$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft File: aZHFbxGnFxxhUyOXafVXvroQGC0.mft (raw, json) Hash identifier: h09EfV4AhuWCl0yTA57pp0oo9jD+y1XQkDeCo2bypKI= Subject key identifier: F4:C1:81:24:42:E7:55:6A:2A:A8:CE:73:38:DF:74:E3:A6:C8:3D:53 Authority key identifier: 69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D Certificate issuer: /CN=6991c56f11a7171c6153239769f557beba10182d Certificate serial: 0198D5BB779572CB368B29C5115EFD39CDDB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft Manifest number: 09BA Signing time: Sat 23 Aug 2025 07:01:29 +0000 Manifest this update: Sat 23 Aug 2025 07:01:29 +0000 Manifest next update: Sun 24 Aug 2025 07:01:29 +0000 Files and hashes: 1: 0ZnUbFz494YaFYXrrvpst6o3vps.roa (hash: OVgxGJmRNj8L4Akc46yjqXSfo2J2UzOCk6rafbqc2OA=) 2: 2R9OObFNaEDkANSZ-coBJRfRpcg.roa (hash: PuD3VMT0jUQBkYxsd7Ldnl6ZWhsJPerlMMUp2zMDWgw=) 3: 3B48XSzrqRQbODZNf87x_kjUhNo.roa (hash: y14T24Ofee6GJVa1mI4/7qxhdq0jl8KEydSAoin8Qhg=) 4: 4Big0S_3eVdxzCi9Q5-ZazqY78k.roa (hash: MZj2ZauIX6SjNg/AhkH3xRZrKv7KoBeknyWj0YQB2/w=) 5: 5KCmcBzgBtGKXXIdhXDGwgQX-Nc.roa (hash: 3MBj03+qouTWcvDDud6sW23ZkQ0DtRDfsHdVwPfcmzA=) 6: BnuRCNG1wcVZgzYhH3AO0QDn6nc.roa (hash: MelnLA0AceokIL7fTEiXdw1iO6Uw+ZhvD5k8pRZYCyE=) 7: F1bmo7MQx4-w8uy_7VLVl4Z5geY.roa (hash: kF+f5ODkGs/wH/b8gRRShuB3RtmW9bOlAZoZAKl8/6w=) 8: GzbjpWWbs-1PqotRsV09E9K9Lz4.roa (hash: DPdOn5R31znLhVjpEt/89hnY5IoUTo1sHiV7ubrKX6Q=) 9: IR0N93wyt194hpjTT9eshHBGwCY.roa (hash: hm8stnovqLivJRd1Zt72YsNy0Lv8colWOGD8fUtYhVw=) 10: Ipr3KewOoeNwtKcMjwWhhMZ4XGk.roa (hash: 3JCwXXZ0yyhMNw7g8hWZGcEbqAf0RiAf0XwSMEKW1/k=) 11: LiReZTb5eM73wM_EtDaxcTNj4Uc.roa (hash: VxzmF2kcB0hEh+Og8NMqll1d/dM5T/PwiOdBSWMF9+w=) 12: NdAX7Rrn7y-KonnG7TF23wCnJFU.roa (hash: 1r3koUbwGBNgbjNaxMGO8L4AUL4EQ4uI3dkO8TUFqEA=) 13: NxKKuEIzsEe5p3RwQBZ8j63Lsc4.roa (hash: mOT2nWmKWDEZ1VeM86bS3Qx+tjUuZhaB/QcxGF5t7y4=) 14: OxLywK9-WD8ykiaZCQkg8aVcCjY.roa (hash: iXcObwE6BigOurV7fYooDfgc8zyVyQ+nTBGFkUMqd08=) 15: PGgQA4lq16a2A-WgJ_ri64lGsRE.roa (hash: Q6QSZCDfq8qNTpDtgedLOR/KuDwL2RUnCSAMtaotxEg=) 16: Qjyx-VfeYJzhQ64OO3GeexbDjpo.roa (hash: rj+IOmmZrJFH/pGr6IiDQ9M39qURzS3Ek11UjeILldM=) 17: US4urt8SGYSwI0nrEmSfY23OtMo.roa (hash: WGkLaX+bRS10FeqEfnkw5XXJQ/dEDlUw6wG2fIeU7p0=) 18: UbTczMXH1DXAp6Y4rzAMo0-vjMY.roa (hash: /5fKT3FRRFYWFa0s/Qas8JVmnywA6hIsUQs3iIAfCSc=) 19: V9MunteQeVICf2ICr71lxQH0Fho.roa (hash: eyd5tdJUMOhtnb51XXGrnbSnVth9KptYyQQSksmwF/U=) 20: Xk5tmPIosW8yWOoBE4vC97DKTmI.roa (hash: n+WSuCldCqJF0J/zIrAAsy8W1NaktFT44ojEQwTF8/A=) 21: Y8kVBgTTg77JqceZAx8eeOkuigc.roa (hash: IFdbCND0Hr2WHlrHfsppyOn82/Cdt+j+/f3Y4nRrJM0=) 22: a75rOpjpaPa3RoX99f00xHpyQQk.roa (hash: pBUN5kZ0kemGdrUfIg4JmP66bIvq4vhJcqUtu9xb4uk=) 23: aZHFbxGnFxxhUyOXafVXvroQGC0.crl (hash: bGYl7Lx9mcoamRf3wpQ07gxlhwpI2rzVKSZk50B+2sM=) 24: cxoHocYfpOLbmWm9vZdeuztX1mM.roa (hash: n6b1cBbTDRO9vvH+MGVzzJhRTNkNJBd2SHTwJhIHGMM=) 25: eSDGXftwPU-DhjYptcEbu97gSEU.roa (hash: 298/MebJAxJVNu0RXxXXDu+aRB+xIjmk2sL/OavJmSI=) 26: gt8flTD_zJibygdA8dyeuF1l6X4.roa (hash: aubI8iptMgWbWF9zUBH11nChoCQulzBZponMqronaCU=) 27: h8jROV5bQoENdkPdOHcG_4qWdVY.roa (hash: glJfimln9Noz47bXSrY5ZJrPDNDjmCoZp6sAhb5XR58=) 28: hd5E-IfEq2TxeShk5Gaec24hUKw.roa (hash: gaGe3UUy/HO5uK3mGo4Jfk2cwdMRK/X0E0rPiNSPI88=) 29: mqFZ_6poK042LnYArfefb64YNZQ.roa (hash: z+bsA4ZcDvX2JPMlTZwVkKpOQPowKJ3wnhxnQ/pVUXU=) 30: r72MZC6TP9HFp69hVblH2z8aLDw.roa (hash: 60a58tQ14AuL0odo9HIWNyGRLIp51J3Om0fY3oCEnBg=) 31: wyYtlqseGv6gXQkCTy30WJ-H2eE.roa (hash: 0/U6xWPb4mk6ryPiHh563SCZx0Tww+D7flQW+39Amak=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 05:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:d5:bb:77:95:72:cb:36:8b:29:c5:11:5e:fd:39:cd:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6991c56f11a7171c6153239769f557beba10182d Validity Not Before: Aug 23 07:01:29 2025 GMT Not After : Aug 24 07:01:29 2025 GMT Subject: CN=f4c1812442e7556a2aa8ce7338df74e3a6c83d53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:08:2c:7c:02:23:36:f1:71:bd:de:5a:cf:cf: d5:e7:f2:05:96:20:e5:73:d2:f2:d9:22:5c:c5:ba: f6:ff:11:c3:c6:62:55:d8:74:0e:cc:64:90:c7:ec: 46:46:73:3f:b3:70:c2:89:a3:ae:77:af:72:2f:18: 3c:a6:76:5a:0a:aa:26:ae:d8:0b:70:56:b3:b0:9d: 8d:57:fd:60:d4:50:05:c3:bf:d1:57:d9:df:58:51: 3b:6f:3d:ab:0b:c1:d8:a4:97:51:af:0a:00:ee:5e: 19:5d:2f:56:44:c7:b8:9c:dc:86:3e:fe:de:e1:cc: 2e:ca:53:a1:66:43:0f:ae:7e:4b:69:67:4e:2d:bd: dd:84:d2:54:17:d7:27:91:3b:64:6d:7d:2a:90:d9: b3:bf:bb:89:c8:22:68:98:1f:a1:7f:21:25:cc:6f: e2:c1:d4:a0:c7:8b:9a:e0:16:66:4d:51:36:84:7e: 3f:f9:94:da:2a:d5:78:bf:cc:a6:0e:78:66:c5:a5: 21:ec:b7:3f:01:23:6a:71:22:5a:8b:e9:92:d5:7e: 20:a3:07:f6:fc:44:57:e6:9a:a7:86:4d:97:5b:5a: 50:29:9c:5a:22:03:39:3e:ee:09:85:bf:d8:e8:d1: 29:2f:81:8f:86:70:bb:73:48:34:de:aa:f9:f0:83: 3f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:C1:81:24:42:E7:55:6A:2A:A8:CE:73:38:DF:74:E3:A6:C8:3D:53 X509v3 Authority Key Identifier: keyid:69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:c7:1e:c1:ac:45:66:03:84:0d:e0:98:e0:f7:15:1b:3c:7e: 9f:29:05:e7:da:0c:3c:08:70:de:fd:6e:33:d6:a8:90:69:56: c7:51:c5:e1:46:ff:b7:a9:15:26:b4:e3:92:62:27:69:5e:db: 79:a0:77:31:74:90:fb:6f:87:5c:8c:97:72:a0:f1:65:2c:72: d0:5f:09:c6:9f:d9:7b:87:53:60:50:f8:b8:a6:51:24:16:8e: 15:f5:71:c6:f6:c8:ab:7c:75:e8:0a:0c:c5:19:07:8b:84:bb: 0b:f5:0d:70:9b:93:5b:0b:24:52:a7:16:c4:5c:51:52:7b:11: 9d:7e:2f:62:b3:ab:0e:e3:5f:c2:14:1f:64:69:0d:7c:7f:f4: 4d:40:60:7b:c9:d1:a0:01:32:f6:44:66:3d:02:1d:c7:e4:aa: 13:eb:4c:e1:ea:b1:a9:44:0a:10:9c:f5:6a:65:20:9d:ed:0b: c9:a2:4c:cc:8a:6c:bd:a3:93:e3:ee:5c:9c:0b:24:0b:db:8b: c9:64:b1:b0:4e:bd:00:91:74:a3:6d:16:d5:c2:27:00:78:65: af:29:70:59:cc:4f:32:6b:83:dd:42:16:b1:df:34:58:38:11: f1:88:cb:dd:41:86:6a:4f:d6:8c:50:95:67:b8:99:fe:42:49: 73:de:a9:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjVu3eVcss2iynFEV79Oc3bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5OTFjNTZmMTFhNzE3MWM2MTUzMjM5NzY5ZjU1N2JlYmEx MDE4MmQwHhcNMjUwODIzMDcwMTI5WhcNMjUwODI0MDcwMTI5WjAzMTEwLwYDVQQD EyhmNGMxODEyNDQyZTc1NTZhMmFhOGNlNzMzOGRmNzRlM2E2YzgzZDUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtggsfAIjNvFxvd5az8/V5/IFliDl c9Ly2SJcxbr2/xHDxmJV2HQOzGSQx+xGRnM/s3DCiaOud69yLxg8pnZaCqomrtgL cFazsJ2NV/1g1FAFw7/RV9nfWFE7bz2rC8HYpJdRrwoA7l4ZXS9WRMe4nNyGPv7e 4cwuylOhZkMPrn5LaWdOLb3dhNJUF9cnkTtkbX0qkNmzv7uJyCJomB+hfyElzG/i wdSgx4ua4BZmTVE2hH4/+ZTaKtV4v8ymDnhmxaUh7Lc/ASNqcSJai+mS1X4gowf2 /ERX5pqnhk2XW1pQKZxaIgM5Pu4Jhb/Y6NEpL4GPhnC7c0g03qr58IM//QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPTBgSRC51VqKqjOczjfdOOmyD1TMB8GA1UdIwQY MBaAFGmRxW8RpxccYVMjl2n1V766EBgtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYt NjVkMTU2NzM0MGZkLzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYtNjVkMTU2NzM0MGZk LzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO8cewaxF ZgOEDeCY4PcVGzx+nykF59oMPAhw3v1uM9aokGlWx1HF4Ub/t6kVJrTjkmInaV7b eaB3MXSQ+2+HXIyXcqDxZSxy0F8Jxp/Ze4dTYFD4uKZRJBaOFfVxxvbIq3x16AoM xRkHi4S7C/UNcJuTWwskUqcWxFxRUnsRnX4vYrOrDuNfwhQfZGkNfH/0TUBge8nR oAEy9kRmPQIdx+SqE+tM4eqxqUQKEJz1amUgne0LyaJMzIpsvaOT4+5cnAskC9uL yWSxsE69AJF0o20W1cInAHhlrylwWcxPMmuD3UIWsd80WDgR8YjL3UGGak/WjFCV Z7iZ/kJJc96ppQ== -----END CERTIFICATE-----Generated at Sat Aug 23 14:07:43 2025 by rpki-client