$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft File: 7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft (raw, json) Hash identifier: Afc2qtbf2Kp+BPDfTqmlv/Vno20+arUaLxGzzkhu0KI= Subject key identifier: B7:6F:70:8A:19:5E:F7:59:9B:BE:28:38:8C:39:C6:0A:39:0B:9B:53 Authority key identifier: 7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85 Certificate issuer: /CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985 Certificate serial: 65905BAD6A472D9C7BBF82DE6686A56E828BE9BB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft Manifest number: 01E8 Signing time: Sun 01 Mar 2026 07:03:20 +0000 Manifest this update: Sun 01 Mar 2026 06:58:20 +0000 Manifest next update: Mon 02 Mar 2026 07:08:20 +0000 Files and hashes: 1: 326130653a666434353a326634303a3a2f34342d3438203d3e20323132353931.roa (hash: m8ac/OmE29DqLuwrvKPJFKpYCamTHx1fmPvpHqRkArI=) 2: 326130653a666434353a326636303a3a2f34382d3438203d3e203532303431.roa (hash: IZkqFVYEgPyyB/+rGAFH6ZTxV7F8e0iFJgsbGpJjRuQ=) 3: 326130653a666434353a353030303a3a2f34302d3438203d3e20323034383330.roa (hash: 9ztDCaU6aAMVKVrLFNLTSsl1A84X7CinJDw99b10Wgk=) 4: 326130653a666434353a326366303a3a2f34382d3438203d3e20323032383535.roa (hash: lpEMU1X1JLSHAOWUFG4frUPhBZsu7LhlBnijuGC43xs=) 5: 326130653a666434353a326630303a3a2f34382d3438203d3e20323132393636.roa (hash: fCahoT0DASmE4L0CnNku4FHnUTfBEMsJKaoRBnEvKJY=) 6: 326130653a666434353a326633303a3a2f34382d3438203d3e20323039333130.roa (hash: Ah9wB6P+J6/u6bq6IHZMWUCN9kLwcy3+ovMQjaM+Mjs=) 7: 7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl (hash: /+sB5+9wIjeZAN86cALYh6q+ER9+XEzmMHILe/ngxxg=) 8: 326130393a626534303a323830303a3a2f34302d3438203d3e20313939393530.roa (hash: E/KKQIBIvXrHxntg1Xf36BIIDrbcHQG7BGnX7lqe1ts=) 9: 326130393a626534303a323830303a3a2f34302d3438203d3e20323133313730.roa (hash: 5klqSoppwsu6NOWd6DdkFO/NkJ4F93qo8ByoAVMNmBw=) 10: 326130653a666434353a326635303a3a2f34382d3634203d3e203439393831.roa (hash: zpE8O6QFgOcjidzEd8zc2djpSlwttC8o8DmDYuakobQ=) 11: 34352e3134362e372e302f32342d3332203d3e203439393831.roa (hash: ohztvwe2w66eHUWp00RbU/8ScLc2/rEvRDbabjcZgPU=) 12: 326130653a666434353a326535303a3a2f34382d3438203d3e20323135333730.roa (hash: S2x/glwBFQqLmSWyNwtm4qEtJyulbbnFBue99o2JPS8=) 13: 326130653a666434353a326538303a3a2f34382d3438203d3e20323134373233.roa (hash: OBdYMpDCrnydUqYR/9aR6OWDxV3xrASuK04QdHbbnp4=) 14: 326130653a666434353a326636303a3a2f34382d3438203d3e20323037313038.roa (hash: fin/tsFszyHjwEDVRVOEznFkN6ILbbdEP80VJIaXRto=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 07:08:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:90:5b:ad:6a:47:2d:9c:7b:bf:82:de:66:86:a5:6e:82:8b:e9:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985 Validity Not Before: Mar 1 06:58:20 2026 GMT Not After : Mar 2 07:08:20 2026 GMT Subject: CN=B76F708A195EF7599BBE28388C39C60A390B9B53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:0f:33:f6:af:9e:b8:0e:a5:ef:00:3d:ea:be: d3:73:d9:33:70:12:2c:fc:39:e7:bb:f1:55:6b:b2: a8:11:0c:f6:74:b0:36:e0:ab:de:c2:f2:3e:8a:4b: 11:47:fc:e6:e9:73:a9:d4:60:20:09:d2:a0:d6:88: ff:72:3c:bd:1a:ad:e8:bb:1c:03:1a:b1:8b:46:0c: c6:ff:e0:59:c8:e1:3a:fc:1e:ab:d4:c2:78:cc:e1: da:50:e9:2b:7c:5f:53:f4:d1:3f:c3:cc:9a:f9:82: e4:4e:e9:11:1d:8c:1c:42:19:47:4c:54:79:f9:82: 29:c1:76:22:e2:0a:5d:20:9e:a5:f1:f4:92:42:9f: 78:54:52:2e:cb:5f:5c:df:6f:44:65:2d:81:a4:a3: fc:06:b8:25:66:37:d9:ab:b1:95:3a:c7:cf:0e:22: 74:a7:08:7d:7c:12:d4:56:44:f6:f4:87:ef:e4:e4: 38:4d:19:13:9a:dd:c0:0e:87:80:8d:00:10:fa:f2: 1e:33:c7:e9:aa:5e:1b:dd:d3:87:57:ef:52:14:26: d8:a0:dd:5b:79:84:c2:c4:7f:8b:a4:ef:99:d9:d3: c4:93:d9:3d:ca:90:4e:71:b5:3d:77:fd:2f:f6:af: ef:0b:ba:2b:f6:fe:37:7b:33:a6:d1:93:c2:cd:91: 8b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:6F:70:8A:19:5E:F7:59:9B:BE:28:38:8C:39:C6:0A:39:0B:9B:53 X509v3 Authority Key Identifier: keyid:7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:e5:a1:7c:ea:89:17:0d:bf:3b:33:3f:cb:2d:39:59:1c:19: fc:ff:be:a9:ae:c7:f4:c0:af:6c:56:d2:d9:4a:f5:06:bc:3d: 41:41:45:bc:0d:39:1a:2b:16:56:7d:cc:57:de:53:98:28:65: 0b:15:58:a7:6b:44:e1:ee:5e:e3:39:b5:d4:4c:da:8f:3f:a0: 49:df:4f:8e:60:b3:2b:68:41:a4:1f:71:69:13:4e:9a:0d:13: 06:ba:8d:2c:9e:fb:b2:bc:84:5d:c4:d7:92:48:41:00:24:60: dc:da:ef:dc:94:9e:aa:61:97:a1:c8:de:eb:3b:17:6b:cd:8d: 8d:26:9a:23:7d:18:6f:03:57:df:fe:c1:a6:1d:d6:4f:40:f2: 0f:80:e0:67:28:f9:da:b4:7a:b0:c0:24:22:b2:f0:08:fd:43: a4:95:04:3e:77:dd:3f:e2:e6:d8:ae:76:f7:92:bb:4d:6b:21: 65:59:03:94:ad:78:6c:85:ba:93:e2:b5:28:7c:31:80:07:cc: 0b:96:4e:11:e0:9c:59:a8:33:c8:9c:f7:9d:93:0a:25:f1:74: f2:e1:8e:5d:f8:45:0f:70:09:14:5c:22:52:06:0e:da:2c:76: c1:86:18:fb:a0:80:cb:e5:ac:d0:fc:19:4d:f3:d1:55:a9:e5: d7:d8:d5:56 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUZZBbrWpHLZx7v4LeZoalboKL6bswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN2YyMTZmNDlhM2I5YTg0YTBlODVlODBhMmM0Mjg3NGYw OWVhMzk4NTAeFw0yNjAzMDEwNjU4MjBaFw0yNjAzMDIwNzA4MjBaMDMxMTAvBgNV BAMTKEI3NkY3MDhBMTk1RUY3NTk5QkJFMjgzODhDMzlDNjBBMzkwQjlCNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyDzP2r564DqXvAD3qvtNz2TNw Eiz8Oee78VVrsqgRDPZ0sDbgq97C8j6KSxFH/Obpc6nUYCAJ0qDWiP9yPL0arei7 HAMasYtGDMb/4FnI4Tr8HqvUwnjM4dpQ6St8X1P00T/DzJr5guRO6REdjBxCGUdM VHn5ginBdiLiCl0gnqXx9JJCn3hUUi7LX1zfb0RlLYGko/wGuCVmN9mrsZU6x88O InSnCH18EtRWRPb0h+/k5DhNGROa3cAOh4CNABD68h4zx+mqXhvd04dX71IUJtig 3Vt5hMLEf4uk75nZ08ST2T3KkE5xtT13/S/2r+8Luiv2/jd7M6bRk8LNkYs1AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUt29wihle91mbvig4jDnGCjkLm1MwHwYDVR0j BBgwFoAUfyFvSaO5qEoOhegKLEKHTwnqOYUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmRmYjMwY2EtZTFjMi00OTIxLWIwNTQtZDRhZjA5MTY1 YWYxLzAvN0YyMTZGNDlBM0I5QTg0QTBFODVFODBBMkM0Mjg3NEYwOUVBMzk4NS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Z5RnZTYU81cUVvT2hlZ0tMRUtIVHdu cU9ZVS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZGZiMzBjYS1l MWMyLTQ5MjEtYjA1NC1kNGFmMDkxNjVhZjEvMC83RjIxNkY0OUEzQjlBODRBMEU4 NUU4MEEyQzQyODc0RjA5RUEzOTg1Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB+WhfOqJFw2/OzM/yy05 WRwZ/P++qa7H9MCvbFbS2Ur1Brw9QUFFvA05GisWVn3MV95TmChlCxVYp2tE4e5e 4zm11Ezajz+gSd9PjmCzK2hBpB9xaRNOmg0TBrqNLJ77sryEXcTXkkhBACRg3Nrv 3JSeqmGXocje6zsXa82NjSaaI30YbwNX3/7Bph3WT0DyD4DgZyj52rR6sMAkIrLw CP1DpJUEPnfdP+Lm2K5295K7TWshZVkDlK14bIW6k+K1KHwxgAfMC5ZOEeCcWagz yJz3nZMKJfF08uGOXfhFD3AJFFwiUgYO2ix2wYYY+6CAy+Ws0PwZTfPRVanl19jV Vg== -----END CERTIFICATE-----Generated at Sun Mar 1 20:21:37 2026 by rpki-client