$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft File: bSDd05jayPYswSUmMl8YIftyT3U.mft (raw, json) Hash identifier: TRJ93Xyot8e3o9VGrGwd591bWO03n87vfD7XVu7sxG8= Subject key identifier: 26:B6:19:F7:55:52:23:23:8A:A4:5C:DD:F4:42:13:A3:A3:30:94:2A Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Certificate serial: 019875626E68332CC8EFE9BE6EB18C5E97C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft Manifest number: 1511 Signing time: Mon 04 Aug 2025 14:00:41 +0000 Manifest this update: Mon 04 Aug 2025 14:00:41 +0000 Manifest next update: Tue 05 Aug 2025 14:00:41 +0000 Files and hashes: 1: 1-wNbXwWq_rcd31KdtUHBjHqlOYw.roa (hash: Vna41k3RUzjuu4Rno9oMx5pWO8RDhSOU/oHNJLNrfMg=) 2: 1cBjbhQO7ncLuCJPPP3ax-BP1rc.roa (hash: Jy5kekjzCQxDaa0ItIoXnMNYM41DXr2Kna+F8NZUTeI=) 3: 8hRBXjeqaNVqsRXwD3teVm2IptQ.roa (hash: 7trj/DN0w0nR+thBLV8DeXduqLYmWtu9yjYZdu4vyJw=) 4: Bx__fFiMMTggkGq_nd5kX3xmUcg.roa (hash: mKBt1ZL1NN3yHJQYqC4MudwNnNLAyAG6zsc+LH7T2yM=) 5: CLnjMLjaN6TgfiTPKuCp1qWork0.roa (hash: MihJ/9Q2aOSD5kcM3rgBq2rOZB5XjrnOSNAyQ0gi6BU=) 6: Ff-r3-0iyLfe2eC4tftKl7r4ksA.roa (hash: XBCuFAzYlK+KS0b0qdNX4BGXCyC4kES1ua5iNmQkljo=) 7: Hd6EfoaV6nT3HCN6XaeOjid6KeE.roa (hash: jB+LwnmkqI7LD0NI0i2IOq5xZm+2j2nKXigXc5yngNg=) 8: Kdr1IpxFOfOedDgEd0rr_-GJc6w.roa (hash: 4mvPk5YCIebKrrCqmTuHh7apgwePzT2ptGjzqSnMQ2k=) 9: MPADllIHWdYho5SL9cNb4fTjF5g.roa (hash: 0EWuYNC8MZ5sfsDzG+GHQhkCofnYevzEpH/1M0Pt09c=) 10: XhfMqezXvZ9Gr1SfZAFxxiBLdqw.roa (hash: QCoblTw77lmvmm3xeIb8Fg5RScedsC6Svua+HgD7wlE=) 11: _363_dFkTrxVWJRfmKGhVcGEYxw.roa (hash: EFI43I2qKJ1jnWCRyPrzhjddU2bZAD3g2m1Gb9lWY6w=) 12: aIC6ROQmIBkJtMQV3BLilIyM4Jc.roa (hash: +ZDiWP7vx5S7AAhHLcn6ylil5bTpyx1nO3rHC5JU56A=) 13: bSDd05jayPYswSUmMl8YIftyT3U.crl (hash: IEMkCQQHyRQDy5OLrajl/4AVjSiqtvPMcsbqBc7f/wg=) 14: irOUAsVrlxFg5m013u0wtydduUU.roa (hash: z7Yif2k8ig/75nD80USkf23TbWyOlu3D9+tkTdBp9Ks=) 15: o5T0k_44TSkIgUx_Ff4U-HFRZqU.roa (hash: IFaPUBy92F06F1cq2klHPE/ZCTKON9EkjF2KsBLKJXw=) 16: q9StAyu8IQxQODGldzud6Hz7gjM.roa (hash: HxF/ydsfM4P76p2qg7HDS8Ct7rDXryB8JaDzIZFolV4=) 17: qSlaLn-7EYhvBs__DrzBebluApA.roa (hash: /m9RdlfwCPFmSdntKKJTP1sX7ETuhSL8wJhpD8u8EQU=) 18: rgzdAffmWWAVB7HsZPyDscdDfUs.roa (hash: PHFUtB9FTI42HYVNCn11UAKgdzJHvZkAvCdcalSeSVs=) 19: vyh_XE53itxxZ2DN3zJiSHad7oQ.roa (hash: BwwJTDqClirjAI8z/+dm20U+LpRGL9usTj1KRJXE4gs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 05 Aug 2025 12:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:75:62:6e:68:33:2c:c8:ef:e9:be:6e:b1:8c:5e:97:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Validity Not Before: Aug 4 14:00:41 2025 GMT Not After : Aug 5 14:00:41 2025 GMT Subject: CN=26b619f7555223238aa45cddf44213a3a330942a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:8e:15:fb:5e:c7:c2:35:9b:50:ec:2e:b3:95: 5d:77:85:45:c3:e7:df:4e:48:ef:69:2a:1f:4a:18: 25:fb:88:7b:02:4e:ed:e5:55:f5:13:44:0b:fa:00: 75:b9:84:ae:63:72:d4:e4:d3:d3:03:a1:fa:96:9a: ae:5f:cc:20:59:b7:9c:46:3b:0c:08:c9:32:57:02: a3:19:84:e7:0e:b7:84:4d:a0:d5:4a:f5:38:9b:5f: b2:6c:71:12:dc:95:66:5b:66:c3:03:1d:19:04:7a: 7a:78:8d:42:24:76:a0:e7:01:7b:7e:93:d9:6c:ea: 76:d1:bf:e3:03:9c:4b:0b:22:50:41:d5:aa:39:3d: 4c:ac:d1:78:7b:1a:6a:1d:1f:e6:1b:11:92:94:f7: 3b:42:5d:6a:66:04:b2:bb:78:53:c3:28:94:aa:a0: 43:c6:0d:22:cc:84:b0:27:70:78:6a:52:fd:b3:3a: a7:72:6f:ae:05:c4:d3:6b:62:fe:06:5d:3d:3a:23: e2:d2:c2:90:90:ff:e6:57:15:5a:bc:43:2c:c0:35: f6:56:a5:8c:2d:b3:f5:20:be:c6:7a:d2:44:39:2e: 71:f1:c2:cf:26:30:33:0b:7b:b8:ab:1c:cd:06:34: c6:83:0a:d1:70:79:ef:99:e2:81:39:09:a9:6a:f8: a0:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:B6:19:F7:55:52:23:23:8A:A4:5C:DD:F4:42:13:A3:A3:30:94:2A X509v3 Authority Key Identifier: keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:89:72:1f:74:ae:4a:53:8b:7d:0c:db:71:95:07:1b:40:8e: fb:b9:8c:97:91:22:05:c0:9f:b9:c1:12:c5:11:32:86:89:f6: 08:31:02:bc:c4:4f:79:07:bb:96:32:9b:9e:72:49:ae:6d:5c: 53:c3:b4:b8:bf:da:0b:7e:19:f0:b1:e8:b2:1f:a9:cf:fb:2e: 90:bb:69:4f:35:d2:55:a6:7d:a7:63:34:53:c4:1b:4a:b5:16: 36:16:20:9c:93:5d:cc:47:65:07:2a:d7:1a:eb:5e:e6:1a:1d: e5:c7:49:a3:74:5d:76:dc:9f:28:72:7b:35:ea:4e:d9:cb:8c: b6:4d:86:ba:7b:41:ff:09:0c:84:2e:12:3a:55:46:7b:d4:39: c3:1b:81:f8:2a:99:9e:10:5f:59:7d:75:f4:3f:5b:3c:a8:45: d9:a5:39:5c:d2:02:d6:0b:df:9a:6c:48:d1:ba:c1:10:74:fd: 5f:e2:db:f7:fc:56:b3:97:9a:eb:0a:32:c8:10:23:9f:75:38: 15:df:35:95:d2:fa:18:2a:4d:2b:5c:f1:ab:01:47:0c:89:8a: 01:90:81:f4:3b:d8:24:32:68:95:0d:01:95:b3:51:23:aa:c2: 48:a5:22:c3:fa:4b:b7:91:10:47:cd:9c:3c:0d:73:51:fd:2e: 13:04:fe:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZh1Ym5oMyzI7+m+brGMXpfIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMjBkZGQzOThkYWM4ZjYyY2MxMjUyNjMyNWYxODIxZmI3 MjRmNzUwHhcNMjUwODA0MTQwMDQxWhcNMjUwODA1MTQwMDQxWjAzMTEwLwYDVQQD EygyNmI2MTlmNzU1NTIyMzIzOGFhNDVjZGRmNDQyMTNhM2EzMzA5NDJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Y4V+17HwjWbUOwus5Vdd4VFw+ff TkjvaSofShgl+4h7Ak7t5VX1E0QL+gB1uYSuY3LU5NPTA6H6lpquX8wgWbecRjsM CMkyVwKjGYTnDreETaDVSvU4m1+ybHES3JVmW2bDAx0ZBHp6eI1CJHag5wF7fpPZ bOp20b/jA5xLCyJQQdWqOT1MrNF4expqHR/mGxGSlPc7Ql1qZgSyu3hTwyiUqqBD xg0izISwJ3B4alL9szqncm+uBcTTa2L+Bl09OiPi0sKQkP/mVxVavEMswDX2VqWM LbP1IL7GetJEOS5x8cLPJjAzC3u4qxzNBjTGgwrRcHnvmeKBOQmpavig7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCa2GfdVUiMjiqRc3fRCE6OjMJQqMB8GA1UdIwQY MBaAFG0g3dOY2sj2LMElJjJfGCH7ck91MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmIt MzZkZTY1NzIzMmJlLzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmItMzZkZTY1NzIzMmJl LzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKolyH3Su SlOLfQzbcZUHG0CO+7mMl5EiBcCfucESxREyhon2CDECvMRPeQe7ljKbnnJJrm1c U8O0uL/aC34Z8LHosh+pz/sukLtpTzXSVaZ9p2M0U8QbSrUWNhYgnJNdzEdlByrX Gute5hod5cdJo3RddtyfKHJ7NepO2cuMtk2GuntB/wkMhC4SOlVGe9Q5wxuB+CqZ nhBfWX119D9bPKhF2aU5XNIC1gvfmmxI0brBEHT9X+Lb9/xWs5ea6woyyBAjn3U4 Fd81ldL6GCpNK1zxqwFHDImKAZCB9DvYJDJolQ0BlbNRI6rCSKUiw/pLt5EQR82c PA1zUf0uEwT+Vw== -----END CERTIFICATE-----Generated at Mon Aug 4 16:00:45 2025 by rpki-client