$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft File: o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft (raw, json) Hash identifier: EV76rnyKMlYGH+ch7CF/TeHDHchbd9l024mKe7e+PHA= Subject key identifier: BD:EB:97:F3:9A:CD:70:E0:16:45:C6:2E:05:D6:09:A6:9B:64:31:26 Authority key identifier: A3:89:E7:03:5B:08:E1:81:A3:41:F3:7E:DA:73:43:D2:3F:1C:AF:A4 Certificate issuer: /CN=a389e7035b08e181a341f37eda7343d23f1cafa4 Certificate serial: 019892FF16447523A2473020CC4959D64E1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4nnA1sI4YGjQfN-2nND0j8cr6Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft Manifest number: 1557 Signing time: Sun 10 Aug 2025 08:00:47 +0000 Manifest this update: Sun 10 Aug 2025 08:00:47 +0000 Manifest next update: Mon 11 Aug 2025 08:00:47 +0000 Files and hashes: 1: A-6dGixYiVjP5SArd3OOXzF_y94.roa (hash: dHKBVyiR8mv13Z7wTMxDvJhUaTAdj4JJSYSEmomSgRI=) 2: EdyN193XAqCuwUeh3uoqwgMp6YM.roa (hash: aMp83WD7+8DMvO0EZKm2i6yVdt39wHGmWPL1VSmKtjM=) 3: KWzqOLtIWSWtWkByhLp85FW_7rM.roa (hash: +yMm4K7E6517qc0jJ3daW8uChLhsqKi3MVBCXwIyDXI=) 4: ZMT2qJeQlu-C5i0G01EBCNd-g6M.roa (hash: Jul8wggfGDzUNFRFlHhNzs2me0GUF4GTUbIsvxzWDwQ=) 5: adPv80nsAvDoMdbWFhmbQrTYx_c.roa (hash: 4ui5pcCs9o10PJAGBjhy0LQC0IJvn6eEg11QBgbYrhM=) 6: ayrwJOZcqXwPotZkkftDNJvjVWI.roa (hash: u8hehMe3mSy7WRp8JZKZ+vW+iYZYC7RSsKKYne4ZeUk=) 7: dBRyMZmE2MJby6jWlOxwaQP0Xaw.roa (hash: n5MzTBEIB9PdMNKBfe5+OAUwctGrct8tICmAF1a6F9E=) 8: fnuqhATdgk7065LZ-MFpw_mk_Sk.roa (hash: MF0/pFOYDoQu2nRxFXy3gK33SujqFiXhgPkh2E7fsqk=) 9: mPlgxbWD56Le2xy3b_FhRsqSxsc.roa (hash: AfWfwIbPTYGoiVxVmMF6d4mso8lDoU2eXTIxJq7pZSw=) 10: o4nnA1sI4YGjQfN-2nND0j8cr6Q.crl (hash: c7twrtCIR78PzFXBA9PNS1PTrmPrT4WyV/g4xhWbCG4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft rsync://rpki.ripe.net/repository/DEFAULT/o4nnA1sI4YGjQfN-2nND0j8cr6Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 11 Aug 2025 08:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:92:ff:16:44:75:23:a2:47:30:20:cc:49:59:d6:4e:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a389e7035b08e181a341f37eda7343d23f1cafa4 Validity Not Before: Aug 10 08:00:47 2025 GMT Not After : Aug 11 08:00:47 2025 GMT Subject: CN=bdeb97f39acd70e01645c62e05d609a69b643126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:eb:5e:2f:7e:03:83:c7:bc:2c:bc:70:bd:60: cf:97:9f:9b:be:8f:d4:9e:ae:59:d3:a6:5d:b9:d9: e1:3a:8b:c7:e3:86:02:4b:e6:73:82:03:47:b0:12: f1:6a:5e:76:0c:83:80:86:25:6f:bf:07:ca:5b:50: f7:37:8f:64:15:cc:1e:aa:3f:fb:a1:35:bc:db:73: de:14:38:0a:38:07:51:80:2a:c8:cb:4f:57:8e:a6: f1:52:e5:b9:1e:c1:47:2f:fb:1a:7d:12:4f:9d:5e: fd:63:51:07:44:08:5b:de:4a:9b:29:e8:8f:d1:8a: 4a:cc:27:38:d2:59:dd:66:55:93:35:79:38:52:f6: 23:0d:11:ed:53:16:bd:70:4e:fc:ca:fb:eb:ba:0b: f6:26:c2:3e:4c:d0:64:12:cd:9e:96:ae:2c:12:55: 04:77:2d:2a:5c:ed:86:fe:3c:1f:9f:4b:c1:ec:fc: 66:8d:c0:b9:c2:2f:11:0e:38:95:05:6f:78:be:85: e9:56:3d:34:bd:72:be:db:d5:af:68:cb:8c:9c:b9: a5:78:c8:ff:0a:6c:a6:8c:c4:34:67:45:ef:41:a4: ae:15:67:e9:2c:68:9d:79:4b:a1:0c:03:90:75:86: 32:64:4c:e0:91:1f:99:ce:96:bd:64:40:a3:7f:19: 08:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:EB:97:F3:9A:CD:70:E0:16:45:C6:2E:05:D6:09:A6:9B:64:31:26 X509v3 Authority Key Identifier: keyid:A3:89:E7:03:5B:08:E1:81:A3:41:F3:7E:DA:73:43:D2:3F:1C:AF:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4nnA1sI4YGjQfN-2nND0j8cr6Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:84:d3:da:e4:5b:93:32:21:0c:5c:53:dd:ba:7f:37:e0:6d: 6d:ba:ea:da:f6:1f:03:e4:d1:f5:6a:69:c6:ed:66:55:7d:15: 03:82:6b:e9:77:2f:79:c7:a9:16:ae:73:eb:d8:ed:a5:5a:e4: 64:7a:ab:a4:0f:7e:f0:e0:f3:f4:d2:8d:98:20:94:bb:4e:47: 6d:60:b1:b3:fc:e7:62:96:72:ee:ac:f3:36:45:a0:ad:f1:42: 26:24:86:5a:7c:8f:c1:e5:2c:f9:c7:e4:9c:74:72:68:42:eb: de:7c:b1:72:78:70:54:21:de:e0:46:04:48:08:8d:77:37:55: 8c:f6:9f:22:79:75:63:09:81:da:62:2a:80:8e:ba:3d:aa:ae: c2:d9:a1:94:5f:4e:f6:79:7c:b0:51:cd:29:5f:57:58:94:aa: dd:53:c9:2f:cc:86:a2:a3:46:8c:dc:dc:c6:f6:88:e1:7a:6f: 92:44:50:dc:57:35:92:81:63:07:14:de:5d:3f:1b:d4:18:52: 73:f7:e8:3e:b9:54:f7:4f:4e:71:92:7a:e0:37:77:14:95:01: b0:cb:1e:8d:ae:b8:b4:a2:88:5e:d8:b0:a4:d2:f5:57:fc:7d: c9:37:74:59:60:a6:24:84:1f:04:ec:cd:a9:6a:61:f6:5d:27: e5:44:41:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZiS/xZEdSOiRzAgzElZ1k4aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzODllNzAzNWIwOGUxODFhMzQxZjM3ZWRhNzM0M2QyM2Yx Y2FmYTQwHhcNMjUwODEwMDgwMDQ3WhcNMjUwODExMDgwMDQ3WjAzMTEwLwYDVQQD EyhiZGViOTdmMzlhY2Q3MGUwMTY0NWM2MmUwNWQ2MDlhNjliNjQzMTI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0OteL34Dg8e8LLxwvWDPl5+bvo/U nq5Z06ZdudnhOovH44YCS+ZzggNHsBLxal52DIOAhiVvvwfKW1D3N49kFcweqj/7 oTW823PeFDgKOAdRgCrIy09XjqbxUuW5HsFHL/safRJPnV79Y1EHRAhb3kqbKeiP 0YpKzCc40lndZlWTNXk4UvYjDRHtUxa9cE78yvvrugv2JsI+TNBkEs2elq4sElUE dy0qXO2G/jwfn0vB7PxmjcC5wi8RDjiVBW94voXpVj00vXK+29WvaMuMnLmleMj/ CmymjMQ0Z0XvQaSuFWfpLGideUuhDAOQdYYyZEzgkR+Zzpa9ZECjfxkInwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL3rl/OazXDgFkXGLgXWCaabZDEmMB8GA1UdIwQY MBaAFKOJ5wNbCOGBo0HzftpzQ9I/HK+kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzRubkExc0k0WUdqUWZOLTJuTkQwajhjcjZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9mMDUzY2QtMWQ3OS00M2ExLTlhYWIt MGU3MjQxNmI0ZGM3LzEvbzRubkExc0k0WUdqUWZOLTJuTkQwajhjcjZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9mMDUzY2QtMWQ3OS00M2ExLTlhYWItMGU3MjQxNmI0ZGM3 LzEvbzRubkExc0k0WUdqUWZOLTJuTkQwajhjcjZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM4TT2uRb kzIhDFxT3bp/N+Btbbrq2vYfA+TR9Wppxu1mVX0VA4Jr6XcvecepFq5z69jtpVrk ZHqrpA9+8ODz9NKNmCCUu05HbWCxs/znYpZy7qzzNkWgrfFCJiSGWnyPweUs+cfk nHRyaELr3nyxcnhwVCHe4EYESAiNdzdVjPafInl1YwmB2mIqgI66PaquwtmhlF9O 9nl8sFHNKV9XWJSq3VPJL8yGoqNGjNzcxvaI4XpvkkRQ3Fc1koFjBxTeXT8b1BhS c/foPrlU909OcZJ64Dd3FJUBsMseja64tKKIXtiwpNL1V/x9yTd0WWCmJIQfBOzN qWph9l0n5URBcw== -----END CERTIFICATE-----Generated at Sun Aug 10 13:54:09 2025 by rpki-client