$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft File: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft (raw, json) Hash identifier: Ohmkzn/+pKDMF3zU68HtAPGrE4I/HaH6WROVoEk3XD8= Subject key identifier: AB:13:AC:58:8C:69:6C:DC:09:01:A6:D8:1B:AB:09:EE:5D:1B:CF:00 Authority key identifier: F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 Certificate issuer: /CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Certificate serial: 673E9FAD4FCA07D2DF6E3DBD48552D50660E3D56 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft Manifest number: 010E Signing time: Mon 04 Aug 2025 03:53:12 +0000 Manifest this update: Mon 04 Aug 2025 03:48:12 +0000 Manifest next update: Tue 05 Aug 2025 06:17:12 +0000 Files and hashes: 1: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl (hash: 8mccUJytFjbRzsWHOEROpbZyegMEe3zCdJZibnF0Ojw=) 2: 326131343a373538303a363030303a3a2f33362d3438203d3e20323039353534.roa (hash: 7bwiHUB+0vEKFxOfRTRz/zFRAxgK1WxBsECd2SJxocI=) 3: 326131343a373538303a383030303a3a2f33362d3438203d3e20323135343730.roa (hash: ibb68AQAVWJMES3NYRBIOdUeHnGKp+tFUocAxCKgPEU=) 4: 326131343a373538303a663332303a3a2f34342d3434203d3e20323135343730.roa (hash: XgYHMfBb1tBckmqvYy7acYD3hSj36S+vN34vUn5oaD4=) 5: 326131343a373538303a663334303a3a2f34342d3438203d3e20323133343238.roa (hash: Z7InVHvKI4/fqGkdwdL0zl1WS4Iyc09xlEsVxaD8p5A=) 6: 326131343a373538303a663330303a3a2f34302d3430203d3e20323135343730.roa (hash: NYjufeU5nji5tNLR9669xX3/zAC6IxnZWFE8KHjLm6Y=) 7: 326131343a373538303a343030303a3a2f33362d3336203d3e20323133343238.roa (hash: f38GGJwA8aLs49rknYyp3/ozCmX5eTGnavOZGUBAqUw=) 8: 326131343a373538303a663330313a3a2f34382d3438203d3e20323135343730.roa (hash: GyqnDZwlRU44RSAJS6AmGof5uxXXmzhkRtpFSrxG7Nw=) 9: 326131343a373538303a663333303a3a2f34342d3438203d3e20323134303330.roa (hash: E8taggS6sI4q0LKjH6/GmLcIK3Cj0Fw4lwLi8ILdzT4=) 10: 326131343a373538303a663331303a3a2f34342d3438203d3e20323134303834.roa (hash: 7Ht9ysaUQlknniITxiGGZVb7FReUYStDZL1yen2prNE=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 05 Aug 2025 03:52:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:3e:9f:ad:4f:ca:07:d2:df:6e:3d:bd:48:55:2d:50:66:0e:3d:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Validity Not Before: Aug 4 03:48:12 2025 GMT Not After : Aug 5 06:17:12 2025 GMT Subject: CN=AB13AC588C696CDC0901A6D81BAB09EE5D1BCF00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:83:18:a0:79:e7:ad:13:58:5b:71:0c:7f:01: d0:cc:10:46:6c:21:58:f8:9c:a8:6e:58:7a:a2:54: 0f:a8:20:cc:45:77:57:8a:c0:cd:b9:5a:30:07:87: 4b:b4:69:22:dc:ff:20:a5:2a:57:93:1d:d4:64:2d: 23:01:66:3c:cd:0b:f8:1b:31:99:f6:3b:f8:df:8e: 93:0e:71:dc:f7:dc:7a:dd:0c:3b:bf:b5:7d:0c:f4: 13:fd:ae:fa:65:ff:da:f5:ca:1e:e0:03:1b:5f:88: 75:f2:f6:cd:e7:bf:5c:d1:5e:ba:80:2c:84:08:60: de:f7:c8:66:e2:18:cf:e5:b7:4f:54:52:a5:64:a5: 3a:a8:97:bf:ca:6d:da:2b:95:76:7d:92:fe:92:75: c6:fa:11:18:6b:2c:f5:9e:59:60:31:39:c8:5c:c6: 25:45:9b:ea:d3:ca:0c:8a:02:0f:90:80:c3:a4:01: 46:28:aa:f8:84:62:d6:fa:bf:f5:c8:38:8f:2d:4b: 08:99:4d:4e:f5:09:b5:63:68:26:db:cc:c9:a4:54: d1:3c:ea:56:a0:8f:a3:53:4e:35:48:59:95:99:4d: 13:35:2d:8e:3f:2d:85:88:c8:b4:53:8e:10:c7:a5: f4:7d:ae:c8:fe:3f:6b:44:03:c5:d0:8f:a6:f5:ef: 5b:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:13:AC:58:8C:69:6C:DC:09:01:A6:D8:1B:AB:09:EE:5D:1B:CF:00 X509v3 Authority Key Identifier: keyid:F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:c4:41:2d:a0:44:31:a0:a0:84:d9:03:ab:99:94:05:d3:10: 04:ff:2b:81:6d:e6:6e:ce:ca:76:1f:07:1a:7d:00:30:2e:f1: 55:6c:81:76:f9:d0:df:4f:ce:64:53:a2:22:a6:89:ae:e5:1d: 14:c1:95:1f:bd:2e:46:65:b5:ef:72:c5:17:62:93:c0:73:78: 0b:b1:eb:c9:3d:39:60:7e:58:34:08:ac:37:14:1e:de:43:98: 61:f7:df:a5:46:9c:65:f4:dc:1d:a7:58:2f:b6:56:94:31:b0: f5:26:4f:ea:ed:60:58:7e:b0:a3:c7:94:f5:d9:1c:64:dc:22: 89:d7:d7:7a:06:71:64:c3:be:60:a9:1a:ea:3e:b5:c0:42:d3: 63:4d:dc:e6:d7:93:82:05:4a:9f:2e:f1:a8:3a:ff:54:e8:bc: d1:a1:52:69:49:52:94:ca:97:8f:09:6d:70:71:00:8c:cb:e2: a5:da:74:92:c3:d4:d8:4e:1a:99:14:5b:f4:5e:c7:47:37:ea: 96:7f:a3:5b:69:b9:c8:1f:84:c8:5d:6b:c5:ae:cf:4c:e9:23: bd:3e:d5:d5:1c:9b:71:95:a8:1d:9d:e4:3e:e2:a4:42:6d:ee: 44:0a:21:56:f7:fe:76:25:ff:81:de:f6:57:5c:39:98:fd:75: 4c:d6:be:5b -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUZz6frU/KB9Lfbj29SFUtUGYOPVYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENG OTM5RjRGNDAeFw0yNTA4MDQwMzQ4MTJaFw0yNTA4MDUwNjE3MTJaMDMxMTAvBgNV BAMTKEFCMTNBQzU4OEM2OTZDREMwOTAxQTZEODFCQUIwOUVFNUQxQkNGMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzgxigeeetE1hbcQx/AdDMEEZs IVj4nKhuWHqiVA+oIMxFd1eKwM25WjAHh0u0aSLc/yClKleTHdRkLSMBZjzNC/gb MZn2O/jfjpMOcdz33HrdDDu/tX0M9BP9rvpl/9r1yh7gAxtfiHXy9s3nv1zRXrqA LIQIYN73yGbiGM/lt09UUqVkpTqol7/KbdorlXZ9kv6Sdcb6ERhrLPWeWWAxOchc xiVFm+rTygyKAg+QgMOkAUYoqviEYtb6v/XIOI8tSwiZTU71CbVjaCbbzMmkVNE8 6lagj6NTTjVIWZWZTRM1LY4/LYWIyLRTjhDHpfR9rsj+P2tEA8XQj6b171tbAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUqxOsWIxpbNwJAabYG6sJ7l0bzwAwHwYDVR0j BBgwFoAU9ABy/9wPGxWmnlvHmi9YjPk59PQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTlhYTlkYTctZjFlNC00ZDk4LWJmOTUtOWZkZmNmNDQ4 Zjc3LzAvRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENGOTM5RjRGNC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GNDAwNzJGRkRDMEYxQjE1QTY5RTVCQzc5 QTJGNTg4Q0Y5MzlGNEY0LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzE5YWE5ZGE3LWYxZTQtNGQ5OC1iZjk1LTlmZGZjZjQ0OGY3Ny8wL0Y0MDA3MkZG REMwRjFCMTVBNjlFNUJDNzlBMkY1ODhDRjkzOUY0RjQubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQABxEEt oEQxoKCE2QOrmZQF0xAE/yuBbeZuzsp2HwcafQAwLvFVbIF2+dDfT85kU6Iipomu 5R0UwZUfvS5GZbXvcsUXYpPAc3gLsevJPTlgflg0CKw3FB7eQ5hh99+lRpxl9Nwd p1gvtlaUMbD1Jk/q7WBYfrCjx5T12Rxk3CKJ19d6BnFkw75gqRrqPrXAQtNjTdzm 15OCBUqfLvGoOv9U6LzRoVJpSVKUypePCW1wcQCMy+Kl2nSSw9TYThqZFFv0XsdH N+qWf6NbabnIH4TIXWvFrs9M6SO9PtXVHJtxlagdneQ+4qRCbe5ECiFW9/52Jf+B 3vZXXDmY/XVM1r5b -----END CERTIFICATE-----Generated at Mon Aug 4 19:08:13 2025 by rpki-client