$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft File: SSFvXBZbgnp_1z2BB669L2PGPiQ.mft (raw, json) Hash identifier: hhEdYhM1hk3+MjYpCWvW1Fc6N9TPKpuJMiBWeqJ1qhQ= Subject key identifier: 74:0F:5C:4A:D5:44:EF:74:C4:9D:54:B3:42:9D:EB:EA:5C:C3:48:F7 Authority key identifier: 49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24 Certificate issuer: /CN=49216f5c165b827a7fd73d8107aebd2f63c63e24 Certificate serial: 0199FF59471A4F36D60070CA7126570DE437 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft Manifest number: 0803 Signing time: Mon 20 Oct 2025 02:01:04 +0000 Manifest this update: Mon 20 Oct 2025 02:01:04 +0000 Manifest next update: Tue 21 Oct 2025 02:01:04 +0000 Files and hashes: 1: 1-EZfm36xDgODSAJSHjoDKqosl0A.roa (hash: YJXvTARkaZsNuPWx3R0tfgZi43JI9omATgYJzudFfVw=) 2: 3EzuBFNcE3-Y9EKRZTTEJ-hJ0r0.roa (hash: c7Qo95/rDIGaWw+UtmeeU76uTMOHrZiqKPmI6hQSOzo=) 3: 8wPWU2vG9yor96syg0xci6OMavk.roa (hash: 58okY/hMSnPqb+2am85BaYPbNkOmLTFbAoYMmjPkzSM=) 4: A8u38dlgw8e8wVBstLEUX0BIwKA.roa (hash: wMifdjJKZOKPZclZ2LTT2h1hBhv48+8C1YSb4m0Dn8w=) 5: MjYi-LSjoIJQHulT2C8hiHI7HD8.roa (hash: dC5UZCibXUg9xVnIxopZdKZtoheRYoCMgnJyaeHGfKM=) 6: O442f9rKCameMmZGS2am4On1RJE.roa (hash: Tjn+0NJyIaKfDErYElD/Vnb1U5GiOqlQwXo7lUYpajU=) 7: OYN3165s9Ipm3JZkmY2YoXxPwXc.roa (hash: cpcbNpWtjSyDgdmGg67sZ/aJK/DRgTol1F8VTQooe2I=) 8: SSFvXBZbgnp_1z2BB669L2PGPiQ.crl (hash: nc6IjFlSCDJnPigxOnmSp7uPimEmfelLQ17bXq0Z8/c=) 9: XhNIRKox72ceLxS-HicNdteAlnc.roa (hash: QNRbEve8iPmaf5PJ3d4wKSJFvAQJTgfZsNNYbZDbIlc=) 10: gcyVEfl2Y641X6JyrJ5gHsnWGHM.roa (hash: 4fScV3KfjcgkIMTXmX6XzXUXdZUkt2FHTuue2HpZKoE=) 11: i0xOZ9Jhra30YZPBjOHXbYaWfqk.roa (hash: 037VXUJZVI+mWu72PU8YPxD3JLA/Q6+4Wqo2f8ZWqyE=) 12: kTJsplmwURGCaPzG4ayo6wcNo7A.roa (hash: l/8qlEM8+mm6CRnvB68H+M19y+bDF0JqtLE1zP1nToE=) 13: oX3OGzwxfpoj75NeGxUgbWj5Nag.roa (hash: AUpPKp6STpZ3+I37dxgfx0DnwlKN78RdnPEKRCGUs1k=) 14: pSBQwLUPyYWO99fSCGOORj9giws.roa (hash: JkOzR+BpOFLVw+DBFx5vd7D/7xkaT2h6VtCqnTT04N4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 Oct 2025 00:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:ff:59:47:1a:4f:36:d6:00:70:ca:71:26:57:0d:e4:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49216f5c165b827a7fd73d8107aebd2f63c63e24 Validity Not Before: Oct 20 02:01:04 2025 GMT Not After : Oct 21 02:01:04 2025 GMT Subject: CN=740f5c4ad544ef74c49d54b3429debea5cc348f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:69:16:34:4a:66:6f:fa:95:20:34:d6:55:3b: d5:34:a8:b5:3f:7a:24:6e:c6:5a:4e:aa:a6:81:ef: 58:48:67:84:31:16:77:f0:11:54:a3:4b:8d:78:b9: 7d:74:6b:20:73:eb:66:98:99:37:88:fb:f9:b2:00: 26:61:d1:ac:b7:13:b4:26:b7:38:80:a3:d0:68:d4: 08:f9:52:06:e7:b5:d7:f5:1a:48:e1:b7:fa:d6:24: 06:aa:dc:91:32:d2:d1:3e:64:91:3c:dd:9b:2c:b7: 38:e8:80:c8:8f:7e:01:d6:a1:26:f3:14:c0:33:36: 34:b2:47:58:c5:9f:34:b4:ca:f8:4c:d1:6a:3b:d4: 70:46:b3:85:5d:7f:fe:95:78:6a:3b:92:92:c9:c6: 40:ef:77:45:7f:07:1a:76:de:6f:ad:0b:7e:46:65: a3:4b:5e:2d:2c:1a:d1:8b:0f:d7:63:68:27:ea:9c: 6a:92:25:97:05:e2:64:5a:32:62:ba:1a:3c:e6:a9: 30:6f:1d:65:30:a3:c2:af:3a:67:6e:d0:2a:ee:e5: 68:88:04:c2:cb:35:d8:18:47:f0:f6:20:5d:95:7a: ce:aa:86:c3:47:7e:14:3c:47:5a:36:30:a8:2a:e2: ec:30:2c:9c:84:fe:d0:5c:5e:af:dd:1c:31:b5:2e: 34:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:0F:5C:4A:D5:44:EF:74:C4:9D:54:B3:42:9D:EB:EA:5C:C3:48:F7 X509v3 Authority Key Identifier: keyid:49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b4:d3:52:70:9e:dc:d5:1d:ba:4d:69:66:83:b0:1d:cd:42:fe: 2f:c9:c1:75:32:d7:06:a7:1c:82:bc:45:1b:48:79:ce:43:a2: 44:3d:ea:77:28:7b:c7:07:94:80:37:eb:4f:0f:a7:1f:c1:7b: e6:cf:24:a1:79:9b:47:31:67:20:13:6e:ce:2f:14:62:63:c8: 39:c3:34:01:e2:b7:df:ce:f2:65:e3:55:bd:96:25:ce:86:46: 49:b4:fa:16:b9:4a:14:72:66:5f:7b:4d:ca:d6:b5:f7:4b:42: 59:b7:da:2a:7b:31:6e:86:11:a4:62:9c:95:72:08:86:98:d8: 5f:6d:78:4e:a9:69:a7:6e:ae:2d:01:1d:4f:e0:57:f2:8a:9d: b7:c8:b4:7c:2e:b6:87:2e:ca:50:84:3d:b0:97:6c:81:66:7f: 7d:d1:44:6c:4c:f0:30:f7:c5:83:c8:d9:63:33:b9:58:55:68: 77:04:5b:ba:79:0d:1a:74:db:64:00:1d:52:3d:15:a6:b0:c2: e2:21:97:7f:34:5d:c2:60:ac:c9:57:e4:21:b4:1c:56:74:3a: 08:17:a4:7c:23:ed:49:b9:fb:51:48:67:36:e7:14:0c:2f:94: 34:63:d8:3a:f6:09:9f:8b:3d:b9:85:fc:bc:7f:9c:e2:24:0b: 1f:75:43:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZn/WUcaTzbWAHDKcSZXDeQ3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5MjE2ZjVjMTY1YjgyN2E3ZmQ3M2Q4MTA3YWViZDJmNjNj NjNlMjQwHhcNMjUxMDIwMDIwMTA0WhcNMjUxMDIxMDIwMTA0WjAzMTEwLwYDVQQD Eyg3NDBmNWM0YWQ1NDRlZjc0YzQ5ZDU0YjM0MjlkZWJlYTVjYzM0OGY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzmkWNEpmb/qVIDTWVTvVNKi1P3ok bsZaTqqmge9YSGeEMRZ38BFUo0uNeLl9dGsgc+tmmJk3iPv5sgAmYdGstxO0Jrc4 gKPQaNQI+VIG57XX9RpI4bf61iQGqtyRMtLRPmSRPN2bLLc46IDIj34B1qEm8xTA MzY0skdYxZ80tMr4TNFqO9RwRrOFXX/+lXhqO5KSycZA73dFfwcadt5vrQt+RmWj S14tLBrRiw/XY2gn6pxqkiWXBeJkWjJiuho85qkwbx1lMKPCrzpnbtAq7uVoiATC yzXYGEfw9iBdlXrOqobDR34UPEdaNjCoKuLsMCychP7QXF6v3RwxtS40aQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHQPXErVRO90xJ1Us0Kd6+pcw0j3MB8GA1UdIwQY MBaAFEkhb1wWW4J6f9c9gQeuvS9jxj4kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU1NGdlhCWmJnbnBfMXoyQkI2NjlMMlBHUGlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi80ODQyYTktOWZjZC00YmI2LWJiMDQt MGRiYmMyNDllNjU3LzEvU1NGdlhCWmJnbnBfMXoyQkI2NjlMMlBHUGlRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi80ODQyYTktOWZjZC00YmI2LWJiMDQtMGRiYmMyNDllNjU3 LzEvU1NGdlhCWmJnbnBfMXoyQkI2NjlMMlBHUGlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtNNScJ7c 1R26TWlmg7AdzUL+L8nBdTLXBqccgrxFG0h5zkOiRD3qdyh7xweUgDfrTw+nH8F7 5s8koXmbRzFnIBNuzi8UYmPIOcM0AeK3387yZeNVvZYlzoZGSbT6FrlKFHJmX3tN yta190tCWbfaKnsxboYRpGKclXIIhpjYX214Tqlpp26uLQEdT+BX8oqdt8i0fC62 hy7KUIQ9sJdsgWZ/fdFEbEzwMPfFg8jZYzO5WFVodwRbunkNGnTbZAAdUj0VprDC 4iGXfzRdwmCsyVfkIbQcVnQ6CBekfCPtSbn7UUhnNucUDC+UNGPYOvYJn4s9uYX8 vH+c4iQLH3VD4A== -----END CERTIFICATE-----Generated at Mon Oct 20 08:48:07 2025 by rpki-client