$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.mft File: 5dbG6LztQL0DLRdxjBseOa6EGug.mft (raw, json) Hash identifier: CMBElDXJtxZebzd7bSguf3Pl12wTE8e+Yg3jag3hPx0= Subject key identifier: 1E:03:1D:84:52:8E:05:14:C8:98:A0:E4:77:15:65:9C:72:E7:4B:09 Authority key identifier: E5:D6:C6:E8:BC:ED:40:BD:03:2D:17:71:8C:1B:1E:39:AE:84:1A:E8 Certificate issuer: /CN=e5d6c6e8bced40bd032d17718c1b1e39ae841ae8 Certificate serial: 019A4E4FBDCBC995285D552C2FE1B4725CE4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.mft Manifest number: 1726 Signing time: Tue 04 Nov 2025 10:00:40 +0000 Manifest this update: Tue 04 Nov 2025 10:00:40 +0000 Manifest next update: Wed 05 Nov 2025 10:00:40 +0000 Files and hashes: 1: 01g5y437H2m0RBS60K8v_5CH25Y.roa (hash: 6whrCWSU/OFo5FWbCgWTtdfsQVzcFfU3y10vUs1oFTE=) 2: 1-4thfGCfV_85lt2WZkN-l71fwv0.roa (hash: 7cUPpyEsjpN2LkemwyOwpAzp6M6Mod4nt5VJCSxBi3s=) 3: 1-U546Wnv3X2dlqBwiPgmgD5rG0Q.roa (hash: UYLMoDLmtnbaqveYEw4e1FYtKG5Xz2eS50cYOB7habA=) 4: 1BsLjyLGR7fVTKId14K_LDmFaOE.roa (hash: psSOJBHeT4i88iWFESSWMgqzZaf6jPzMO0pv5q33yJ4=) 5: 4wlDChlgzrgFapvpBy46MAFlefc.roa (hash: EYqlVV6MH4EbjLdFRd/br9sG35MzdZTRrWmN3sTJ6/Y=) 6: 5dbG6LztQL0DLRdxjBseOa6EGug.crl (hash: hFmZookG+anm3xhiuDXBz5X4a6CsOfLvqQ/vtLEGvUQ=) 7: A-Fkuj2Ry_3wy9lszQO5iFmpTsM.roa (hash: MqXfL/IjblbyaoanvxCZ0s6/syF5tUBaoXoKEYvO5Ck=) 8: CqQsoC1jFsSbLss7hEFtLKrKDMY.roa (hash: 7YVK/zmpOd/tEBFOBPOhNo6QF1d67oChKSOQOYEoacg=) 9: GEAO-RpDOblA62IXyDgWLKyaZE4.roa (hash: B/mmE5K4Y0+TtLR8pgvUmngTm+hQZlJcszavfMaBB+I=) 10: NFK0Hjvsp_Sq78uC-zn-OtIs2io.roa (hash: RkRZ6SorlL5rZdfTuNFGZoclIhB5xyBOn5s6WMdE+L4=) 11: QmD1NuxNLYfmzuhbCU_99CJ-o-k.roa (hash: ugpwTRCdEyAoIefE/m+oUbM/pJjpH0ikF/U5tO+O/jM=) 12: Sn5j9mrsDzCn0e9SdfxRYinpue4.roa (hash: Pmm/ivnYdFW6uuCjzZHPDQpUkRs+mtt6nnTRFq0BYj0=) 13: TtR0csYqYQUGmaJtYJ6I1Sb4jtA.roa (hash: /RrNIRwEKfIWdjBmKgKNDu3bdN5NswYfyOudqPj07dM=) 14: W5W8H6uR-lCCEmn3v-XsPLRNVss.roa (hash: MqFZSzbOqhNyXJIgrbDDE4K1XPvGby9AbWHLANkDs8A=) 15: cKTcZs-U_VD8X5oF6KYi9vL_XPY.roa (hash: Ojplqzn5+rFkagKqgJjGg7MR261z7vGOzqJ6p2GYag4=) 16: dUjWdWqHZ3bB28SlJrHRKXOFumI.roa (hash: L5pkt5HZhPKaDfcEd3yHsIdGb5cnUbqIUW0exwEPLyc=) 17: lM1B4eqvI9WRB2F5MltXjXFSUNw.roa (hash: AbZgfqJhiLBwdICwkR/kGfMSad6ug4enx96U2XP1Fgk=) 18: mza84PKMv0aUDroEfzQZip-9Um8.roa (hash: xfLnRg1sIPVix0oNDyz6FdqLtVqmjxCCvOykxKOTB0s=) 19: u0oJmkSedaonOs5uLkSqqL59uJ4.roa (hash: C6uJzJ3uiAjMgAmGSpBjfqhHJVcbN5byOHdLx08rPTM=) 20: ujwUfZi-j2E7tiXxuxPwDEMg9Do.roa (hash: ZVTJzzTXgsjt6o/MwKVQt8mq4QnG+HkM2MYUgIyYqIM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.crl rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.mft rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 09:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:4e:4f:bd:cb:c9:95:28:5d:55:2c:2f:e1:b4:72:5c:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5d6c6e8bced40bd032d17718c1b1e39ae841ae8 Validity Not Before: Nov 4 10:00:40 2025 GMT Not After : Nov 5 10:00:40 2025 GMT Subject: CN=1e031d84528e0514c898a0e47715659c72e74b09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:48:43:3f:6b:b9:3e:3d:b1:9d:09:a4:05:dc: 5d:f5:10:da:00:d5:3a:73:ff:d0:72:ae:2c:f1:0a: 64:76:86:91:b2:03:db:7b:2e:9e:2e:d6:f2:b1:e8: 09:f1:7b:67:f4:41:f3:00:72:0f:74:16:28:7f:fa: 74:d5:cb:b0:84:97:4a:3e:c8:a3:df:54:f9:c3:de: 27:75:ad:28:52:77:31:57:b6:57:bf:fe:ed:e3:36: f8:2d:a8:80:f1:f7:0b:7d:20:cd:18:20:dc:13:75: 98:1f:de:a1:33:71:ad:6d:f3:14:e1:b2:be:84:86: 3b:19:63:6e:a6:91:fe:36:99:cc:22:f4:20:d3:5d: 1a:1f:80:7b:2b:10:3c:ab:ed:3e:03:2e:6a:c4:2b: 77:15:83:94:49:20:bf:04:c2:27:29:38:a7:a1:00: 07:2e:ea:9a:61:7e:e4:dc:6b:aa:44:81:5e:2f:3f: 36:a1:19:d1:e2:d2:1a:65:12:6e:b4:ab:d2:7a:dd: 40:06:6d:8b:17:16:36:b2:55:74:38:7a:ea:85:d9: 00:d3:b5:d3:60:98:81:fc:36:62:95:52:30:cf:a0: 91:68:e9:60:83:c1:38:ec:9b:97:b8:93:aa:65:9f: 95:4d:5e:8f:6f:88:41:fe:2c:23:84:33:dd:f5:b2: 15:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:03:1D:84:52:8E:05:14:C8:98:A0:E4:77:15:65:9C:72:E7:4B:09 X509v3 Authority Key Identifier: keyid:E5:D6:C6:E8:BC:ED:40:BD:03:2D:17:71:8C:1B:1E:39:AE:84:1A:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:8c:47:1a:49:ed:5f:51:17:47:49:e3:00:18:18:bb:ae:98: 76:9e:b2:dd:ec:55:f9:bf:62:f6:aa:b6:06:04:d4:86:61:63: d8:e0:44:61:67:00:59:fc:12:84:dc:73:d4:df:9d:31:8a:57: dc:70:f4:a8:3d:0b:fe:8b:7f:3a:83:84:0a:24:0c:5e:b7:61: d2:9a:cf:a5:c8:3d:e1:c3:8f:40:59:ec:b3:d4:01:b9:ac:96: 51:65:ae:f2:2f:5c:44:76:57:24:23:35:93:2f:b9:ca:35:c8: fe:e1:67:d0:bb:f8:8d:2a:37:7a:1b:fd:3b:3c:0a:51:95:ab: 5a:9a:12:8e:11:11:fb:57:fe:63:81:14:69:88:0c:3e:bc:0c: 63:e1:d7:bf:ff:a9:77:5a:06:0f:71:5e:16:ed:73:97:22:bf: 55:9e:c8:49:e2:cf:ad:6c:a5:64:76:d9:01:25:ae:ec:a9:63: 14:3c:2c:d0:03:20:f1:ac:dc:15:3a:60:7a:d4:3a:e6:26:f1: a0:57:07:c4:3f:b1:ea:bd:26:fb:6c:88:5b:cd:a9:45:f2:7c: f0:5d:b1:56:ed:1f:2a:7b:64:be:98:d7:98:a4:62:b6:24:53: 9e:1d:7c:b7:5a:39:f2:98:95:6f:6d:e6:30:01:93:34:86:68: f4:41:dd:6b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZpOT73LyZUoXVUsL+G0clzkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1ZDZjNmU4YmNlZDQwYmQwMzJkMTc3MThjMWIxZTM5YWU4 NDFhZTgwHhcNMjUxMTA0MTAwMDQwWhcNMjUxMTA1MTAwMDQwWjAzMTEwLwYDVQQD EygxZTAzMWQ4NDUyOGUwNTE0Yzg5OGEwZTQ3NzE1NjU5YzcyZTc0YjA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3EhDP2u5Pj2xnQmkBdxd9RDaANU6 c//Qcq4s8QpkdoaRsgPbey6eLtbysegJ8Xtn9EHzAHIPdBYof/p01cuwhJdKPsij 31T5w94nda0oUncxV7ZXv/7t4zb4LaiA8fcLfSDNGCDcE3WYH96hM3GtbfMU4bK+ hIY7GWNuppH+NpnMIvQg010aH4B7KxA8q+0+Ay5qxCt3FYOUSSC/BMInKTinoQAH LuqaYX7k3GuqRIFeLz82oRnR4tIaZRJutKvSet1ABm2LFxY2slV0OHrqhdkA07XT YJiB/DZilVIwz6CRaOlgg8E47JuXuJOqZZ+VTV6Pb4hB/iwjhDPd9bIV6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB4DHYRSjgUUyJig5HcVZZxy50sJMB8GA1UdIwQY MBaAFOXWxui87UC9Ay0XcYwbHjmuhBroMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWRiRzZMenRRTDBETFJkeGpCc2VPYTZFR3VnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8wODk0ZjctZTI0ZC00NzI4LThjYWQt YmQyNDliNjI1Nzk3LzEvNWRiRzZMenRRTDBETFJkeGpCc2VPYTZFR3VnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC8wODk0ZjctZTI0ZC00NzI4LThjYWQtYmQyNDliNjI1Nzk3 LzEvNWRiRzZMenRRTDBETFJkeGpCc2VPYTZFR3VnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAloxHGknt X1EXR0njABgYu66Ydp6y3exV+b9i9qq2BgTUhmFj2OBEYWcAWfwShNxz1N+dMYpX 3HD0qD0L/ot/OoOECiQMXrdh0prPpcg94cOPQFnss9QBuayWUWWu8i9cRHZXJCM1 ky+5yjXI/uFn0Lv4jSo3ehv9OzwKUZWrWpoSjhER+1f+Y4EUaYgMPrwMY+HXv/+p d1oGD3FeFu1zlyK/VZ7ISeLPrWylZHbZASWu7KljFDws0AMg8azcFTpgetQ65ibx oFcHxD+x6r0m+2yIW82pRfJ88F2xVu0fKntkvpjXmKRitiRTnh18t1o58piVb23m MAGTNIZo9EHdaw== -----END CERTIFICATE-----Generated at Tue Nov 4 14:37:28 2025 by rpki-client