$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft File: ER1oFDdScdGjy9EhVdsR0r1BqNM.mft (raw, json) Hash identifier: W8zPZJzbGQnSaSf+b9jNhaNPvU6f8LUIveSSGjae4UQ= Subject key identifier: 58:35:EB:AE:C1:FE:90:25:CB:0B:41:4A:1A:6B:37:C7:22:E1:58:59 Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Certificate serial: 01976C990F28599739FF92DFC2253FA83F29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft Manifest number: 1454 Signing time: Sat 14 Jun 2025 04:00:59 +0000 Manifest this update: Sat 14 Jun 2025 04:00:59 +0000 Manifest next update: Sun 15 Jun 2025 04:00:59 +0000 Files and hashes: 1: 1-Eladd6sj8Y7vq1mtW5h6ASM_tM.roa (hash: auxhruGljCxtN9ijkL9KZ/K4C+RcNKrzhKvUSRg/9HQ=) 2: 1-dpIOgQrHNlMUsxt6C2Ztf5nfuM.roa (hash: pCUJMhojWf39aVt/QyofbsbuGjc8Gizw3ZJ2MSqOsTA=) 3: 1-gUTUj2JpuChCvozdxCQFTR22DM.roa (hash: f/2CCyCRw0ujuPO8AP04nbSH6GVLpL5l8bdrrfS8KoQ=) 4: 4JmdsvBatEpFanHBLwN8tE53B0o.roa (hash: rZ4Y8EU6soeJCyiHjLhVB0iARab8gRMfLlwRpZ6KFuk=) 5: 7ap_QJi20SaGnPgK1pV6_7cP-Uo.roa (hash: BOo8F2wEw4BgZClwTOfUjkt0HIqhHPtSsQJru4E0kFk=) 6: 7pYVLfxDyksCdUmiOhbgviOo3x8.roa (hash: QcPN759vJqixjDGU3gmMeZsCeSMWabiqP3hVma37vPU=) 7: ER1oFDdScdGjy9EhVdsR0r1BqNM.crl (hash: 5NFxwD+0lrmNaJR+wzCy1WaW2WOtmtCSeObYBJLoaxY=) 8: Hfkubm6yrWEn7gBE9wSMaD_ExXE.roa (hash: FXP2ir2FJkx6oy+MltDsbhNB8kOwwEjeXoSk5fOxlUM=) 9: Kk7xKrzHzx6qmDJI5CVBM_Sl474.roa (hash: m5FUWhJ54zbQwUlYkehhIiOw3x1SXokhdxGSIsx1B6c=) 10: Si8V8khtv0yVUA78DGGzfalNcCk.roa (hash: TuKNETdYYEdxWIcOAjkF1OdADD7zXp4g+mS6E5V7pvo=) 11: XjirH4cwDvxlRkAGxm7FSwAK2sM.roa (hash: YF/U/qPEr6M3Q+MIXQrnfUUKIV5n5WTRe7Dd9hsZTtM=) 12: aaSIhAJHCTwygtdFuXnOQPW6bY4.roa (hash: wv3RWyn/0THt7bCTdq/aMs2HWBM2MxgNANY6nblHNaA=) 13: azpo2jbXZip4fzf6JfxzYCloMXU.roa (hash: lChd9oLNFRupauF5HA1DBK7UGcNDTVpyA1eioCbGUns=) 14: cozXNddBZMRS0D_fVDWk42XqVNI.roa (hash: nP2wP4zibtasbSbsg7EMlMPSKjFkuBzXXdP2DBCONIM=) 15: iwe0kg-crqIWyp2IScMa9LxREgQ.roa (hash: CaVzf6weXzwiNznLUpeTB+QaHcaNjVgYiVjygsUgHxg=) 16: lQoeI3fot2NEOazpcJqwENKoEUU.roa (hash: Elimcemes6spMNky/T+TAYcPtxVw5jFrGcayiuk5D80=) 17: vsEC-C0-IZ2XJzdCqJMyLFlVXyo.roa (hash: 6dyvsyNO+SBB5YmEGzfWoUfWH/YqXAoOIBD3aTROXnU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Jun 2025 01:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:6c:99:0f:28:59:97:39:ff:92:df:c2:25:3f:a8:3f:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Validity Not Before: Jun 14 04:00:59 2025 GMT Not After : Jun 15 04:00:59 2025 GMT Subject: CN=5835ebaec1fe9025cb0b414a1a6b37c722e15859 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:bc:6e:bf:0f:97:8c:86:d8:3c:00:d7:71:83: 53:68:5a:1a:e9:c4:a9:b0:20:51:50:07:76:e8:cf: 02:60:dd:0e:7f:37:84:2f:d9:f6:51:7b:a0:f9:3d: 8d:94:88:29:0f:aa:4a:70:9f:ef:52:c2:ef:1c:3c: e0:6f:a5:dd:79:68:03:67:45:a1:80:ab:bd:b4:e9: 5c:61:57:82:a7:8e:6a:7f:66:48:69:79:df:1c:da: 49:47:cd:6d:40:ac:0a:da:71:14:a4:54:0d:9f:42: 97:7f:95:a7:8f:03:de:80:61:69:3e:c8:ab:2b:3d: 5a:cc:83:1d:26:5c:01:42:71:7a:87:b6:0c:48:57: d6:e8:4e:0c:3d:c2:85:4d:49:08:0e:4c:f7:f4:9b: 40:3b:db:d3:47:c0:4b:2f:49:ed:63:6d:39:49:b9: 13:fe:c9:de:22:8e:84:01:f9:ea:ee:06:25:2b:f2: 9a:66:59:dd:fe:0b:05:bf:6a:86:22:c3:ef:a9:75: 91:d4:5d:8e:31:01:09:f7:92:93:98:c2:88:90:a5: 86:30:53:6c:93:e2:b5:f7:ed:0c:1c:41:e0:61:10: 9a:93:04:4c:82:8d:78:30:8e:bb:fb:bf:87:59:c5: 28:bd:d6:08:23:6c:02:10:22:c6:50:78:d4:02:b1: 53:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:35:EB:AE:C1:FE:90:25:CB:0B:41:4A:1A:6B:37:C7:22:E1:58:59 X509v3 Authority Key Identifier: keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:19:48:b2:f8:48:44:d5:56:d3:d3:ac:ce:8a:1e:62:e6:1c: c4:60:93:88:d7:c7:d4:fd:e5:19:27:ed:67:0a:e3:a5:4a:a2: e4:02:fe:aa:a7:9a:4a:cc:7a:89:7c:0b:ce:f2:03:48:f6:14: f8:b7:cb:4d:fe:ab:ec:c3:47:63:a1:9f:88:7a:4e:42:58:ed: dc:ef:52:b5:42:1c:91:12:e1:95:b4:24:e1:22:d3:7d:2d:98: 62:89:f8:e2:09:0e:af:d1:57:22:12:ed:53:07:e1:7a:5f:54: e6:85:11:e6:4a:83:22:6f:db:08:2b:ff:ab:bc:c9:60:fc:9b: 36:a5:94:00:7c:01:00:16:bb:3d:13:45:90:95:bf:37:37:31: 6f:57:01:55:23:5c:e9:7a:f7:99:e9:fc:bc:57:5d:8c:76:24: 24:9e:45:f0:ef:c6:59:c2:c4:99:d6:4c:3e:0f:9f:d0:22:10: 1c:aa:0b:64:2e:ff:59:57:f2:79:e6:39:30:ee:bb:ba:62:22: 9b:f3:d9:93:b6:70:76:69:83:cd:56:df:4e:fa:d4:b3:ab:3d: b3:5d:c8:cd:35:aa:66:80:50:4c:1d:d8:ac:a3:4a:b4:4b:03: 6b:82:64:43:01:8c:1f:22:79:a5:30:c2:47:40:1e:5e:fb:0f: b7:cb:26:0f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdsmQ8oWZc5/5LfwiU/qD8pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMWQ2ODE0Mzc1MjcxZDFhM2NiZDEyMTU1ZGIxMWQyYmQ0 MWE4ZDMwHhcNMjUwNjE0MDQwMDU5WhcNMjUwNjE1MDQwMDU5WjAzMTEwLwYDVQQD Eyg1ODM1ZWJhZWMxZmU5MDI1Y2IwYjQxNGExYTZiMzdjNzIyZTE1ODU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA17xuvw+XjIbYPADXcYNTaFoa6cSp sCBRUAd26M8CYN0OfzeEL9n2UXug+T2NlIgpD6pKcJ/vUsLvHDzgb6XdeWgDZ0Wh gKu9tOlcYVeCp45qf2ZIaXnfHNpJR81tQKwK2nEUpFQNn0KXf5WnjwPegGFpPsir Kz1azIMdJlwBQnF6h7YMSFfW6E4MPcKFTUkIDkz39JtAO9vTR8BLL0ntY205SbkT /sneIo6EAfnq7gYlK/KaZlnd/gsFv2qGIsPvqXWR1F2OMQEJ95KTmMKIkKWGMFNs k+K19+0MHEHgYRCakwRMgo14MI67+7+HWcUovdYII2wCECLGUHjUArFTgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFg1667B/pAlywtBShprN8ci4VhZMB8GA1UdIwQY MBaAFBEdaBQ3UnHRo8vRIVXbEdK9QajTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQt MjcxZDI1ZTIwNTc0LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQtMjcxZDI1ZTIwNTc0 LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPRlIsvhI RNVW09OszooeYuYcxGCTiNfH1P3lGSftZwrjpUqi5AL+qqeaSsx6iXwLzvIDSPYU +LfLTf6r7MNHY6GfiHpOQljt3O9StUIckRLhlbQk4SLTfS2YYon44gkOr9FXIhLt Uwfhel9U5oUR5kqDIm/bCCv/q7zJYPybNqWUAHwBABa7PRNFkJW/Nzcxb1cBVSNc 6Xr3men8vFddjHYkJJ5F8O/GWcLEmdZMPg+f0CIQHKoLZC7/WVfyeeY5MO67umIi m/PZk7ZwdmmDzVbfTvrUs6s9s13IzTWqZoBQTB3YrKNKtEsDa4JkQwGMHyJ5pTDC R0AeXvsPt8smDw== -----END CERTIFICATE-----Generated at Sat Jun 14 09:15:45 2025 by rpki-client