$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft File: 520NqzR6OOK4e1oiovfJ4hwYybw.mft (raw, json) Hash identifier: tdLvAHfwVIKOzD9F+TXBBWFuJzMuSxd3cizRICJIqGI= Subject key identifier: CA:51:DC:3C:08:BA:A1:81:9B:DF:A0:DF:9E:14:5A:71:F6:EC:FE:3E Authority key identifier: E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC Certificate issuer: /CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Certificate serial: 01976C6259181BED8AAF2B269ADD56200E68 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft Manifest number: 107A Signing time: Sat 14 Jun 2025 03:01:14 +0000 Manifest this update: Sat 14 Jun 2025 03:01:14 +0000 Manifest next update: Sun 15 Jun 2025 03:01:14 +0000 Files and hashes: 1: 1-i_ESwYWDKjvxe-cLQFb33q5Qu0.roa (hash: MWN71QN/v297mIABIQi0BIqexEx6vQv3LxWHulQ1lh0=) 2: 3uMGCa1hGu4z3o3-_G7z4ipL-iU.roa (hash: W9UTR4UDUFmqfh0USMFmsobpW7zQlT5fd2b07I+b238=) 3: 520NqzR6OOK4e1oiovfJ4hwYybw.crl (hash: Gp5QHmZ/JnrbZmUpyaGCSHdsZuGhVlXY4AqS3etc9Kg=) 4: 53Cd6ksm6jJ9RlO5imUtuWj1rJA.roa (hash: cQll3lCbJxJtoxzsBZdQMm8ZJ1gmBBCp3yO2flYfKKU=) 5: 5aybWk2Ky5dF88Dl5BHsEFM1SO0.roa (hash: H+JwBN0SZWGViTYdzpWvA1lltG+ihuV8ot5mKPyc2Ag=) 6: D51k8Yufzem8ogKjVaG-BE3-N9Q.roa (hash: LfZnqpQQPapIc1GbVrcmd90U2aDXCgwED1y7JLo14nI=) 7: EEzCfGegHPEpdqTqvMRMlcFre1Y.roa (hash: uwoju1vAFdOs3H0Q+w/qT7aEQBJpMP98DiaXonyIQ9M=) 8: EQAhdlSS1FIFJlau-mazb3tbQD8.roa (hash: EYIWh35VYrIjFevk0wSjam09x/CTgAsspbJddnJMeDU=) 9: PLzlfTmqAL1rzlLN1TFrpHpYMVU.roa (hash: INujx6I3LZF9XIVr4zE9W5J6NHU6IlkfUKgf+j8aJrU=) 10: QCPaGZ8bi2Da50RQ4k8ya1w0dq4.roa (hash: UeTuehE3XWxqnHJAwNv7xL7hPz4xW2vyEJKj+BsbTow=) 11: aAu5S5IbLCTcHF2sjNSq_YvIkRs.roa (hash: Ofs8Vq4O2KmWTmDnq5aKJmZojKw/IVecQ8WTuC45ixk=) 12: fjY_g_wwgFPVt57q0tJYGzzoSDw.roa (hash: qq4Ldl54/taiWut/8vwq9PH71gezdeLMf1VMPmsHUe8=) 13: pw1_qD5J6o76enPdGNTr_4Viub8.roa (hash: L6pLEncIISYEMGBKzu7DbyUXVYEOgT4kfh4modTEATA=) 14: qigZWtFurHaD054OcaOqq49am_w.roa (hash: Sa19eTl0ldE9k7oxfeYcou5g3EZnF3X8bF0Hbur3zdE=) 15: tKmEC4MB5hqVQbFF_5qlwwlDujU.roa (hash: DWWPvUtVR9Z8569/gJySYMoNxwD1GjHbMP8gxFtXEzs=) 16: tRNXUlx68rKP9UOE-hhExB1kws8.roa (hash: +Hd3tIKng2pbogIxn1dcX/j1LNU33NvuDwSbS4tdpEA=) 17: ve2cUb4I36o88cUncaHeOHK5tGk.roa (hash: 6gTupRG97QR/JQvN8ay2tdbOI4Q3EMkpnACGQxjxniI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Jun 2025 01:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:6c:62:59:18:1b:ed:8a:af:2b:26:9a:dd:56:20:0e:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Validity Not Before: Jun 14 03:01:14 2025 GMT Not After : Jun 15 03:01:14 2025 GMT Subject: CN=ca51dc3c08baa1819bdfa0df9e145a71f6ecfe3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:59:fd:53:d5:b8:9e:2e:07:c5:4f:2f:a0:e7: df:31:4e:57:87:2a:b8:8a:5a:ec:63:b8:0d:88:dc: fc:0a:e7:98:ee:e6:2a:fb:f8:ca:2c:95:b1:92:75: 12:fe:af:ac:08:7d:99:bf:82:52:89:b3:70:ae:46: 76:c6:0d:ea:95:ce:42:e5:89:54:7a:2e:37:aa:e0: f9:75:36:d1:90:5d:2a:63:28:22:d2:c1:34:c0:74: 52:68:00:5b:1a:50:6e:99:7d:26:d1:08:8b:55:c7: 4c:69:60:c0:be:2e:4f:9a:14:98:98:6d:d2:af:be: 8a:c7:64:8a:9e:5b:41:2d:cf:39:4e:31:78:53:2e: e1:9e:3e:38:f6:d9:0e:2e:7a:2f:78:b9:72:89:3e: b9:62:a6:cd:65:2a:8b:3c:26:50:bc:c8:d6:c7:90: d9:37:aa:e4:d9:1e:82:b1:01:bc:fd:b8:3a:b1:4d: 83:b6:77:7c:b2:48:e7:02:e2:9d:0a:95:6e:78:55: 4f:39:41:ae:af:42:76:34:63:55:ff:cb:9d:12:16: 79:39:79:41:77:f7:6b:4d:a2:21:c0:da:b5:56:2f: e5:2d:c0:c2:a8:f6:e2:64:9f:12:c6:56:a3:57:31: fd:03:6a:77:e4:2a:37:fa:21:fa:b7:7d:35:f9:64: 58:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:51:DC:3C:08:BA:A1:81:9B:DF:A0:DF:9E:14:5A:71:F6:EC:FE:3E X509v3 Authority Key Identifier: keyid:E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:46:94:76:9e:04:66:de:85:5d:b4:d9:ab:af:0c:50:cf:5c: 5d:25:42:96:e0:3a:4a:b4:cf:54:89:17:a1:ac:7e:d4:bb:c4: be:f3:88:e8:53:24:b3:62:ac:70:5c:30:19:ab:a0:28:d0:2e: ab:f6:53:6e:9c:da:eb:32:ca:49:3e:63:35:ea:dc:dd:63:43: cb:26:08:61:76:c7:ce:af:7b:7e:f1:2f:25:45:79:de:cd:4c: 04:bf:00:19:c6:db:4a:bc:01:61:70:3b:9c:98:d9:4b:b3:1b: 9f:09:30:33:3f:62:df:47:3b:18:dc:cb:73:c3:85:00:a4:b1: 7f:42:27:f7:3a:13:5f:fd:f0:df:48:40:ca:9b:24:fa:2b:d3: 29:b4:ba:2e:2a:c4:9a:bf:e1:6f:bf:d0:17:b8:e4:fc:82:62: 13:30:8b:0c:84:df:a8:86:d4:20:6d:49:29:d6:bb:68:58:9a: 10:29:e3:3c:db:9d:ec:55:d5:e6:45:33:42:55:3d:fa:f5:9c: 2d:ea:4d:6d:a4:69:cb:72:8d:63:8b:5f:ff:bd:b2:9f:80:2a: e8:b4:35:1a:fa:3c:e6:28:5e:ef:21:00:01:05:3b:17:b9:2a: d2:a2:e1:d1:c0:bd:64:2f:0d:8a:05:3f:db:69:3d:f6:57:16: e0:59:6a:68 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdsYlkYG+2Krysmmt1WIA5oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3NmQwZGFiMzQ3YTM4ZTJiODdiNWEyMmEyZjdjOWUyMWMx OGM5YmMwHhcNMjUwNjE0MDMwMTE0WhcNMjUwNjE1MDMwMTE0WjAzMTEwLwYDVQQD EyhjYTUxZGMzYzA4YmFhMTgxOWJkZmEwZGY5ZTE0NWE3MWY2ZWNmZTNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA71n9U9W4ni4HxU8voOffMU5Xhyq4 ilrsY7gNiNz8CueY7uYq+/jKLJWxknUS/q+sCH2Zv4JSibNwrkZ2xg3qlc5C5YlU ei43quD5dTbRkF0qYygi0sE0wHRSaABbGlBumX0m0QiLVcdMaWDAvi5PmhSYmG3S r76Kx2SKnltBLc85TjF4Uy7hnj449tkOLnoveLlyiT65YqbNZSqLPCZQvMjWx5DZ N6rk2R6CsQG8/bg6sU2Dtnd8skjnAuKdCpVueFVPOUGur0J2NGNV/8udEhZ5OXlB d/drTaIhwNq1Vi/lLcDCqPbiZJ8SxlajVzH9A2p35Co3+iH6t301+WRYTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMpR3DwIuqGBm9+g354UWnH27P4+MB8GA1UdIwQY MBaAFOdtDas0ejjiuHtaIqL3yeIcGMm8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDkt YmQzYmZjOTliZGE5LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDktYmQzYmZjOTliZGE5 LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOEaUdp4E Zt6FXbTZq68MUM9cXSVCluA6SrTPVIkXoax+1LvEvvOI6FMks2KscFwwGaugKNAu q/ZTbpza6zLKST5jNerc3WNDyyYIYXbHzq97fvEvJUV53s1MBL8AGcbbSrwBYXA7 nJjZS7MbnwkwMz9i30c7GNzLc8OFAKSxf0In9zoTX/3w30hAypsk+ivTKbS6LirE mr/hb7/QF7jk/IJiEzCLDITfqIbUIG1JKda7aFiaECnjPNud7FXV5kUzQlU9+vWc LepNbaRpy3KNY4tf/72yn4Aq6LQ1Gvo85ihe7yEAAQU7F7kq0qLh0cC9ZC8NigU/ 22k99lcW4FlqaA== -----END CERTIFICATE-----Generated at Sat Jun 14 11:41:29 2025 by rpki-client