$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft File: AOT2p3Not87P5nIgtDZXax4Aiuw.mft (raw, json) Hash identifier: Qwg7XbnuG4xiOKDkHnGI4X6VLsgzoVfF7VcLUZCOIpY= Subject key identifier: C9:2E:2C:70:74:A3:82:70:10:3A:76:A0:A6:37:BC:8A:74:64:EE:45 Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec Certificate serial: 0198741968072BA9E985FB14A712443E6FA8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft Manifest number: 170D Signing time: Mon 04 Aug 2025 08:01:18 +0000 Manifest this update: Mon 04 Aug 2025 08:01:18 +0000 Manifest next update: Tue 05 Aug 2025 08:01:18 +0000 Files and hashes: 1: 9T56n42qcdDdN0gF0u82-0VAGAQ.roa (hash: uBMriIGAK+N61tGdoiuf0CM9PKKxee+sm/hbz3LttmE=) 2: AOT2p3Not87P5nIgtDZXax4Aiuw.crl (hash: MqnM4kwYF40Sk4kW8+a/F2DgFl/1OUzGvkaswgwbzQE=) 3: BY6vuao8dzcdWvFAFv0TrK8gbcs.roa (hash: ZDN7wXgq4/TF65FlyVO+h6CqqGxfq850Jit0suO59Nc=) 4: Svvhgo8X1drpMq_QokkBFa4W80w.roa (hash: eEM6GVW64ZPHTJr6mZ27nOJM8iax+cOishqtH69OQFE=) 5: TQuAoSMTgD47o86Mfnh3jJOO5ek.roa (hash: OnrGrU7lhj5to79HwgQxpEZnXPQGMxbjMVbPvn1if3E=) 6: USyW0O_6fcBP2bF0PoHV0RL6-Y8.roa (hash: rYcvR45gztdgTjrFLAUTrj+3T6dDm1wWFyZUivL/lkQ=) 7: UqESFWwPTzjbApEAfUlqEqe0RQE.roa (hash: s8ahaYu2umakIkOHunLEsrzEdAIsc7vrgdaPFAJX/B0=) 8: UwuhHIRc9qSfEX6XGunAr85dyEA.roa (hash: v6KOr1rmHDt+GxwNeTG+w6jxSzGnr+bSVua9Q4OO8C0=) 9: VkkvGMtenz96Ubj3KDzXyym1LzY.roa (hash: E/GDo41oktFV73vvuiDk3fNXk8LkaX2ghEwTcizgkaw=) 10: kLCDMTUTRbJeJajr_KP2p663xqk.roa (hash: Cd9LBaXNUzFq1myVM5COYVtjKiIjTzwaQ7rIDyhpbzE=) 11: mS1g5aNaOIe32m5_FgfjTc6VbP4.roa (hash: DRqrjZnRKpeQWBmj82tLSsN99MhvkwnNbbxykbvBnVg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 05 Aug 2025 03:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:74:19:68:07:2b:a9:e9:85:fb:14:a7:12:44:3e:6f:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec Validity Not Before: Aug 4 08:01:18 2025 GMT Not After : Aug 5 08:01:18 2025 GMT Subject: CN=c92e2c7074a38270103a76a0a637bc8a7464ee45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:66:50:8e:50:90:57:53:14:ad:a7:eb:79:c9: 27:6f:94:a4:ce:9e:8d:96:5d:f7:b6:75:0c:6f:c1: 70:fc:02:fd:1e:a9:da:ca:bc:7c:28:69:a6:b9:c5: 51:64:02:00:97:57:86:a0:d9:2a:96:02:49:a9:94: 12:dc:d0:e3:59:75:19:df:90:6d:95:4b:b6:cd:f7: e3:47:08:76:07:72:b3:86:ac:76:ae:74:6b:2a:08: 8b:12:05:8a:91:50:69:44:8f:25:47:6a:6a:cb:d1: 6e:bb:b4:4f:fa:74:01:d1:ed:25:8b:6e:0a:2c:eb: b8:5c:64:0b:bd:b4:ea:f7:1f:d1:5f:3a:e6:52:58: f2:47:56:91:30:c4:3a:af:ae:37:6f:fa:6f:e9:6e: 64:ae:e0:90:81:93:d2:cd:17:9b:f7:9e:c0:7b:d5: 5b:a2:1e:dd:2e:94:7d:bf:1b:9c:0f:84:0d:9e:21: 95:4b:d9:df:f4:4f:93:c4:43:c5:4a:a9:41:95:1d: ac:11:f6:63:af:2c:5b:2a:c7:c6:42:7a:44:f5:cc: fe:2a:26:b8:8f:26:69:88:07:53:91:bd:41:94:39: 1e:cf:01:c9:8a:cc:8f:46:1b:2c:11:48:60:f2:88: 5e:b8:99:b8:4f:de:b4:39:ac:6d:18:11:2d:22:13: e2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:2E:2C:70:74:A3:82:70:10:3A:76:A0:A6:37:BC:8A:74:64:EE:45 X509v3 Authority Key Identifier: keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:8e:02:d6:e6:cc:40:d9:39:2b:3d:97:79:81:05:d2:5b:36: 8d:e6:26:1a:df:8c:f2:73:1d:ec:67:d1:a5:29:31:46:e2:bc: e2:24:ab:a9:c8:19:cd:4f:ef:2b:4d:c9:f9:81:ba:0d:6f:09: 29:5c:6f:bc:54:10:cf:35:92:6d:d0:66:b9:f4:f3:ff:89:2e: ce:4a:18:24:2f:e6:42:dc:0d:ba:90:6e:2a:8c:70:fc:f3:f6: cd:8d:57:68:21:73:5e:fd:8e:c0:69:85:6d:cf:df:42:36:11: a8:aa:85:20:36:e0:48:f3:df:6e:ca:71:43:22:40:16:28:37: 1e:31:d8:9b:65:ff:5f:b7:22:ba:7a:05:61:ed:a9:fb:36:e2: cd:5e:36:ac:49:48:c5:c1:43:f5:49:7f:3d:5f:70:5e:24:6f: d1:78:b6:72:39:8b:ae:96:c5:d0:61:07:24:43:5b:a8:e3:8c: 4e:c7:ed:f6:14:94:e5:35:1b:16:37:d7:b2:70:f7:67:f2:3b: 61:c1:a0:51:a4:9f:78:48:60:35:94:29:40:09:0d:47:ed:c1: e7:37:21:ec:7d:db:19:82:e9:cf:07:ee:98:69:36:58:42:cd: a8:6c:df:6a:5f:b7:5d:fa:1c:fc:77:ec:c4:d7:c6:b5:b9:f4: 07:5b:14:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZh0GWgHK6nphfsUpxJEPm+oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZTRmNmE3NzM2OGI3Y2VjZmU2NzIyMGI0MzY1NzZiMWUw MDhhZWMwHhcNMjUwODA0MDgwMTE4WhcNMjUwODA1MDgwMTE4WjAzMTEwLwYDVQQD EyhjOTJlMmM3MDc0YTM4MjcwMTAzYTc2YTBhNjM3YmM4YTc0NjRlZTQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuGZQjlCQV1MUrafrecknb5Skzp6N ll33tnUMb8Fw/AL9Hqnayrx8KGmmucVRZAIAl1eGoNkqlgJJqZQS3NDjWXUZ35Bt lUu2zffjRwh2B3Kzhqx2rnRrKgiLEgWKkVBpRI8lR2pqy9Fuu7RP+nQB0e0li24K LOu4XGQLvbTq9x/RXzrmUljyR1aRMMQ6r643b/pv6W5kruCQgZPSzReb957Ae9Vb oh7dLpR9vxucD4QNniGVS9nf9E+TxEPFSqlBlR2sEfZjryxbKsfGQnpE9cz+Kia4 jyZpiAdTkb1BlDkezwHJisyPRhssEUhg8oheuJm4T960OaxtGBEtIhPi6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMkuLHB0o4JwEDp2oKY3vIp0ZO5FMB8GA1UdIwQY MBaAFADk9qdzaLfOz+ZyILQ2V2seAIrsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMt YjA3ZDg0MTZhZTRhLzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMtYjA3ZDg0MTZhZTRh LzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG44C1ubM QNk5Kz2XeYEF0ls2jeYmGt+M8nMd7GfRpSkxRuK84iSrqcgZzU/vK03J+YG6DW8J KVxvvFQQzzWSbdBmufTz/4kuzkoYJC/mQtwNupBuKoxw/PP2zY1XaCFzXv2OwGmF bc/fQjYRqKqFIDbgSPPfbspxQyJAFig3HjHYm2X/X7ciunoFYe2p+zbizV42rElI xcFD9Ul/PV9wXiRv0Xi2cjmLrpbF0GEHJENbqOOMTsft9hSU5TUbFjfXsnD3Z/I7 YcGgUaSfeEhgNZQpQAkNR+3B5zch7H3bGYLpzwfumGk2WELNqGzfal+3Xfoc/Hfs xNfGtbn0B1sUBw== -----END CERTIFICATE-----Generated at Mon Aug 4 11:01:52 2025 by rpki-client