$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft File: kdDHjDCaPpncmrdPLNwEhIWedTA.mft (raw, json) Hash identifier: qPqK1ncNDzP0DnTg08zSDXF+9G5qvzBPneZzE3c1eio= Subject key identifier: D7:94:CF:7A:F4:1D:E8:CE:17:90:C6:F1:E5:64:74:73:CB:F2:EE:5F Authority key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30 Certificate issuer: /CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530 Certificate serial: 019872CF857EC620D48AE137661698B60A7C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft Manifest number: 112E Signing time: Mon 04 Aug 2025 02:00:59 +0000 Manifest this update: Mon 04 Aug 2025 02:00:59 +0000 Manifest next update: Tue 05 Aug 2025 02:00:59 +0000 Files and hashes: 1: 1-W_ixXGYX8sPaJagj-AVwFiwChc.roa (hash: L0D3lIfkN9efhBw5T+b3u9NkdIMxDqZ5UXxZUhgRWOs=) 2: 1wei3P__YsLq8D2DZQdx3r5Se8Q.roa (hash: mJ3sfO2t0ZrVqr8Lh/dS5cWV3uJ23FidlrzCBj85Xpg=) 3: D9OViOUA1-461O4zttxUuu7lHv0.roa (hash: 2itBNaHzhENVRyOefdMh6N1RENcyUMqY/eAvQKNqorQ=) 4: FL9fu1OvmoFGfhkDWCYg6qk3FZw.roa (hash: 4qo1m7CfLoe2e1/s3slGLhDBLmvad/IFz+DUbL4c5ro=) 5: QhTNtcmMP2d8JHj8beOVtwBfn-8.roa (hash: pGtJfsZnHgpcNHsy6MUt5rD0YLB/sQz5xjhWg8xCmoY=) 6: b_UNR9Xj_ycfuOSMA48F_QSRqts.roa (hash: V/FK04zH2Za3Nwu+0PjyuAuPUrWk9vHEnkwAOnyhoAs=) 7: kdDHjDCaPpncmrdPLNwEhIWedTA.crl (hash: Gysz1off6RrUe242/dTh07JZlkEflYDMhVZcyit6stk=) 8: mI6CMDbVFOggenhN7vYK1kqjlUM.roa (hash: Ix338GJteDKUBZwQ6uAO2I9vp00YeBcogG5YXz8IPLE=) 9: vUVcdpzXr2JQGsu1xtXoOvW_LHU.roa (hash: 2iN03nQJUllsMqRJ1fP7+P4h4U6MeEk1ERszIuxQ8MY=) 10: wGY7w33wbp754v9ca7Ik2gL3Voc.roa (hash: cLU9Ywl9VMx+T+dYulHYxfzmlahVeyhReHN4Xp/Qd78=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 05 Aug 2025 02:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:72:cf:85:7e:c6:20:d4:8a:e1:37:66:16:98:b6:0a:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530 Validity Not Before: Aug 4 02:00:59 2025 GMT Not After : Aug 5 02:00:59 2025 GMT Subject: CN=d794cf7af41de8ce1790c6f1e5647473cbf2ee5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:2f:6c:66:2a:00:1d:43:52:36:01:69:06:3c: c9:fd:37:3f:fe:f8:6a:73:d3:29:da:f5:77:e9:99: a3:d3:68:ec:c1:8e:a9:a8:88:d2:8f:56:a5:39:84: 8f:37:b7:1e:34:79:84:58:90:3b:15:24:b5:e8:d2: 36:3f:2e:53:bd:79:02:90:02:34:b8:c0:2f:03:2e: 4d:38:88:50:a9:e2:4b:f5:ce:b3:1e:88:01:6b:49: c5:f2:fe:65:69:47:60:ad:eb:bf:e4:cb:79:b5:33: 8e:50:8e:f0:eb:88:c8:83:7d:72:47:c1:da:1e:55: 01:92:84:2c:a2:a0:28:0f:36:46:eb:07:e4:85:25: 4d:52:0e:30:39:95:12:ac:21:82:d4:2c:dd:4c:bb: 87:ca:7e:79:c3:23:99:6e:79:58:36:7c:2c:42:3d: 1e:bf:bf:dc:ca:dd:27:eb:9d:38:70:f2:cd:bf:23: de:47:09:10:9d:e8:4e:d0:7f:e1:50:26:f0:4e:59: 3b:40:df:52:6e:47:3f:1d:02:05:ed:88:66:9d:5b: a3:c0:06:83:66:8e:f1:9a:25:88:9c:7a:59:49:12: 8b:f1:55:4d:5d:78:27:65:f6:aa:7c:6a:8f:ba:01: 20:09:4c:f5:ac:27:e7:cc:7b:c9:81:0c:a5:ff:1d: 4b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:94:CF:7A:F4:1D:E8:CE:17:90:C6:F1:E5:64:74:73:CB:F2:EE:5F X509v3 Authority Key Identifier: keyid:91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:bd:bf:5f:db:cf:2e:9f:b6:60:00:54:70:b9:e5:e0:4c:83: 99:d8:02:44:d3:3a:86:c8:b9:a0:92:bd:9c:ce:6e:c2:d9:e2: 07:48:73:7c:3c:f0:e8:d3:80:fe:a2:14:31:87:f4:8a:59:15: 7a:9c:8e:d3:5f:3a:1d:c7:f9:71:78:66:2b:12:5a:d3:2b:04: a2:cb:32:5e:b1:ba:c0:4d:bf:39:8c:6d:07:ef:9f:ea:49:4f: 76:94:59:c8:36:ce:17:90:35:69:35:02:20:25:f6:c9:be:f5: 17:57:47:c5:4b:1a:3d:c4:7a:d6:e7:f5:72:65:5b:48:f8:75: aa:64:5f:f9:d0:d8:d8:23:5b:72:c9:a4:98:df:b7:e3:d5:08: 63:44:da:a1:a6:a4:3c:9b:33:4b:40:b5:e6:89:98:a8:f2:49: c5:e5:00:81:a9:ca:ca:4b:4d:70:19:93:76:95:e2:05:05:2b: a3:ef:13:81:57:2d:0b:8c:1c:f3:ea:7d:1a:b0:d9:8f:fc:b0: e8:af:f8:b1:38:37:cb:2f:06:57:cc:8d:6b:6b:4e:6e:d7:cd: 07:66:90:21:22:4e:13:c4:ec:ea:bb:f9:08:8b:71:ba:0e:3a: 43:4a:b8:f5:32:11:7e:ba:63:04:db:c3:af:83:c9:0a:cb:cc: 97:48:71:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZhyz4V+xiDUiuE3ZhaYtgp8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxZDBjNzhjMzA5YTNlOTlkYzlhYjc0ZjJjZGMwNDg0ODU5 ZTc1MzAwHhcNMjUwODA0MDIwMDU5WhcNMjUwODA1MDIwMDU5WjAzMTEwLwYDVQQD EyhkNzk0Y2Y3YWY0MWRlOGNlMTc5MGM2ZjFlNTY0NzQ3M2NiZjJlZTVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqy9sZioAHUNSNgFpBjzJ/Tc//vhq c9Mp2vV36Zmj02jswY6pqIjSj1alOYSPN7ceNHmEWJA7FSS16NI2Py5TvXkCkAI0 uMAvAy5NOIhQqeJL9c6zHogBa0nF8v5laUdgreu/5Mt5tTOOUI7w64jIg31yR8Ha HlUBkoQsoqAoDzZG6wfkhSVNUg4wOZUSrCGC1CzdTLuHyn55wyOZbnlYNnwsQj0e v7/cyt0n6504cPLNvyPeRwkQnehO0H/hUCbwTlk7QN9Sbkc/HQIF7YhmnVujwAaD Zo7xmiWInHpZSRKL8VVNXXgnZfaqfGqPugEgCUz1rCfnzHvJgQyl/x1L1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNeUz3r0HejOF5DG8eVkdHPL8u5fMB8GA1UdIwQY MBaAFJHQx4wwmj6Z3Jq3TyzcBISFnnUwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEt NDg1MmM4ZmY4YWYyLzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEtNDg1MmM4ZmY4YWYy LzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB72/X9vP Lp+2YABUcLnl4EyDmdgCRNM6hsi5oJK9nM5uwtniB0hzfDzw6NOA/qIUMYf0ilkV epyO0186Hcf5cXhmKxJa0ysEossyXrG6wE2/OYxtB++f6klPdpRZyDbOF5A1aTUC ICX2yb71F1dHxUsaPcR61uf1cmVbSPh1qmRf+dDY2CNbcsmkmN+349UIY0Taoaak PJszS0C15omYqPJJxeUAganKyktNcBmTdpXiBQUro+8TgVctC4wc8+p9GrDZj/yw 6K/4sTg3yy8GV8yNa2tObtfNB2aQISJOE8Ts6rv5CItxug46Q0q49TIRfrpjBNvD r4PJCsvMl0hxww== -----END CERTIFICATE-----Generated at Mon Aug 4 11:27:13 2025 by rpki-client