$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft File: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft (raw, json) Hash identifier: KQG5Xc5C304vGZBj9E8m/3nEVUtu6RoFD6dhzlFj5SM= Subject key identifier: 34:6E:BD:56:B0:5B:F8:72:73:54:1F:BA:18:DF:7D:C4:35:72:18:34 Authority key identifier: 23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62 Certificate issuer: /CN=23259da3b1b38ca0939f490fb9043fcd89cfd062 Certificate serial: 019A4F2B41849B3B37850941DF4141E58872 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft Manifest number: 1717 Signing time: Tue 04 Nov 2025 14:00:26 +0000 Manifest this update: Tue 04 Nov 2025 14:00:26 +0000 Manifest next update: Wed 05 Nov 2025 14:00:26 +0000 Files and hashes: 1: 5AXDwMNDZZJ0p2E5YCI5vVZD8a4.roa (hash: FFW/pHdY/n3mzgFNkaOSLkOhdoLgzZsHvl8kfEiEWu8=) 2: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl (hash: ZuF3ZuYWi/IdMdyTLw1tM0gb5QQAFJOMpVSC2RCtlaA=) 3: J0xQ_1w-gFpYF0LKQsYsfk-VGSQ.roa (hash: BG3PKtX8/a+ywGlKRJT/ICLStEzmSbRCf01OUsYWJWQ=) 4: JqGjYzJUHlyPRNKT7Gdae1GdJUA.roa (hash: /ZlOeq2y9fIyqYcQI5TRRc+qHPMMjEQDsJbQfMP47Os=) 5: KP1-R8Ozo5sN8i5g7eaE07K0eTQ.roa (hash: mLvAtndHxWdPvRVZIiOq/nwf/VdytfBFv0z3meNar9k=) 6: Qx2_RHRctf32pDo6Ld_wrMI7fd8.roa (hash: hDrMyW+0exQk+cf4mu6FMV+aN0cWstWHfqosAD9dRy0=) 7: Rlb2tOHsLeLyjP1RSURryd9jvec.roa (hash: jecxIoKlBvw6gWyoJ8u8/wuvD6cFE1AGV7OziEZZTXs=) 8: W08HMn4p6kVqze5MDixmPqgVV3Q.roa (hash: jlOVPZJCuEAwn3iEzzJNLFkpo/PRQpHf+dW9CA2qsug=) 9: ZaM9jNyw62egtMMXYnGxszrNY3k.roa (hash: IjXCT+wQnlaMHMU5neUWgppwJ+IMB7wimw7ZMxVicdg=) 10: _zKodDelYzkycuOaCvmIVNehVaU.roa (hash: 06Jd/JDGW6Xe4+7xG76Qs6GUdZwHdMuLomnrIM9Qkbg=) 11: cf3WHfeWDYu7TWnELnXzycteCaY.roa (hash: TcxuwVKWwTiShtI0Unrv/gZ/YwHGK8T1H3ocBzBxMZk=) 12: fuo8dYdaswIRyEIz4oPsApWqGJc.roa (hash: TgHuzsK6LNwJZxHjJiXaEYIfR/pJeI5Px7YOwniHSmE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 09:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:4f:2b:41:84:9b:3b:37:85:09:41:df:41:41:e5:88:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23259da3b1b38ca0939f490fb9043fcd89cfd062 Validity Not Before: Nov 4 14:00:26 2025 GMT Not After : Nov 5 14:00:26 2025 GMT Subject: CN=346ebd56b05bf87273541fba18df7dc435721834 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:59:f9:53:0e:92:68:eb:f3:7e:62:fe:5f:d3: 4c:e6:7f:8e:d2:bf:e2:26:e4:23:d3:4c:24:39:6b: 16:c6:8a:57:b6:37:97:8a:a9:1b:59:ef:40:c2:05: 31:b8:76:d1:57:e8:d3:ec:84:b6:18:c1:a5:df:21: 8f:ce:01:99:03:4c:51:2e:29:4b:8e:dd:67:1b:99: 19:1c:34:f1:11:60:9f:b4:08:70:35:8f:8d:a5:33: 05:9b:f9:07:3b:3d:47:7d:5e:54:a0:be:1d:10:9d: 4b:6d:57:53:7f:12:71:e3:13:0e:a5:79:27:a1:93: d6:58:48:fb:a2:65:7e:c0:f5:c8:22:12:49:d5:44: b9:06:b4:16:97:54:d2:7b:c4:72:d9:49:c2:ba:90: ba:37:94:3f:ad:1b:46:82:1b:8a:2a:08:b2:34:9e: ee:b3:99:d8:53:44:a9:ef:c6:04:4f:75:91:07:a8: c8:02:bb:77:f8:18:e7:ac:ed:8a:95:d6:12:ba:83: 67:cf:81:b5:eb:a7:b2:82:a8:93:48:a2:d1:da:91: ad:75:97:0d:21:ea:6b:1b:6c:75:31:13:30:e3:cf: 6b:97:39:af:ee:45:88:a1:67:0c:16:40:38:7b:d8: cb:c1:26:8d:4e:27:2f:39:30:e1:16:91:d1:21:5d: 38:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:6E:BD:56:B0:5B:F8:72:73:54:1F:BA:18:DF:7D:C4:35:72:18:34 X509v3 Authority Key Identifier: keyid:23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:7d:e2:08:88:cb:c4:fd:a6:4d:bc:46:45:b9:04:6d:d2:a9: 4f:c5:24:a6:2e:1f:f6:76:ca:8d:1e:8c:4b:60:98:a6:8c:26: de:12:1f:0f:a5:47:5f:a8:f4:85:55:15:78:91:68:dc:65:14: 97:5b:6f:be:d2:15:a0:e5:73:89:b9:d4:dd:15:5a:34:9e:68: 9a:98:2e:44:09:16:2b:0e:09:80:08:d1:b5:5f:a5:1b:20:15: 50:eb:ee:91:01:e7:99:bf:84:2b:92:57:45:bf:9e:6e:b8:6d: dc:4e:9c:06:91:f4:39:f1:e8:67:13:0e:01:27:57:bd:44:06: 75:53:2a:d7:a1:5d:84:98:f0:5a:a8:6a:ed:ec:21:4c:31:a8: db:00:6d:67:5b:45:74:04:d2:33:e7:57:40:79:95:2a:25:70: 8a:4e:ad:f3:2a:7d:bb:2a:23:46:10:56:95:8f:14:20:9d:f0: f7:95:b2:bb:96:b3:09:fc:23:36:14:fb:41:7c:3c:25:c9:f5: a0:e0:41:37:bf:57:9d:79:b1:7e:ee:66:f7:96:3e:7d:94:df: 1f:c3:87:50:ed:32:3d:ac:97:7e:f3:87:bd:44:b0:7b:91:cd: 41:72:03:0c:fe:8e:ba:cd:a7:17:76:4a:cb:ef:c0:86:0b:95: e2:82:f2:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZpPK0GEmzs3hQlB30FB5YhyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzMjU5ZGEzYjFiMzhjYTA5MzlmNDkwZmI5MDQzZmNkODlj ZmQwNjIwHhcNMjUxMTA0MTQwMDI2WhcNMjUxMTA1MTQwMDI2WjAzMTEwLwYDVQQD EygzNDZlYmQ1NmIwNWJmODcyNzM1NDFmYmExOGRmN2RjNDM1NzIxODM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyVn5Uw6SaOvzfmL+X9NM5n+O0r/i JuQj00wkOWsWxopXtjeXiqkbWe9AwgUxuHbRV+jT7IS2GMGl3yGPzgGZA0xRLilL jt1nG5kZHDTxEWCftAhwNY+NpTMFm/kHOz1HfV5UoL4dEJ1LbVdTfxJx4xMOpXkn oZPWWEj7omV+wPXIIhJJ1US5BrQWl1TSe8Ry2UnCupC6N5Q/rRtGghuKKgiyNJ7u s5nYU0Sp78YET3WRB6jIArt3+BjnrO2KldYSuoNnz4G166eygqiTSKLR2pGtdZcN IeprG2x1MRMw489rlzmv7kWIoWcMFkA4e9jLwSaNTicvOTDhFpHRIV04kwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDRuvVawW/hyc1QfuhjffcQ1chg0MB8GA1UdIwQY MBaAFCMlnaOxs4ygk59JD7kEP82Jz9BiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUt NjU0ZGQ2NDQyY2U0LzEvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUtNjU0ZGQ2NDQyY2U0 LzEvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFn3iCIjL xP2mTbxGRbkEbdKpT8Ukpi4f9nbKjR6MS2CYpowm3hIfD6VHX6j0hVUVeJFo3GUU l1tvvtIVoOVzibnU3RVaNJ5ompguRAkWKw4JgAjRtV+lGyAVUOvukQHnmb+EK5JX Rb+ebrht3E6cBpH0OfHoZxMOASdXvUQGdVMq16FdhJjwWqhq7ewhTDGo2wBtZ1tF dATSM+dXQHmVKiVwik6t8yp9uyojRhBWlY8UIJ3w95Wyu5azCfwjNhT7QXw8Jcn1 oOBBN79XnXmxfu5m95Y+fZTfH8OHUO0yPayXfvOHvUSwe5HNQXIDDP6Ous2nF3ZK y+/AhguV4oLysg== -----END CERTIFICATE-----Generated at Tue Nov 4 18:19:42 2025 by rpki-client