$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.mft File: 0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.mft (raw, json) Hash identifier: Lb8n5WFgHd+VWc8oJao53A8oJZrTceVdzIM1hTzAd3o= Subject key identifier: 21:A2:61:F4:32:47:BE:A7:2E:FD:2C:75:51:9E:4C:74:C9:87:98:5A Authority key identifier: 08:74:80:11:64:DC:95:F0:AB:9C:CD:4B:D3:04:A3:EF:78:E9:F3:9B Certificate issuer: /CN=0874801164DC95F0AB9CCD4BD304A3EF78E9F39B Certificate serial: 4A7C56A2FD048C35A6506E25E9478EC83F781BE6 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.mft Manifest number: 013A Signing time: Sun 01 Mar 2026 23:48:10 +0000 Manifest this update: Sun 01 Mar 2026 23:43:10 +0000 Manifest next update: Tue 03 Mar 2026 03:26:10 +0000 Files and hashes: 1: 326131343a373538313a383030303a3a2f33362d3430203d3e203530333835.roa (hash: Em5jZEM0Z1oJ1UofjCQGnCq9Pql9aI7sK4Y5UkTysUg=) 2: 0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.crl (hash: Z0cE/eggifmbIdbWzbl0jxPBrR6BfC/ay5+A7MzQYqA=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.crl rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Mar 2026 03:26:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:7c:56:a2:fd:04:8c:35:a6:50:6e:25:e9:47:8e:c8:3f:78:1b:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0874801164DC95F0AB9CCD4BD304A3EF78E9F39B Validity Not Before: Mar 1 23:43:10 2026 GMT Not After : Mar 3 03:26:10 2026 GMT Subject: CN=21A261F43247BEA72EFD2C75519E4C74C987985A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:78:87:dd:50:43:0e:e1:6b:e0:36:eb:0b:84: 8e:e0:84:d4:a2:57:a8:20:83:8b:76:43:7e:96:72: 74:bd:83:37:c4:c5:ea:d1:98:d7:dc:0d:90:14:79: 78:6d:17:bf:55:bc:1b:c0:e7:b8:50:bd:dd:ca:ab: 9c:a7:94:74:21:a9:89:4b:e2:b2:6a:d7:d2:54:1c: a5:48:85:a5:c3:aa:34:cd:26:cd:a7:3e:6d:05:54: 2b:ac:01:01:5a:bd:43:64:23:a5:35:7a:4c:9b:7e: e7:84:90:dc:14:5d:d5:42:50:f5:86:a2:a0:cb:33: bd:87:bb:22:bd:93:88:22:e7:dd:b6:65:d1:be:42: 2e:06:d5:55:b2:70:39:61:94:ec:ac:b5:ca:8e:68: e1:d7:8a:37:80:3e:39:b4:03:84:2a:a0:eb:66:b6: e6:a7:c1:8c:ce:9b:fe:d9:49:04:23:ca:54:23:f6: 74:c8:d1:d6:b7:c0:8a:66:27:e7:19:88:58:cb:2e: 16:79:ff:e8:fb:57:18:61:a8:90:61:6b:f5:a9:e4: 1a:fe:7d:b1:00:e3:52:6e:a6:ad:3b:a1:46:61:62: 56:51:3d:85:4d:7f:fd:27:42:e7:8b:2a:1a:25:05: b1:48:18:c7:14:af:3a:d4:ce:21:d4:3b:d7:4d:79: 81:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:A2:61:F4:32:47:BE:A7:2E:FD:2C:75:51:9E:4C:74:C9:87:98:5A X509v3 Authority Key Identifier: keyid:08:74:80:11:64:DC:95:F0:AB:9C:CD:4B:D3:04:A3:EF:78:E9:F3:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:28:81:4f:78:88:91:1d:a3:89:a0:73:a9:c9:65:16:3f:34: d7:16:8c:6d:46:1e:7c:30:a2:ab:5d:7f:1a:ee:78:f0:2b:92: 78:a2:09:69:59:ca:42:c7:68:91:15:2e:b3:e3:56:63:f8:e9: 59:0a:33:39:6d:7c:12:20:5d:84:a5:5e:4f:8c:a5:fd:0a:01: 06:29:7a:20:c5:4c:60:d4:95:d1:74:4a:31:15:55:ce:96:c6: 31:c5:0c:a4:99:30:d2:5a:23:4a:5d:47:37:12:db:25:5a:90: 0d:ac:cf:2a:bc:9a:00:2e:a7:f7:d6:53:1c:7a:30:3f:80:fe: ce:21:60:c8:bf:fc:7e:ee:7d:b1:c0:5a:33:ba:7e:53:10:ac: fc:cb:60:19:35:c1:b0:59:7c:a7:4e:84:b5:8c:8a:cc:db:50: 54:a5:e2:23:90:ee:4a:c6:dc:eb:f9:b8:6a:64:d4:8c:ac:f0: 50:ab:db:ef:fe:8d:7e:f5:c3:77:36:01:da:6b:17:0a:5e:33: cb:87:89:32:2b:e8:13:72:37:2d:9f:73:45:10:89:8c:f9:cf: 0a:29:a1:ab:0b:8e:8e:77:a0:02:03:f9:73:08:cf:e0:a3:cd: b9:3e:bf:a0:a6:09:5c:18:eb:9e:b9:7d:cb:34:3f:64:1d:62: 54:b9:6c:77 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUSnxWov0EjDWmUG4l6UeOyD94G+YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg3NDgwMTE2NERDOTVGMEFCOUNDRDRCRDMwNEEzRUY3 OEU5RjM5QjAeFw0yNjAzMDEyMzQzMTBaFw0yNjAzMDMwMzI2MTBaMDMxMTAvBgNV BAMTKDIxQTI2MUY0MzI0N0JFQTcyRUZEMkM3NTUxOUU0Qzc0Qzk4Nzk4NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjeIfdUEMO4WvgNusLhI7ghNSi V6ggg4t2Q36WcnS9gzfExerRmNfcDZAUeXhtF79VvBvA57hQvd3Kq5ynlHQhqYlL 4rJq19JUHKVIhaXDqjTNJs2nPm0FVCusAQFavUNkI6U1ekybfueEkNwUXdVCUPWG oqDLM72HuyK9k4gi5922ZdG+Qi4G1VWycDlhlOystcqOaOHXijeAPjm0A4QqoOtm tuanwYzOm/7ZSQQjylQj9nTI0da3wIpmJ+cZiFjLLhZ5/+j7VxhhqJBha/Wp5Br+ fbEA41Jupq07oUZhYlZRPYVNf/0nQueLKholBbFIGMcUrzrUziHUO9dNeYGtAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUIaJh9DJHvqcu/Sx1UZ5MdMmHmFowHwYDVR0j BBgwFoAUCHSAEWTclfCrnM1L0wSj73jp85swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvM2M4ZTRlMTEtM2FjYS00MzA1LWFjZDQtZjA1ZTZjOTA5 MTE1LzEvMDg3NDgwMTE2NERDOTVGMEFCOUNDRDRCRDMwNEEzRUY3OEU5RjM5Qi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8wODc0ODAxMTY0REM5NUYwQUI5Q0NENEJE MzA0QTNFRjc4RTlGMzlCLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzNjOGU0ZTExLTNhY2EtNDMwNS1hY2Q0LWYwNWU2YzkwOTExNS8xLzA4NzQ4MDEx NjREQzk1RjBBQjlDQ0Q0QkQzMDRBM0VGNzhFOUYzOUIubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAyKIFP eIiRHaOJoHOpyWUWPzTXFoxtRh58MKKrXX8a7njwK5J4oglpWcpCx2iRFS6z41Zj +OlZCjM5bXwSIF2EpV5PjKX9CgEGKXogxUxg1JXRdEoxFVXOlsYxxQykmTDSWiNK XUc3EtslWpANrM8qvJoALqf31lMcejA/gP7OIWDIv/x+7n2xwFozun5TEKz8y2AZ NcGwWXynToS1jIrM21BUpeIjkO5Kxtzr+bhqZNSMrPBQq9vv/o1+9cN3NgHaaxcK XjPLh4kyK+gTcjctn3NFEImM+c8KKaGrC46Od6ACA/lzCM/go825Pr+gpglcGOue uX3LND9kHWJUuWx3 -----END CERTIFICATE-----Generated at Mon Mar 2 17:26:39 2026 by rpki-client