$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft File: bSDd05jayPYswSUmMl8YIftyT3U.mft (raw, json) Hash identifier: qetGdaM1rd2pVsVqA6zKCtXUqXjg08EUgbv88hGg6HU= Subject key identifier: CD:EA:CB:09:AC:B5:92:19:F1:96:2A:0B:8B:3F:1A:14:E9:77:C6:04 Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Certificate serial: 019A4DAAE973F5AE48F007154692E9DE2798 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft Manifest number: 1610 Signing time: Tue 04 Nov 2025 07:00:37 +0000 Manifest this update: Tue 04 Nov 2025 07:00:37 +0000 Manifest next update: Wed 05 Nov 2025 07:00:37 +0000 Files and hashes: 1: 1-wNbXwWq_rcd31KdtUHBjHqlOYw.roa (hash: Vna41k3RUzjuu4Rno9oMx5pWO8RDhSOU/oHNJLNrfMg=) 2: 1cBjbhQO7ncLuCJPPP3ax-BP1rc.roa (hash: Jy5kekjzCQxDaa0ItIoXnMNYM41DXr2Kna+F8NZUTeI=) 3: 5eRHhosWaEn81OkNyusCZwVd7dE.roa (hash: ocfP0fS6gnrVeOxLsKmob4730X36T0aRDwqF+FQB7po=) 4: 7dOxBPA-NVqHM_R34TmdQX-eiVk.roa (hash: F50CnYYnm4HGmpVuvVtE+trmrhmEhsgxat1JiN/ij8U=) 5: 8hRBXjeqaNVqsRXwD3teVm2IptQ.roa (hash: 7trj/DN0w0nR+thBLV8DeXduqLYmWtu9yjYZdu4vyJw=) 6: DYlegyxuugcrHdLCVkPaKjiFwIA.roa (hash: ZmFhBg5sskdoXlqUSzUPJuG9Erq+ftlETUSEq7NYxR0=) 7: Ff-r3-0iyLfe2eC4tftKl7r4ksA.roa (hash: XBCuFAzYlK+KS0b0qdNX4BGXCyC4kES1ua5iNmQkljo=) 8: Hd6EfoaV6nT3HCN6XaeOjid6KeE.roa (hash: jB+LwnmkqI7LD0NI0i2IOq5xZm+2j2nKXigXc5yngNg=) 9: I-d3mGhKAHlT8J9wAcisFqLqGFQ.roa (hash: +t66xrsaCPSb5WzTrykjh+nmEbajrQRTzYzj7itFceY=) 10: Kdr1IpxFOfOedDgEd0rr_-GJc6w.roa (hash: 4mvPk5YCIebKrrCqmTuHh7apgwePzT2ptGjzqSnMQ2k=) 11: RpFEf2i-KdvJWns5f60QFIiul8A.roa (hash: IhnLzk7nknFDNbFcmh5KMyW66l5exCsFA25jgANhkOU=) 12: S1WNVPH-yhQYVBlY1oxGoA4pYB8.roa (hash: /KwKr2NjkF6vHZXTNqR2GuVfyY5uthmni4bhiTmH1io=) 13: TKHVPCgKWgmlRhWEubfTc_2iNdo.roa (hash: kNRIFdkqpRBsn7JG22+KFQspfd2argAfeCH1zb4/CE4=) 14: V2uTQCIG7cpvASw3b1o6E1FEC9w.roa (hash: lSRRwHc5aUwf96o9oByRNWmxPAHRtbICzuXtltcIQaU=) 15: YC4l494MMi7jTGcWqfTEBZhM2VY.roa (hash: DmaVqTngLmKv88xcCzv/bh/3DcOXypOgid+RGqcY+/k=) 16: aIC6ROQmIBkJtMQV3BLilIyM4Jc.roa (hash: +ZDiWP7vx5S7AAhHLcn6ylil5bTpyx1nO3rHC5JU56A=) 17: bSDd05jayPYswSUmMl8YIftyT3U.crl (hash: WgDyRQ75EAIZDGfnUaGQuKnz7geT9tGMGHxAyc3JR2E=) 18: hmhsGXGseV2PwIXfLkkzy9brjH8.roa (hash: LD7+KdCf6+q+GHIUMNOAE/kbGPimpdSNwZOTxjTUsL4=) 19: mrPMPRRrlkwWoRTckPExVReGdzU.roa (hash: udQkxnQ/puhpRZBZD7aeBvy0qFXVY4xyBvq7R9flC08=) 20: o5T0k_44TSkIgUx_Ff4U-HFRZqU.roa (hash: IFaPUBy92F06F1cq2klHPE/ZCTKON9EkjF2KsBLKJXw=) 21: qSlaLn-7EYhvBs__DrzBebluApA.roa (hash: /m9RdlfwCPFmSdntKKJTP1sX7ETuhSL8wJhpD8u8EQU=) 22: rgzdAffmWWAVB7HsZPyDscdDfUs.roa (hash: PHFUtB9FTI42HYVNCn11UAKgdzJHvZkAvCdcalSeSVs=) 23: vyh_XE53itxxZ2DN3zJiSHad7oQ.roa (hash: BwwJTDqClirjAI8z/+dm20U+LpRGL9usTj1KRJXE4gs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 07:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:4d:aa:e9:73:f5:ae:48:f0:07:15:46:92:e9:de:27:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Validity Not Before: Nov 4 07:00:37 2025 GMT Not After : Nov 5 07:00:37 2025 GMT Subject: CN=cdeacb09acb59219f1962a0b8b3f1a14e977c604 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e0:5f:14:9c:e5:27:b9:80:d8:00:bf:3a:a0: 15:e6:40:25:79:46:55:d9:45:64:91:c7:65:5a:69: 84:a0:62:4c:cb:07:3e:7b:0e:9b:f3:09:89:74:7d: f8:c1:0d:d2:a7:c9:7d:73:ce:67:3f:7d:bc:89:75: 65:a1:ee:63:c9:9b:46:50:44:62:cc:5e:65:86:73: a7:ff:bc:a8:53:7e:b3:71:4c:6b:3c:bf:17:18:9f: 47:da:e4:af:00:be:72:90:fd:49:8d:37:a2:16:d7: 4a:32:9e:19:f0:7a:e8:d5:a0:33:5a:27:37:04:34: 48:9e:bb:4a:7b:da:1b:24:65:d4:00:ec:5c:8b:c8: a9:cc:6f:d2:f6:0f:78:0e:21:47:d0:2c:b8:a8:66: 6e:33:dc:0b:ae:59:60:ab:1f:52:bd:11:7d:12:51: 9f:a4:1d:6e:30:07:66:ef:58:6b:8c:7f:62:fb:e9: 9b:bb:2d:1e:ef:e5:ce:a3:d2:ad:9b:8e:16:19:f2: ed:58:b7:95:e9:b5:a4:52:a1:b9:d5:a8:3c:55:3a: fa:41:dc:4b:51:46:44:56:91:d1:9a:f4:d4:5c:25: 1b:b4:8f:1f:76:4e:c1:fb:ab:5d:d2:5d:81:21:f8: 28:a4:b1:e8:8f:f2:60:70:94:24:74:81:87:01:7f: 3e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:EA:CB:09:AC:B5:92:19:F1:96:2A:0B:8B:3F:1A:14:E9:77:C6:04 X509v3 Authority Key Identifier: keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:e8:27:cd:fb:a9:8c:86:df:b0:1f:12:c7:ea:c6:98:d5:8a: b6:42:46:66:5c:3b:97:c4:7c:6a:0f:d3:7d:dc:fa:1b:90:48: c2:0e:a3:6d:d5:9f:fc:cb:ca:2e:be:7d:9f:bc:8d:76:44:7d: c9:9f:1d:f0:68:36:38:1f:e9:a2:ba:45:3d:bb:30:a7:98:9d: af:74:05:12:8e:8f:81:63:9e:f5:d0:41:60:5e:b9:da:34:09: 9a:af:a9:22:53:8f:9a:f8:30:2f:8f:6b:9b:ea:b8:c6:69:a8: c3:22:73:db:28:4b:03:31:c1:bb:86:88:4d:29:38:23:b2:e8: 09:6e:99:1e:44:09:8a:cc:f1:52:8d:ad:9d:83:33:3e:47:c3: 99:3e:77:77:1a:f1:03:cf:0a:52:51:02:63:f9:05:b2:39:86: 5f:f8:6f:cd:6f:83:01:61:5f:b2:f9:b1:47:1f:88:fe:d0:49: 66:0d:24:37:e2:aa:04:76:85:5d:c0:d9:4c:8b:0e:e2:38:5c: 67:22:8d:aa:d1:59:0d:57:96:6b:1d:36:d7:4c:2f:53:32:13: 2d:be:a1:b0:51:11:0a:0c:1d:8c:46:96:a1:ce:8a:ce:69:f8: b7:31:4f:3b:3b:4a:19:9c:b6:9c:dd:c2:ed:db:f9:89:a6:7c: 5e:e5:d5:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZpNqulz9a5I8AcVRpLp3ieYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMjBkZGQzOThkYWM4ZjYyY2MxMjUyNjMyNWYxODIxZmI3 MjRmNzUwHhcNMjUxMTA0MDcwMDM3WhcNMjUxMTA1MDcwMDM3WjAzMTEwLwYDVQQD EyhjZGVhY2IwOWFjYjU5MjE5ZjE5NjJhMGI4YjNmMWExNGU5NzdjNjA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtuBfFJzlJ7mA2AC/OqAV5kAleUZV 2UVkkcdlWmmEoGJMywc+ew6b8wmJdH34wQ3Sp8l9c85nP328iXVloe5jyZtGUERi zF5lhnOn/7yoU36zcUxrPL8XGJ9H2uSvAL5ykP1JjTeiFtdKMp4Z8Hro1aAzWic3 BDRInrtKe9obJGXUAOxci8ipzG/S9g94DiFH0Cy4qGZuM9wLrllgqx9SvRF9ElGf pB1uMAdm71hrjH9i++mbuy0e7+XOo9Ktm44WGfLtWLeV6bWkUqG51ag8VTr6QdxL UUZEVpHRmvTUXCUbtI8fdk7B+6td0l2BIfgopLHoj/JgcJQkdIGHAX8+TwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM3qywmstZIZ8ZYqC4s/GhTpd8YEMB8GA1UdIwQY MBaAFG0g3dOY2sj2LMElJjJfGCH7ck91MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmIt MzZkZTY1NzIzMmJlLzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmItMzZkZTY1NzIzMmJl LzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcOgnzfup jIbfsB8Sx+rGmNWKtkJGZlw7l8R8ag/Tfdz6G5BIwg6jbdWf/MvKLr59n7yNdkR9 yZ8d8Gg2OB/porpFPbswp5idr3QFEo6PgWOe9dBBYF652jQJmq+pIlOPmvgwL49r m+q4xmmowyJz2yhLAzHBu4aITSk4I7LoCW6ZHkQJiszxUo2tnYMzPkfDmT53dxrx A88KUlECY/kFsjmGX/hvzW+DAWFfsvmxRx+I/tBJZg0kN+KqBHaFXcDZTIsO4jhc ZyKNqtFZDVeWax0210wvUzITLb6hsFERCgwdjEaWoc6Kzmn4tzFPOztKGZy2nN3C 7dv5iaZ8XuXVcw== -----END CERTIFICATE-----Generated at Tue Nov 4 15:05:17 2025 by rpki-client