$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft File: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft (raw, json) Hash identifier: z5r6yi22tBInaiydJBmM195AzC5TJt6pkj56sQseDHE= Subject key identifier: A8:A9:17:58:BA:08:A1:EE:9E:42:C8:03:8A:7A:00:B3:66:41:29:70 Authority key identifier: F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 Certificate issuer: /CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Certificate serial: 50F52F1562BFDA0410887881A7BFAC4EB3465733 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft Manifest number: 023B Signing time: Sun 01 Mar 2026 19:56:55 +0000 Manifest this update: Sun 01 Mar 2026 19:51:55 +0000 Manifest next update: Mon 02 Mar 2026 21:59:55 +0000 Files and hashes: 1: 326131343a373538303a663335303a3a2f34342d3438203d3e20323133343238.roa (hash: IZJTZmO8rUTih/3A3IKzAJhe0XALK2yn1EcqhSl5uIs=) 2: 326131343a373538303a663330323a3a2f34382d3438203d3e20323135343730.roa (hash: cnH25DZSJN2OBLW6Zt+bGPFETNQaOmZLaMlgHZ7R4qw=) 3: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl (hash: xcyhLAhhiMRLvekPQsb33b9GBit3w0bDfQZa9vlDanM=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 21:59:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:f5:2f:15:62:bf:da:04:10:88:78:81:a7:bf:ac:4e:b3:46:57:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Validity Not Before: Mar 1 19:51:55 2026 GMT Not After : Mar 2 21:59:55 2026 GMT Subject: CN=A8A91758BA08A1EE9E42C8038A7A00B366412970 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:cb:ee:86:ef:b1:67:76:b4:d2:12:da:d5:af: b3:b8:54:0f:7d:f3:bf:5b:2d:95:95:3a:de:1d:1b: 03:5a:cb:e2:6f:81:0e:09:33:8a:e6:fa:82:e0:7f: 65:36:a2:77:4e:62:20:b1:6a:a0:39:56:c5:38:b6: 65:3e:7a:14:fe:2d:37:ed:b2:40:f1:fe:6d:90:80: b6:1d:30:bd:94:8f:a8:a5:de:9a:ec:a1:45:2f:ae: e6:f9:ab:b2:c1:f4:80:87:77:02:90:8a:ec:ad:89: 81:93:7f:b9:71:e2:03:6f:fb:b1:77:d4:2f:45:37: 78:d5:b7:22:5f:03:b0:67:1c:1f:c6:1a:1c:47:07: ad:b7:00:51:60:cf:af:7d:36:0b:fa:7c:7f:22:dc: 07:98:d9:58:10:a9:70:15:42:c1:59:ce:4d:b3:8d: 62:9a:90:a3:2b:4f:32:a9:f8:02:5f:96:82:ef:3b: 36:b0:2b:50:f7:5e:73:01:8f:30:a2:41:3f:61:21: 83:e1:63:78:ad:c0:66:2c:a1:4f:fa:ab:e3:2b:20: b1:6b:bf:4b:b4:45:29:66:2b:6d:3a:ae:81:e7:b9: 46:4a:e6:b9:8b:2f:d5:cf:17:bb:61:7d:0b:4c:79: 14:f3:4d:ea:55:de:bb:35:d5:94:3f:73:4e:e1:36: 31:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:A9:17:58:BA:08:A1:EE:9E:42:C8:03:8A:7A:00:B3:66:41:29:70 X509v3 Authority Key Identifier: keyid:F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c5:cb:95:d5:55:6f:50:dd:27:db:ed:7c:fd:15:50:74:25:ce: 8f:f9:23:b2:77:6f:ec:11:50:aa:82:ab:a0:80:49:af:a3:49: 8a:11:1e:53:36:ef:f8:c0:41:b9:2d:d4:0f:0d:57:ba:3d:33: 5b:6b:80:bb:77:0c:a4:9b:01:0c:58:2d:86:9a:2a:1f:93:1f: 16:0f:59:81:5e:96:83:ca:83:b5:46:b7:db:b2:ed:2f:5a:b0: f6:17:49:1b:9e:d9:45:1d:c1:ae:ad:e9:04:bf:58:0c:d3:a9: 29:11:55:79:98:af:7b:46:23:3b:50:88:c9:d7:ce:2e:78:c2: 39:02:1f:b0:aa:fa:8d:e1:6b:0a:c9:43:d5:a9:fc:e8:c4:eb: 4a:38:96:82:6a:01:99:71:7e:9b:b5:ec:d4:71:4d:b8:ac:73: 12:d1:ab:c3:15:30:40:d4:37:64:28:20:47:73:04:8f:f6:01: 27:6c:99:e9:f4:59:c1:8a:33:99:5b:c3:aa:7f:9d:9f:94:5b: c9:f2:a2:e4:54:b8:a3:73:e1:08:87:0a:1a:36:b5:8d:cc:21: 17:df:b3:3c:91:aa:8a:a6:5a:46:67:5c:26:1f:73:f1:97:28: cc:ef:b3:75:20:a1:4d:eb:77:58:f7:c3:12:bc:be:6f:47:09: 7e:c6:61:13 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUUPUvFWK/2gQQiHiBp7+sTrNGVzMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENG OTM5RjRGNDAeFw0yNjAzMDExOTUxNTVaFw0yNjAzMDIyMTU5NTVaMDMxMTAvBgNV BAMTKEE4QTkxNzU4QkEwOEExRUU5RTQyQzgwMzhBN0EwMEIzNjY0MTI5NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcy+6G77FndrTSEtrVr7O4VA99 879bLZWVOt4dGwNay+JvgQ4JM4rm+oLgf2U2ondOYiCxaqA5VsU4tmU+ehT+LTft skDx/m2QgLYdML2Uj6il3prsoUUvrub5q7LB9ICHdwKQiuytiYGTf7lx4gNv+7F3 1C9FN3jVtyJfA7BnHB/GGhxHB623AFFgz699Ngv6fH8i3AeY2VgQqXAVQsFZzk2z jWKakKMrTzKp+AJfloLvOzawK1D3XnMBjzCiQT9hIYPhY3itwGYsoU/6q+MrILFr v0u0RSlmK206roHnuUZK5rmLL9XPF7thfQtMeRTzTepV3rs11ZQ/c07hNjEnAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUqKkXWLoIoe6eQsgDinoAs2ZBKXAwHwYDVR0j BBgwFoAU9ABy/9wPGxWmnlvHmi9YjPk59PQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTlhYTlkYTctZjFlNC00ZDk4LWJmOTUtOWZkZmNmNDQ4 Zjc3LzAvRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENGOTM5RjRGNC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GNDAwNzJGRkRDMEYxQjE1QTY5RTVCQzc5 QTJGNTg4Q0Y5MzlGNEY0LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzE5YWE5ZGE3LWYxZTQtNGQ5OC1iZjk1LTlmZGZjZjQ0OGY3Ny8wL0Y0MDA3MkZG REMwRjFCMTVBNjlFNUJDNzlBMkY1ODhDRjkzOUY0RjQubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQDFy5XV VW9Q3Sfb7Xz9FVB0Jc6P+SOyd2/sEVCqgquggEmvo0mKER5TNu/4wEG5LdQPDVe6 PTNba4C7dwykmwEMWC2Gmiofkx8WD1mBXpaDyoO1Rrfbsu0vWrD2F0kbntlFHcGu rekEv1gM06kpEVV5mK97RiM7UIjJ184ueMI5Ah+wqvqN4WsKyUPVqfzoxOtKOJaC agGZcX6btezUcU24rHMS0avDFTBA1DdkKCBHcwSP9gEnbJnp9FnBijOZW8Oqf52f lFvJ8qLkVLijc+EIhwoaNrWNzCEX37M8kaqKplpGZ1wmH3PxlyjM77N1IKFN63dY 98MSvL5vRwl+xmET -----END CERTIFICATE-----Generated at Mon Mar 2 05:48:37 2026 by rpki-client