$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft File: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft (raw, json) Hash identifier: MRHwFO2tDHWJwm6NTNcHI7zB8x5t59bR4tagWUzXKYY= Subject key identifier: E9:91:B3:3D:96:C9:0D:6D:40:CA:37:A1:B7:86:B0:38:96:CD:DD:32 Authority key identifier: F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 Certificate issuer: /CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Certificate serial: 3C3FFE98EF11ACA58BFE80977FF19B84355B8FF8 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft Manifest number: 0283 Signing time: Sun 19 Apr 2026 10:02:12 +0000 Manifest this update: Sun 19 Apr 2026 09:57:12 +0000 Manifest next update: Mon 20 Apr 2026 12:48:12 +0000 Files and hashes: 1: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl (hash: z27JT3lPpzTkd+6nt0EwZ+jOIfAkmkgUt/NXB89n0IU=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Apr 2026 04:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:3f:fe:98:ef:11:ac:a5:8b:fe:80:97:7f:f1:9b:84:35:5b:8f:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Validity Not Before: Apr 19 09:57:12 2026 GMT Not After : Apr 20 12:48:12 2026 GMT Subject: CN=E991B33D96C90D6D40CA37A1B786B03896CDDD32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c6:05:0c:bd:a3:6b:d4:8e:05:fe:d7:b8:25: a4:74:7a:62:71:27:b8:f7:14:e6:34:27:2c:db:44: 29:34:4a:51:d9:9f:76:4e:28:3b:f1:08:fb:71:86: e2:12:1f:64:70:6e:c9:c1:4e:7c:47:51:f3:53:a5: 2e:e0:f4:bd:32:6f:5e:60:72:c5:6a:01:9b:20:46: 22:a6:ee:ce:1e:ff:a0:6c:e9:fe:0c:cf:fa:9f:05: b9:87:c4:6a:aa:ee:3f:02:9b:d2:ff:72:ab:a8:23: 28:dd:77:76:49:ef:ac:5c:2b:6b:11:9e:05:d4:a1: 65:e7:19:c6:d7:15:2b:bb:70:24:1a:3f:f8:09:9b: af:b8:be:07:9b:a8:16:3b:42:a8:92:28:b0:f7:f3: 23:db:c1:44:58:7e:dd:ac:91:63:5e:a5:2f:88:e9: 9b:90:7d:d8:be:25:48:1b:26:bd:f6:73:a3:6e:35: 4f:28:27:ca:62:4d:bc:2f:5c:24:6f:1a:67:38:67: da:d9:5a:7b:36:d4:91:0d:5b:e1:80:02:92:26:31: ac:80:32:84:ce:9b:ba:b9:bf:7e:04:60:71:2c:0e: 76:ba:5e:fe:96:21:b8:0b:f1:b1:d7:3f:bf:e6:da: 0b:55:85:16:8a:6d:20:b8:9a:bd:79:f3:7e:2a:bd: 47:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:91:B3:3D:96:C9:0D:6D:40:CA:37:A1:B7:86:B0:38:96:CD:DD:32 X509v3 Authority Key Identifier: keyid:F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:1a:c5:f4:fe:cc:71:45:82:11:e9:b3:18:ad:24:c8:26:6b: 26:8a:d1:33:12:2d:d0:05:69:35:88:b4:ff:51:9a:99:b9:7f: 3e:04:32:32:53:74:b4:0a:f8:94:05:94:ca:8e:d2:27:f4:44: d3:15:31:c6:2e:0c:36:f9:22:41:bc:38:6a:20:ea:4f:11:92: 2f:e3:4d:fa:fa:2a:22:12:3b:0d:93:61:ba:52:c3:01:4f:7f: a3:b8:d4:55:ba:c6:87:1a:9c:27:46:f8:6a:d6:18:be:fb:1e: b8:c2:d0:80:61:64:82:a4:f6:bf:9e:8e:91:2a:dd:73:e2:8d: 10:05:5f:d9:54:1e:7f:cc:d6:da:ed:4d:d4:c8:84:d5:7b:b2: 42:25:ab:36:28:8c:a5:66:e2:f8:db:6f:89:61:2c:ef:fc:79: 09:e7:c9:5d:fc:1f:62:05:de:da:05:6b:08:2e:69:fe:0e:89: 27:1e:e3:b3:9c:4e:ac:c1:b7:7e:4d:f4:0b:a8:93:67:95:34: cf:19:bd:af:58:22:2b:40:4a:03:6e:30:c6:be:84:fd:83:94: 83:2b:88:a7:c4:64:e9:72:ad:4b:b8:6a:1e:4f:68:73:12:22: d7:86:c8:f2:88:01:fd:6a:79:b0:bd:18:44:8a:d3:53:e6:4d: 6d:29:a7:d3 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUPD/+mO8RrKWL/oCXf/GbhDVbj/gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENG OTM5RjRGNDAeFw0yNjA0MTkwOTU3MTJaFw0yNjA0MjAxMjQ4MTJaMDMxMTAvBgNV BAMTKEU5OTFCMzNEOTZDOTBENkQ0MENBMzdBMUI3ODZCMDM4OTZDREREMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4xgUMvaNr1I4F/te4JaR0emJx J7j3FOY0JyzbRCk0SlHZn3ZOKDvxCPtxhuISH2RwbsnBTnxHUfNTpS7g9L0yb15g csVqAZsgRiKm7s4e/6Bs6f4Mz/qfBbmHxGqq7j8Cm9L/cquoIyjdd3ZJ76xcK2sR ngXUoWXnGcbXFSu7cCQaP/gJm6+4vgebqBY7QqiSKLD38yPbwURYft2skWNepS+I 6ZuQfdi+JUgbJr32c6NuNU8oJ8piTbwvXCRvGmc4Z9rZWns21JENW+GAApImMayA MoTOm7q5v34EYHEsDna6Xv6WIbgL8bHXP7/m2gtVhRaKbSC4mr15834qvUc/AgMB AAGjggKCMIICfjAdBgNVHQ4EFgQU6ZGzPZbJDW1Ayjeht4awOJbN3TIwHwYDVR0j BBgwFoAU9ABy/9wPGxWmnlvHmi9YjPk59PQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTlhYTlkYTctZjFlNC00ZDk4LWJmOTUtOWZkZmNmNDQ4 Zjc3LzAvRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENGOTM5RjRGNC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GNDAwNzJGRkRDMEYxQjE1QTY5RTVCQzc5 QTJGNTg4Q0Y5MzlGNEY0LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzE5YWE5ZGE3LWYxZTQtNGQ5OC1iZjk1LTlmZGZjZjQ0OGY3Ny8wL0Y0MDA3MkZG REMwRjFCMTVBNjlFNUJDNzlBMkY1ODhDRjkzOUY0RjQubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCWGsX0 /sxxRYIR6bMYrSTIJmsmitEzEi3QBWk1iLT/UZqZuX8+BDIyU3S0CviUBZTKjtIn 9ETTFTHGLgw2+SJBvDhqIOpPEZIv4036+ioiEjsNk2G6UsMBT3+juNRVusaHGpwn Rvhq1hi++x64wtCAYWSCpPa/no6RKt1z4o0QBV/ZVB5/zNba7U3UyITVe7JCJas2 KIylZuL422+JYSzv/HkJ58ld/B9iBd7aBWsILmn+DoknHuOznE6swbd+TfQLqJNn lTTPGb2vWCIrQEoDbjDGvoT9g5SDK4inxGTpcq1LuGoeT2hzEiLXhsjyiAH9anmw vRhEitNT5k1tKafT -----END CERTIFICATE-----Generated at Sun Apr 19 12:57:33 2026 by rpki-client