$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft File: bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft (raw, json) Hash identifier: Lm6TkcpZN3rF0R7dvrnfWgv61CWQ0B7b2N3lgqRyIN8= Subject key identifier: EA:D3:0E:2F:65:47:36:40:90:7E:20:91:05:89:58:EE:57:E1:87:C7 Authority key identifier: 6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 Certificate issuer: /CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Certificate serial: 01977452ACC96A0741313D01F2E5DBE3BAF4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft Manifest number: 1614 Signing time: Sun 15 Jun 2025 16:01:04 +0000 Manifest this update: Sun 15 Jun 2025 16:01:04 +0000 Manifest next update: Mon 16 Jun 2025 16:01:04 +0000 Files and hashes: 1: GJGNGTLsLaPzo7RV9J9cGo7ZCKI.roa (hash: ycPiGraLR+oJB3cwW5Zn+sG2+Vx4fOUp8s3QYwjDHdY=) 2: LJGytq9N5LZAfsPYy6Q-7xTDnFQ.roa (hash: L8DANG0AVQkhh+LlhVF97AUo2a9H2Thg2+BhZTsZc9s=) 3: VdTIZg10bNsf97lJZgApyqs5rnw.roa (hash: JZmVNExP4W1uSJTEkKjxhG9IYISkRZKnN8IfaygiTvg=) 4: _RuQI5qt_gCJV8eSXJjHywGzAcM.roa (hash: DUnvGlvb0qBwrlu2PMIboP80gnaIA1d0Yg1mit2U5+4=) 5: _oIa1v5_qtgCStQ7Gr8CmdhmJJk.roa (hash: sBeGOfBKlFTzuSpkLUgZSpY0MFPhQu/DyIR2/KkHkUM=) 6: acsdEgh-dFdAGSqAE_lAYWdPdzo.roa (hash: lIvBIoA3FQRV1Et4CF8cBr7OP+IuEmQHKzZDW4s0Y6A=) 7: bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl (hash: 0jy5O2sRwF97MvkT7+p9VQSePb44mujg9hh8re5Rx0o=) 8: gp93L_YQvuGEaCDSOxiRg-T-4UM.roa (hash: cOL7dP+BUiqZrZ0lZLE/dQN9GFbGifb1tHwfI+S3noI=) 9: mJjHdX3SCVwj6yoNCT7Dpu7pXSo.roa (hash: ccP3x4XUmUaf8il9YXiD7LEPdeAv9/EZKZYCHAVZnrA=) 10: uXeorQ0KraTFvVQlrxOSwyrTRt8.roa (hash: p6Mox6CbN3FoG5SSiyHeNVnPtI+94QgKaVPxEdmTl2o=) 11: yE8yGiOSM9_WiLeRkIg-dqNW2to.roa (hash: lSz5irzOf2/kcuzlFP5VLqCVP2LHBpJf2WHVunZKvMQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 13:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:74:52:ac:c9:6a:07:41:31:3d:01:f2:e5:db:e3:ba:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Validity Not Before: Jun 15 16:01:04 2025 GMT Not After : Jun 16 16:01:04 2025 GMT Subject: CN=ead30e2f65473640907e2091058958ee57e187c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d8:57:38:c4:27:ee:b3:8d:8d:55:be:36:9e: 98:76:92:7d:0f:09:4e:01:ad:d3:b5:e5:d2:93:2e: c2:4d:95:d6:0f:33:fc:1b:76:04:06:1a:0d:09:96: b8:9a:bf:15:d8:66:82:19:05:5e:31:66:55:12:f6: 8d:f8:71:32:bb:8b:01:79:2d:2b:f1:09:3e:d1:9a: 13:a9:95:d7:2c:4d:0a:9b:8f:bb:01:f3:e8:d8:e5: 4e:79:30:ea:bc:6f:9d:da:eb:59:1a:e2:ca:d3:26: ad:09:82:49:8a:ed:63:ca:01:b4:af:a3:c6:b7:0e: 7c:20:48:28:05:cf:a1:c5:8d:62:cb:65:aa:57:29: ca:33:64:d1:11:66:3a:22:6c:58:b9:9b:51:f7:89: e6:9e:8a:9e:df:15:e7:5d:9a:28:a0:06:ef:43:a8: d6:96:18:e1:4f:46:80:ab:9c:b6:b7:d6:b4:63:9d: 2f:24:a7:e8:59:e0:0f:47:6e:09:37:1a:f6:dd:9d: 2f:ae:8b:2b:b2:25:25:45:ef:b9:c1:b1:bd:4d:5f: 56:19:aa:db:35:97:23:97:46:42:63:27:1c:5b:18: fa:18:bc:a4:29:57:12:58:2a:ad:c3:6e:3c:d8:e7: 6f:ce:2f:cc:09:61:f9:c7:08:e8:1e:a8:eb:71:c4: 32:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:D3:0E:2F:65:47:36:40:90:7E:20:91:05:89:58:EE:57:E1:87:C7 X509v3 Authority Key Identifier: keyid:6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:8c:c3:70:d4:a0:b7:33:d5:a5:9c:37:87:c9:3b:b5:a1:48: b7:12:f7:6d:7e:e8:94:60:bc:88:62:22:1b:a1:71:f1:85:f7: 91:90:83:d0:21:57:f5:67:f7:a7:62:32:92:ed:3c:86:95:65: e7:c2:a6:93:6f:de:d1:8e:ed:60:e1:de:83:84:58:db:29:17: 6a:57:32:00:c3:01:53:4b:54:e7:e3:c0:47:e7:b9:c4:8a:ad: 7a:5c:b9:2e:36:ee:26:88:d3:6a:ba:b6:e5:36:64:8b:de:25: 22:6e:ce:06:57:53:41:46:18:06:cc:7f:f0:1b:65:f5:40:17: 17:66:d5:d3:bc:80:80:d0:ae:c6:ad:22:2a:f0:e7:49:91:81: 41:d1:4c:b5:fa:fe:7b:29:9f:5e:8e:71:25:f6:59:38:d6:6f: cb:3d:04:9b:53:51:c3:5a:2c:26:e0:d8:5b:8f:3f:b6:57:5d: 81:a5:41:e7:58:a0:11:db:b0:d9:18:33:79:df:d5:d1:00:b7: 43:52:fc:d0:40:73:41:c0:c0:2b:25:9a:35:77:c3:3f:53:4e: b8:54:5a:60:a9:76:a0:0c:9c:52:38:b5:97:8d:b3:5a:37:a6: db:c1:3c:cc:13:09:38:e3:cd:ea:11:4e:b5:87:dd:c7:8e:b5: f0:ae:71:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZd0UqzJagdBMT0B8uXb47r0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMzAzMGE0YjY3Zjk1YzJmZWQ5MDJkNTY2NTdmYWEyNDk0 YjUxMjkwHhcNMjUwNjE1MTYwMTA0WhcNMjUwNjE2MTYwMTA0WjAzMTEwLwYDVQQD EyhlYWQzMGUyZjY1NDczNjQwOTA3ZTIwOTEwNTg5NThlZTU3ZTE4N2M3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx9hXOMQn7rONjVW+Np6YdpJ9DwlO Aa3TteXSky7CTZXWDzP8G3YEBhoNCZa4mr8V2GaCGQVeMWZVEvaN+HEyu4sBeS0r 8Qk+0ZoTqZXXLE0Km4+7AfPo2OVOeTDqvG+d2utZGuLK0yatCYJJiu1jygG0r6PG tw58IEgoBc+hxY1iy2WqVynKM2TREWY6ImxYuZtR94nmnoqe3xXnXZoooAbvQ6jW lhjhT0aAq5y2t9a0Y50vJKfoWeAPR24JNxr23Z0vrosrsiUlRe+5wbG9TV9WGarb NZcjl0ZCYyccWxj6GLykKVcSWCqtw2482Odvzi/MCWH5xwjoHqjrccQy8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOrTDi9lRzZAkH4gkQWJWO5X4YfHMB8GA1UdIwQY MBaAFG8wMKS2f5XC/tkC1WZX+qJJS1EpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYt YmYzYjIxYTI3MGYyLzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYtYmYzYjIxYTI3MGYy LzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVozDcNSg tzPVpZw3h8k7taFItxL3bX7olGC8iGIiG6Fx8YX3kZCD0CFX9Wf3p2Iyku08hpVl 58Kmk2/e0Y7tYOHeg4RY2ykXalcyAMMBU0tU5+PAR+e5xIqtely5LjbuJojTarq2 5TZki94lIm7OBldTQUYYBsx/8Btl9UAXF2bV07yAgNCuxq0iKvDnSZGBQdFMtfr+ eymfXo5xJfZZONZvyz0Em1NRw1osJuDYW48/tlddgaVB51igEduw2Rgzed/V0QC3 Q1L80EBzQcDAKyWaNXfDP1NOuFRaYKl2oAycUji1l42zWjem28E8zBMJOOPN6hFO tYfdx4618K5x1A== -----END CERTIFICATE-----Generated at Sun Jun 15 19:28:04 2025 by rpki-client