$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9f09aa-dd5e-4e06-b28e-e871b21790de/1/9zQlckyuJz8pYwYNyGXG8LBCXK0.mft File: 9zQlckyuJz8pYwYNyGXG8LBCXK0.mft (raw, json) Hash identifier: epVuTxOjn+bv1pvgqp8VYPhyFCHWqq4eJPCerVmK5VU= Subject key identifier: 11:A9:DD:B9:4F:7E:38:C3:07:F5:22:E4:E1:68:46:A9:B1:9B:65:CB Authority key identifier: F7:34:25:72:4C:AE:27:3F:29:63:06:0D:C8:65:C6:F0:B0:42:5C:AD Certificate issuer: /CN=f73425724cae273f2963060dc865c6f0b0425cad Certificate serial: 019A4F626E43533058B12531D63F1A0FBE21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9zQlckyuJz8pYwYNyGXG8LBCXK0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9f09aa-dd5e-4e06-b28e-e871b21790de/1/9zQlckyuJz8pYwYNyGXG8LBCXK0.mft Manifest number: CF Signing time: Tue 04 Nov 2025 15:00:42 +0000 Manifest this update: Tue 04 Nov 2025 15:00:42 +0000 Manifest next update: Wed 05 Nov 2025 15:00:42 +0000 Files and hashes: 1: 4pRecLSQ-xIl4IPEZzRcqIax3-I.roa (hash: H+a8jrfauVXAPTlOBPXoA0IxSm3rMjg8mh86PIxmueU=) 2: 9zQlckyuJz8pYwYNyGXG8LBCXK0.crl (hash: 71+BFfSxjWV4WOo/OwmhIziWMOOiX7dk0l5wraRHOwQ=) 3: HS9PpWT4FCSSstlIOFCaEuTYhZA.roa (hash: dTpJ+Vqey+wyIsJCiKM1TfllRZ7B3eMpNoAigDi5hoo=) 4: JNDj7IkhbQ_3xrbEz4uAXQ1Yv3Q.roa (hash: Wl0WwrfiuzHjyAyUMW+l+iPzUUYZzp7CP7Vher9u5s8=) 5: TDs3SCHkSwxi2Xb9E5-5lxldSWA.roa (hash: UmMaqKmCtjb0oErlYVHbczcMBZ32+2r0z5hmDOfKCCM=) 6: V6wlyE81nOSUZZNevO5fwFq_yuI.roa (hash: BJWgiCN26bDpqIeJaukxrOIxIn7K1eaqwr8a29JJlYg=) 7: Y6E3ztUNuP-EkxZVJnP3QMV8f34.roa (hash: 5ZMvfHfzXA3N5iMX/egkwzxlZHE1t5ELeXRMtB3b6GA=) 8: g_xhFlxALcLse_-Oj4PBePBZJnY.roa (hash: ZZWn8HGPLGkcu+1b7mxcw+bmNtXcMX/Z/tSj0BCyotA=) 9: kRIa94MWYWrUOVwjc9XA73SAMOA.roa (hash: CLFC01EOAmxOj0g9Emkl9wa15kGO2yyt+4qXoqbGCJI=) 10: wMrCQWEm2lPKU1aAl1mFhi-JWnE.roa (hash: hT7L1jOf2Ub3XumgetpA4h0Ys4xPjaNTHFtmr8cP4hQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/9f09aa-dd5e-4e06-b28e-e871b21790de/1/9zQlckyuJz8pYwYNyGXG8LBCXK0.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/9f09aa-dd5e-4e06-b28e-e871b21790de/1/9zQlckyuJz8pYwYNyGXG8LBCXK0.mft rsync://rpki.ripe.net/repository/DEFAULT/9zQlckyuJz8pYwYNyGXG8LBCXK0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 15:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:4f:62:6e:43:53:30:58:b1:25:31:d6:3f:1a:0f:be:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f73425724cae273f2963060dc865c6f0b0425cad Validity Not Before: Nov 4 15:00:42 2025 GMT Not After : Nov 5 15:00:42 2025 GMT Subject: CN=11a9ddb94f7e38c307f522e4e16846a9b19b65cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:26:bd:c0:cc:7c:b5:c6:15:1c:17:92:5a:93: 38:90:14:ac:7c:b8:cc:d2:70:a0:c4:54:e6:f0:5a: fc:da:b1:f6:f4:01:9a:ce:0d:b2:4d:02:22:95:6b: fe:fa:b3:44:7f:c0:55:0b:8c:b6:04:40:a9:bf:e4: 83:77:7c:57:45:37:f8:be:f9:e2:3d:be:9f:b2:83: a6:a2:5a:4e:1a:d7:0b:3c:d7:14:70:82:69:c7:6d: 0b:c7:bf:f7:95:a7:83:e5:b4:29:4f:f2:fc:1d:d1: 83:8e:a5:70:4d:79:68:f1:d1:93:64:26:8e:3a:8f: 01:b2:1d:c2:ab:55:38:f3:b8:4f:a8:9d:90:af:c3: 9a:85:47:f3:16:7e:78:d2:e8:95:b1:4a:86:41:6b: 31:4d:f9:91:f5:86:fa:cb:8e:29:c3:ff:da:61:5b: 0d:58:cf:16:c7:36:da:47:63:59:16:fd:cb:0c:5b: 3e:31:70:b8:1a:d4:da:a0:d3:b5:0b:3d:72:10:a5: 91:d4:09:94:ff:90:54:06:bd:e6:06:12:75:e9:75: cc:39:76:c7:3e:1f:82:6f:d5:2e:67:a1:a1:ce:fd: e4:59:4d:e3:0a:50:d5:06:99:11:61:40:f7:05:5a: 2c:44:68:df:56:c5:d6:ab:85:81:c8:94:a4:9d:e7: 7f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:A9:DD:B9:4F:7E:38:C3:07:F5:22:E4:E1:68:46:A9:B1:9B:65:CB X509v3 Authority Key Identifier: keyid:F7:34:25:72:4C:AE:27:3F:29:63:06:0D:C8:65:C6:F0:B0:42:5C:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9zQlckyuJz8pYwYNyGXG8LBCXK0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9f09aa-dd5e-4e06-b28e-e871b21790de/1/9zQlckyuJz8pYwYNyGXG8LBCXK0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9f09aa-dd5e-4e06-b28e-e871b21790de/1/9zQlckyuJz8pYwYNyGXG8LBCXK0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b4:5c:24:7c:d5:8f:b4:fe:77:9c:5a:77:c6:ff:1f:c1:72:19: 65:b8:e7:67:d3:d1:8c:1f:7a:93:0c:20:e1:d7:a5:3a:04:41: 14:66:f0:66:1b:21:aa:58:0d:5d:36:09:d6:94:2f:65:9c:13: 1d:53:0e:64:d7:e2:d6:2a:2a:d1:0f:bf:c0:82:fc:38:6d:d5: 59:bf:9c:a6:ab:16:7a:03:5f:fd:d5:48:fa:e9:53:ef:db:ee: 5f:d5:fa:d1:b8:ad:ac:2b:77:ae:88:7e:dd:61:1a:7e:72:cc: 0f:7a:78:cb:b9:17:ea:fe:fe:8c:4a:40:e8:50:88:29:f0:9d: 70:ca:4a:30:d0:e4:9d:36:30:c8:4e:93:44:56:56:bd:7b:8f: e7:22:19:51:37:70:09:55:2c:77:b5:43:32:6a:71:5b:99:9a: f8:77:74:b1:c4:ec:07:4f:5c:4f:7f:d0:02:d1:ca:2c:c8:00: c7:01:d9:a5:69:c3:b6:e7:6b:0c:b7:da:31:a3:04:2f:8d:f7: 16:37:a9:16:57:ab:91:37:51:f3:41:8a:46:b5:21:8f:de:9c: 11:e5:ef:39:e1:55:a6:45:3e:1b:1e:b9:16:73:d7:18:20:a0: 28:0e:e2:d4:0f:c0:17:84:31:a1:41:e6:9b:a0:52:f4:14:f1: 79:e9:31:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZpPYm5DUzBYsSUx1j8aD74hMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3MzQyNTcyNGNhZTI3M2YyOTYzMDYwZGM4NjVjNmYwYjA0 MjVjYWQwHhcNMjUxMTA0MTUwMDQyWhcNMjUxMTA1MTUwMDQyWjAzMTEwLwYDVQQD EygxMWE5ZGRiOTRmN2UzOGMzMDdmNTIyZTRlMTY4NDZhOWIxOWI2NWNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsCa9wMx8tcYVHBeSWpM4kBSsfLjM 0nCgxFTm8Fr82rH29AGazg2yTQIilWv++rNEf8BVC4y2BECpv+SDd3xXRTf4vvni Pb6fsoOmolpOGtcLPNcUcIJpx20Lx7/3laeD5bQpT/L8HdGDjqVwTXlo8dGTZCaO Oo8Bsh3Cq1U487hPqJ2Qr8OahUfzFn540uiVsUqGQWsxTfmR9Yb6y44pw//aYVsN WM8WxzbaR2NZFv3LDFs+MXC4GtTaoNO1Cz1yEKWR1AmU/5BUBr3mBhJ16XXMOXbH Ph+Cb9UuZ6Ghzv3kWU3jClDVBpkRYUD3BVosRGjfVsXWq4WByJSkned/5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBGp3blPfjjDB/Ui5OFoRqmxm2XLMB8GA1UdIwQY MBaAFPc0JXJMric/KWMGDchlxvCwQlytMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOXpRbGNreXVKejhwWXdZTnlHWEc4TEJDWEswLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC85ZjA5YWEtZGQ1ZS00ZTA2LWIyOGUt ZTg3MWIyMTc5MGRlLzEvOXpRbGNreXVKejhwWXdZTnlHWEc4TEJDWEswLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC85ZjA5YWEtZGQ1ZS00ZTA2LWIyOGUtZTg3MWIyMTc5MGRl LzEvOXpRbGNreXVKejhwWXdZTnlHWEc4TEJDWEswLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtFwkfNWP tP53nFp3xv8fwXIZZbjnZ9PRjB96kwwg4delOgRBFGbwZhshqlgNXTYJ1pQvZZwT HVMOZNfi1ioq0Q+/wIL8OG3VWb+cpqsWegNf/dVI+ulT79vuX9X60bitrCt3roh+ 3WEafnLMD3p4y7kX6v7+jEpA6FCIKfCdcMpKMNDknTYwyE6TRFZWvXuP5yIZUTdw CVUsd7VDMmpxW5ma+Hd0scTsB09cT3/QAtHKLMgAxwHZpWnDtudrDLfaMaMEL433 FjepFlerkTdR80GKRrUhj96cEeXvOeFVpkU+Gx65FnPXGCCgKA7i1A/AF4QxoUHm m6BS9BTxeekx6g== -----END CERTIFICATE-----Generated at Tue Nov 4 23:21:50 2025 by rpki-client