$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft File: ER1oFDdScdGjy9EhVdsR0r1BqNM.mft (raw, json) Hash identifier: qlecVulDYMw31uamXBgH+VBjY64rvQSOMCLT+tcB9Gg= Subject key identifier: DF:DE:D3:BD:5A:BE:52:F4:20:0C:25:31:04:94:5A:F8:CA:56:16:39 Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Certificate serial: 0198733D94159F1C9CF44847305F3D8F03E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft Manifest number: 14DC Signing time: Mon 04 Aug 2025 04:01:11 +0000 Manifest this update: Mon 04 Aug 2025 04:01:11 +0000 Manifest next update: Tue 05 Aug 2025 04:01:11 +0000 Files and hashes: 1: 1-Eladd6sj8Y7vq1mtW5h6ASM_tM.roa (hash: auxhruGljCxtN9ijkL9KZ/K4C+RcNKrzhKvUSRg/9HQ=) 2: 1-dpIOgQrHNlMUsxt6C2Ztf5nfuM.roa (hash: pCUJMhojWf39aVt/QyofbsbuGjc8Gizw3ZJ2MSqOsTA=) 3: 1-gUTUj2JpuChCvozdxCQFTR22DM.roa (hash: f/2CCyCRw0ujuPO8AP04nbSH6GVLpL5l8bdrrfS8KoQ=) 4: 4JmdsvBatEpFanHBLwN8tE53B0o.roa (hash: rZ4Y8EU6soeJCyiHjLhVB0iARab8gRMfLlwRpZ6KFuk=) 5: 7ap_QJi20SaGnPgK1pV6_7cP-Uo.roa (hash: BOo8F2wEw4BgZClwTOfUjkt0HIqhHPtSsQJru4E0kFk=) 6: 7pYVLfxDyksCdUmiOhbgviOo3x8.roa (hash: QcPN759vJqixjDGU3gmMeZsCeSMWabiqP3hVma37vPU=) 7: ER1oFDdScdGjy9EhVdsR0r1BqNM.crl (hash: 9Xw1skl/Wm4TNSeLd1BS/w6F/dV8HVL7t8fZCrfYVGA=) 8: Hfkubm6yrWEn7gBE9wSMaD_ExXE.roa (hash: FXP2ir2FJkx6oy+MltDsbhNB8kOwwEjeXoSk5fOxlUM=) 9: Kk7xKrzHzx6qmDJI5CVBM_Sl474.roa (hash: m5FUWhJ54zbQwUlYkehhIiOw3x1SXokhdxGSIsx1B6c=) 10: Si8V8khtv0yVUA78DGGzfalNcCk.roa (hash: TuKNETdYYEdxWIcOAjkF1OdADD7zXp4g+mS6E5V7pvo=) 11: XjirH4cwDvxlRkAGxm7FSwAK2sM.roa (hash: YF/U/qPEr6M3Q+MIXQrnfUUKIV5n5WTRe7Dd9hsZTtM=) 12: aaSIhAJHCTwygtdFuXnOQPW6bY4.roa (hash: wv3RWyn/0THt7bCTdq/aMs2HWBM2MxgNANY6nblHNaA=) 13: azpo2jbXZip4fzf6JfxzYCloMXU.roa (hash: lChd9oLNFRupauF5HA1DBK7UGcNDTVpyA1eioCbGUns=) 14: cozXNddBZMRS0D_fVDWk42XqVNI.roa (hash: nP2wP4zibtasbSbsg7EMlMPSKjFkuBzXXdP2DBCONIM=) 15: iwe0kg-crqIWyp2IScMa9LxREgQ.roa (hash: CaVzf6weXzwiNznLUpeTB+QaHcaNjVgYiVjygsUgHxg=) 16: lQoeI3fot2NEOazpcJqwENKoEUU.roa (hash: Elimcemes6spMNky/T+TAYcPtxVw5jFrGcayiuk5D80=) 17: vsEC-C0-IZ2XJzdCqJMyLFlVXyo.roa (hash: 6dyvsyNO+SBB5YmEGzfWoUfWH/YqXAoOIBD3aTROXnU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 05 Aug 2025 03:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:73:3d:94:15:9f:1c:9c:f4:48:47:30:5f:3d:8f:03:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Validity Not Before: Aug 4 04:01:11 2025 GMT Not After : Aug 5 04:01:11 2025 GMT Subject: CN=dfded3bd5abe52f4200c253104945af8ca561639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:fd:2c:cf:b9:d1:45:8b:76:c9:22:7f:17:ad: 3a:43:d8:a9:51:12:a2:da:f3:25:7f:4d:94:00:0f: 13:5f:82:3d:df:8e:83:e4:ab:3a:14:da:17:40:8b: 67:55:bd:69:26:2f:6b:a1:92:21:ab:36:1d:f7:c8: df:e8:b1:39:55:32:ce:91:28:b1:04:db:80:5d:19: e4:8a:9b:b3:a6:2c:05:19:a8:ae:2c:50:69:f2:d8: 82:35:c7:80:b2:6c:11:71:b7:7a:a9:23:cb:30:9e: 06:e4:a7:a2:41:ce:90:51:6f:b1:52:b5:4d:10:60: e3:b7:4a:31:66:93:c5:95:f7:d8:8c:0a:9c:89:8c: b7:bf:72:55:2c:b3:89:9d:88:5d:81:44:fe:90:20: d5:cc:24:91:10:8e:d5:b6:d6:a9:11:27:bc:86:5c: 14:49:97:44:48:4c:9d:3a:55:fe:5e:6d:f2:79:1b: 9a:a2:39:97:43:15:f7:69:81:51:ef:73:b6:70:aa: a9:89:c6:40:dc:48:c3:6c:57:cf:ff:a5:af:f3:ff: e2:f4:ec:76:5f:e7:2f:99:02:47:ca:91:92:8c:f2: 7c:41:cb:06:22:d3:14:1d:de:b4:c1:c7:4f:e4:74: 7d:d0:4d:e8:db:0d:b6:c8:c1:91:6e:28:78:14:5c: 62:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:DE:D3:BD:5A:BE:52:F4:20:0C:25:31:04:94:5A:F8:CA:56:16:39 X509v3 Authority Key Identifier: keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:9b:3c:f2:c1:33:5f:7b:a7:c1:07:63:30:2e:18:c8:8b:d6: a4:47:1d:0e:61:60:bc:c4:9a:5e:3e:07:e9:e8:9f:a4:b9:7f: 9e:bf:01:b5:e6:90:bf:27:cc:9a:cc:de:a8:ee:d8:fc:78:c1: 73:a3:0d:fb:f5:4f:d8:49:f0:0c:0e:b8:54:35:f2:4e:53:76: 50:43:b5:f1:7e:0e:f2:8f:56:6f:3f:85:db:58:24:e8:26:aa: 79:dd:61:89:52:31:ba:74:2c:60:ff:bf:16:89:ea:c1:77:1d: 25:7f:b3:3b:e2:39:78:75:be:59:f7:f9:e3:20:8d:09:dc:d3: 44:f3:d8:c4:32:ce:a8:66:20:93:aa:d2:a2:06:a0:80:d3:c0: 5b:ab:ae:07:6b:a1:11:9f:ad:be:99:c3:bd:2a:22:13:f7:e0: 9a:b8:d7:c9:8b:1c:6d:8e:6a:bb:b0:6d:59:07:12:30:03:b5: 3a:58:3d:b8:8d:b7:33:f4:72:37:a7:a3:bd:1b:b7:2f:9d:06: b6:f6:4b:3d:12:a7:e9:05:93:8c:4f:78:b9:6b:a4:cd:80:6e: 2f:47:fc:7e:7f:a9:65:5f:00:45:6c:b9:b7:c7:b7:c9:ed:d4: 4d:92:d8:c6:be:1e:63:a9:b8:63:a1:2a:a4:de:eb:1f:db:b4: 40:3e:74:4f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZhzPZQVnxyc9EhHMF89jwPgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMWQ2ODE0Mzc1MjcxZDFhM2NiZDEyMTU1ZGIxMWQyYmQ0 MWE4ZDMwHhcNMjUwODA0MDQwMTExWhcNMjUwODA1MDQwMTExWjAzMTEwLwYDVQQD EyhkZmRlZDNiZDVhYmU1MmY0MjAwYzI1MzEwNDk0NWFmOGNhNTYxNjM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoP0sz7nRRYt2ySJ/F606Q9ipURKi 2vMlf02UAA8TX4I9346D5Ks6FNoXQItnVb1pJi9roZIhqzYd98jf6LE5VTLOkSix BNuAXRnkipuzpiwFGaiuLFBp8tiCNceAsmwRcbd6qSPLMJ4G5KeiQc6QUW+xUrVN EGDjt0oxZpPFlffYjAqciYy3v3JVLLOJnYhdgUT+kCDVzCSREI7VttapESe8hlwU SZdESEydOlX+Xm3yeRuaojmXQxX3aYFR73O2cKqpicZA3EjDbFfP/6Wv8//i9Ox2 X+cvmQJHypGSjPJ8QcsGItMUHd60wcdP5HR90E3o2w22yMGRbih4FFxiTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN/e071avlL0IAwlMQSUWvjKVhY5MB8GA1UdIwQY MBaAFBEdaBQ3UnHRo8vRIVXbEdK9QajTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQt MjcxZDI1ZTIwNTc0LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQtMjcxZDI1ZTIwNTc0 LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh5s88sEz X3unwQdjMC4YyIvWpEcdDmFgvMSaXj4H6eifpLl/nr8BteaQvyfMmszeqO7Y/HjB c6MN+/VP2EnwDA64VDXyTlN2UEO18X4O8o9Wbz+F21gk6Caqed1hiVIxunQsYP+/ FonqwXcdJX+zO+I5eHW+Wff54yCNCdzTRPPYxDLOqGYgk6rSogaggNPAW6uuB2uh EZ+tvpnDvSoiE/fgmrjXyYscbY5qu7BtWQcSMAO1Olg9uI23M/RyN6ejvRu3L50G tvZLPRKn6QWTjE94uWukzYBuL0f8fn+pZV8ARWy5t8e3ye3UTZLYxr4eY6m4Y6Eq pN7rH9u0QD50Tw== -----END CERTIFICATE-----Generated at Mon Aug 4 11:27:41 2025 by rpki-client