$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft File: 7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft (raw, json) Hash identifier: r0CS/nUvCKHC7Z1PmZu6/IKHpTEtuIVGbJFJYZChO7o= Subject key identifier: 82:C3:53:4E:96:84:6D:5B:09:59:11:19:5B:40:20:B0:F2:A1:06:1C Authority key identifier: 7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85 Certificate issuer: /CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985 Certificate serial: 79CF912E0A5D4355CB44E632E09065442D8C5D4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft Manifest number: 8B Signing time: Mon 16 Jun 2025 08:24:15 +0000 Manifest this update: Mon 16 Jun 2025 08:19:15 +0000 Manifest next update: Tue 17 Jun 2025 08:48:15 +0000 Files and hashes: 1: 326130653a666434353a326366303a3a2f34382d3438203d3e20323032383535.roa (hash: lpEMU1X1JLSHAOWUFG4frUPhBZsu7LhlBnijuGC43xs=) 2: 326130393a626534303a323830303a3a2f34302d3438203d3e20323133313730.roa (hash: bGsR+5RlWB67shIeVpz1QNwpCAPKyIXgoOV7T0RQXx8=) 3: 326130653a666434353a326630303a3a2f34382d3438203d3e20323132393636.roa (hash: fCahoT0DASmE4L0CnNku4FHnUTfBEMsJKaoRBnEvKJY=) 4: 7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl (hash: oqPy9He0Mi6nTbJgWk5mfwCBxORr0jXJu9qRmf+W7F4=) 5: 326130393a626534303a323830303a3a2f34302d3438203d3e20313939393530.roa (hash: AiP13DNBwIkSFzdQdSir0FYGd4okcKOcyfxhs/nt0mM=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 17 Jun 2025 08:48:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:cf:91:2e:0a:5d:43:55:cb:44:e6:32:e0:90:65:44:2d:8c:5d:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985 Validity Not Before: Jun 16 08:19:15 2025 GMT Not After : Jun 17 08:48:15 2025 GMT Subject: CN=82C3534E96846D5B095911195B4020B0F2A1061C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c2:f3:72:55:c9:57:ac:1a:7f:2c:9b:e3:a7: e6:0b:38:e5:ea:3e:f6:6d:45:6e:cf:89:87:ba:81: 5d:68:c2:d8:f5:0b:c7:24:3d:0a:38:87:24:82:17: be:aa:08:a6:a3:90:66:f7:c3:5c:32:2d:b8:70:26: 8b:7b:f7:91:2c:6d:1d:a5:00:6c:ac:93:de:4c:4b: ba:d6:a1:d9:ba:9c:83:33:f8:42:08:a3:74:cc:bb: e6:03:9b:f4:25:f5:7c:48:f0:6b:7c:0c:51:96:32: f7:2c:a6:49:3a:8f:c9:5b:00:75:12:36:df:56:2f: a7:45:de:f9:61:fd:c8:17:53:b0:4b:e0:e9:78:69: 8f:6d:a6:3f:38:20:0f:d8:ba:26:2f:fe:d5:f5:53: a7:fc:6b:dc:dd:f5:a4:97:b9:72:d1:5b:1a:e6:a9: 41:09:d6:6d:c6:3d:dc:23:72:d2:d4:c0:99:1c:69: e6:6b:7c:4b:74:75:3c:33:19:db:0d:2e:2d:57:77: 80:40:11:e0:ef:b3:4c:b9:66:ba:d9:ba:f1:0e:d6: 4b:b1:6d:62:34:83:98:56:d8:12:cf:16:d8:33:75: 14:6a:3e:7a:02:39:4f:f9:e8:cd:0e:c5:f7:e0:17: 01:81:3c:b6:8f:49:41:04:fc:e3:5f:a4:cb:10:33: c9:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:C3:53:4E:96:84:6D:5B:09:59:11:19:5B:40:20:B0:F2:A1:06:1C X509v3 Authority Key Identifier: keyid:7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:5c:89:77:5a:bb:81:99:54:bd:59:e4:d2:24:86:f8:ca:28: a1:75:53:f2:57:ca:54:a6:23:68:55:48:42:d9:2a:59:8e:da: 2d:69:a8:63:ec:30:32:f4:b7:d0:14:88:4b:13:31:82:a4:d3: 8b:5b:fa:04:e4:1f:d2:c2:f5:f3:3a:89:53:94:b3:05:2d:d5: 28:ec:71:6e:d4:78:11:fa:0c:b9:68:e2:d8:58:4d:f9:1b:9e: bd:8a:e8:6b:b6:d2:e2:b2:b2:e5:25:cd:1e:f8:bf:54:d7:cc: 69:ae:1e:3b:94:de:c3:1d:6f:94:95:b9:ea:a1:cf:1b:93:3a: a8:a7:e3:2b:8e:3b:97:d7:83:ac:90:f7:ca:15:60:08:fe:11: 03:f7:c1:23:15:0c:3e:72:e9:c7:6b:a5:a5:57:45:2c:a6:ce: 93:93:97:14:19:d3:b7:85:05:55:65:8b:47:99:a1:dd:ea:3f: c0:84:14:91:79:ce:65:c3:bf:60:5f:3d:10:a5:ee:c8:32:48: 48:1a:05:87:16:4d:fc:10:9f:65:de:9d:44:eb:1b:5e:c5:14: 5e:24:e8:03:e6:3b:03:51:ce:56:88:dd:fa:82:59:3c:cb:9c: 4d:2d:47:cf:f2:85:63:5c:b3:fb:21:25:e9:ca:15:a8:2b:af: 39:2c:68:af -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUec+RLgpdQ1XLROYy4JBlRC2MXUowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN2YyMTZmNDlhM2I5YTg0YTBlODVlODBhMmM0Mjg3NGYw OWVhMzk4NTAeFw0yNTA2MTYwODE5MTVaFw0yNTA2MTcwODQ4MTVaMDMxMTAvBgNV BAMTKDgyQzM1MzRFOTY4NDZENUIwOTU5MTExOTVCNDAyMEIwRjJBMTA2MUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQwvNyVclXrBp/LJvjp+YLOOXq PvZtRW7PiYe6gV1owtj1C8ckPQo4hySCF76qCKajkGb3w1wyLbhwJot795EsbR2l AGysk95MS7rWodm6nIMz+EIIo3TMu+YDm/Ql9XxI8Gt8DFGWMvcspkk6j8lbAHUS Nt9WL6dF3vlh/cgXU7BL4Ol4aY9tpj84IA/YuiYv/tX1U6f8a9zd9aSXuXLRWxrm qUEJ1m3GPdwjctLUwJkcaeZrfEt0dTwzGdsNLi1Xd4BAEeDvs0y5ZrrZuvEO1kux bWI0g5hW2BLPFtgzdRRqPnoCOU/56M0OxffgFwGBPLaPSUEE/ONfpMsQM8mjAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUgsNTTpaEbVsJWREZW0AgsPKhBhwwHwYDVR0j BBgwFoAUfyFvSaO5qEoOhegKLEKHTwnqOYUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmRmYjMwY2EtZTFjMi00OTIxLWIwNTQtZDRhZjA5MTY1 YWYxLzAvN0YyMTZGNDlBM0I5QTg0QTBFODVFODBBMkM0Mjg3NEYwOUVBMzk4NS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Z5RnZTYU81cUVvT2hlZ0tMRUtIVHdu cU9ZVS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZGZiMzBjYS1l MWMyLTQ5MjEtYjA1NC1kNGFmMDkxNjVhZjEvMC83RjIxNkY0OUEzQjlBODRBMEU4 NUU4MEEyQzQyODc0RjA5RUEzOTg1Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXlyJd1q7gZlUvVnk0iSG +MoooXVT8lfKVKYjaFVIQtkqWY7aLWmoY+wwMvS30BSISxMxgqTTi1v6BOQf0sL1 8zqJU5SzBS3VKOxxbtR4EfoMuWji2FhN+RuevYroa7bS4rKy5SXNHvi/VNfMaa4e O5Tewx1vlJW56qHPG5M6qKfjK447l9eDrJD3yhVgCP4RA/fBIxUMPnLpx2ulpVdF LKbOk5OXFBnTt4UFVWWLR5mh3eo/wIQUkXnOZcO/YF89EKXuyDJISBoFhxZN/BCf Zd6dROsbXsUUXiToA+Y7A1HOVojd+oJZPMucTS1Hz/KFY1yz+yEl6coVqCuvOSxo rw== -----END CERTIFICATE-----Generated at Tue Jun 17 01:24:32 2025 by rpki-client