$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.mft File: 521525856CBBA6D9D2254221C280DC930734AAB8.mft (raw, json) Hash identifier: lcoVVPfCVyUIAOh61vzw4hrNQzVOUVxPQzHLAnANJCE= Subject key identifier: CF:34:67:1C:34:E1:9F:7A:CC:75:87:18:C6:B1:3E:2C:E9:10:61:3D Authority key identifier: 52:15:25:85:6C:BB:A6:D9:D2:25:42:21:C2:80:DC:93:07:34:AA:B8 Certificate issuer: /CN=521525856CBBA6D9D2254221C280DC930734AAB8 Certificate serial: 7050918621D6DB93C54426A1EC554F18E264FB2F Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.mft Manifest number: A7 Signing time: Wed 05 Nov 2025 02:51:45 +0000 Manifest this update: Wed 05 Nov 2025 02:46:45 +0000 Manifest next update: Thu 06 Nov 2025 03:58:45 +0000 Files and hashes: 1: 521525856CBBA6D9D2254221C280DC930734AAB8.crl (hash: aSj+TYB96WWJ2CibWUOI7nPilOtLfuIXxVI9ayGAEBw=) 2: 326130363a613030333a313333373a3a2f34382d3438203d3e20323030363736.roa (hash: qr/bfrnor+1gB61vuOA1czljaK/VRJBauBs1U2EbENw=) 3: 326130363a613030333a3a2f34382d3438203d3e20323030363736.roa (hash: PNV+6g1yuxZfiOErO1rlD/OjvHSDnl045B3ycAeUEw8=) 4: 39342e32342e3130382e302f32342d3234203d3e20323030363736.roa (hash: hbkkIcLL2dVYKU+9BKXYxvOgTE4cVlfb37zj8sIKpS0=) 5: 326130363a613030333a666666663a3a2f34382d3438203d3e203530373535.roa (hash: HVzJ9R68GMwZO9EL/DI2ZLp1a+F6uNrFmfl8+YGeZKc=) 6: 326130363a613030333a623030623a3a2f34382d3438203d3e20323030363736.roa (hash: kunZD4UEEwcG2nc99Wb+xz1yK+IdIm7SjegbAra8chc=) 7: 326130363a613030333a313131313a3a2f34382d3438203d3e20323030363736.roa (hash: rOXq6KopS7nNrxLenr0thMMbHkGjihkrbeGzvVQ4fNc=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.crl rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:50:91:86:21:d6:db:93:c5:44:26:a1:ec:55:4f:18:e2:64:fb:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=521525856CBBA6D9D2254221C280DC930734AAB8 Validity Not Before: Nov 5 02:46:45 2025 GMT Not After : Nov 6 03:58:45 2025 GMT Subject: CN=CF34671C34E19F7ACC758718C6B13E2CE910613D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:81:db:8d:58:ff:57:d2:b1:c3:c3:50:7a:79: d7:aa:22:11:05:60:c5:e9:1e:f7:2d:fa:96:22:63: 71:9c:7e:99:a5:cd:89:29:68:4f:ab:1f:02:36:01: 99:44:15:77:d5:58:a1:1b:c8:5e:89:40:13:aa:47: 34:84:af:9d:ae:2f:33:50:6f:48:e2:ea:94:f6:54: f3:01:ff:06:97:64:4f:57:27:ba:a1:38:18:24:68: 88:ae:69:8a:04:a9:6e:45:1c:ec:ac:e7:b0:7f:54: ff:ae:80:49:af:f9:5a:3a:bc:aa:24:ab:7b:4c:27: 53:32:ef:4a:a9:0c:49:91:b5:86:3b:38:db:1c:3a: 4d:f7:66:ae:51:75:b6:7e:d1:b3:4e:0d:38:94:a3: 3c:7d:4b:5f:8d:ae:6f:9a:9e:0e:4e:08:65:b3:e8: 84:55:3d:15:11:e5:19:c2:9d:2e:ec:fd:31:1b:31: 36:35:c3:b9:79:d1:a8:a1:d8:cc:3e:c3:f1:b5:fe: 8c:10:de:dd:3a:e4:16:87:96:ab:7a:b8:b3:ae:a9: 81:22:5c:0b:72:ce:76:d4:9b:f2:ee:05:e1:36:21: e1:d1:2f:b5:d7:bf:7c:d1:45:c0:78:ad:c7:0b:74: 73:4c:d7:f8:b5:7b:11:0e:b0:98:8a:56:29:a4:95: 96:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:34:67:1C:34:E1:9F:7A:CC:75:87:18:C6:B1:3E:2C:E9:10:61:3D X509v3 Authority Key Identifier: keyid:52:15:25:85:6C:BB:A6:D9:D2:25:42:21:C2:80:DC:93:07:34:AA:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:a2:42:ab:69:a2:ac:cf:f2:24:a6:8b:3b:6e:0b:88:26:c5: aa:da:34:d7:bf:79:25:f4:65:03:f3:ef:ba:7c:54:62:bf:a8: c7:64:5e:89:cf:11:89:18:90:e9:0f:68:2b:9a:cd:1d:b8:6a: 6a:74:f4:de:ab:13:e7:05:af:7b:31:13:1d:6f:be:31:64:5b: 65:60:99:7e:51:0a:4c:cf:90:27:c9:31:7d:6c:fe:2b:06:06: dd:bf:b0:65:da:ad:74:90:a6:e4:01:36:be:fe:32:56:ed:d7: d3:32:0b:05:a2:32:20:16:4f:30:45:b6:2a:b6:52:12:ed:39: cc:77:0d:44:5c:99:8d:c9:32:8b:4d:4a:71:1e:e8:42:e8:aa: 98:4a:b8:7f:73:44:fd:b3:92:d9:f6:56:49:16:9b:0a:f5:b2: 01:85:cd:21:2b:f5:4e:4b:e4:84:45:31:57:44:be:45:55:14: 58:e6:88:e6:d5:2f:38:b7:f9:04:6b:03:b5:b0:f2:57:5b:a5: 6c:5a:75:8d:86:e4:57:e1:01:71:f4:60:cd:a1:58:75:45:68: 53:29:26:ef:15:79:0b:5f:e6:17:cf:c5:f8:b4:9b:d9:3c:51: 8f:be:66:5d:d3:91:3a:ea:b3:64:78:fb:bb:77:06:4d:ad:9a: 29:20:a9:8e -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIUcFCRhiHW25PFRCah7FVPGOJk+y8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMw NzM0QUFCODAeFw0yNTExMDUwMjQ2NDVaFw0yNTExMDYwMzU4NDVaMDMxMTAvBgNV BAMTKENGMzQ2NzFDMzRFMTlGN0FDQzc1ODcxOEM2QjEzRTJDRTkxMDYxM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCigduNWP9X0rHDw1B6edeqIhEF YMXpHvct+pYiY3GcfpmlzYkpaE+rHwI2AZlEFXfVWKEbyF6JQBOqRzSEr52uLzNQ b0ji6pT2VPMB/waXZE9XJ7qhOBgkaIiuaYoEqW5FHOys57B/VP+ugEmv+Vo6vKok q3tMJ1My70qpDEmRtYY7ONscOk33Zq5RdbZ+0bNODTiUozx9S1+Nrm+ang5OCGWz 6IRVPRUR5RnCnS7s/TEbMTY1w7l50aih2Mw+w/G1/owQ3t065BaHlqt6uLOuqYEi XAtyznbUm/LuBeE2IeHRL7XXv3zRRcB4rccLdHNM1/i1exEOsJiKVimklZYPAgMB AAGjggJ3MIICczAdBgNVHQ4EFgQUzzRnHDThn3rMdYcYxrE+LOkQYT0wHwYDVR0j BBgwFoAUUhUlhWy7ptnSJUIhwoDckwc0qrgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYtMzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1 Y2U3LzQvNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMwNzM0QUFCOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMwNzM0 QUFCOC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWNhM2NhNi0z NGNjLTQ3NzItYmFjMC1hMzVkZDAxOTVjZTcvNC81MjE1MjU4NTZDQkJBNkQ5RDIy NTQyMjFDMjgwREM5MzA3MzRBQUI4Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbqJCq2mirM/yJKaLO24L iCbFqto01795JfRlA/PvunxUYr+ox2Reic8RiRiQ6Q9oK5rNHbhqanT03qsT5wWv ezETHW++MWRbZWCZflEKTM+QJ8kxfWz+KwYG3b+wZdqtdJCm5AE2vv4yVu3X0zIL BaIyIBZPMEW2KrZSEu05zHcNRFyZjckyi01KcR7oQuiqmEq4f3NE/bOS2fZWSRab CvWyAYXNISv1TkvkhEUxV0S+RVUUWOaI5tUvOLf5BGsDtbDyV1ulbFp1jYbkV+EB cfRgzaFYdUVoUykm7xV5C1/mF8/F+LSb2TxRj75mXdOROuqzZHj7u3cGTa2aKSCp jg== -----END CERTIFICATE-----Generated at Wed Nov 5 06:42:47 2025 by rpki-client