$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft File: IQIbJSIimXv-M7fksxWsjV4GeVQ.mft (raw, json) Hash identifier: w95QEklB5otwB2sDfS89qDyeQEOLLPpcfHvKKJRo/m0= Subject key identifier: 74:D1:1B:26:4E:C0:3D:A9:3E:10:63:36:B6:B2:70:72:47:99:06:6B Authority key identifier: 21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 Certificate issuer: /CN=21021b252222997bfe33b7e4b315ac8d5e067954 Certificate serial: 019A51BE935F711280DB4A8C4D4F71FD2CE9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft Manifest number: 1477 Signing time: Wed 05 Nov 2025 02:00:35 +0000 Manifest this update: Wed 05 Nov 2025 02:00:35 +0000 Manifest next update: Thu 06 Nov 2025 02:00:35 +0000 Files and hashes: 1: 3MPX8Hgcgpj46XFJe7iOfP4Vx9k.roa (hash: X8ItFNiHsxzuYcCwG/t6V7CD4qgVaZVjCW5JDwwvo1k=) 2: BxuNK2XBHdo88OQyiW_5v_yfc5A.roa (hash: MFlUpzcLU82WlS9U/NlO4CgGrVyG4i0P38/lEf9NP58=) 3: H85sOAhghTea9a0fF7V97F8PmPU.roa (hash: 2OxoGkdCVVcRfuQOFsn/tuCAYUwqPM6hV+wTzXUpbKk=) 4: HLAFzpF1dtaNSAOxEl-uHrb_wcg.roa (hash: PtoSILiXlrGyGsA1CVrSehyontCCBay4De7QPXIkVlI=) 5: IOSFPx8A8l-pe0og_vxIgYl_NBY.roa (hash: KLjHQhBVtLRCltNJ+XqJhMVg3V2m+fHC9ZN7NVjvtDY=) 6: IQIbJSIimXv-M7fksxWsjV4GeVQ.crl (hash: C7P1hXm4Uyz0mxpAZtVSB8lJ9vXsAYW0kujRTxV/Nz4=) 7: J5ajMdCsK_xzfbhWxoAV2iRMcqc.roa (hash: i0rnl2YK8VurUbtxqh46jYu42vj9ovnjrsY7s0Ha76E=) 8: NIsfNrgr61FvPf7cYDhBUlhxHyo.roa (hash: erf8aKvQjphq5ECHQpzvwfDmeIXYw4ufNsUCtqSAry4=) 9: NojFSrrS5JKJQebH50O-Sn9xxis.roa (hash: 99amkQAhCwzYf+SSxz6XlFlKrJhhJL3h7GCB1tqsJIA=) 10: O0dA6ORgAzDqkWmj1R355BHaTrI.roa (hash: 296lT6a3xrMsAitqkt1Jep7cJYB5SeLJP2n68zngwhU=) 11: VbRKF62krl-KA_0dr7N8i46qs_A.roa (hash: PCEcpmBvUl37S6P9+HKjvTq2SZP3pF9GPHCRb88sRNw=) 12: W6gW_k4PAlDXWNXHj-7uVtaEhUo.roa (hash: 2GGe0Av8ayGGsSV+o4FXLrtSMr3LqMsV0faDwoshubs=) 13: bappW0a76vCPpE7es6c1mZAIjsM.roa (hash: cqG7BmBZANbhw2q44YhM+SIY2oACb3Cf8jR7Of0U21w=) 14: kdaSrzmnDVsM0RIoAgjgbrOtDPw.roa (hash: rqvV8WO0X2/bRdhoVD7e6+BEeyw0vjX6G9hkFrs+9Pk=) 15: vj_Rx3DB5-xDUqDlrBJ7IxL_21w.roa (hash: MTWWugX6ksDRRG983kctzCkaVVEPY1cdhe4ngzPqXI4=) 16: y88-XlX3iJ__DzfIGS5r5m0TLBs.roa (hash: XnV7xzm/iXlPi3I2M7gT2rIanQMocQ1jqhKZYjxglqk=) 17: yq4mDy7IWiKa_jUZsF8HmOo9YAA.roa (hash: D7e3OOFi7lIh2fyesD48w9fTpDFZydPZVUW+H+QSZ9A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:51:be:93:5f:71:12:80:db:4a:8c:4d:4f:71:fd:2c:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21021b252222997bfe33b7e4b315ac8d5e067954 Validity Not Before: Nov 5 02:00:35 2025 GMT Not After : Nov 6 02:00:35 2025 GMT Subject: CN=74d11b264ec03da93e106336b6b270724799066b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:e8:cc:c9:78:5e:0c:4f:18:3d:12:8b:a6:90: 1f:35:21:35:96:99:c1:82:95:5d:3a:f4:45:c5:4f: 6d:4c:fe:01:90:11:66:b0:08:30:c0:9c:45:a7:01: 26:85:de:69:19:93:57:e7:35:b1:a2:68:77:c4:2c: 3f:24:38:f7:7b:23:a5:30:bb:c1:7a:a3:b5:48:7c: db:10:a5:b8:1c:a9:6f:15:75:71:7e:bf:28:62:13: 2f:0b:ac:3c:e5:51:5f:35:b4:31:8e:2f:e6:2d:8e: e7:af:08:e9:7f:50:10:20:f2:12:49:2c:af:73:ca: aa:0f:f8:64:d2:bc:49:b6:65:5f:d7:ae:04:eb:71: d8:40:38:20:dc:cb:c5:72:8e:e5:a7:f5:96:e1:b3: 3c:95:13:11:ee:9c:0d:a6:15:80:d2:b5:d2:12:d4: db:a3:f7:c2:02:39:93:2c:87:80:ab:33:f1:d6:ab: 52:4f:bb:45:40:fd:8c:85:6f:da:9d:71:94:9f:d1: 3c:c7:1d:26:b4:96:a3:92:b7:72:5b:82:68:e9:0c: 52:cb:0c:b5:c7:31:c8:66:06:76:f1:10:5b:1a:a9: 57:eb:e1:a1:19:e4:c9:87:40:19:fa:92:86:e7:ce: 41:cb:a8:5b:a8:2b:b0:21:b7:15:35:a1:79:e2:a1: a4:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:D1:1B:26:4E:C0:3D:A9:3E:10:63:36:B6:B2:70:72:47:99:06:6B X509v3 Authority Key Identifier: keyid:21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:ae:e2:1b:43:c5:ca:1f:83:36:60:0a:53:61:4b:45:bc:51: 3e:87:31:69:c9:cc:89:a5:83:95:42:67:81:c4:66:d8:c8:b5: 0c:97:da:1a:d1:81:a2:ad:7f:76:80:d8:6d:3a:ff:09:38:31: 4a:6d:cd:e6:89:ad:9b:f2:60:75:57:32:98:ea:65:ba:0f:64: 58:fb:51:93:cd:67:5a:3f:9c:ea:e9:bc:98:9d:39:23:6f:f5: e1:6d:a4:88:ae:1b:8b:fc:8f:88:9e:fb:c5:d4:a4:99:56:cf: 90:96:6d:72:a6:3b:17:9a:66:95:19:ab:1a:8e:fe:02:21:f0: 8f:80:50:98:5b:7a:27:d7:a2:27:92:60:b5:00:81:9b:95:9a: eb:a6:f1:c0:8f:5d:8d:0e:5f:d6:20:64:4e:13:94:82:20:67: ec:39:22:97:ef:94:13:54:50:e2:b2:30:1b:9f:eb:89:bd:12: 5e:9d:26:d3:b8:2c:0a:bc:82:ee:31:c9:01:f8:d3:70:28:da: 29:0b:59:24:a3:09:b0:fa:1d:ec:c8:4e:c8:e3:4f:93:69:4b: 8f:e2:4a:34:f8:26:90:75:59:7a:7f:bc:b1:25:39:79:77:ac: e8:da:95:81:08:0f:c2:54:e3:f7:c7:61:a1:24:4b:f6:fe:1d: 03:40:f6:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZpRvpNfcRKA20qMTU9x/SzpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMDIxYjI1MjIyMjk5N2JmZTMzYjdlNGIzMTVhYzhkNWUw Njc5NTQwHhcNMjUxMTA1MDIwMDM1WhcNMjUxMTA2MDIwMDM1WjAzMTEwLwYDVQQD Eyg3NGQxMWIyNjRlYzAzZGE5M2UxMDYzMzZiNmIyNzA3MjQ3OTkwNjZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6ujMyXheDE8YPRKLppAfNSE1lpnB gpVdOvRFxU9tTP4BkBFmsAgwwJxFpwEmhd5pGZNX5zWxomh3xCw/JDj3eyOlMLvB eqO1SHzbEKW4HKlvFXVxfr8oYhMvC6w85VFfNbQxji/mLY7nrwjpf1AQIPISSSyv c8qqD/hk0rxJtmVf164E63HYQDgg3MvFco7lp/WW4bM8lRMR7pwNphWA0rXSEtTb o/fCAjmTLIeAqzPx1qtST7tFQP2MhW/anXGUn9E8xx0mtJajkrdyW4Jo6QxSywy1 xzHIZgZ28RBbGqlX6+GhGeTJh0AZ+pKG585By6hbqCuwIbcVNaF54qGkvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHTRGyZOwD2pPhBjNraycHJHmQZrMB8GA1UdIwQY MBaAFCECGyUiIpl7/jO35LMVrI1eBnlUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMt NmVhYzYyZTYwZGY3LzEvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMtNmVhYzYyZTYwZGY3 LzEvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWa7iG0PF yh+DNmAKU2FLRbxRPocxacnMiaWDlUJngcRm2Mi1DJfaGtGBoq1/doDYbTr/CTgx Sm3N5omtm/JgdVcymOplug9kWPtRk81nWj+c6um8mJ05I2/14W2kiK4bi/yPiJ77 xdSkmVbPkJZtcqY7F5pmlRmrGo7+AiHwj4BQmFt6J9eiJ5JgtQCBm5Wa66bxwI9d jQ5f1iBkThOUgiBn7Dkil++UE1RQ4rIwG5/rib0SXp0m07gsCryC7jHJAfjTcCja KQtZJKMJsPod7MhOyONPk2lLj+JKNPgmkHVZen+8sSU5eXes6NqVgQgPwlTj98dh oSRL9v4dA0D2Sw== -----END CERTIFICATE-----Generated at Wed Nov 5 06:54:17 2025 by rpki-client