8RpxccYVMjl2n1V766EBgtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYt NjVkMTU2NzM0MGZkLzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYtNjVkMTU2NzM0MGZk LzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEDFje8a7 4MWuA6r60ZE3ymqtTFXGPLZ0yBrI6iPJxYhREtdPWq5em5gCo8FxfguSH+KNNnkL W8VSSRRoCuQ4sVsRCjvHxNH1W1kuwZ4HvwSVNYbx6rQw/hgPmgrGFH52t3JI6uOR Xp5N0b4KOPU4BBjsUsbFFQ/QhJOrpy8n8oz45O/7QTWOOBFZd4jJ5AlUvpT2PUVz mbNOCvNReN4+cnB9FoVOdp46xHq5yyy7h1eoIfhj+wUJGtz4fRTXA4wP0BvEwhgf lnX8SHfbL8/aq694tloCUR3k/mNeOqeiO9g/JpAJY9Bg2mNoHF15LHIQjsRFvaLA 7Nu0Q09rIiHAAQ== -----END CERTIFICATE-----Generated at Sun Oct 19 20:52:25 2025 by rpki-client