$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft File: SSFvXBZbgnp_1z2BB669L2PGPiQ.mft (raw, json) Hash identifier: Mk0q0vPQ2UWLAAsrunziQ9+H3cFi9jvL2idahXK2eAQ= Subject key identifier: 2D:24:63:C2:8A:93:83:C8:D2:F1:8F:83:9D:26:B7:21:B6:ED:61:6A Authority key identifier: 49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24 Certificate issuer: /CN=49216f5c165b827a7fd73d8107aebd2f63c63e24 Certificate serial: 0198D583BF1097518E868A4F8641EDA988B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft Manifest number: 075B Signing time: Sat 23 Aug 2025 06:00:37 +0000 Manifest this update: Sat 23 Aug 2025 06:00:37 +0000 Manifest next update: Sun 24 Aug 2025 06:00:37 +0000 Files and hashes: 1: 6OVwVn3VQiaAA7Ib2JPqmAlUHFI.roa (hash: 8clCDLskVl+sWVebw0y41zKbT0aArg7vOWcNCobO8x0=) 2: 9nEOqGi3_--NX0-5h6fT715ElSE.roa (hash: q/iRA1Cz4NG+otf3xGE1FkrnptD7RCBMfGXAmamLUgo=) 3: O442f9rKCameMmZGS2am4On1RJE.roa (hash: Tjn+0NJyIaKfDErYElD/Vnb1U5GiOqlQwXo7lUYpajU=) 4: PYtBwXCIX2JfibgH-eH6y28_VrI.roa (hash: HiHxBEZ/k5oJMJ4flD5NHFntvssSaUpL19eBPcUrz0Y=) 5: SSFvXBZbgnp_1z2BB669L2PGPiQ.crl (hash: Dc4EctsXtARO4GQlhlKho8YV6xe6RL2P3hSMP+ZtX3E=) 6: UMhd0Fzo1Qp21p8TvZSRcAld0qM.roa (hash: 4QenzMDOzB8PYonQD87vSi12BuXxntOp4K0NR2b99Ak=) 7: XhNIRKox72ceLxS-HicNdteAlnc.roa (hash: QNRbEve8iPmaf5PJ3d4wKSJFvAQJTgfZsNNYbZDbIlc=) 8: cbt5UYBWU90-I4H51A87Oi2DFxY.roa (hash: R/br+wwcRat8/3F9xsQ09U7gUTZ1teWxn7R/EhVkOxE=) 9: eWMDU8HwO4x-gg3ujXJ2STSGGfQ.roa (hash: RDB743TY+2ejVaYtMpnXMPNwKxBcHmk10C4c+qWabCo=) 10: kTJsplmwURGCaPzG4ayo6wcNo7A.roa (hash: l/8qlEM8+mm6CRnvB68H+M19y+bDF0JqtLE1zP1nToE=) 11: oX3OGzwxfpoj75NeGxUgbWj5Nag.roa (hash: AUpPKp6STpZ3+I37dxgfx0DnwlKN78RdnPEKRCGUs1k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 00:37:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:d5:83:bf:10:97:51:8e:86:8a:4f:86:41:ed:a9:88:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49216f5c165b827a7fd73d8107aebd2f63c63e24 Validity Not Before: Aug 23 06:00:37 2025 GMT Not After : Aug 24 06:00:37 2025 GMT Subject: CN=2d2463c28a9383c8d2f18f839d26b721b6ed616a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:a2:9a:49:75:c1:09:7c:36:70:1a:20:41:93: 52:95:a8:2d:28:8a:54:86:4a:75:ad:c8:21:59:4d: e6:e8:f1:f8:34:78:38:35:f6:34:66:a1:66:61:2b: de:5f:7e:4e:81:bb:3c:89:13:bf:ea:2b:24:47:d1: 04:da:8c:21:b4:69:da:54:a6:d6:7a:eb:0c:62:49: 25:10:81:9a:0b:ca:94:f5:28:c6:47:0a:fb:d7:2b: f1:e3:4a:a4:7a:f9:53:28:dc:a7:51:a8:35:b2:f8: 47:f5:76:ae:b2:72:fc:31:36:79:7f:a1:db:e9:70: e5:c0:3b:12:e6:ce:06:f3:34:5e:1c:fe:25:00:89: 6f:14:a0:57:ab:57:14:f7:c7:1f:a4:75:c5:fc:c1: ed:8d:82:b6:54:e4:9f:03:96:19:4c:63:57:5c:32: 3c:8d:01:ac:af:09:49:9d:87:ab:0f:23:c3:25:dd: e6:65:3c:01:9d:54:e9:9a:bb:29:c1:1a:26:bd:da: 84:01:a0:e0:d5:62:d4:cc:8e:e9:f9:97:e2:81:7a: 37:39:e0:f5:86:d3:06:c8:52:49:0f:26:55:04:56: ba:c7:af:ea:81:d5:af:4d:fb:e7:52:c3:e2:27:7d: 62:80:e1:77:7c:b4:47:d9:5f:1a:12:cf:49:52:ad: a0:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:24:63:C2:8A:93:83:C8:D2:F1:8F:83:9D:26:B7:21:B6:ED:61:6A X509v3 Authority Key Identifier: keyid:49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:31:f4:7a:a6:44:51:bd:38:7d:24:f1:4b:d9:5a:a3:a9:17: e8:3c:af:f3:41:5c:a9:3b:e3:2b:9e:9b:54:0c:b4:ca:12:0b: 6e:77:fe:be:a6:4b:f9:93:23:53:b1:84:6a:67:06:51:79:65: 1b:31:76:9b:76:1e:cd:c6:2d:41:70:5b:f8:22:ec:98:19:89: 39:11:10:52:48:a1:ee:c1:c6:45:c3:1f:8c:39:0c:88:fa:f8: ce:b8:24:a6:9d:ce:90:f8:4b:71:18:30:ba:c1:75:42:fa:4b: 69:25:a3:90:d7:1f:92:8a:40:38:65:78:32:f5:8c:65:39:df: 88:12:44:00:32:e6:33:92:f4:d5:d5:9b:97:ac:39:dc:ac:2b: b3:12:f3:bc:d8:48:9a:62:62:46:97:f9:4d:ec:a1:49:be:ae: 64:86:a6:f8:9b:dc:ee:23:14:b6:bc:42:34:2d:25:a8:11:37: 32:3f:88:c4:55:0b:f0:67:38:08:dd:f5:a3:1d:2b:1a:71:a1: b2:34:c2:f1:2f:8c:75:e1:0c:84:2d:ba:65:6e:c6:ea:61:a3: 48:c8:0f:26:59:78:cf:69:03:21:8f:79:e4:78:9f:bc:71:d9: 58:98:b6:65:61:ba:0c:b0:85:d9:96:ab:5f:98:21:0f:bd:a8: 1c:42:90:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjVg78Ql1GOhopPhkHtqYi5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5MjE2ZjVjMTY1YjgyN2E3ZmQ3M2Q4MTA3YWViZDJmNjNj NjNlMjQwHhcNMjUwODIzMDYwMDM3WhcNMjUwODI0MDYwMDM3WjAzMTEwLwYDVQQD EygyZDI0NjNjMjhhOTM4M2M4ZDJmMThmODM5ZDI2YjcyMWI2ZWQ2MTZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlKKaSXXBCXw2cBogQZNSlagtKIpU hkp1rcghWU3m6PH4NHg4NfY0ZqFmYSveX35Ogbs8iRO/6iskR9EE2owhtGnaVKbW eusMYkklEIGaC8qU9SjGRwr71yvx40qkevlTKNynUag1svhH9XausnL8MTZ5f6Hb 6XDlwDsS5s4G8zReHP4lAIlvFKBXq1cU98cfpHXF/MHtjYK2VOSfA5YZTGNXXDI8 jQGsrwlJnYerDyPDJd3mZTwBnVTpmrspwRomvdqEAaDg1WLUzI7p+ZfigXo3OeD1 htMGyFJJDyZVBFa6x6/qgdWvTfvnUsPiJ31igOF3fLRH2V8aEs9JUq2gaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC0kY8KKk4PI0vGPg50mtyG27WFqMB8GA1UdIwQY MBaAFEkhb1wWW4J6f9c9gQeuvS9jxj4kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU1NGdlhCWmJnbnBfMXoyQkI2NjlMMlBHUGlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi80ODQyYTktOWZjZC00YmI2LWJiMDQt MGRiYmMyNDllNjU3LzEvU1NGdlhCWmJnbnBfMXoyQkI2NjlMMlBHUGlRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi80ODQyYTktOWZjZC00YmI2LWJiMDQtMGRiYmMyNDllNjU3 LzEvU1NGdlhCWmJnbnBfMXoyQkI2NjlMMlBHUGlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXzH0eqZE Ub04fSTxS9lao6kX6Dyv80FcqTvjK56bVAy0yhILbnf+vqZL+ZMjU7GEamcGUXll GzF2m3YezcYtQXBb+CLsmBmJOREQUkih7sHGRcMfjDkMiPr4zrgkpp3OkPhLcRgw usF1QvpLaSWjkNcfkopAOGV4MvWMZTnfiBJEADLmM5L01dWbl6w53KwrsxLzvNhI mmJiRpf5TeyhSb6uZIam+Jvc7iMUtrxCNC0lqBE3Mj+IxFUL8Gc4CN31ox0rGnGh sjTC8S+MdeEMhC26ZW7G6mGjSMgPJll4z2kDIY955HifvHHZWJi2ZWG6DLCF2Zar X5ghD72oHEKQNQ== -----END CERTIFICATE-----Generated at Sat Aug 23 09:39:48 2025 by rpki-client