$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft File: OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft (raw, json) Hash identifier: G01UqJTP4rHNmJiRKbNJKramZ7AJTnLUsGTSz2WkGrI= Subject key identifier: 8B:B2:5F:C7:B8:05:7A:D7:69:A0:50:13:66:AD:FB:D0:40:F1:2C:DB Authority key identifier: 38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 Certificate issuer: /CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Certificate serial: 019872983C8293B170D850862E793BC956F8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft Manifest number: 1625 Signing time: Mon 04 Aug 2025 01:00:36 +0000 Manifest this update: Mon 04 Aug 2025 01:00:36 +0000 Manifest next update: Tue 05 Aug 2025 01:00:36 +0000 Files and hashes: 1: 3nAxOrqe3oi83iVjt7-kMzJ_imI.roa (hash: 0jNIl4uBhcm5LdIuubw+L/Ha2QMXka6zLLkNeAcF40c=) 2: 7B2j1343QblR9F6iTWiRinHn8x0.roa (hash: Bp/dbOZRIjunqnEsDuN3X0tRwg1SKVjgcGEA09U24Zc=) 3: B9dwnbBbiJenj05UDjyUy_TzXDg.roa (hash: s4Wv5YaGEZaX82N6dusRWR3tSJBVmvjmxniLSHfxYAE=) 4: E6umy5_OlHHb3NOgNKiaqTj372A.roa (hash: kmYIRPqCRch39x2r6WhmK+8aDVBlwYVLvzQIGAbOPps=) 5: GrCJk2XTvFQ1bFg3LeF86Dm0kMU.roa (hash: //aHWa+QTi3TqyDc0NocuZ54Ser38N49WnMxWn6LdwE=) 6: OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl (hash: h6pB86668qwZN1ueODjKoROUIM4aeMF58E9e8raPZTs=) 7: P0hYRZk_epkkwrcDiaxk_ejd9pE.roa (hash: RbP7Hj7hNb6SHmHJtPw1bzOEo2w8Ign3eKIaXKeZWz8=) 8: SOBAES4j7h-D6nKfccoc2NpSr8A.roa (hash: vmAKmT6VUkF1cozh164hgKJKVk8BJXYwDbwibYkkVy4=) 9: WBa-OMWvS5R9EiWcpIqPa_m7lKo.roa (hash: JhWDx8KAw0uX/VJGQRKzvoZLcAnbsOAM+D0EwwgJJrs=) 10: _6ucnx77KQFalvj5yEE2wp5osls.roa (hash: Xw55WCSv/8tmiRj4/KKvZ6v3swmB6TKO4qL1Xw6aI30=) 11: hmNo0lfF6aVfLa7MkqmEKjtbdyQ.roa (hash: +xwhsq1RdvJOWfeJtHcoWSMc+U0UkSWEqMUWf9xz80w=) 12: jtw47htspCaZBqLn-szAwwLDgRI.roa (hash: 4ge4ZfZPpCPnlsJ6k5nbKp3z9nIWCai+fnrSIWJ/WUA=) 13: jzrvK-bgXnpFKZtkluSwDEQbp08.roa (hash: ZM3tthCJVaSjXclzoJDdeWjLh7O5ICpnIBuMTiMEL9g=) 14: nDB6bqiXy-rzhdku9Lj005kPHfA.roa (hash: 0AJR+PurXnO7T0pJNk8Tq3MFQx7X/cSxW3eCAXJvtLk=) 15: pvCC0r4LUt3fsl1VHVQdfXh8Y18.roa (hash: 7j0tvWV4dVH4uAAkH8k/IyIqfSMk5UZQp8CnBxjMpFY=) 16: u50dx3Lab1g7VZDVh4T56LPcn_0.roa (hash: jDquIHZmp2NFyWqEfhpXVj8qaJ2TUhubdI3kfdM2qms=) 17: z5q48ktpf1eARPpbmIGK9GsvsrQ.roa (hash: tmWASzkDn54AHUg2VFq+szTIlcEFXE4zmXDoc40cFbw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 05 Aug 2025 01:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:72:98:3c:82:93:b1:70:d8:50:86:2e:79:3b:c9:56:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Validity Not Before: Aug 4 01:00:36 2025 GMT Not After : Aug 5 01:00:36 2025 GMT Subject: CN=8bb25fc7b8057ad769a0501366adfbd040f12cdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3b:9e:0a:2f:e3:93:2a:8d:f9:ea:dd:b7:a2: 18:a1:f7:3b:b8:be:2e:b6:de:72:9f:fe:bd:1d:c2: 2d:0d:21:3d:10:8e:18:25:1e:3b:e3:5b:35:14:2c: bd:fe:77:ec:b1:61:b1:7b:af:1d:fa:17:b3:79:9f: 73:85:35:03:59:6e:26:14:b3:1f:56:42:ad:d6:b4: 8e:8e:c1:ba:2c:0f:7f:21:bd:d1:aa:08:f9:32:3d: 68:e9:67:3a:8c:da:e8:ae:21:2f:37:51:75:0b:fc: 56:94:c5:bd:2b:f6:ff:f6:16:43:2a:fa:6b:93:90: e3:d8:25:0e:b9:e3:97:df:0e:c9:86:14:62:e6:15: 48:46:cd:51:7b:1d:f8:55:26:d5:c8:95:8d:bb:dd: df:05:f4:e7:55:cb:76:61:a9:26:ef:7d:57:13:1b: 72:a1:61:a3:fc:08:53:1e:4d:a3:7b:c1:79:8e:01: e5:24:d6:f4:db:06:40:e2:ef:74:77:42:55:cc:28: 43:9e:ba:cd:8a:c7:ad:e1:cc:4a:57:bf:30:4f:35: 5f:48:d0:fb:2b:6e:6d:d8:e6:2e:5d:65:98:ba:06: 19:26:5b:37:5f:52:c2:1f:36:e3:38:5d:d8:88:8e: 67:de:20:9e:52:dc:93:7a:a3:4d:43:62:98:fa:05: 0e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:B2:5F:C7:B8:05:7A:D7:69:A0:50:13:66:AD:FB:D0:40:F1:2C:DB X509v3 Authority Key Identifier: keyid:38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:ec:b4:14:22:10:d8:de:fa:88:27:27:f6:b4:e0:63:a0:2b: 51:96:e9:a7:4d:dd:9c:e8:36:f7:6b:38:80:84:a3:cb:03:d5: 6f:10:29:7b:9e:9f:6e:1f:88:dc:23:3a:41:0e:48:2a:91:5e: fe:70:50:18:1e:60:2f:f4:27:82:4b:54:23:c6:73:81:45:80: 14:36:2e:67:e2:33:91:f1:06:d4:77:e7:82:6a:a5:42:1c:bf: 63:1d:b5:1d:40:a9:2c:17:5c:fd:bf:de:9f:bd:e7:ea:df:b0: 1a:f8:cf:8d:b3:40:52:e0:f5:9f:41:5f:91:b5:2d:66:7e:a1: ab:95:37:e4:41:55:28:fc:41:a8:4a:e1:dc:d2:cf:4d:e5:55: 07:40:49:e9:aa:90:bd:4b:7b:b2:d7:13:a2:49:bc:6e:d4:9a: 72:dd:70:e1:b5:ce:ce:28:71:47:dc:1c:a5:1d:93:73:2e:2b: 88:ab:de:fc:a1:8f:47:b2:ef:8e:9e:03:97:03:1c:f9:aa:a9: 46:05:29:4b:6b:aa:81:80:5f:7a:08:be:57:b9:b2:57:e3:00: 75:94:07:43:cd:77:b8:3c:dc:fd:fe:42:2d:dd:db:71:4c:f3: 56:02:f7:37:6e:5e:94:b8:10:5c:05:83:f8:b2:74:d9:45:e4: 2a:09:35:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZhymDyCk7Fw2FCGLnk7yVb4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4N2Q2ZGY3ZWI3NTQyZTAzMzNhZWVkZDE0YWRmZjhmNTFm OGNiZDgwHhcNMjUwODA0MDEwMDM2WhcNMjUwODA1MDEwMDM2WjAzMTEwLwYDVQQD Eyg4YmIyNWZjN2I4MDU3YWQ3NjlhMDUwMTM2NmFkZmJkMDQwZjEyY2RiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1jueCi/jkyqN+erdt6IYofc7uL4u tt5yn/69HcItDSE9EI4YJR4741s1FCy9/nfssWGxe68d+hezeZ9zhTUDWW4mFLMf VkKt1rSOjsG6LA9/Ib3Rqgj5Mj1o6Wc6jNroriEvN1F1C/xWlMW9K/b/9hZDKvpr k5Dj2CUOueOX3w7JhhRi5hVIRs1Rex34VSbVyJWNu93fBfTnVct2Yakm731XExty oWGj/AhTHk2je8F5jgHlJNb02wZA4u90d0JVzChDnrrNiset4cxKV78wTzVfSND7 K25t2OYuXWWYugYZJls3X1LCHzbjOF3YiI5n3iCeUtyTeqNNQ2KY+gUOKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIuyX8e4BXrXaaBQE2at+9BA8SzbMB8GA1UdIwQY MBaAFDh9bffrdULgMzru3RSt/49R+MvYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2Mt NjA5YTQ4YjJiMTRkLzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2MtNjA5YTQ4YjJiMTRk LzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUOy0FCIQ 2N76iCcn9rTgY6ArUZbpp03dnOg292s4gISjywPVbxApe56fbh+I3CM6QQ5IKpFe /nBQGB5gL/QngktUI8ZzgUWAFDYuZ+IzkfEG1HfngmqlQhy/Yx21HUCpLBdc/b/e n73n6t+wGvjPjbNAUuD1n0FfkbUtZn6hq5U35EFVKPxBqErh3NLPTeVVB0BJ6aqQ vUt7stcTokm8btSact1w4bXOzihxR9wcpR2Tcy4riKve/KGPR7Lvjp4DlwMc+aqp RgUpS2uqgYBfegi+V7myV+MAdZQHQ813uDzc/f5CLd3bcUzzVgL3N25elLgQXAWD +LJ02UXkKgk1Rw== -----END CERTIFICATE-----Generated at Mon Aug 4 11:00:02 2025 by rpki-client