$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft File: 7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft (raw, json) Hash identifier: FCdMoPKaS0nTsVv6lzuLMYX9+vjNfZezyYyjCKfaP7E= Subject key identifier: C4:34:A3:79:F3:18:23:FB:7C:36:23:3E:93:89:AD:E0:70:21:1A:6F Authority key identifier: 7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85 Certificate issuer: /CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985 Certificate serial: 231A92103C76A615A8A45A05401D3665F13A8FD6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft Manifest number: 0274 Signing time: Fri 12 Jun 2026 18:57:55 +0000 Manifest this update: Fri 12 Jun 2026 18:52:55 +0000 Manifest next update: Sat 13 Jun 2026 21:00:55 +0000 Files and hashes: 1: 326130653a666434353a353030303a3a2f34302d3438203d3e20323034383330.roa (hash: 9ztDCaU6aAMVKVrLFNLTSsl1A84X7CinJDw99b10Wgk=) 2: 7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl (hash: YK8oL2uwsNBhnrzJiQN9UMQyuLNwIp6tQ9Iq8n9//J0=) 3: 326130653a666434353a326633303a3a2f34382d3438203d3e20323039333130.roa (hash: Ah9wB6P+J6/u6bq6IHZMWUCN9kLwcy3+ovMQjaM+Mjs=) 4: 326130393a626534303a323830303a3a2f34302d3438203d3e20313939393530.roa (hash: E/KKQIBIvXrHxntg1Xf36BIIDrbcHQG7BGnX7lqe1ts=) 5: 326130653a666434353a326636303a3a2f34382d3438203d3e20323037313038.roa (hash: fin/tsFszyHjwEDVRVOEznFkN6ILbbdEP80VJIaXRto=) 6: 326130653a666434353a326630303a3a2f34382d3438203d3e20323132393636.roa (hash: 4rV6D1GFz/bjY4t177ru5i22axDSZLmceosAGjuU6GE=) 7: 326130653a666434353a326535303a3a2f34382d3438203d3e20323135333730.roa (hash: S2x/glwBFQqLmSWyNwtm4qEtJyulbbnFBue99o2JPS8=) 8: 326130653a666434353a326635303a3a2f34382d3634203d3e203439393831.roa (hash: zpE8O6QFgOcjidzEd8zc2djpSlwttC8o8DmDYuakobQ=) 9: 326130393a626534303a323830303a3a2f34302d3438203d3e20323133313730.roa (hash: 5klqSoppwsu6NOWd6DdkFO/NkJ4F93qo8ByoAVMNmBw=) 10: 34352e3134362e372e302f32342d3332203d3e203439393831.roa (hash: ohztvwe2w66eHUWp00RbU/8ScLc2/rEvRDbabjcZgPU=) 11: 326130653a666434353a326634303a3a2f34342d3438203d3e20323132353931.roa (hash: m8ac/OmE29DqLuwrvKPJFKpYCamTHx1fmPvpHqRkArI=) 12: 326130653a666434353a326130303a3a2f34302d3438203d3e20323133323533.roa (hash: qDmc/WjuJm2+K6V+qH0YTGIzUkgJV2kWMCYDVdR94ng=) 13: 326130653a666434353a326636303a3a2f34382d3438203d3e203532303431.roa (hash: IZkqFVYEgPyyB/+rGAFH6ZTxV7F8e0iFJgsbGpJjRuQ=) 14: 326130653a666434353a326366303a3a2f34382d3438203d3e20323032383535.roa (hash: b4dSzH5oz/8kg+iOLc3kROxlkMvwGXgL0aSDALtRaeY=) 15: 326130653a666434353a326538303a3a2f34382d3438203d3e20323134373233.roa (hash: OBdYMpDCrnydUqYR/9aR6OWDxV3xrASuK04QdHbbnp4=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 21:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:1a:92:10:3c:76:a6:15:a8:a4:5a:05:40:1d:36:65:f1:3a:8f:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985 Validity Not Before: Jun 12 18:52:55 2026 GMT Not After : Jun 13 21:00:55 2026 GMT Subject: CN=C434A379F31823FB7C36233E9389ADE070211A6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b3:3a:68:d8:89:52:f2:0b:b4:d6:03:86:ed: dc:4c:40:97:fb:f8:8d:6d:fb:2f:2a:7a:e5:6a:38: b8:7e:1d:f5:09:3d:56:fb:9b:ac:68:9d:df:60:97: 37:01:a6:93:89:88:4a:a9:46:87:a5:d7:ad:c3:36: 7b:82:10:71:e6:04:82:02:01:35:02:7b:42:ab:cd: 84:54:ba:56:1e:dc:eb:97:9a:48:e4:05:95:b6:cd: 44:ae:af:03:22:6c:3e:d0:4a:46:00:25:e3:af:7a: 6f:d2:83:59:af:5a:7b:72:cc:29:33:26:e5:ea:fc: c0:41:95:df:b6:1a:d1:f1:30:c0:10:82:7f:ed:d2: cc:4f:0d:35:71:67:98:da:13:b2:73:e5:f2:ba:6a: b6:64:26:e9:00:df:a4:d2:7b:a2:78:0a:f6:07:49: fd:53:7c:52:85:94:f1:27:c0:55:65:bf:51:29:98: 7f:ec:6b:96:32:43:da:4e:31:62:ba:20:df:ae:eb: ce:a5:89:c4:94:18:83:7a:bc:e2:5e:3c:8f:18:c8: 7c:c3:15:e6:06:00:9b:4b:b3:42:43:44:b2:24:0e: cf:d7:98:73:de:0d:d7:78:6c:ae:f8:cf:38:44:00: 27:eb:73:05:6b:66:d3:db:b9:60:37:6c:c1:b2:85: 3d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:34:A3:79:F3:18:23:FB:7C:36:23:3E:93:89:AD:E0:70:21:1A:6F X509v3 Authority Key Identifier: keyid:7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b5:2d:bd:cc:33:48:c7:4f:64:bb:f2:94:46:72:4c:5c:d7:0e: d6:6a:57:44:d8:ee:7e:a9:95:6e:36:0b:5f:d8:cf:fd:1f:07: 9d:f6:46:31:3d:1e:29:78:fc:9f:f2:60:00:f9:21:62:1d:1b: 94:39:4a:bd:7a:74:31:0f:0e:6e:9a:cd:f6:4d:6e:ab:14:eb: 36:9b:ef:55:45:b6:bc:59:fc:e8:25:f9:98:ab:be:78:5c:a6: 92:59:9e:5d:ca:dc:d7:b9:c5:72:85:c1:7a:1d:c6:24:fb:0e: 84:84:09:f0:d0:48:57:38:94:e5:85:e8:d7:7a:1c:34:9a:86: bf:4c:14:8d:2d:2a:ff:5d:91:12:1f:a3:df:ae:21:fa:9b:b5: 0c:32:8a:55:1f:95:5e:56:5b:05:5d:e4:ab:a1:45:b2:12:a9: a5:61:d8:98:b2:c8:29:5b:55:77:e5:65:21:ae:ee:c6:88:b5: 55:63:a3:9e:16:de:e5:ad:5c:03:88:09:8e:88:a0:4b:e8:e3: 1f:ce:49:a8:8d:48:01:e6:28:87:88:41:c7:06:81:bb:a6:f8: bf:5f:93:9f:8d:f2:41:09:c7:66:1b:37:43:22:4b:5c:ee:3d: 74:ea:6e:c6:bc:7c:01:50:ff:31:c0:dc:12:49:8c:99:f2:45: f3:8d:6e:b5 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUIxqSEDx2phWopFoFQB02ZfE6j9YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN2YyMTZmNDlhM2I5YTg0YTBlODVlODBhMmM0Mjg3NGYw OWVhMzk4NTAeFw0yNjA2MTIxODUyNTVaFw0yNjA2MTMyMTAwNTVaMDMxMTAvBgNV BAMTKEM0MzRBMzc5RjMxODIzRkI3QzM2MjMzRTkzODlBREUwNzAyMTFBNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNszpo2IlS8gu01gOG7dxMQJf7 +I1t+y8qeuVqOLh+HfUJPVb7m6xond9glzcBppOJiEqpRoel163DNnuCEHHmBIIC ATUCe0KrzYRUulYe3OuXmkjkBZW2zUSurwMibD7QSkYAJeOvem/Sg1mvWntyzCkz JuXq/MBBld+2GtHxMMAQgn/t0sxPDTVxZ5jaE7Jz5fK6arZkJukA36TSe6J4CvYH Sf1TfFKFlPEnwFVlv1EpmH/sa5YyQ9pOMWK6IN+u686licSUGIN6vOJePI8YyHzD FeYGAJtLs0JDRLIkDs/XmHPeDdd4bK74zzhEACfrcwVrZtPbuWA3bMGyhT13AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUxDSjefMYI/t8NiM+k4mt4HAhGm8wHwYDVR0j BBgwFoAUfyFvSaO5qEoOhegKLEKHTwnqOYUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmRmYjMwY2EtZTFjMi00OTIxLWIwNTQtZDRhZjA5MTY1 YWYxLzAvN0YyMTZGNDlBM0I5QTg0QTBFODVFODBBMkM0Mjg3NEYwOUVBMzk4NS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Z5RnZTYU81cUVvT2hlZ0tMRUtIVHdu cU9ZVS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZGZiMzBjYS1l MWMyLTQ5MjEtYjA1NC1kNGFmMDkxNjVhZjEvMC83RjIxNkY0OUEzQjlBODRBMEU4 NUU4MEEyQzQyODc0RjA5RUEzOTg1Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtS29zDNIx09ku/KURnJM XNcO1mpXRNjufqmVbjYLX9jP/R8HnfZGMT0eKXj8n/JgAPkhYh0blDlKvXp0MQ8O bprN9k1uqxTrNpvvVUW2vFn86CX5mKu+eFymklmeXcrc17nFcoXBeh3GJPsOhIQJ 8NBIVziU5YXo13ocNJqGv0wUjS0q/12REh+j364h+pu1DDKKVR+VXlZbBV3kq6FF shKppWHYmLLIKVtVd+VlIa7uxoi1VWOjnhbe5a1cA4gJjoigS+jjH85JqI1IAeYo h4hBxwaBu6b4v1+Tn43yQQnHZhs3QyJLXO49dOpuxrx8AVD/McDcEkmMmfJF841u tQ== -----END CERTIFICATE-----Generated at Sat Jun 13 09:31:26 2026 by rpki-client