$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft File: o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft (raw, json) Hash identifier: DZvl3+5q97/Z61VoWIoIuztcsEAMczRuLWs0UOdnbc0= Subject key identifier: 6B:2C:98:5A:63:7F:9C:71:5C:00:D3:17:DB:EF:3A:E8:DA:96:28:55 Authority key identifier: A3:89:E7:03:5B:08:E1:81:A3:41:F3:7E:DA:73:43:D2:3F:1C:AF:A4 Certificate issuer: /CN=a389e7035b08e181a341f37eda7343d23f1cafa4 Certificate serial: 019A4E86C7EA8D2E3C667B44BA6EE09632A0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4nnA1sI4YGjQfN-2nND0j8cr6Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft Manifest number: 163D Signing time: Tue 04 Nov 2025 11:00:47 +0000 Manifest this update: Tue 04 Nov 2025 11:00:47 +0000 Manifest next update: Wed 05 Nov 2025 11:00:47 +0000 Files and hashes: 1: A-6dGixYiVjP5SArd3OOXzF_y94.roa (hash: dHKBVyiR8mv13Z7wTMxDvJhUaTAdj4JJSYSEmomSgRI=) 2: EdyN193XAqCuwUeh3uoqwgMp6YM.roa (hash: aMp83WD7+8DMvO0EZKm2i6yVdt39wHGmWPL1VSmKtjM=) 3: KWzqOLtIWSWtWkByhLp85FW_7rM.roa (hash: +yMm4K7E6517qc0jJ3daW8uChLhsqKi3MVBCXwIyDXI=) 4: ZMT2qJeQlu-C5i0G01EBCNd-g6M.roa (hash: Jul8wggfGDzUNFRFlHhNzs2me0GUF4GTUbIsvxzWDwQ=) 5: adPv80nsAvDoMdbWFhmbQrTYx_c.roa (hash: 4ui5pcCs9o10PJAGBjhy0LQC0IJvn6eEg11QBgbYrhM=) 6: ayrwJOZcqXwPotZkkftDNJvjVWI.roa (hash: u8hehMe3mSy7WRp8JZKZ+vW+iYZYC7RSsKKYne4ZeUk=) 7: fnuqhATdgk7065LZ-MFpw_mk_Sk.roa (hash: MF0/pFOYDoQu2nRxFXy3gK33SujqFiXhgPkh2E7fsqk=) 8: hFLfi7y6acWn-HH4-tzBOKfKzRY.roa (hash: xYND5KQ7rz8GZqxEFiwwG/BrGvhFrStCdg/rXumDivA=) 9: mPlgxbWD56Le2xy3b_FhRsqSxsc.roa (hash: AfWfwIbPTYGoiVxVmMF6d4mso8lDoU2eXTIxJq7pZSw=) 10: o4nnA1sI4YGjQfN-2nND0j8cr6Q.crl (hash: u67XPZWxxFqOnL4iHSDmngPNJMXVlLjqE6SyC4x7W2U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft rsync://rpki.ripe.net/repository/DEFAULT/o4nnA1sI4YGjQfN-2nND0j8cr6Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 09:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:4e:86:c7:ea:8d:2e:3c:66:7b:44:ba:6e:e0:96:32:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a389e7035b08e181a341f37eda7343d23f1cafa4 Validity Not Before: Nov 4 11:00:47 2025 GMT Not After : Nov 5 11:00:47 2025 GMT Subject: CN=6b2c985a637f9c715c00d317dbef3ae8da962855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:90:0c:8f:79:93:29:e0:c9:cd:b2:5f:5d:b7: 88:ee:7b:24:24:1f:a6:b8:ee:88:8b:c2:01:76:07: 74:1c:27:52:3f:e4:86:88:08:4b:4b:61:c6:e4:e8: ad:f5:c5:67:42:a3:4f:be:66:bc:3e:6e:56:60:b3: da:27:d3:fa:89:98:f1:c7:c3:ab:80:c0:6d:f0:cc: 08:ce:3d:a9:83:b2:34:f7:df:1b:c5:82:bb:25:9f: 01:cb:d4:49:46:d8:90:71:cb:fb:ad:e7:b5:a4:3c: 5a:d2:5c:1a:d8:07:fc:76:2b:55:ae:23:31:e9:73: d2:95:26:70:7c:23:1a:e4:b5:74:a5:c8:ff:6c:7e: 1d:0b:27:32:15:e1:da:5c:a6:ce:dd:4e:56:4f:c1: ec:75:5f:51:4a:fc:7c:00:90:89:bb:28:fb:69:b9: 4e:b7:7e:4a:a7:57:42:e7:d9:a7:f4:83:7c:3a:a8: 69:c4:50:48:85:41:c0:3c:c5:a3:02:48:04:f4:66: 27:0f:96:88:e4:92:4d:2f:34:3f:2c:84:e9:ed:4c: 8e:e6:b2:4a:b2:33:0b:bd:c6:55:58:2a:24:02:e4: cd:2b:6e:9e:10:65:71:ab:7a:5a:af:ca:88:3d:88: 42:0d:d5:c4:bb:3d:5c:06:f9:bb:22:4a:80:17:d8: 96:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:2C:98:5A:63:7F:9C:71:5C:00:D3:17:DB:EF:3A:E8:DA:96:28:55 X509v3 Authority Key Identifier: keyid:A3:89:E7:03:5B:08:E1:81:A3:41:F3:7E:DA:73:43:D2:3F:1C:AF:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4nnA1sI4YGjQfN-2nND0j8cr6Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:6e:dc:83:9e:af:d1:2d:29:65:8a:4a:35:8f:ae:19:54:6f: ee:36:92:0f:05:f2:26:58:16:70:bf:a5:40:92:1b:0d:bd:ad: 58:1d:cd:85:96:c9:9b:ce:71:ac:8a:03:ff:e4:43:5b:26:22: 88:3c:02:9d:c6:16:b2:b2:02:a4:1c:31:df:b2:6f:66:86:7f: 6b:da:06:d9:53:f9:df:fb:c3:be:f3:c2:33:41:b7:2f:6d:23: 99:2f:93:47:39:6e:b7:59:5f:91:46:4a:f3:99:8b:82:b0:9c: 6f:2f:b1:a9:db:cf:11:8d:15:80:66:be:98:1c:3c:ee:80:d1: 77:e6:24:b3:33:24:df:6b:9c:86:ac:e1:a4:3a:c0:44:f8:20: b7:83:47:3b:3c:7b:e6:b1:f1:52:b7:36:7b:17:00:eb:bd:59: d6:a0:c8:90:91:eb:2c:68:5e:10:a3:db:75:16:ab:15:7f:1b: d3:3a:fe:fb:25:3f:18:66:6e:0e:22:11:6d:82:ef:0a:bf:29: c1:e7:e6:f2:88:0e:88:2c:40:cd:fa:9c:cf:27:56:1d:90:79: 69:1a:1b:d0:49:37:b6:c7:48:a5:9b:84:28:20:5e:59:42:f9: 7b:e3:1a:a3:dc:e7:18:fb:79:b3:3b:bf:7b:26:b1:84:e5:7a: cf:8b:9c:33 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZpOhsfqjS48ZntEum7gljKgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzODllNzAzNWIwOGUxODFhMzQxZjM3ZWRhNzM0M2QyM2Yx Y2FmYTQwHhcNMjUxMTA0MTEwMDQ3WhcNMjUxMTA1MTEwMDQ3WjAzMTEwLwYDVQQD Eyg2YjJjOTg1YTYzN2Y5YzcxNWMwMGQzMTdkYmVmM2FlOGRhOTYyODU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyJAMj3mTKeDJzbJfXbeI7nskJB+m uO6Ii8IBdgd0HCdSP+SGiAhLS2HG5Oit9cVnQqNPvma8Pm5WYLPaJ9P6iZjxx8Or gMBt8MwIzj2pg7I0998bxYK7JZ8By9RJRtiQccv7ree1pDxa0lwa2Af8ditVriMx 6XPSlSZwfCMa5LV0pcj/bH4dCycyFeHaXKbO3U5WT8HsdV9RSvx8AJCJuyj7ablO t35Kp1dC59mn9IN8OqhpxFBIhUHAPMWjAkgE9GYnD5aI5JJNLzQ/LITp7UyO5rJK sjMLvcZVWCokAuTNK26eEGVxq3par8qIPYhCDdXEuz1cBvm7IkqAF9iWJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGssmFpjf5xxXADTF9vvOujalihVMB8GA1UdIwQY MBaAFKOJ5wNbCOGBo0HzftpzQ9I/HK+kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzRubkExc0k0WUdqUWZOLTJuTkQwajhjcjZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9mMDUzY2QtMWQ3OS00M2ExLTlhYWIt MGU3MjQxNmI0ZGM3LzEvbzRubkExc0k0WUdqUWZOLTJuTkQwajhjcjZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9mMDUzY2QtMWQ3OS00M2ExLTlhYWItMGU3MjQxNmI0ZGM3 LzEvbzRubkExc0k0WUdqUWZOLTJuTkQwajhjcjZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIW7cg56v 0S0pZYpKNY+uGVRv7jaSDwXyJlgWcL+lQJIbDb2tWB3NhZbJm85xrIoD/+RDWyYi iDwCncYWsrICpBwx37JvZoZ/a9oG2VP53/vDvvPCM0G3L20jmS+TRzlut1lfkUZK 85mLgrCcby+xqdvPEY0VgGa+mBw87oDRd+YkszMk32uchqzhpDrARPggt4NHOzx7 5rHxUrc2excA671Z1qDIkJHrLGheEKPbdRarFX8b0zr++yU/GGZuDiIRbYLvCr8p wefm8ogOiCxAzfqczydWHZB5aRob0Ek3tsdIpZuEKCBeWUL5e+Mao9znGPt5szu/ eyaxhOV6z4ucMw== -----END CERTIFICATE-----Generated at Tue Nov 4 15:15:24 2025 by rpki-client