$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft File: s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft (raw, json) Hash identifier: MIIyuzePKMwWGE+NWDTzmrw+JAsJf2VA5Ph8L0iEiSw= Subject key identifier: 37:7A:A9:C9:A3:25:86:D2:3C:AC:E4:EF:9F:98:8E:07:A9:C0:40:F9 Authority key identifier: B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 Certificate issuer: /CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Certificate serial: 0198824261522AB7CB1436750C973F61600B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft Manifest number: 1635 Signing time: Thu 07 Aug 2025 02:00:44 +0000 Manifest this update: Thu 07 Aug 2025 02:00:44 +0000 Manifest next update: Fri 08 Aug 2025 02:00:44 +0000 Files and hashes: 1: 1IyxB14_QkLsvmLRx3j-3a6Zjk4.roa (hash: htWKauGvhiwmC3uhHI9F9baGTADLWNpjXIog5aUAkzA=) 2: Hrw24NCuWIUCpkj_ixSA3ykRPr4.roa (hash: EL86DxycBZAbHkapsC+FVYde7DJDbg6IvsLrlIhK4Mg=) 3: HzkqLbs1liYqOOnORyYsONDUWCk.roa (hash: uXYRvHJ6LJgN5jTlxHsTjXJyetqQoAXwubqH0//UAWg=) 4: KW8HM7Vt-viFSQssh-MaAGQ56LI.roa (hash: LVB3HoG1zrGwq6DA6Whlqb+iZJnipajeWgJUkFDtgQ8=) 5: LMWubVuf7cJuSG5rD2NRgzDK5TM.roa (hash: BApiahutiwbQpT3is1YK4Anf4y1KpsDk2PWh/oiETuo=) 6: N8YU9P6afQ3l1ax9yLIDe6D0fIk.roa (hash: EU77Dk5F7GrtkJ85p7yvIHvzXNj6aNgdhN+Tn5j+zs0=) 7: NxaezdRi3ofV0Ea6FtmKMCg4Xno.roa (hash: OxfdQ+cdMI49CYY0Q1jeMkKHuJPcs1w/NoTD4eAZ2MA=) 8: jGaeQ05R3hLIsxNTb7dpc8FaO6w.roa (hash: 4TEbxdiinYCpm4mycPqOwDmBBxQQxUxqZfGO0t4kbOg=) 9: mSsD_9FMfN2LP7M_Mwsa2ue8f54.roa (hash: 9X0dNAuuQyEHvxBMN4gp2QewnB9NGpB0KtQCW0IE4VU=) 10: oRsHwl0lqDdQsW8I1c5igLUyNzs.roa (hash: 8g9A+Hdue1idAErOv1qWZKgEKPMgG/A4+RlDqNfgnkI=) 11: oreGjQwv74g6OpxObQTCv-MnU1M.roa (hash: d1IJwSRdqQjA5VA/VLC7+miffsmnB8Nxer6G7ClHfMc=) 12: p2_R78qfiRDhzvxPsVGCBtVmaJE.roa (hash: AfONkYdMNZkN9Er/D4pbys1uxPQQYlJm+sdpKa5QxNI=) 13: s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl (hash: QLr0iCdGa+Wx8we5T6ohyWdIeOLpSEcN+BpYNsaZhOE=) 14: wjy1-qmg6rYR0UilXbPOrktmKnc.roa (hash: OCHLZL4VOIDtWxajhki14b+EkeW6juZq6cOYKpzs8QI=) 15: xMcgE5el8x0M_rTEbVyhY3X3x1c.roa (hash: PGLJrZJLBXcLan5LC1jzJXTcMWQ+drrbyWZOiA3GgNU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 07 Aug 2025 20:46:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:82:42:61:52:2a:b7:cb:14:36:75:0c:97:3f:61:60:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Validity Not Before: Aug 7 02:00:44 2025 GMT Not After : Aug 8 02:00:44 2025 GMT Subject: CN=377aa9c9a32586d23cace4ef9f988e07a9c040f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7c:ae:30:44:7b:ad:db:39:70:52:ab:78:38: 18:b4:1f:3e:40:6c:4f:a1:d8:9c:c8:e3:6d:56:79: 46:22:76:ad:20:b6:fd:f4:55:6b:01:25:fd:11:6f: a4:c7:cf:1d:40:37:53:22:3b:db:08:49:0d:77:f2: 73:87:f2:28:c7:e0:93:29:26:62:05:84:a9:61:98: 67:54:e8:3d:04:87:48:24:dd:b1:07:94:cb:d9:03: 23:bd:67:ed:14:05:66:a0:45:4a:7a:33:49:64:85: 90:07:42:ba:d2:3f:41:1a:51:d6:ab:65:5d:07:eb: 6b:c0:f3:75:a6:4a:a5:65:7d:87:16:8e:b1:d7:d6: 3f:9d:1b:d0:1b:3c:81:71:26:a3:ee:e8:fc:2a:9e: 2c:52:5e:6c:03:ea:ba:0a:96:00:47:17:e6:37:f0: cd:cd:85:e1:58:60:41:1c:1f:fb:6e:fa:e8:f8:f7: 68:38:5d:60:82:94:87:21:24:f7:54:b1:e6:1f:bc: a9:10:84:0d:b6:78:6a:a4:b4:0f:12:92:80:4d:5a: f2:f4:7d:68:a8:fd:ce:04:66:a8:c4:be:e2:56:f7: 76:00:3d:c5:4d:92:0c:69:f0:99:dc:4a:05:9b:cb: e3:2a:33:8d:a1:af:1f:72:b4:6f:24:0a:17:6e:c9: 09:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:7A:A9:C9:A3:25:86:D2:3C:AC:E4:EF:9F:98:8E:07:A9:C0:40:F9 X509v3 Authority Key Identifier: keyid:B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:74:e6:e6:bc:c2:13:b6:b8:3f:bf:8c:1e:38:f1:76:06:a5: 71:d2:ba:78:5b:54:6d:e2:85:0a:7a:54:6f:5d:7d:b9:3a:be: 32:27:cc:be:df:04:fe:0f:78:c1:a8:5d:10:b5:ac:e4:53:17: 61:b1:91:9b:55:23:df:3a:42:bc:4e:9a:b1:4a:27:99:c3:27: 50:23:49:64:97:a1:b0:fb:d9:4c:9a:bd:83:8f:19:4a:d1:5f: 48:13:8a:84:17:e6:47:cb:f3:ab:72:b9:23:7a:74:a7:ef:89: 94:12:66:03:42:7f:83:cb:46:e9:d0:8a:7b:50:b1:70:38:7c: ee:08:1b:eb:c3:3d:36:cc:ed:c5:3c:ba:2f:ea:64:8c:17:1c: 67:fa:90:04:de:b2:bc:e0:d3:ef:fb:07:dd:97:e6:3e:6f:d3: 41:c4:82:ac:d2:25:30:47:ce:c1:37:27:1e:76:1c:ed:17:ca: f6:f9:2e:e6:29:68:bf:c6:61:22:ee:ac:59:76:f0:d7:18:bb: 44:0e:da:a8:ca:12:a8:73:81:df:f7:93:4f:df:3f:e5:47:61: af:bf:f1:be:24:38:cb:57:54:7c:39:e5:44:7c:94:46:3d:e1: 09:fa:24:e6:79:a5:bd:52:37:60:c0:4b:b6:d7:9c:06:27:f4: 90:89:14:7c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZiCQmFSKrfLFDZ1DJc/YWALMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzYTVkOTk4NjNkYjJlNDliNDRmNmMzMjRlYjA0Mzg4ZmM3 NTE1ZDIwHhcNMjUwODA3MDIwMDQ0WhcNMjUwODA4MDIwMDQ0WjAzMTEwLwYDVQQD EygzNzdhYTljOWEzMjU4NmQyM2NhY2U0ZWY5Zjk4OGUwN2E5YzA0MGY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtnyuMER7rds5cFKreDgYtB8+QGxP odicyONtVnlGInatILb99FVrASX9EW+kx88dQDdTIjvbCEkNd/Jzh/Iox+CTKSZi BYSpYZhnVOg9BIdIJN2xB5TL2QMjvWftFAVmoEVKejNJZIWQB0K60j9BGlHWq2Vd B+trwPN1pkqlZX2HFo6x19Y/nRvQGzyBcSaj7uj8Kp4sUl5sA+q6CpYARxfmN/DN zYXhWGBBHB/7bvro+PdoOF1ggpSHIST3VLHmH7ypEIQNtnhqpLQPEpKATVry9H1o qP3OBGaoxL7iVvd2AD3FTZIMafCZ3EoFm8vjKjONoa8fcrRvJAoXbskJxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDd6qcmjJYbSPKzk75+YjgepwED5MB8GA1UdIwQY MBaAFLOl2Zhj2y5JtE9sMk6wQ4j8dRXSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAt ZWVjNWQ1MGVmYTk0LzEvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAtZWVjNWQ1MGVmYTk0 LzEvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGnTm5rzC E7a4P7+MHjjxdgalcdK6eFtUbeKFCnpUb119uTq+MifMvt8E/g94wahdELWs5FMX YbGRm1Uj3zpCvE6asUonmcMnUCNJZJehsPvZTJq9g48ZStFfSBOKhBfmR8vzq3K5 I3p0p++JlBJmA0J/g8tG6dCKe1CxcDh87ggb68M9NsztxTy6L+pkjBccZ/qQBN6y vODT7/sH3ZfmPm/TQcSCrNIlMEfOwTcnHnYc7RfK9vku5ilov8ZhIu6sWXbw1xi7 RA7aqMoSqHOB3/eTT98/5Udhr7/xviQ4y1dUfDnlRHyURj3hCfok5nmlvVI3YMBL ttecBif0kIkUfA== -----END CERTIFICATE-----Generated at Thu Aug 7 04:41:58 2025 by rpki-client