$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft File: SSFvXBZbgnp_1z2BB669L2PGPiQ.mft (raw, json) Hash identifier: WBlzj/u2o8a97VGAAmb0X9saNsX4hTI4iHeivuSFhGA= Subject key identifier: 09:64:C5:BA:75:91:AC:AD:A9:6B:A8:22:14:55:93:86:CC:B1:F4:07 Authority key identifier: 49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24 Certificate issuer: /CN=49216f5c165b827a7fd73d8107aebd2f63c63e24 Certificate serial: 0199FD6AE62A67A7309DBF0D733DA697D880 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft Manifest number: 0802 Signing time: Sun 19 Oct 2025 17:01:05 +0000 Manifest this update: Sun 19 Oct 2025 17:01:05 +0000 Manifest next update: Mon 20 Oct 2025 17:01:05 +0000 Files and hashes: 1: 1-EZfm36xDgODSAJSHjoDKqosl0A.roa (hash: YJXvTARkaZsNuPWx3R0tfgZi43JI9omATgYJzudFfVw=) 2: 3EzuBFNcE3-Y9EKRZTTEJ-hJ0r0.roa (hash: c7Qo95/rDIGaWw+UtmeeU76uTMOHrZiqKPmI6hQSOzo=) 3: 8wPWU2vG9yor96syg0xci6OMavk.roa (hash: 58okY/hMSnPqb+2am85BaYPbNkOmLTFbAoYMmjPkzSM=) 4: A8u38dlgw8e8wVBstLEUX0BIwKA.roa (hash: wMifdjJKZOKPZclZ2LTT2h1hBhv48+8C1YSb4m0Dn8w=) 5: MjYi-LSjoIJQHulT2C8hiHI7HD8.roa (hash: dC5UZCibXUg9xVnIxopZdKZtoheRYoCMgnJyaeHGfKM=) 6: O442f9rKCameMmZGS2am4On1RJE.roa (hash: Tjn+0NJyIaKfDErYElD/Vnb1U5GiOqlQwXo7lUYpajU=) 7: OYN3165s9Ipm3JZkmY2YoXxPwXc.roa (hash: cpcbNpWtjSyDgdmGg67sZ/aJK/DRgTol1F8VTQooe2I=) 8: SSFvXBZbgnp_1z2BB669L2PGPiQ.crl (hash: 9XEnz/DZDUhzbzBpRtBNTJCIe4d/n0zkDTn8VeiGsfA=) 9: XhNIRKox72ceLxS-HicNdteAlnc.roa (hash: QNRbEve8iPmaf5PJ3d4wKSJFvAQJTgfZsNNYbZDbIlc=) 10: gcyVEfl2Y641X6JyrJ5gHsnWGHM.roa (hash: 4fScV3KfjcgkIMTXmX6XzXUXdZUkt2FHTuue2HpZKoE=) 11: i0xOZ9Jhra30YZPBjOHXbYaWfqk.roa (hash: 037VXUJZVI+mWu72PU8YPxD3JLA/Q6+4Wqo2f8ZWqyE=) 12: kTJsplmwURGCaPzG4ayo6wcNo7A.roa (hash: l/8qlEM8+mm6CRnvB68H+M19y+bDF0JqtLE1zP1nToE=) 13: oX3OGzwxfpoj75NeGxUgbWj5Nag.roa (hash: AUpPKp6STpZ3+I37dxgfx0DnwlKN78RdnPEKRCGUs1k=) 14: pSBQwLUPyYWO99fSCGOORj9giws.roa (hash: JkOzR+BpOFLVw+DBFx5vd7D/7xkaT2h6VtCqnTT04N4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 17:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:fd:6a:e6:2a:67:a7:30:9d:bf:0d:73:3d:a6:97:d8:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49216f5c165b827a7fd73d8107aebd2f63c63e24 Validity Not Before: Oct 19 17:01:05 2025 GMT Not After : Oct 20 17:01:05 2025 GMT Subject: CN=0964c5ba7591acada96ba82214559386ccb1f407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:b0:60:81:be:04:12:68:6b:de:4c:08:fa:e7: ed:af:85:b0:15:bf:97:3b:af:f0:53:56:e0:23:c0: 7e:37:58:94:c6:14:82:81:17:d0:37:3d:32:95:42: 42:2a:00:c1:68:4d:2e:e6:91:93:26:cc:a4:e5:2c: 32:56:55:a7:e2:86:f9:81:c3:2b:d0:44:23:be:d0: 1b:8b:c4:5f:40:ab:e1:79:a5:ea:51:f2:f9:a7:0d: c4:9b:ea:93:6a:d3:af:03:28:ac:5c:9b:20:44:ab: f2:9c:67:9e:a0:ec:8e:5e:8c:d9:91:4a:22:63:33: f2:c1:a5:b8:fb:23:07:96:28:d3:dd:4c:74:f3:c1: df:03:7c:a8:92:35:63:12:9a:8f:7c:83:b7:b7:e1: 16:a7:22:e5:aa:a2:22:4d:c6:6f:91:db:58:08:2b: 33:83:ea:d0:c7:b4:b2:b1:94:b2:8a:c7:0b:fe:94: 6c:9a:7b:0f:a0:41:fa:8c:3a:a7:f3:92:00:a9:25: 16:09:a1:98:2c:1e:f1:15:3d:67:2e:54:e6:54:a7: 14:e7:b2:2f:0a:01:d5:8c:bd:e2:a4:58:70:ba:8e: cc:50:8f:fc:71:84:3f:d5:6c:25:24:62:77:76:51: ae:76:5c:d5:f6:30:14:52:d4:5f:07:ce:96:6f:78: fc:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:64:C5:BA:75:91:AC:AD:A9:6B:A8:22:14:55:93:86:CC:B1:F4:07 X509v3 Authority Key Identifier: keyid:49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:05:28:f7:7a:c0:ec:fc:f3:f0:84:7a:8e:bd:bf:39:24:dc: 49:a9:fd:b9:e4:8a:b9:d2:45:be:df:85:28:3f:03:08:9b:c8: b9:07:cc:bc:75:b5:5f:35:ea:40:66:de:b3:5b:cb:ed:9d:5d: db:24:f9:27:90:ff:31:2c:27:a8:71:6c:79:59:20:00:31:74: 2b:9b:e3:a2:40:ae:12:78:6e:c3:14:61:8f:e5:c3:65:0b:23: 9f:f2:73:7c:c1:c5:60:bc:9b:32:5b:ae:d0:f3:fa:38:47:bd: 70:1a:99:a8:73:a5:f0:5b:42:0e:62:21:fa:0a:10:0d:8a:22: 0a:14:2e:f7:d7:87:3b:21:9e:a3:f4:e8:73:76:78:f3:30:61: b6:49:c2:58:79:cb:c6:2e:25:90:7d:c3:52:4a:7e:2a:5f:e0: ab:78:17:da:0f:c2:3a:43:7a:02:60:9d:bb:89:ac:98:e8:e6: cd:94:8e:0d:32:4c:cb:af:3d:95:3a:bd:69:18:52:da:a2:0e: 5c:f8:2a:1f:c1:73:e5:d3:bf:3b:2c:63:23:6c:70:fc:04:74: e0:a2:89:c3:4a:51:28:d2:91:0a:b1:c0:0a:0c:96:ed:ac:29: ec:2c:5c:e9:fd:e8:3b:52:ef:bd:f4:91:bf:ba:fd:93:63:f9: c5:02:e4:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZn9auYqZ6cwnb8Ncz2ml9iAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5MjE2ZjVjMTY1YjgyN2E3ZmQ3M2Q4MTA3YWViZDJmNjNj NjNlMjQwHhcNMjUxMDE5MTcwMTA1WhcNMjUxMDIwMTcwMTA1WjAzMTEwLwYDVQQD EygwOTY0YzViYTc1OTFhY2FkYTk2YmE4MjIxNDU1OTM4NmNjYjFmNDA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmLBggb4EEmhr3kwI+uftr4WwFb+X O6/wU1bgI8B+N1iUxhSCgRfQNz0ylUJCKgDBaE0u5pGTJsyk5SwyVlWn4ob5gcMr 0EQjvtAbi8RfQKvheaXqUfL5pw3Em+qTatOvAyisXJsgRKvynGeeoOyOXozZkUoi YzPywaW4+yMHlijT3Ux088HfA3yokjVjEpqPfIO3t+EWpyLlqqIiTcZvkdtYCCsz g+rQx7SysZSyiscL/pRsmnsPoEH6jDqn85IAqSUWCaGYLB7xFT1nLlTmVKcU57Iv CgHVjL3ipFhwuo7MUI/8cYQ/1WwlJGJ3dlGudlzV9jAUUtRfB86Wb3j8mQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAlkxbp1kaytqWuoIhRVk4bMsfQHMB8GA1UdIwQY MBaAFEkhb1wWW4J6f9c9gQeuvS9jxj4kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU1NGdlhCWmJnbnBfMXoyQkI2NjlMMlBHUGlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi80ODQyYTktOWZjZC00YmI2LWJiMDQt MGRiYmMyNDllNjU3LzEvU1NGdlhCWmJnbnBfMXoyQkI2NjlMMlBHUGlRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi80ODQyYTktOWZjZC00YmI2LWJiMDQtMGRiYmMyNDllNjU3 LzEvU1NGdlhCWmJnbnBfMXoyQkI2NjlMMlBHUGlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGQUo93rA 7Pzz8IR6jr2/OSTcSan9ueSKudJFvt+FKD8DCJvIuQfMvHW1XzXqQGbes1vL7Z1d 2yT5J5D/MSwnqHFseVkgADF0K5vjokCuEnhuwxRhj+XDZQsjn/JzfMHFYLybMluu 0PP6OEe9cBqZqHOl8FtCDmIh+goQDYoiChQu99eHOyGeo/Toc3Z48zBhtknCWHnL xi4lkH3DUkp+Kl/gq3gX2g/COkN6AmCdu4msmOjmzZSODTJMy689lTq9aRhS2qIO XPgqH8Fz5dO/OyxjI2xw/AR04KKJw0pRKNKRCrHACgyW7awp7Cxc6f3oO1LvvfSR v7r9k2P5xQLkow== -----END CERTIFICATE-----Generated at Mon Oct 20 02:31:03 2025 by rpki-client