$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft File: bSDd05jayPYswSUmMl8YIftyT3U.mft (raw, json) Hash identifier: xn4tjLegfcEvBxDaxIlmzxUfbwxCPZ0vVBa7uZoWSp0= Subject key identifier: 7C:4D:A1:F5:AD:76:3D:08:AA:C9:2C:72:8D:90:9E:E2:89:DE:CA:3B Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Certificate serial: 01976E50AA673492852FDCFC03BF9E6B34E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft Manifest number: 1488 Signing time: Sat 14 Jun 2025 12:01:09 +0000 Manifest this update: Sat 14 Jun 2025 12:01:09 +0000 Manifest next update: Sun 15 Jun 2025 12:01:09 +0000 Files and hashes: 1: 1cBjbhQO7ncLuCJPPP3ax-BP1rc.roa (hash: Jy5kekjzCQxDaa0ItIoXnMNYM41DXr2Kna+F8NZUTeI=) 2: 8hRBXjeqaNVqsRXwD3teVm2IptQ.roa (hash: 7trj/DN0w0nR+thBLV8DeXduqLYmWtu9yjYZdu4vyJw=) 3: Bx__fFiMMTggkGq_nd5kX3xmUcg.roa (hash: mKBt1ZL1NN3yHJQYqC4MudwNnNLAyAG6zsc+LH7T2yM=) 4: CLnjMLjaN6TgfiTPKuCp1qWork0.roa (hash: MihJ/9Q2aOSD5kcM3rgBq2rOZB5XjrnOSNAyQ0gi6BU=) 5: Ff-r3-0iyLfe2eC4tftKl7r4ksA.roa (hash: XBCuFAzYlK+KS0b0qdNX4BGXCyC4kES1ua5iNmQkljo=) 6: Hd6EfoaV6nT3HCN6XaeOjid6KeE.roa (hash: jB+LwnmkqI7LD0NI0i2IOq5xZm+2j2nKXigXc5yngNg=) 7: Kdr1IpxFOfOedDgEd0rr_-GJc6w.roa (hash: 4mvPk5YCIebKrrCqmTuHh7apgwePzT2ptGjzqSnMQ2k=) 8: MPADllIHWdYho5SL9cNb4fTjF5g.roa (hash: 0EWuYNC8MZ5sfsDzG+GHQhkCofnYevzEpH/1M0Pt09c=) 9: XhfMqezXvZ9Gr1SfZAFxxiBLdqw.roa (hash: QCoblTw77lmvmm3xeIb8Fg5RScedsC6Svua+HgD7wlE=) 10: _363_dFkTrxVWJRfmKGhVcGEYxw.roa (hash: EFI43I2qKJ1jnWCRyPrzhjddU2bZAD3g2m1Gb9lWY6w=) 11: aIC6ROQmIBkJtMQV3BLilIyM4Jc.roa (hash: +ZDiWP7vx5S7AAhHLcn6ylil5bTpyx1nO3rHC5JU56A=) 12: bSDd05jayPYswSUmMl8YIftyT3U.crl (hash: ocQATtBb6LNWfiaSXlT66wlABCPo1UXau/M5AcusxdM=) 13: irOUAsVrlxFg5m013u0wtydduUU.roa (hash: z7Yif2k8ig/75nD80USkf23TbWyOlu3D9+tkTdBp9Ks=) 14: o5T0k_44TSkIgUx_Ff4U-HFRZqU.roa (hash: IFaPUBy92F06F1cq2klHPE/ZCTKON9EkjF2KsBLKJXw=) 15: q9StAyu8IQxQODGldzud6Hz7gjM.roa (hash: HxF/ydsfM4P76p2qg7HDS8Ct7rDXryB8JaDzIZFolV4=) 16: qSlaLn-7EYhvBs__DrzBebluApA.roa (hash: /m9RdlfwCPFmSdntKKJTP1sX7ETuhSL8wJhpD8u8EQU=) 17: rgzdAffmWWAVB7HsZPyDscdDfUs.roa (hash: PHFUtB9FTI42HYVNCn11UAKgdzJHvZkAvCdcalSeSVs=) 18: vyh_XE53itxxZ2DN3zJiSHad7oQ.roa (hash: BwwJTDqClirjAI8z/+dm20U+LpRGL9usTj1KRJXE4gs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Jun 2025 10:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:6e:50:aa:67:34:92:85:2f:dc:fc:03:bf:9e:6b:34:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Validity Not Before: Jun 14 12:01:09 2025 GMT Not After : Jun 15 12:01:09 2025 GMT Subject: CN=7c4da1f5ad763d08aac92c728d909ee289deca3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6c:4c:f0:b5:4e:dd:68:25:df:f7:bd:ef:78: f2:c7:84:3b:43:da:2a:31:fe:df:7d:a3:68:d8:8a: d4:22:81:e7:a5:3a:ad:e9:48:0a:f8:ec:66:3f:92: e3:d7:aa:a8:a0:ad:b6:d8:99:2b:6e:b3:ce:c8:8b: de:cd:49:87:32:3c:be:94:14:6a:52:84:e0:71:72: 49:ec:fa:5c:6e:2d:22:f2:01:02:04:b9:62:1e:d9: a5:eb:46:9b:48:93:e1:e3:a3:e0:b9:36:e9:46:10: 79:02:04:29:02:e1:bf:84:a3:ff:25:a5:90:91:8e: 4d:10:74:a3:57:78:43:5d:f3:c1:7c:9e:b7:84:7b: 04:9b:e9:ee:91:71:50:d5:ab:5f:61:be:3e:79:eb: 19:30:3b:4a:1b:42:fc:7d:47:7a:b6:c4:ee:ea:fe: a6:38:28:80:76:be:76:13:a0:b2:ae:72:4e:24:3b: 65:c2:ee:67:40:b9:ee:68:af:69:6f:51:b2:b4:c6: 2a:ab:fd:25:5b:f1:63:66:d1:61:25:f6:8d:5b:7b: 4e:d3:e9:b0:1c:9d:35:eb:de:67:b8:0d:72:32:f3: 90:6b:9b:2d:d2:ab:da:7f:70:d0:d2:08:76:f5:5b: 19:c5:a8:78:6c:19:d5:49:b4:73:ca:9c:b3:ef:72: 87:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:4D:A1:F5:AD:76:3D:08:AA:C9:2C:72:8D:90:9E:E2:89:DE:CA:3B X509v3 Authority Key Identifier: keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:95:bf:2c:95:b8:9e:d1:f5:f7:06:b3:19:80:f8:e0:cc:71: 13:3b:4f:eb:46:47:7b:0c:fe:ba:f5:fe:9d:b7:2e:0c:92:99: 5c:6c:db:a9:6b:f7:2a:ad:cd:b0:37:e8:f2:d9:a7:dc:6b:77: b7:8b:b2:96:91:d9:95:b0:f6:30:b2:75:45:57:af:0f:a3:e6: 16:cd:25:cd:b7:ce:42:1d:5e:3c:80:b0:c7:b9:08:38:c1:1d: 10:87:de:9a:25:d4:35:59:cd:62:15:e9:25:11:3c:8b:33:46: 3e:19:d9:4e:71:df:8b:40:7e:c7:2e:17:7a:6d:b3:d3:7f:64: 85:36:e7:3d:aa:05:94:7b:3a:39:5d:92:18:7a:5f:b9:58:bb: f2:0f:9a:2b:63:b9:df:87:91:d5:a8:be:f4:ad:b6:67:a4:98: fb:c3:af:89:3e:2e:65:ce:67:c5:ff:31:e3:80:57:78:01:de: 7d:1b:28:58:3d:d8:b0:8f:95:f0:f7:e1:c9:63:8a:ea:4b:78: d8:6a:e7:a1:14:76:ea:f1:44:31:ed:56:ff:43:87:f8:4e:4d: 09:82:57:f1:15:0e:11:b8:b2:f0:4f:f6:f1:13:90:c9:22:3f: b2:f8:1f:61:d9:8d:45:df:ba:71:5b:a8:fb:55:0d:f5:d3:66: 72:e8:6d:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZduUKpnNJKFL9z8A7+eazTkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMjBkZGQzOThkYWM4ZjYyY2MxMjUyNjMyNWYxODIxZmI3 MjRmNzUwHhcNMjUwNjE0MTIwMTA5WhcNMjUwNjE1MTIwMTA5WjAzMTEwLwYDVQQD Eyg3YzRkYTFmNWFkNzYzZDA4YWFjOTJjNzI4ZDkwOWVlMjg5ZGVjYTNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw2xM8LVO3Wgl3/e973jyx4Q7Q9oq Mf7ffaNo2IrUIoHnpTqt6UgK+OxmP5Lj16qooK222JkrbrPOyIvezUmHMjy+lBRq UoTgcXJJ7Ppcbi0i8gECBLliHtml60abSJPh46PguTbpRhB5AgQpAuG/hKP/JaWQ kY5NEHSjV3hDXfPBfJ63hHsEm+nukXFQ1atfYb4+eesZMDtKG0L8fUd6tsTu6v6m OCiAdr52E6CyrnJOJDtlwu5nQLnuaK9pb1GytMYqq/0lW/FjZtFhJfaNW3tO0+mw HJ01695nuA1yMvOQa5st0qvaf3DQ0gh29VsZxah4bBnVSbRzypyz73KH2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHxNofWtdj0Iqsksco2QnuKJ3so7MB8GA1UdIwQY MBaAFG0g3dOY2sj2LMElJjJfGCH7ck91MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmIt MzZkZTY1NzIzMmJlLzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmItMzZkZTY1NzIzMmJl LzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKZW/LJW4 ntH19wazGYD44MxxEztP60ZHewz+uvX+nbcuDJKZXGzbqWv3Kq3NsDfo8tmn3Gt3 t4uylpHZlbD2MLJ1RVevD6PmFs0lzbfOQh1ePICwx7kIOMEdEIfemiXUNVnNYhXp JRE8izNGPhnZTnHfi0B+xy4Xem2z039khTbnPaoFlHs6OV2SGHpfuVi78g+aK2O5 34eR1ai+9K22Z6SY+8OviT4uZc5nxf8x44BXeAHefRsoWD3YsI+V8PfhyWOK6kt4 2GrnoRR26vFEMe1W/0OH+E5NCYJX8RUOEbiy8E/28ROQySI/svgfYdmNRd+6cVuo +1UN9dNmcuhtOw== -----END CERTIFICATE-----Generated at Sat Jun 14 19:52:03 2025 by rpki-client