$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft File: bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft (raw, json) Hash identifier: rKjKS/fB8ZYW1VJzI8aKfWRpk8uoRcCJn/ly6fU7mDc= Subject key identifier: 62:07:38:B7:E0:9C:9B:DB:99:68:C5:C9:CE:7E:51:80:12:17:EA:BB Authority key identifier: 6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 Certificate issuer: /CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Certificate serial: 019A503DC85EA4281FB4540208E2E8D3BF43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft Manifest number: 178F Signing time: Tue 04 Nov 2025 19:00:17 +0000 Manifest this update: Tue 04 Nov 2025 19:00:17 +0000 Manifest next update: Wed 05 Nov 2025 19:00:17 +0000 Files and hashes: 1: GJGNGTLsLaPzo7RV9J9cGo7ZCKI.roa (hash: ycPiGraLR+oJB3cwW5Zn+sG2+Vx4fOUp8s3QYwjDHdY=) 2: LJGytq9N5LZAfsPYy6Q-7xTDnFQ.roa (hash: L8DANG0AVQkhh+LlhVF97AUo2a9H2Thg2+BhZTsZc9s=) 3: VdTIZg10bNsf97lJZgApyqs5rnw.roa (hash: JZmVNExP4W1uSJTEkKjxhG9IYISkRZKnN8IfaygiTvg=) 4: _RuQI5qt_gCJV8eSXJjHywGzAcM.roa (hash: DUnvGlvb0qBwrlu2PMIboP80gnaIA1d0Yg1mit2U5+4=) 5: _oIa1v5_qtgCStQ7Gr8CmdhmJJk.roa (hash: sBeGOfBKlFTzuSpkLUgZSpY0MFPhQu/DyIR2/KkHkUM=) 6: acsdEgh-dFdAGSqAE_lAYWdPdzo.roa (hash: lIvBIoA3FQRV1Et4CF8cBr7OP+IuEmQHKzZDW4s0Y6A=) 7: bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl (hash: Iil4Z2FtcR3hZnHzn/6bjgONdfnsy22KP5AdDRytlrg=) 8: gp93L_YQvuGEaCDSOxiRg-T-4UM.roa (hash: cOL7dP+BUiqZrZ0lZLE/dQN9GFbGifb1tHwfI+S3noI=) 9: mJjHdX3SCVwj6yoNCT7Dpu7pXSo.roa (hash: ccP3x4XUmUaf8il9YXiD7LEPdeAv9/EZKZYCHAVZnrA=) 10: uXeorQ0KraTFvVQlrxOSwyrTRt8.roa (hash: p6Mox6CbN3FoG5SSiyHeNVnPtI+94QgKaVPxEdmTl2o=) 11: yE8yGiOSM9_WiLeRkIg-dqNW2to.roa (hash: lSz5irzOf2/kcuzlFP5VLqCVP2LHBpJf2WHVunZKvMQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 18:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:50:3d:c8:5e:a4:28:1f:b4:54:02:08:e2:e8:d3:bf:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Validity Not Before: Nov 4 19:00:17 2025 GMT Not After : Nov 5 19:00:17 2025 GMT Subject: CN=620738b7e09c9bdb9968c5c9ce7e51801217eabb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:75:2b:45:f9:63:7b:80:03:01:9c:f3:f4:f1: e2:c4:60:91:97:2f:37:e8:7f:39:66:71:bf:fa:62: 29:e1:8e:20:86:6c:da:d1:2f:62:6e:ce:bf:45:eb: ae:cd:eb:c6:2c:08:97:89:a5:7a:b1:9e:72:f8:8c: 4c:85:73:00:26:f6:05:14:ef:17:29:5e:73:8f:b6: 7c:60:7a:c0:e0:d9:85:d9:09:67:40:4b:02:40:73: 5c:9e:d0:62:f8:a5:d6:ff:9c:78:4d:5c:fd:5e:2a: c8:f7:f0:10:fd:f0:4c:da:01:b6:3e:e1:4b:ef:cb: 7f:66:3c:b6:d1:b1:95:26:be:69:81:3b:7e:34:46: 7b:53:61:a4:9b:41:a2:19:e7:a6:1a:12:cf:e1:d8: 1d:39:eb:0d:b0:43:c2:17:9f:74:91:5e:13:bc:94: cc:cf:e1:fd:89:b7:81:ee:4c:95:06:9a:c1:28:1e: b4:66:04:c9:49:42:3e:ae:6c:ce:50:36:e9:48:03: 9b:0c:6b:c7:a7:35:71:b5:00:c2:36:e5:43:c2:ff: 96:30:64:b2:05:a9:b4:63:69:cb:49:99:1e:ab:21: 03:66:ce:49:33:73:92:50:88:5f:5c:6c:1c:e0:b9: 40:6d:08:aa:e9:ef:79:53:d2:b5:19:88:23:f8:47: 47:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:07:38:B7:E0:9C:9B:DB:99:68:C5:C9:CE:7E:51:80:12:17:EA:BB X509v3 Authority Key Identifier: keyid:6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:72:1a:36:cd:3a:90:b0:56:10:68:d5:ba:db:b8:61:77:60: 8a:16:9d:e3:b3:0c:1a:b8:5c:a4:2f:ff:31:a8:d5:56:64:38: 63:28:7b:20:4f:00:ee:5d:5a:96:6f:42:ec:f6:29:30:28:f1: 80:ae:0e:c1:54:b2:c4:3a:f4:04:81:90:97:d5:3a:e9:04:9d: 62:b0:2d:09:88:ef:a6:2a:8a:a3:6f:bc:9d:a2:d0:dd:6d:45: 4b:ce:c4:65:fd:86:9d:74:1e:58:e0:8d:7e:ac:a6:41:88:4f: 53:9e:3b:b0:93:d9:a1:f6:c9:1f:d0:4f:9b:bf:8e:50:c3:ab: 6e:5d:97:09:e3:c8:f1:2b:7d:8f:56:73:8e:f5:79:1f:eb:cb: 4f:1f:e9:c0:fd:f9:10:2e:f1:ea:dd:48:93:a8:18:ac:91:d0: f2:83:03:43:85:1a:81:7b:dc:35:1b:69:ac:cd:c8:dd:58:47: 55:4c:7c:dc:33:3f:15:70:40:8c:82:ce:fa:05:ac:b2:b0:8d: 32:53:30:19:74:ca:47:1a:35:1f:d1:60:81:77:23:f5:70:ed: 84:32:46:9a:c2:cc:17:21:ee:0c:38:6e:96:d3:85:08:e0:69: e1:d8:cf:01:cb:fb:7c:a2:84:1c:5b:0c:ca:13:7f:15:3e:88: 9b:0f:18:26 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZpQPchepCgftFQCCOLo079DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMzAzMGE0YjY3Zjk1YzJmZWQ5MDJkNTY2NTdmYWEyNDk0 YjUxMjkwHhcNMjUxMTA0MTkwMDE3WhcNMjUxMTA1MTkwMDE3WjAzMTEwLwYDVQQD Eyg2MjA3MzhiN2UwOWM5YmRiOTk2OGM1YzljZTdlNTE4MDEyMTdlYWJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA13UrRflje4ADAZzz9PHixGCRly83 6H85ZnG/+mIp4Y4ghmza0S9ibs6/ReuuzevGLAiXiaV6sZ5y+IxMhXMAJvYFFO8X KV5zj7Z8YHrA4NmF2QlnQEsCQHNcntBi+KXW/5x4TVz9XirI9/AQ/fBM2gG2PuFL 78t/Zjy20bGVJr5pgTt+NEZ7U2Gkm0GiGeemGhLP4dgdOesNsEPCF590kV4TvJTM z+H9ibeB7kyVBprBKB60ZgTJSUI+rmzOUDbpSAObDGvHpzVxtQDCNuVDwv+WMGSy Bam0Y2nLSZkeqyEDZs5JM3OSUIhfXGwc4LlAbQiq6e95U9K1GYgj+EdHSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGIHOLfgnJvbmWjFyc5+UYASF+q7MB8GA1UdIwQY MBaAFG8wMKS2f5XC/tkC1WZX+qJJS1EpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYt YmYzYjIxYTI3MGYyLzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYtYmYzYjIxYTI3MGYy LzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhXIaNs06 kLBWEGjVutu4YXdgihad47MMGrhcpC//MajVVmQ4Yyh7IE8A7l1alm9C7PYpMCjx gK4OwVSyxDr0BIGQl9U66QSdYrAtCYjvpiqKo2+8naLQ3W1FS87EZf2GnXQeWOCN fqymQYhPU547sJPZofbJH9BPm7+OUMOrbl2XCePI8St9j1ZzjvV5H+vLTx/pwP35 EC7x6t1Ik6gYrJHQ8oMDQ4UagXvcNRtprM3I3VhHVUx83DM/FXBAjILO+gWssrCN MlMwGXTKRxo1H9FggXcj9XDthDJGmsLMFyHuDDhultOFCOBp4djPAcv7fKKEHFsM yhN/FT6Imw8YJg== -----END CERTIFICATE-----Generated at Wed Nov 5 03:26:37 2025 by rpki-client