$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft File: 7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft (raw, json) Hash identifier: VclOKBPyjE8Ol3YpV4kh80Yv/fZSB+aaZ5+71MDwWyM= Subject key identifier: A6:21:F0:E8:DD:21:25:C3:AA:C8:61:A2:2E:6E:96:8C:50:D5:AD:47 Authority key identifier: 7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85 Certificate issuer: /CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985 Certificate serial: 16D934BB09BFDD9251C16FA4923C8677DFB59270 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft Manifest number: 0227 Signing time: Thu 16 Apr 2026 15:15:25 +0000 Manifest this update: Thu 16 Apr 2026 15:10:25 +0000 Manifest next update: Fri 17 Apr 2026 17:09:25 +0000 Files and hashes: 1: 326130393a626534303a323830303a3a2f34302d3438203d3e20323133313730.roa (hash: 5klqSoppwsu6NOWd6DdkFO/NkJ4F93qo8ByoAVMNmBw=) 2: 326130653a666434353a326636303a3a2f34382d3438203d3e20323037313038.roa (hash: fin/tsFszyHjwEDVRVOEznFkN6ILbbdEP80VJIaXRto=) 3: 326130653a666434353a326538303a3a2f34382d3438203d3e20323134373233.roa (hash: OBdYMpDCrnydUqYR/9aR6OWDxV3xrASuK04QdHbbnp4=) 4: 326130653a666434353a326630303a3a2f34382d3438203d3e20323132393636.roa (hash: 4rV6D1GFz/bjY4t177ru5i22axDSZLmceosAGjuU6GE=) 5: 34352e3134362e372e302f32342d3332203d3e203439393831.roa (hash: ohztvwe2w66eHUWp00RbU/8ScLc2/rEvRDbabjcZgPU=) 6: 326130653a666434353a326635303a3a2f34382d3634203d3e203439393831.roa (hash: zpE8O6QFgOcjidzEd8zc2djpSlwttC8o8DmDYuakobQ=) 7: 7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl (hash: +B9LdhvOBdzFjM7772ew3+JrjSjoZmes2+3h4J9XNFA=) 8: 326130393a626534303a323830303a3a2f34302d3438203d3e20313939393530.roa (hash: E/KKQIBIvXrHxntg1Xf36BIIDrbcHQG7BGnX7lqe1ts=) 9: 326130653a666434353a326636303a3a2f34382d3438203d3e203532303431.roa (hash: IZkqFVYEgPyyB/+rGAFH6ZTxV7F8e0iFJgsbGpJjRuQ=) 10: 326130653a666434353a326366303a3a2f34382d3438203d3e20323032383535.roa (hash: lpEMU1X1JLSHAOWUFG4frUPhBZsu7LhlBnijuGC43xs=) 11: 326130653a666434353a353030303a3a2f34302d3438203d3e20323034383330.roa (hash: 9ztDCaU6aAMVKVrLFNLTSsl1A84X7CinJDw99b10Wgk=) 12: 326130653a666434353a326535303a3a2f34382d3438203d3e20323135333730.roa (hash: S2x/glwBFQqLmSWyNwtm4qEtJyulbbnFBue99o2JPS8=) 13: 326130653a666434353a326633303a3a2f34382d3438203d3e20323039333130.roa (hash: Ah9wB6P+J6/u6bq6IHZMWUCN9kLwcy3+ovMQjaM+Mjs=) 14: 326130653a666434353a326634303a3a2f34342d3438203d3e20323132353931.roa (hash: m8ac/OmE29DqLuwrvKPJFKpYCamTHx1fmPvpHqRkArI=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 Apr 2026 17:09:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:d9:34:bb:09:bf:dd:92:51:c1:6f:a4:92:3c:86:77:df:b5:92:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985 Validity Not Before: Apr 16 15:10:25 2026 GMT Not After : Apr 17 17:09:25 2026 GMT Subject: CN=A621F0E8DD2125C3AAC861A22E6E968C50D5AD47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:cc:b2:25:cb:68:9d:fd:8c:12:eb:f9:19:84: 65:87:82:9e:99:82:96:10:4c:30:75:12:81:38:d0: df:e7:b4:aa:d8:5a:45:1a:31:1b:72:ab:a4:ea:84: cd:32:c8:78:d3:91:cd:58:70:19:70:66:09:1b:dd: dd:1a:33:ef:bd:ab:2e:b8:67:70:19:02:e0:dc:01: a5:ac:43:73:20:e8:fb:b0:cf:84:f7:a5:89:9c:7b: 5c:0b:9b:02:88:0c:1a:1b:e5:38:8d:7d:f7:7f:3f: fd:b9:c1:e9:08:45:db:f1:b5:f7:82:60:ae:0e:6d: 01:af:32:06:0d:57:70:fa:10:4e:bd:4f:47:cb:81: 99:0e:bd:e6:f4:df:e3:53:94:cd:8c:40:89:dd:42: 97:ff:06:d1:5a:49:08:ba:33:30:f3:19:9c:1b:c5: 47:94:7e:74:60:e8:3e:aa:82:96:71:6d:65:60:31: 3a:5a:fb:f2:e0:6b:61:2e:0e:ab:55:e0:33:f8:31: dd:41:d2:4c:48:9f:b0:ff:35:1b:bd:03:8b:c8:a0: 5d:47:8a:cb:7e:c0:1b:0a:06:c3:2f:25:d9:b0:4a: 19:03:94:48:a6:f0:09:aa:fe:fa:e6:3c:a1:db:bb: 1c:b9:7a:df:f4:73:c6:26:84:0e:2e:c3:7c:ab:7f: 12:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:21:F0:E8:DD:21:25:C3:AA:C8:61:A2:2E:6E:96:8C:50:D5:AD:47 X509v3 Authority Key Identifier: keyid:7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cd:52:36:f5:cc:76:cc:52:f0:4f:6d:04:a1:99:d4:90:a5:b4: b6:ae:80:fb:54:89:2c:b0:f2:93:c6:15:48:2a:77:a4:63:e6: bd:8c:b4:77:08:45:fc:79:d6:83:57:6f:62:03:8b:63:29:49: 7f:16:94:0c:38:ca:32:86:35:a5:e4:a8:85:2c:42:ee:6b:cf: 9e:60:77:d8:33:a2:24:ea:9b:79:74:ed:53:32:74:c2:91:8d: 53:db:e6:b8:53:53:f5:28:bf:75:50:b0:9f:07:4f:ae:6e:41: f9:0c:45:57:94:b7:1b:9a:01:4b:86:67:a1:c5:83:4e:bc:11: 2d:a3:63:54:25:5b:a2:67:bf:0c:69:3a:e7:84:fe:ce:1a:df: 47:18:c0:10:a3:3d:78:b0:23:c1:10:05:ac:05:1f:cc:d9:e0: 64:54:27:9a:cf:ed:cf:89:b1:d3:86:5f:a7:96:07:b2:6c:c8: 01:56:ad:c7:2c:ed:c5:b7:c9:44:b1:b3:e7:16:33:6f:20:2a: 24:5b:3f:f3:4e:d8:fd:25:62:62:84:6d:89:29:4f:89:3c:17: b3:98:4b:16:6d:b2:9f:7c:b9:33:f5:a3:26:be:a7:19:c2:24: 0f:16:41:bc:80:a1:ff:7c:40:4d:df:9d:ba:98:59:7a:5a:23: 1e:a2:52:d4 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUFtk0uwm/3ZJRwW+kkjyGd9+1knAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN2YyMTZmNDlhM2I5YTg0YTBlODVlODBhMmM0Mjg3NGYw OWVhMzk4NTAeFw0yNjA0MTYxNTEwMjVaFw0yNjA0MTcxNzA5MjVaMDMxMTAvBgNV BAMTKEE2MjFGMEU4REQyMTI1QzNBQUM4NjFBMjJFNkU5NjhDNTBENUFENDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMzLIly2id/YwS6/kZhGWHgp6Z gpYQTDB1EoE40N/ntKrYWkUaMRtyq6TqhM0yyHjTkc1YcBlwZgkb3d0aM++9qy64 Z3AZAuDcAaWsQ3Mg6Puwz4T3pYmce1wLmwKIDBob5TiNffd/P/25wekIRdvxtfeC YK4ObQGvMgYNV3D6EE69T0fLgZkOveb03+NTlM2MQIndQpf/BtFaSQi6MzDzGZwb xUeUfnRg6D6qgpZxbWVgMTpa+/Lga2EuDqtV4DP4Md1B0kxIn7D/NRu9A4vIoF1H ist+wBsKBsMvJdmwShkDlEim8Amq/vrmPKHbuxy5et/0c8YmhA4uw3yrfxIJAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUpiHw6N0hJcOqyGGiLm6WjFDVrUcwHwYDVR0j BBgwFoAUfyFvSaO5qEoOhegKLEKHTwnqOYUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmRmYjMwY2EtZTFjMi00OTIxLWIwNTQtZDRhZjA5MTY1 YWYxLzAvN0YyMTZGNDlBM0I5QTg0QTBFODVFODBBMkM0Mjg3NEYwOUVBMzk4NS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Z5RnZTYU81cUVvT2hlZ0tMRUtIVHdu cU9ZVS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZGZiMzBjYS1l MWMyLTQ5MjEtYjA1NC1kNGFmMDkxNjVhZjEvMC83RjIxNkY0OUEzQjlBODRBMEU4 NUU4MEEyQzQyODc0RjA5RUEzOTg1Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzVI29cx2zFLwT20EoZnU kKW0tq6A+1SJLLDyk8YVSCp3pGPmvYy0dwhF/HnWg1dvYgOLYylJfxaUDDjKMoY1 peSohSxC7mvPnmB32DOiJOqbeXTtUzJ0wpGNU9vmuFNT9Si/dVCwnwdPrm5B+QxF V5S3G5oBS4ZnocWDTrwRLaNjVCVbome/DGk654T+zhrfRxjAEKM9eLAjwRAFrAUf zNngZFQnms/tz4mx04Zfp5YHsmzIAVatxyztxbfJRLGz5xYzbyAqJFs/807Y/SVi YoRtiSlPiTwXs5hLFm2yn3y5M/WjJr6nGcIkDxZBvICh/3xATd+duphZelojHqJS 1A== -----END CERTIFICATE-----Generated at Fri Apr 17 09:34:50 2026 by rpki-client