$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.mft File: 521525856CBBA6D9D2254221C280DC930734AAB8.mft (raw, json) Hash identifier: 4gH7nqVuunxxppGap4ItzfCOK57zEUCwZQRUxdoiqtc= Subject key identifier: AD:48:E4:67:DB:A3:01:C9:C0:B4:57:47:B7:BD:DE:4A:54:BA:1C:0A Authority key identifier: 52:15:25:85:6C:BB:A6:D9:D2:25:42:21:C2:80:DC:93:07:34:AA:B8 Certificate issuer: /CN=521525856CBBA6D9D2254221C280DC930734AAB8 Certificate serial: 70EC56212EEA5136FD1BC25D08C9FC745B221168 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.mft Manifest number: 017F Signing time: Thu 16 Apr 2026 23:06:47 +0000 Manifest this update: Thu 16 Apr 2026 23:01:47 +0000 Manifest next update: Fri 17 Apr 2026 23:23:47 +0000 Files and hashes: 1: 326130363a613030333a313333373a3a2f34382d3438203d3e20323030363736.roa (hash: qr/bfrnor+1gB61vuOA1czljaK/VRJBauBs1U2EbENw=) 2: 326130363a613030333a666666663a3a2f34382d3438203d3e203530373535.roa (hash: HVzJ9R68GMwZO9EL/DI2ZLp1a+F6uNrFmfl8+YGeZKc=) 3: 326130363a613030333a3a2f34382d3438203d3e20323030363736.roa (hash: PNV+6g1yuxZfiOErO1rlD/OjvHSDnl045B3ycAeUEw8=) 4: 39342e32342e3130382e302f32342d3234203d3e20323030363736.roa (hash: hbkkIcLL2dVYKU+9BKXYxvOgTE4cVlfb37zj8sIKpS0=) 5: 326130363a613030333a313131313a3a2f34382d3438203d3e20323030363736.roa (hash: rOXq6KopS7nNrxLenr0thMMbHkGjihkrbeGzvVQ4fNc=) 6: 326130363a613030333a623030623a3a2f34382d3438203d3e20323030363736.roa (hash: kunZD4UEEwcG2nc99Wb+xz1yK+IdIm7SjegbAra8chc=) 7: 521525856CBBA6D9D2254221C280DC930734AAB8.crl (hash: DFF9if3NSNVAVKQ12Q8oJE4+XjLnqv/FyRT1wCdDOnU=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.crl rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 Apr 2026 23:23:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:ec:56:21:2e:ea:51:36:fd:1b:c2:5d:08:c9:fc:74:5b:22:11:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=521525856CBBA6D9D2254221C280DC930734AAB8 Validity Not Before: Apr 16 23:01:47 2026 GMT Not After : Apr 17 23:23:47 2026 GMT Subject: CN=AD48E467DBA301C9C0B45747B7BDDE4A54BA1C0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:2c:11:5e:e5:e0:5c:d5:3e:8e:65:98:1a:f6: 6a:9a:98:61:08:75:a3:2d:63:53:fa:a1:ac:48:1b: 91:2f:04:e3:2f:4e:8c:fb:1f:88:30:c8:56:2f:6c: 72:9a:33:62:39:8a:f4:37:40:96:c6:f0:4b:16:47: 4d:bf:8c:c8:41:5a:f1:1d:2f:c5:d7:2e:5d:7b:3f: 38:b6:89:7a:3a:24:93:1e:40:95:13:5c:f3:b3:8b: dc:8e:73:51:34:9a:bb:16:04:4c:76:cd:6a:c4:25: b6:a4:19:97:9e:67:42:83:e7:69:d7:39:72:17:1f: 51:c0:cf:c7:07:4a:e6:8f:03:f9:8e:15:ca:8e:5b: c7:a1:10:8f:01:26:20:43:7e:ac:d5:aa:fb:d3:6a: 36:f6:06:d8:07:fc:92:13:f4:0a:a2:63:0e:36:5b: e1:6a:a9:9a:61:65:fd:63:50:21:ee:56:25:1a:0c: 73:54:33:a3:48:e7:d2:87:a7:43:58:c4:c4:a8:ef: c4:4e:49:5e:a6:01:ff:ce:77:50:a5:13:45:24:68: f9:37:f0:4a:85:d6:7d:62:d7:dc:f9:79:25:41:ef: c7:94:18:1f:93:0d:a7:15:3f:01:87:03:78:d1:f4: e7:7d:a1:e9:03:64:7b:5d:af:7e:6f:18:ac:f0:61: b0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:48:E4:67:DB:A3:01:C9:C0:B4:57:47:B7:BD:DE:4A:54:BA:1C:0A X509v3 Authority Key Identifier: keyid:52:15:25:85:6C:BB:A6:D9:D2:25:42:21:C2:80:DC:93:07:34:AA:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:9e:49:52:76:29:85:b3:e3:ba:c4:90:39:57:e3:34:a9:16: 17:6f:7e:ca:a0:b8:81:6e:c3:93:bd:14:40:2e:72:61:5b:61: 34:e3:d7:45:bb:4b:88:65:ed:7e:12:4b:3d:f0:d2:2c:94:dd: a9:1f:ea:c3:32:89:2a:da:35:0f:54:17:1b:6d:47:ba:42:81: c0:bf:ae:24:81:95:f2:49:90:4f:a6:41:60:d7:08:fb:ae:d6: 93:e8:43:63:b1:2d:5c:f6:ed:47:cb:5c:af:4b:7f:fb:28:b8: 5d:bc:0c:c4:96:5c:3d:b4:61:ce:ef:1e:ca:f4:cc:6f:6c:df: 18:3e:d8:e2:9f:bd:9c:c4:60:11:e8:b2:9a:b7:6c:32:30:7f: f2:e7:2b:9b:be:83:49:63:78:d6:68:3f:82:cc:07:36:b2:84: 6a:6b:23:8f:16:f7:98:3c:80:9f:82:a1:95:49:e1:18:33:95: ee:3c:39:13:d1:e2:e2:a7:25:fa:bb:f7:6b:a7:02:fa:72:cc: 8d:71:26:cd:bb:82:ab:1f:f5:c0:45:9f:57:75:9d:0b:3c:e0: 0d:1c:31:17:19:51:e4:05:26:0c:4c:b4:38:01:d7:0b:cd:21: 4b:ec:6b:2e:91:f6:c6:32:13:8a:5e:62:9f:a9:ea:55:a3:68: 96:0f:65:31 -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIUcOxWIS7qUTb9G8JdCMn8dFsiEWgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMw NzM0QUFCODAeFw0yNjA0MTYyMzAxNDdaFw0yNjA0MTcyMzIzNDdaMDMxMTAvBgNV BAMTKEFENDhFNDY3REJBMzAxQzlDMEI0NTc0N0I3QkRERTRBNTRCQTFDMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDLBFe5eBc1T6OZZga9mqamGEI daMtY1P6oaxIG5EvBOMvToz7H4gwyFYvbHKaM2I5ivQ3QJbG8EsWR02/jMhBWvEd L8XXLl17Pzi2iXo6JJMeQJUTXPOzi9yOc1E0mrsWBEx2zWrEJbakGZeeZ0KD52nX OXIXH1HAz8cHSuaPA/mOFcqOW8ehEI8BJiBDfqzVqvvTajb2BtgH/JIT9AqiYw42 W+FqqZphZf1jUCHuViUaDHNUM6NI59KHp0NYxMSo78ROSV6mAf/Od1ClE0UkaPk3 8EqF1n1i19z5eSVB78eUGB+TDacVPwGHA3jR9Od9oekDZHtdr35vGKzwYbCbAgMB AAGjggJ3MIICczAdBgNVHQ4EFgQUrUjkZ9ujAcnAtFdHt73eSlS6HAowHwYDVR0j BBgwFoAUUhUlhWy7ptnSJUIhwoDckwc0qrgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYtMzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1 Y2U3LzQvNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMwNzM0QUFCOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMwNzM0 QUFCOC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWNhM2NhNi0z NGNjLTQ3NzItYmFjMC1hMzVkZDAxOTVjZTcvNC81MjE1MjU4NTZDQkJBNkQ5RDIy NTQyMjFDMjgwREM5MzA3MzRBQUI4Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZZ5JUnYphbPjusSQOVfj NKkWF29+yqC4gW7Dk70UQC5yYVthNOPXRbtLiGXtfhJLPfDSLJTdqR/qwzKJKto1 D1QXG21HukKBwL+uJIGV8kmQT6ZBYNcI+67Wk+hDY7EtXPbtR8tcr0t/+yi4XbwM xJZcPbRhzu8eyvTMb2zfGD7Y4p+9nMRgEeiymrdsMjB/8ucrm76DSWN41mg/gswH NrKEamsjjxb3mDyAn4KhlUnhGDOV7jw5E9Hi4qcl+rv3a6cC+nLMjXEmzbuCqx/1 wEWfV3WdCzzgDRwxFxlR5AUmDEy0OAHXC80hS+xrLpH2xjITil5in6nqVaNolg9l MQ== -----END CERTIFICATE-----Generated at Fri Apr 17 10:03:34 2026 by rpki-client