$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft File: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft (raw, json) Hash identifier: 6AKLoX5+DXquM4hV11sm6g3fpM7i7D7S2m7fzQcKcdw= Subject key identifier: AD:01:14:47:AB:21:D6:98:FA:6F:77:7E:1C:D1:D5:29:AE:A4:81:CF Authority key identifier: F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 Certificate issuer: /CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Certificate serial: 2A0D58FB71B6C172878C68D861A0A37A8837DEBC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft Manifest number: 0191 Signing time: Tue 04 Nov 2025 13:51:03 +0000 Manifest this update: Tue 04 Nov 2025 13:46:03 +0000 Manifest next update: Wed 05 Nov 2025 13:56:03 +0000 Files and hashes: 1: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl (hash: mOiHDMO2hDRbRyURk1mbiQ7N0pFZnS35Ji6EvxdEHnU=) 2: 326131343a373538303a663332303a3a2f34342d3434203d3e20323135343730.roa (hash: XgYHMfBb1tBckmqvYy7acYD3hSj36S+vN34vUn5oaD4=) 3: 326131343a373538303a663335303a3a2f34342d3438203d3e20323135343730.roa (hash: QilIoQFDy86/kZThJ8L3yMVtIo9IuLOdGRNLTOrhh2s=) 4: 326131343a373538303a663331303a3a2f34342d3438203d3e20323134303834.roa (hash: CM6yYKZbtILEkjFEjxVgY2XszlZITvyYfxEqji4AD0c=) 5: 326131343a373538303a663330303a3a2f34302d3430203d3e20323135343730.roa (hash: NYjufeU5nji5tNLR9669xX3/zAC6IxnZWFE8KHjLm6Y=) 6: 326131343a373538303a363030303a3a2f33362d3438203d3e20323039353534.roa (hash: 7bwiHUB+0vEKFxOfRTRz/zFRAxgK1WxBsECd2SJxocI=) 7: 326131343a373538303a663333303a3a2f34342d3438203d3e20323134303330.roa (hash: xT802+pU8TCiwwtqUkMgmyrnKplgnOIvmjCKunR0EEU=) 8: 326131343a373538303a383030303a3a2f33362d3438203d3e20323135343730.roa (hash: eW78302x42s0yWxTWFOWa+EI8gsEah6kU2PGz4oxB3o=) 9: 326131343a373538303a663334303a3a2f34342d3438203d3e20323133343238.roa (hash: Z7InVHvKI4/fqGkdwdL0zl1WS4Iyc09xlEsVxaD8p5A=) 10: 326131343a373538303a343030303a3a2f33362d3336203d3e20323133343238.roa (hash: f38GGJwA8aLs49rknYyp3/ozCmX5eTGnavOZGUBAqUw=) 11: 326131343a373538303a663330313a3a2f34382d3438203d3e20323135343730.roa (hash: AE4p/Aixbf8sW/I3bLOtRbnycH5RSiNSfyRxjv0S1Bw=) 12: 326131343a373538303a663330323a3a2f34382d3438203d3e20323135343730.roa (hash: cnH25DZSJN2OBLW6Zt+bGPFETNQaOmZLaMlgHZ7R4qw=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 13:56:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:0d:58:fb:71:b6:c1:72:87:8c:68:d8:61:a0:a3:7a:88:37:de:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Validity Not Before: Nov 4 13:46:03 2025 GMT Not After : Nov 5 13:56:03 2025 GMT Subject: CN=AD011447AB21D698FA6F777E1CD1D529AEA481CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7d:0a:88:0d:de:54:40:cd:9e:79:5a:63:39: 4c:3e:6c:30:00:c4:cf:62:87:21:c6:1b:34:bf:76: 02:ff:7d:45:87:90:42:fb:a2:04:ac:58:63:6a:05: d0:ba:ee:cd:2d:0b:e1:68:8e:16:9b:46:2b:53:a1: 55:92:ce:79:d6:4d:72:9b:98:dd:bb:63:2f:fe:9d: 5a:e2:2c:64:18:d8:8c:49:8f:ec:60:96:d7:0c:90: e9:2a:db:65:63:ec:54:01:81:15:8a:b3:6d:d2:09: 36:67:1a:f7:e1:fc:8a:0c:74:b9:3e:d7:6f:fd:5a: ea:5d:28:22:59:19:ce:62:ee:28:41:3e:57:39:47: 5e:62:ea:8a:12:a6:db:d5:e4:29:48:be:02:51:76: 08:50:2e:8b:4d:9c:0c:62:65:4e:19:3c:eb:8c:d0: 05:41:e7:e7:43:da:48:f4:37:f7:ab:61:a8:7a:34: d9:6c:09:25:5c:d8:7e:f1:9a:9c:ad:fc:6a:03:57: e5:ea:cf:a6:08:29:5e:4e:4e:8c:83:f4:c6:a3:ab: b6:9d:a7:7e:b6:7f:92:e9:00:67:19:2f:89:dd:9e: 66:64:26:c1:0a:5c:ac:0f:cf:75:28:bc:7c:c5:96: 9e:90:13:0e:d8:7c:fe:a1:be:1f:a7:4e:5a:06:7c: 8a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:01:14:47:AB:21:D6:98:FA:6F:77:7E:1C:D1:D5:29:AE:A4:81:CF X509v3 Authority Key Identifier: keyid:F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:73:8b:c4:2f:4f:71:4e:75:78:81:64:72:11:be:0d:4b:be: 70:6b:a7:f4:24:06:1a:66:c8:0c:3e:75:63:26:c2:74:e7:36: 59:98:6c:2b:7e:a9:ab:df:08:23:7a:c6:63:ec:61:d5:3b:b6: d3:b1:51:14:c2:a5:6b:b3:56:fa:8e:5e:24:c0:2b:2f:ae:5b: 88:5a:d1:f6:c5:ca:16:e8:f0:31:85:4d:45:53:b9:ae:24:37: a3:f5:98:1d:9a:cb:04:a8:b8:f8:35:26:af:9c:13:bf:1c:29: f5:83:da:25:f7:36:ac:fa:d3:d8:4f:22:ad:fe:e3:14:9c:c3: 53:df:3f:fe:e0:6d:7d:03:b2:72:55:e4:de:31:84:d7:5c:c0: 02:03:9b:1c:2c:02:f9:24:42:dd:27:de:32:54:ab:86:48:dd: 96:92:4c:1a:86:ab:63:c3:79:b5:b7:97:be:af:d7:fc:56:30: 0e:bd:76:15:31:3e:5e:32:6d:e4:35:b3:4e:d0:27:8e:7c:84: 6d:61:63:b4:26:cb:46:13:5e:3f:c3:c1:ca:36:a4:d9:cf:cb: a7:a5:4e:a4:e3:60:33:22:7e:ce:1e:91:88:23:8d:87:17:f3: 50:84:85:b5:fa:01:e8:df:f8:e8:77:30:be:9e:f0:07:96:c8: 5f:8d:de:c5 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUKg1Y+3G2wXKHjGjYYaCjeog33rwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENG OTM5RjRGNDAeFw0yNTExMDQxMzQ2MDNaFw0yNTExMDUxMzU2MDNaMDMxMTAvBgNV BAMTKEFEMDExNDQ3QUIyMUQ2OThGQTZGNzc3RTFDRDFENTI5QUVBNDgxQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHfQqIDd5UQM2eeVpjOUw+bDAA xM9ihyHGGzS/dgL/fUWHkEL7ogSsWGNqBdC67s0tC+FojhabRitToVWSznnWTXKb mN27Yy/+nVriLGQY2IxJj+xgltcMkOkq22Vj7FQBgRWKs23SCTZnGvfh/IoMdLk+ 12/9WupdKCJZGc5i7ihBPlc5R15i6ooSptvV5ClIvgJRdghQLotNnAxiZU4ZPOuM 0AVB5+dD2kj0N/erYah6NNlsCSVc2H7xmpyt/GoDV+Xqz6YIKV5OToyD9Majq7ad p362f5LpAGcZL4ndnmZkJsEKXKwPz3UovHzFlp6QEw7YfP6hvh+nTloGfIo3AgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUrQEUR6sh1pj6b3d+HNHVKa6kgc8wHwYDVR0j BBgwFoAU9ABy/9wPGxWmnlvHmi9YjPk59PQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTlhYTlkYTctZjFlNC00ZDk4LWJmOTUtOWZkZmNmNDQ4 Zjc3LzAvRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENGOTM5RjRGNC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GNDAwNzJGRkRDMEYxQjE1QTY5RTVCQzc5 QTJGNTg4Q0Y5MzlGNEY0LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzE5YWE5ZGE3LWYxZTQtNGQ5OC1iZjk1LTlmZGZjZjQ0OGY3Ny8wL0Y0MDA3MkZG REMwRjFCMTVBNjlFNUJDNzlBMkY1ODhDRjkzOUY0RjQubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQB2c4vE L09xTnV4gWRyEb4NS75wa6f0JAYaZsgMPnVjJsJ05zZZmGwrfqmr3wgjesZj7GHV O7bTsVEUwqVrs1b6jl4kwCsvrluIWtH2xcoW6PAxhU1FU7muJDej9ZgdmssEqLj4 NSavnBO/HCn1g9ol9zas+tPYTyKt/uMUnMNT3z/+4G19A7JyVeTeMYTXXMACA5sc LAL5JELdJ94yVKuGSN2Wkkwahqtjw3m1t5e+r9f8VjAOvXYVMT5eMm3kNbNO0CeO fIRtYWO0JstGE14/w8HKNqTZz8unpU6k42AzIn7OHpGII42HF/NQhIW1+gHo3/jo dzC+nvAHlshfjd7F -----END CERTIFICATE-----Generated at Wed Nov 5 00:41:54 2025 by rpki-client