$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft File: IQIbJSIimXv-M7fksxWsjV4GeVQ.mft (raw, json) Hash identifier: YdSjY/XcXsQzU5agguAvl5atKEAZJForVheYYAv5iMc= Subject key identifier: 52:A4:9C:A5:7C:AF:98:E1:98:24:29:38:FB:45:BA:1E:F9:0E:F6:C0 Authority key identifier: 21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 Certificate issuer: /CN=21021b252222997bfe33b7e4b315ac8d5e067954 Certificate serial: 01987A1C07E18586B55A88CB585B24301CEF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft Manifest number: 136C Signing time: Tue 05 Aug 2025 12:01:54 +0000 Manifest this update: Tue 05 Aug 2025 12:01:54 +0000 Manifest next update: Wed 06 Aug 2025 12:01:54 +0000 Files and hashes: 1: 3MPX8Hgcgpj46XFJe7iOfP4Vx9k.roa (hash: X8ItFNiHsxzuYcCwG/t6V7CD4qgVaZVjCW5JDwwvo1k=) 2: BxuNK2XBHdo88OQyiW_5v_yfc5A.roa (hash: MFlUpzcLU82WlS9U/NlO4CgGrVyG4i0P38/lEf9NP58=) 3: IOSFPx8A8l-pe0og_vxIgYl_NBY.roa (hash: KLjHQhBVtLRCltNJ+XqJhMVg3V2m+fHC9ZN7NVjvtDY=) 4: IQIbJSIimXv-M7fksxWsjV4GeVQ.crl (hash: vmC9LdobWtYbmUOsP8n0bdQxDJaUX3EO114LDQiJXB4=) 5: J5ajMdCsK_xzfbhWxoAV2iRMcqc.roa (hash: i0rnl2YK8VurUbtxqh46jYu42vj9ovnjrsY7s0Ha76E=) 6: NojFSrrS5JKJQebH50O-Sn9xxis.roa (hash: 99amkQAhCwzYf+SSxz6XlFlKrJhhJL3h7GCB1tqsJIA=) 7: VbRKF62krl-KA_0dr7N8i46qs_A.roa (hash: PCEcpmBvUl37S6P9+HKjvTq2SZP3pF9GPHCRb88sRNw=) 8: W6gW_k4PAlDXWNXHj-7uVtaEhUo.roa (hash: 2GGe0Av8ayGGsSV+o4FXLrtSMr3LqMsV0faDwoshubs=) 9: kdaSrzmnDVsM0RIoAgjgbrOtDPw.roa (hash: rqvV8WO0X2/bRdhoVD7e6+BEeyw0vjX6G9hkFrs+9Pk=) 10: vj_Rx3DB5-xDUqDlrBJ7IxL_21w.roa (hash: MTWWugX6ksDRRG983kctzCkaVVEPY1cdhe4ngzPqXI4=) 11: y88-XlX3iJ__DzfIGS5r5m0TLBs.roa (hash: XnV7xzm/iXlPi3I2M7gT2rIanQMocQ1jqhKZYjxglqk=) 12: y_nsYj5ukmuGHg1FwnghygZPNtE.roa (hash: Z3btILynrnMXwAKpX0v9pTVp5I1JWRzLRy4WUkLzYaI=) 13: yq4mDy7IWiKa_jUZsF8HmOo9YAA.roa (hash: D7e3OOFi7lIh2fyesD48w9fTpDFZydPZVUW+H+QSZ9A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 06 Aug 2025 12:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:7a:1c:07:e1:85:86:b5:5a:88:cb:58:5b:24:30:1c:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21021b252222997bfe33b7e4b315ac8d5e067954 Validity Not Before: Aug 5 12:01:54 2025 GMT Not After : Aug 6 12:01:54 2025 GMT Subject: CN=52a49ca57caf98e198242938fb45ba1ef90ef6c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:1b:a7:7c:23:79:63:95:17:c0:95:02:cc:ab: 57:7e:de:42:79:0b:06:81:48:8d:a8:ea:45:a6:44: 7e:42:31:c4:c9:26:14:d6:8b:5b:57:86:e8:f7:4c: 83:19:ee:09:97:1a:66:19:e2:4b:03:68:1c:52:7f: 90:4e:f3:c9:a8:3d:04:16:6e:4a:be:fc:df:3e:18: 41:4e:cf:2f:02:bd:e1:c1:d6:25:e8:94:d4:c8:7a: 33:76:15:44:79:df:61:b8:dc:76:33:ec:f1:ba:dd: 87:4d:e4:0c:1f:c1:29:06:07:90:f9:a0:f7:aa:ab: f3:99:5e:19:e4:63:3e:2b:97:9a:31:e2:3c:49:17: d0:02:40:3e:47:0e:a8:2e:a9:58:25:ec:e1:d3:22: 85:58:59:48:bf:5d:10:6c:87:08:aa:60:d1:63:12: 00:fd:7c:50:5a:85:3e:4d:91:a3:52:3b:d7:b8:d8: 14:dc:02:61:56:8f:86:d4:62:99:1e:b1:9e:64:f2: 52:4f:8f:0b:92:43:63:b5:9f:b5:fd:4a:81:16:48: 6a:69:07:3f:a2:88:8f:ae:88:df:44:e8:7d:ed:b8: fb:0e:0a:c3:18:3e:38:f5:73:15:52:6d:ab:cb:27: a6:aa:36:90:ca:16:79:c8:bd:83:81:9f:89:51:96: bc:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:A4:9C:A5:7C:AF:98:E1:98:24:29:38:FB:45:BA:1E:F9:0E:F6:C0 X509v3 Authority Key Identifier: keyid:21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:75:b2:33:ff:a2:93:d9:0b:da:3a:da:f3:e1:bf:38:f4:c0: d2:7b:01:36:b3:2d:34:cc:e5:97:04:1b:7f:a4:12:34:b2:e2: 12:4f:75:f4:4f:d2:06:bf:14:ea:f6:55:29:5e:05:aa:36:96: 01:42:a1:97:3f:9a:f9:55:9f:b5:44:c7:c9:c6:76:63:d3:a5: ef:f4:c9:e3:b8:c0:aa:fd:b8:84:ca:d0:00:38:a4:ff:3c:29: 70:3d:b5:f9:9b:f6:99:24:e2:2c:81:15:46:87:93:43:14:ed: ef:e3:23:1b:bd:fd:e4:14:0e:1d:d2:ab:d9:01:4e:5f:07:c4: b1:a8:ba:1a:64:38:d0:2a:1e:3e:88:4d:c1:56:78:cf:d2:c3: 2c:0e:17:07:ef:d9:53:e5:c5:24:db:8b:83:f1:a3:e5:d7:d7: 52:e2:1f:62:86:13:7c:60:ab:76:77:83:f8:5d:81:d8:f2:11: fa:a8:db:45:9d:f3:27:fb:3d:8c:10:ab:aa:8d:05:0a:cb:52: df:ec:e2:06:38:ba:8d:e8:2c:7e:92:15:eb:26:2a:fb:12:c6: b5:ae:f6:48:88:7f:d7:e2:7e:42:49:06:40:2c:1a:ec:68:d0: b7:26:16:fc:f3:89:63:bb:71:f1:8f:37:72:ef:b1:07:c3:7d: a5:9c:b4:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZh6HAfhhYa1WojLWFskMBzvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMDIxYjI1MjIyMjk5N2JmZTMzYjdlNGIzMTVhYzhkNWUw Njc5NTQwHhcNMjUwODA1MTIwMTU0WhcNMjUwODA2MTIwMTU0WjAzMTEwLwYDVQQD Eyg1MmE0OWNhNTdjYWY5OGUxOTgyNDI5MzhmYjQ1YmExZWY5MGVmNmMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAphunfCN5Y5UXwJUCzKtXft5CeQsG gUiNqOpFpkR+QjHEySYU1otbV4bo90yDGe4JlxpmGeJLA2gcUn+QTvPJqD0EFm5K vvzfPhhBTs8vAr3hwdYl6JTUyHozdhVEed9huNx2M+zxut2HTeQMH8EpBgeQ+aD3 qqvzmV4Z5GM+K5eaMeI8SRfQAkA+Rw6oLqlYJezh0yKFWFlIv10QbIcIqmDRYxIA /XxQWoU+TZGjUjvXuNgU3AJhVo+G1GKZHrGeZPJST48LkkNjtZ+1/UqBFkhqaQc/ ooiProjfROh97bj7DgrDGD449XMVUm2ryyemqjaQyhZ5yL2DgZ+JUZa88wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFKknKV8r5jhmCQpOPtFuh75DvbAMB8GA1UdIwQY MBaAFCECGyUiIpl7/jO35LMVrI1eBnlUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMt NmVhYzYyZTYwZGY3LzEvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMtNmVhYzYyZTYwZGY3 LzEvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANXWyM/+i k9kL2jra8+G/OPTA0nsBNrMtNMzllwQbf6QSNLLiEk919E/SBr8U6vZVKV4FqjaW AUKhlz+a+VWftUTHycZ2Y9Ol7/TJ47jAqv24hMrQADik/zwpcD21+Zv2mSTiLIEV RoeTQxTt7+MjG7395BQOHdKr2QFOXwfEsai6GmQ40CoePohNwVZ4z9LDLA4XB+/Z U+XFJNuLg/Gj5dfXUuIfYoYTfGCrdneD+F2B2PIR+qjbRZ3zJ/s9jBCrqo0FCstS 3+ziBji6jegsfpIV6yYq+xLGta72SIh/1+J+QkkGQCwa7GjQtyYW/POJY7tx8Y83 cu+xB8N9pZy06Q== -----END CERTIFICATE-----Generated at Tue Aug 5 17:09:23 2025 by rpki-client