$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2ed4b7eb-17a7-44e1-9ca2-098a32383c90/1/34DEF610B33BA719BA344A660C4BDA8333112372.mft File: 34DEF610B33BA719BA344A660C4BDA8333112372.mft (raw, json) Hash identifier: U81rpYxvmbKzsAcpgm+hq9QxeA1881iYDhY+igqvH04= Subject key identifier: 0E:13:67:D3:4C:CE:6F:3B:63:93:1F:10:74:D9:CA:0C:0B:54:DC:D3 Authority key identifier: 34:DE:F6:10:B3:3B:A7:19:BA:34:4A:66:0C:4B:DA:83:33:11:23:72 Certificate issuer: /CN=34DEF610B33BA719BA344A660C4BDA8333112372 Certificate serial: 3C6145FC77F73E41C007419AA80A7EC08D4665B7 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/34DEF610B33BA719BA344A660C4BDA8333112372.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2ed4b7eb-17a7-44e1-9ca2-098a32383c90/1/34DEF610B33BA719BA344A660C4BDA8333112372.mft Manifest number: 53 Signing time: Sun 01 Mar 2026 13:39:30 +0000 Manifest this update: Sun 01 Mar 2026 13:34:30 +0000 Manifest next update: Mon 02 Mar 2026 17:01:30 +0000 Files and hashes: 1: 326131343a373538363a393161303a3a2f34342d3438203d3e20323134323233.roa (hash: czMZ6yHzk1H5R4x8pCiKnN7yebua0d7E2WPcIPaQbQU=) 2: 34DEF610B33BA719BA344A660C4BDA8333112372.crl (hash: HZaAyrWtiKDy9jvMVZRKmhGDBvY2aeqBR/photdIU44=) 3: 326131343a373538363a393030303a3a2f34302d3438203d3e20323134323233.roa (hash: sK/28IbuKKKyA7SCTgY03EIdfGQ4xy21thbu3jiR9Kc=) 4: 326131343a373538363a393162303a3a2f34342d3438203d3e20323134323233.roa (hash: ZO9VHs/jdkk6zzSYMSYZUdvcDq76KLDhmDYi/qPc0gQ=) 5: 326131343a373538313a396631303a3a2f34342d3438203d3e20323134323233.roa (hash: /757R/290q7lxAjREfkIn9O/IfjmifWYIYI5Pedt0xY=) 6: 326131343a373538363a393030303a3a2f33362d3438203d3e20323134323233.roa (hash: iA4p3IYifVrgGD3/GcCBblPOiSEiC+VZIiOYTHmZ3ew=) 7: 326131343a373538363a373030303a3a2f33362d3438203d3e20323134323233.roa (hash: pCJnPNsZB30IXmBLO9EkDOhxW1xXJNPlCqoAbVJT2Wc=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2ed4b7eb-17a7-44e1-9ca2-098a32383c90/1/34DEF610B33BA719BA344A660C4BDA8333112372.crl rsync://rsync.paas.rpki.ripe.net/repository/2ed4b7eb-17a7-44e1-9ca2-098a32383c90/1/34DEF610B33BA719BA344A660C4BDA8333112372.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/34DEF610B33BA719BA344A660C4BDA8333112372.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 09:38:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:61:45:fc:77:f7:3e:41:c0:07:41:9a:a8:0a:7e:c0:8d:46:65:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DEF610B33BA719BA344A660C4BDA8333112372 Validity Not Before: Mar 1 13:34:30 2026 GMT Not After : Mar 2 17:01:30 2026 GMT Subject: CN=0E1367D34CCE6F3B63931F1074D9CA0C0B54DCD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:11:87:04:cc:6b:55:6a:94:35:e8:39:ef:ba: 10:fb:f1:ef:23:12:ff:ae:0e:50:09:d7:5e:cc:8d: 68:9d:eb:d5:f4:67:f3:48:8c:9b:55:d7:17:5e:68: 5b:35:b7:0a:9f:c0:93:a9:9a:1a:28:ef:8e:8b:42: 43:44:fa:0b:30:68:cc:5a:30:60:05:60:e7:2c:30: 63:22:a8:c2:ea:3d:32:bc:a3:2a:62:e1:05:26:20: 43:c4:44:56:3e:55:c9:9b:9e:14:a8:61:92:ac:82: 7f:6b:95:44:ed:be:ab:7c:3d:3c:ba:6b:0b:cd:01: 8b:24:67:86:87:98:bc:95:79:c9:15:d3:95:26:dd: aa:c7:6e:b5:75:15:80:87:8a:02:10:df:61:1b:5f: 12:7f:c3:2a:a8:34:d7:56:99:37:e4:77:22:bc:f5: 06:db:25:f7:f6:d9:f0:f5:53:db:8d:65:7b:c9:54: 11:56:5a:fb:85:5a:88:41:0c:d0:4c:2f:0b:3c:73: 24:7b:ab:08:14:1f:9e:f5:85:a2:67:4d:c9:02:4e: d9:36:96:ca:74:a8:f7:63:38:96:9f:eb:f9:0f:79: a7:ac:dd:5b:36:88:b4:49:bd:21:fb:ce:08:83:fe: 3a:23:d3:5f:85:98:db:26:8e:39:b8:a0:5d:02:e9: 7c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:13:67:D3:4C:CE:6F:3B:63:93:1F:10:74:D9:CA:0C:0B:54:DC:D3 X509v3 Authority Key Identifier: keyid:34:DE:F6:10:B3:3B:A7:19:BA:34:4A:66:0C:4B:DA:83:33:11:23:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2ed4b7eb-17a7-44e1-9ca2-098a32383c90/1/34DEF610B33BA719BA344A660C4BDA8333112372.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/34DEF610B33BA719BA344A660C4BDA8333112372.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2ed4b7eb-17a7-44e1-9ca2-098a32383c90/1/34DEF610B33BA719BA344A660C4BDA8333112372.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:72:9b:ec:ca:ae:2c:eb:19:86:6c:f3:3a:fc:0d:fd:ff:a3: b9:96:9b:a1:74:45:20:80:07:6c:68:67:4d:40:0d:ef:7b:3b: 82:e3:91:6d:dc:00:da:90:f2:f9:de:df:65:1c:dd:3f:59:46: 8e:7c:d9:dd:18:1d:a2:f3:02:62:1d:0f:cf:32:79:73:8d:8b: f8:6b:40:55:a7:85:53:92:ae:80:f7:3f:91:f1:2f:61:e3:d4: f8:66:9f:87:28:f9:94:93:0c:94:e9:97:7d:34:42:fe:80:00: 25:27:f8:ef:6c:59:c2:29:76:5f:bd:d9:e3:5a:84:39:90:22: be:f3:12:2e:ae:a3:21:92:0e:5c:fc:68:2b:8d:4e:39:d1:58: 98:5a:31:94:14:6a:1f:2e:2c:86:d1:1f:98:09:2f:cd:af:14: d3:fd:69:8a:45:fd:5c:de:ca:ff:4f:a2:ac:f9:e0:dd:76:b1: 62:7e:7e:79:f7:77:1c:34:66:34:9d:7d:1c:5f:76:cd:ec:58: 0d:7c:8b:88:3a:0b:e8:d9:bc:0f:65:0e:94:09:be:da:51:72: 57:33:21:f1:bf:e5:9c:ab:91:c3:a9:5d:91:54:c1:7d:b2:f0: 65:47:a0:1d:38:39:90:6e:f0:81:d9:fa:98:f4:d1:3b:5f:aa: 7f:2b:76:e8 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUPGFF/Hf3PkHAB0GaqAp+wI1GZbcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzRERUY2MTBCMzNCQTcxOUJBMzQ0QTY2MEM0QkRBODMz MzExMjM3MjAeFw0yNjAzMDExMzM0MzBaFw0yNjAzMDIxNzAxMzBaMDMxMTAvBgNV BAMTKDBFMTM2N0QzNENDRTZGM0I2MzkzMUYxMDc0RDlDQTBDMEI1NERDRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLEYcEzGtVapQ16DnvuhD78e8j Ev+uDlAJ117MjWid69X0Z/NIjJtV1xdeaFs1twqfwJOpmhoo746LQkNE+gswaMxa MGAFYOcsMGMiqMLqPTK8oypi4QUmIEPERFY+VcmbnhSoYZKsgn9rlUTtvqt8PTy6 awvNAYskZ4aHmLyVeckV05Um3arHbrV1FYCHigIQ32EbXxJ/wyqoNNdWmTfkdyK8 9QbbJff22fD1U9uNZXvJVBFWWvuFWohBDNBMLws8cyR7qwgUH571haJnTckCTtk2 lsp0qPdjOJaf6/kPeaes3Vs2iLRJvSH7zgiD/joj01+FmNsmjjm4oF0C6XxLAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUDhNn00zObztjkx8QdNnKDAtU3NMwHwYDVR0j BBgwFoAUNN72ELM7pxm6NEpmDEvagzMRI3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmVkNGI3ZWItMTdhNy00NGUxLTljYTItMDk4YTMyMzgz YzkwLzEvMzRERUY2MTBCMzNCQTcxOUJBMzQ0QTY2MEM0QkRBODMzMzExMjM3Mi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zNERFRjYxMEIzM0JBNzE5QkEzNDRBNjYw QzRCREE4MzMzMTEyMzcyLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzJlZDRiN2ViLTE3YTctNDRlMS05Y2EyLTA5OGEzMjM4M2M5MC8xLzM0REVGNjEw QjMzQkE3MTlCQTM0NEE2NjBDNEJEQTgzMzMxMTIzNzIubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQB8cpvs yq4s6xmGbPM6/A39/6O5lpuhdEUggAdsaGdNQA3vezuC45Ft3ADakPL53t9lHN0/ WUaOfNndGB2i8wJiHQ/PMnlzjYv4a0BVp4VTkq6A9z+R8S9h49T4Zp+HKPmUkwyU 6Zd9NEL+gAAlJ/jvbFnCKXZfvdnjWoQ5kCK+8xIurqMhkg5c/GgrjU450ViYWjGU FGofLiyG0R+YCS/NrxTT/WmKRf1c3sr/T6Ks+eDddrFifn5593ccNGY0nX0cX3bN 7FgNfIuIOgvo2bwPZQ6UCb7aUXJXMyHxv+Wcq5HDqV2RVMF9svBlR6AdODmQbvCB 2fqY9NE7X6p/K3bo -----END CERTIFICATE-----Generated at Sun Mar 1 20:12:30 2026 by rpki-client