$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft File: bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft (raw, json) Hash identifier: o+77qE8afI4juCeDfFalkGeMHHwm0bs/X2+3Ld8+kWM= Subject key identifier: EF:FB:96:5E:D5:90:0B:F1:0A:81:3B:20:4F:7A:AB:D3:76:7C:31:C6 Authority key identifier: 6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 Certificate issuer: /CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Certificate serial: 0198733D2BFA9C92D206677B2738F8950E5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft Manifest number: 1698 Signing time: Mon 04 Aug 2025 04:00:45 +0000 Manifest this update: Mon 04 Aug 2025 04:00:45 +0000 Manifest next update: Tue 05 Aug 2025 04:00:45 +0000 Files and hashes: 1: GJGNGTLsLaPzo7RV9J9cGo7ZCKI.roa (hash: ycPiGraLR+oJB3cwW5Zn+sG2+Vx4fOUp8s3QYwjDHdY=) 2: LJGytq9N5LZAfsPYy6Q-7xTDnFQ.roa (hash: L8DANG0AVQkhh+LlhVF97AUo2a9H2Thg2+BhZTsZc9s=) 3: VdTIZg10bNsf97lJZgApyqs5rnw.roa (hash: JZmVNExP4W1uSJTEkKjxhG9IYISkRZKnN8IfaygiTvg=) 4: _RuQI5qt_gCJV8eSXJjHywGzAcM.roa (hash: DUnvGlvb0qBwrlu2PMIboP80gnaIA1d0Yg1mit2U5+4=) 5: _oIa1v5_qtgCStQ7Gr8CmdhmJJk.roa (hash: sBeGOfBKlFTzuSpkLUgZSpY0MFPhQu/DyIR2/KkHkUM=) 6: acsdEgh-dFdAGSqAE_lAYWdPdzo.roa (hash: lIvBIoA3FQRV1Et4CF8cBr7OP+IuEmQHKzZDW4s0Y6A=) 7: bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl (hash: 0nPYtatc1KGPZDfr+S8u/wu6SnisdsPYe1fcCYarWug=) 8: gp93L_YQvuGEaCDSOxiRg-T-4UM.roa (hash: cOL7dP+BUiqZrZ0lZLE/dQN9GFbGifb1tHwfI+S3noI=) 9: mJjHdX3SCVwj6yoNCT7Dpu7pXSo.roa (hash: ccP3x4XUmUaf8il9YXiD7LEPdeAv9/EZKZYCHAVZnrA=) 10: uXeorQ0KraTFvVQlrxOSwyrTRt8.roa (hash: p6Mox6CbN3FoG5SSiyHeNVnPtI+94QgKaVPxEdmTl2o=) 11: yE8yGiOSM9_WiLeRkIg-dqNW2to.roa (hash: lSz5irzOf2/kcuzlFP5VLqCVP2LHBpJf2WHVunZKvMQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 05 Aug 2025 04:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:73:3d:2b:fa:9c:92:d2:06:67:7b:27:38:f8:95:0e:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Validity Not Before: Aug 4 04:00:45 2025 GMT Not After : Aug 5 04:00:45 2025 GMT Subject: CN=effb965ed5900bf10a813b204f7aabd3767c31c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a1:f4:00:b2:fe:2e:99:f6:4d:03:3a:83:64: 52:7f:b3:1b:b5:07:4e:ea:d4:68:56:f9:3d:f3:3e: 49:40:6c:b3:89:fd:cc:9f:c2:57:f2:e3:ee:43:0c: fc:cb:ea:42:5c:f1:35:2f:4f:07:9e:5c:8b:5e:42: 09:80:ac:41:4b:ed:4d:fd:21:84:12:5c:c9:3d:67: 05:34:d8:d0:a6:56:42:80:be:ed:c1:7b:b5:5d:df: b0:08:2a:d5:57:c6:3e:ef:e4:dc:22:cf:7f:07:a2: c9:c6:d4:3d:50:1c:d8:21:11:4b:80:d2:05:8c:2c: eb:3f:b2:f0:ab:34:07:30:0a:9f:4e:18:7c:d1:5c: c9:42:81:bf:2c:d8:49:3e:a6:f6:af:6f:d5:d1:80: b6:12:4e:17:15:bb:dc:1d:fe:51:8a:2a:c8:41:77: fb:b4:70:76:19:d7:fc:7d:50:e9:96:92:83:81:47: bd:b7:9b:e2:52:ba:77:d2:35:5c:ae:42:dc:37:e5: 0e:36:82:c6:75:9a:b3:4e:2c:72:4c:b4:cf:04:18: e5:21:54:07:e4:b7:c8:68:a2:39:d4:07:37:08:3f: 63:78:82:00:5e:0c:ca:a8:a9:99:00:55:8e:a6:c7: 06:54:5b:8d:f6:de:14:90:5b:ce:5c:a5:da:59:38: ec:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:FB:96:5E:D5:90:0B:F1:0A:81:3B:20:4F:7A:AB:D3:76:7C:31:C6 X509v3 Authority Key Identifier: keyid:6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:22:02:bd:17:6e:56:4c:fc:b1:cb:1f:57:38:08:4e:51:31: e2:da:60:18:b9:fc:ea:2c:99:ef:b3:04:6a:ad:3f:40:21:b2: 14:67:8b:b6:d1:7a:be:78:ef:20:41:99:01:ba:0f:46:05:f0: 9c:f4:05:75:bb:49:c9:ed:9f:ed:b8:af:c3:7d:27:92:c6:32: d1:b1:19:e4:8f:94:e4:cd:03:24:f5:dc:1c:bb:d4:f4:4c:6a: e5:19:21:64:f2:1d:10:63:98:c8:6e:33:d5:61:3e:5b:4b:3d: 1f:ef:83:4a:df:91:6b:e8:98:95:92:c5:95:d7:da:48:7c:6d: 56:6a:b8:d3:22:8a:f5:53:41:9b:0c:c0:30:4b:cd:ed:ae:ab: 04:c7:18:24:d1:86:7f:5a:a5:f3:6f:d2:24:6b:39:5f:f5:79: 5d:42:8b:5f:ad:aa:b0:c7:e3:9a:a2:ae:d4:31:46:6c:b0:22: 59:69:b4:bf:68:d0:f7:b0:e6:65:a7:69:38:6f:0b:b5:e1:2b: 9b:da:c6:8c:27:c2:ce:2a:79:ab:a4:12:07:23:b6:17:cf:66: 49:02:0b:6c:47:82:36:26:82:72:2e:c3:b1:8b:8b:fb:08:f3: 68:cd:21:15:dd:60:99:1c:09:7c:33:87:9c:a6:6c:01:47:a5: 0b:56:3f:0f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZhzPSv6nJLSBmd7Jzj4lQ5cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMzAzMGE0YjY3Zjk1YzJmZWQ5MDJkNTY2NTdmYWEyNDk0 YjUxMjkwHhcNMjUwODA0MDQwMDQ1WhcNMjUwODA1MDQwMDQ1WjAzMTEwLwYDVQQD EyhlZmZiOTY1ZWQ1OTAwYmYxMGE4MTNiMjA0ZjdhYWJkMzc2N2MzMWM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1KH0ALL+Lpn2TQM6g2RSf7MbtQdO 6tRoVvk98z5JQGyzif3Mn8JX8uPuQwz8y+pCXPE1L08HnlyLXkIJgKxBS+1N/SGE ElzJPWcFNNjQplZCgL7twXu1Xd+wCCrVV8Y+7+TcIs9/B6LJxtQ9UBzYIRFLgNIF jCzrP7LwqzQHMAqfThh80VzJQoG/LNhJPqb2r2/V0YC2Ek4XFbvcHf5RiirIQXf7 tHB2Gdf8fVDplpKDgUe9t5viUrp30jVcrkLcN+UONoLGdZqzTixyTLTPBBjlIVQH 5LfIaKI51Ac3CD9jeIIAXgzKqKmZAFWOpscGVFuN9t4UkFvOXKXaWTjsKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO/7ll7VkAvxCoE7IE96q9N2fDHGMB8GA1UdIwQY MBaAFG8wMKS2f5XC/tkC1WZX+qJJS1EpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYt YmYzYjIxYTI3MGYyLzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYtYmYzYjIxYTI3MGYy LzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgiICvRdu Vkz8scsfVzgITlEx4tpgGLn86iyZ77MEaq0/QCGyFGeLttF6vnjvIEGZAboPRgXw nPQFdbtJye2f7bivw30nksYy0bEZ5I+U5M0DJPXcHLvU9Exq5RkhZPIdEGOYyG4z 1WE+W0s9H++DSt+Ra+iYlZLFldfaSHxtVmq40yKK9VNBmwzAMEvN7a6rBMcYJNGG f1ql82/SJGs5X/V5XUKLX62qsMfjmqKu1DFGbLAiWWm0v2jQ97DmZadpOG8LteEr m9rGjCfCzip5q6QSByO2F89mSQILbEeCNiaCci7DsYuL+wjzaM0hFd1gmRwJfDOH nKZsAUelC1Y/Dw== -----END CERTIFICATE-----Generated at Mon Aug 4 14:00:08 2025 by rpki-client