$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft File: s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft (raw, json) Hash identifier: eUWSXhH6y88DD7R/7xOS7bpfI0E/Tbz8PDQ6IUJAJNs= Subject key identifier: AB:43:38:E6:11:7E:83:ED:D0:AF:B7:09:BF:E3:FC:3A:33:4F:6E:71 Authority key identifier: B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 Certificate issuer: /CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Certificate serial: 019777C13ABC0DF4BFFAAF2A5ADF220B8DE0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft Manifest number: 15AB Signing time: Mon 16 Jun 2025 08:00:41 +0000 Manifest this update: Mon 16 Jun 2025 08:00:41 +0000 Manifest next update: Tue 17 Jun 2025 08:00:41 +0000 Files and hashes: 1: 1IyxB14_QkLsvmLRx3j-3a6Zjk4.roa (hash: htWKauGvhiwmC3uhHI9F9baGTADLWNpjXIog5aUAkzA=) 2: Hrw24NCuWIUCpkj_ixSA3ykRPr4.roa (hash: EL86DxycBZAbHkapsC+FVYde7DJDbg6IvsLrlIhK4Mg=) 3: HzkqLbs1liYqOOnORyYsONDUWCk.roa (hash: uXYRvHJ6LJgN5jTlxHsTjXJyetqQoAXwubqH0//UAWg=) 4: KW8HM7Vt-viFSQssh-MaAGQ56LI.roa (hash: LVB3HoG1zrGwq6DA6Whlqb+iZJnipajeWgJUkFDtgQ8=) 5: LMWubVuf7cJuSG5rD2NRgzDK5TM.roa (hash: BApiahutiwbQpT3is1YK4Anf4y1KpsDk2PWh/oiETuo=) 6: N8YU9P6afQ3l1ax9yLIDe6D0fIk.roa (hash: EU77Dk5F7GrtkJ85p7yvIHvzXNj6aNgdhN+Tn5j+zs0=) 7: NxaezdRi3ofV0Ea6FtmKMCg4Xno.roa (hash: OxfdQ+cdMI49CYY0Q1jeMkKHuJPcs1w/NoTD4eAZ2MA=) 8: jGaeQ05R3hLIsxNTb7dpc8FaO6w.roa (hash: 4TEbxdiinYCpm4mycPqOwDmBBxQQxUxqZfGO0t4kbOg=) 9: mSsD_9FMfN2LP7M_Mwsa2ue8f54.roa (hash: 9X0dNAuuQyEHvxBMN4gp2QewnB9NGpB0KtQCW0IE4VU=) 10: oRsHwl0lqDdQsW8I1c5igLUyNzs.roa (hash: 8g9A+Hdue1idAErOv1qWZKgEKPMgG/A4+RlDqNfgnkI=) 11: oreGjQwv74g6OpxObQTCv-MnU1M.roa (hash: d1IJwSRdqQjA5VA/VLC7+miffsmnB8Nxer6G7ClHfMc=) 12: p2_R78qfiRDhzvxPsVGCBtVmaJE.roa (hash: AfONkYdMNZkN9Er/D4pbys1uxPQQYlJm+sdpKa5QxNI=) 13: s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl (hash: xn/DiMUFs17lwqfgMJtKP6jYjjJd8rPyTt5hcmRVdLQ=) 14: wjy1-qmg6rYR0UilXbPOrktmKnc.roa (hash: OCHLZL4VOIDtWxajhki14b+EkeW6juZq6cOYKpzs8QI=) 15: xMcgE5el8x0M_rTEbVyhY3X3x1c.roa (hash: PGLJrZJLBXcLan5LC1jzJXTcMWQ+drrbyWZOiA3GgNU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 17 Jun 2025 08:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:77:c1:3a:bc:0d:f4:bf:fa:af:2a:5a:df:22:0b:8d:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Validity Not Before: Jun 16 08:00:41 2025 GMT Not After : Jun 17 08:00:41 2025 GMT Subject: CN=ab4338e6117e83edd0afb709bfe3fc3a334f6e71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:84:a0:3d:d0:a3:ae:86:5c:19:b5:81:f5:ee: 0d:27:26:39:a8:c5:b5:f2:e9:2f:a5:04:71:c2:4b: a0:28:e4:6e:57:81:f6:ef:6f:17:05:7b:cd:4b:68: 13:7f:40:5d:b0:4d:47:4a:04:06:49:f0:b7:9f:cf: 13:c9:02:6b:01:1b:a7:ae:e0:77:63:2d:8a:7b:4c: 44:ba:c1:f8:0e:4f:b8:42:bb:60:ae:41:4e:0f:0b: cf:b2:05:83:30:43:0b:85:de:1d:fd:d6:93:d6:8e: cb:b6:37:8f:5b:ff:02:13:d6:b0:1d:d6:db:74:29: 28:3a:b4:b5:2a:0a:b8:24:97:84:bd:2e:07:42:a2: 50:a6:d6:85:b7:64:e5:c2:d6:a7:25:0f:6d:47:56: b0:f6:f1:2a:8c:b6:f5:69:9d:3f:6b:9a:f0:f0:f9: ef:58:b7:b7:35:fc:5d:5a:6e:95:0e:d5:2b:9b:13: 65:58:05:b0:f8:2d:ff:e9:67:a7:65:1f:44:2b:19: c5:eb:37:2e:31:d3:b3:b3:81:65:77:a8:5c:3a:60: 9e:7d:45:05:b2:2f:68:83:39:5c:1f:0c:b6:26:c0: bf:c9:6b:c1:fd:6c:ee:f9:33:c6:5d:c6:bf:d9:16: 6b:cd:97:1c:ea:f2:38:1f:1a:f6:9d:3c:c0:f9:b2: 61:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:43:38:E6:11:7E:83:ED:D0:AF:B7:09:BF:E3:FC:3A:33:4F:6E:71 X509v3 Authority Key Identifier: keyid:B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:dd:58:1b:c5:08:8e:e0:48:8a:96:0d:9d:91:3a:35:53:bd: 90:48:c9:6a:d5:0d:50:46:9f:3d:99:7b:73:15:51:0f:49:82: f8:61:7d:80:e0:4a:a4:64:30:95:52:ef:05:6c:91:ef:b9:81: c6:ff:15:c1:85:3c:3e:92:90:e9:0b:79:9b:79:2f:9c:32:89: d2:db:d7:4a:97:c6:fe:3c:c5:e3:9b:3a:dd:7d:01:dc:ea:46: 3e:5d:62:b4:94:cc:26:45:a0:89:88:8e:02:9c:03:cb:16:4f: 86:e7:0c:63:0c:0b:64:47:cc:0c:93:28:b3:dd:6a:79:3f:2e: 2f:b0:54:e4:0b:54:ab:c2:75:77:16:8e:d6:9a:e1:e0:e6:25: f9:5f:43:7a:e1:f2:ee:0c:38:09:82:5f:b2:99:7f:8c:12:6d: 8c:58:a6:e8:28:04:a8:f0:6f:9d:19:4b:6f:63:ce:88:2a:41: 84:94:40:2f:a1:98:82:66:00:a3:02:10:f9:61:3e:4f:46:7a: 53:bc:58:cd:63:c9:79:d3:8d:2a:0f:b4:f9:2d:05:3f:d9:81: 09:72:68:22:83:7d:2e:07:d9:25:8a:fe:be:f0:49:7a:2a:ed: 99:78:c7:b8:0b:2a:de:e8:31:94:4c:62:4b:88:c3:d4:f7:f3: bc:ad:a6:82 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZd3wTq8DfS/+q8qWt8iC43gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzYTVkOTk4NjNkYjJlNDliNDRmNmMzMjRlYjA0Mzg4ZmM3 NTE1ZDIwHhcNMjUwNjE2MDgwMDQxWhcNMjUwNjE3MDgwMDQxWjAzMTEwLwYDVQQD EyhhYjQzMzhlNjExN2U4M2VkZDBhZmI3MDliZmUzZmMzYTMzNGY2ZTcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtISgPdCjroZcGbWB9e4NJyY5qMW1 8ukvpQRxwkugKORuV4H2728XBXvNS2gTf0BdsE1HSgQGSfC3n88TyQJrARunruB3 Yy2Ke0xEusH4Dk+4QrtgrkFODwvPsgWDMEMLhd4d/daT1o7LtjePW/8CE9awHdbb dCkoOrS1Kgq4JJeEvS4HQqJQptaFt2TlwtanJQ9tR1aw9vEqjLb1aZ0/a5rw8Pnv WLe3NfxdWm6VDtUrmxNlWAWw+C3/6WenZR9EKxnF6zcuMdOzs4Fld6hcOmCefUUF si9ogzlcHwy2JsC/yWvB/Wzu+TPGXca/2RZrzZcc6vI4Hxr2nTzA+bJhbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKtDOOYRfoPt0K+3Cb/j/DozT25xMB8GA1UdIwQY MBaAFLOl2Zhj2y5JtE9sMk6wQ4j8dRXSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAt ZWVjNWQ1MGVmYTk0LzEvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAtZWVjNWQ1MGVmYTk0 LzEvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbN1YG8UI juBIipYNnZE6NVO9kEjJatUNUEafPZl7cxVRD0mC+GF9gOBKpGQwlVLvBWyR77mB xv8VwYU8PpKQ6Qt5m3kvnDKJ0tvXSpfG/jzF45s63X0B3OpGPl1itJTMJkWgiYiO ApwDyxZPhucMYwwLZEfMDJMos91qeT8uL7BU5AtUq8J1dxaO1prh4OYl+V9DeuHy 7gw4CYJfspl/jBJtjFim6CgEqPBvnRlLb2POiCpBhJRAL6GYgmYAowIQ+WE+T0Z6 U7xYzWPJedONKg+0+S0FP9mBCXJoIoN9LgfZJYr+vvBJeirtmXjHuAsq3ugxlExi S4jD1PfzvK2mgg== -----END CERTIFICATE-----Generated at Mon Jun 16 17:09:42 2025 by rpki-client