$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft File: 8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft (raw, json) Hash identifier: Jdthnd4awKYQbfcOhUTI6+jTcJ7ul8M8FqfnGlFaNTo= Subject key identifier: AD:4E:56:FE:D9:C4:25:37:5E:E1:ED:45:15:97:54:53:A9:98:E2:2E Authority key identifier: 8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B Certificate issuer: /CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b Certificate serial: 196435036FEB607B042F6DFEBA23033FB84367F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft Manifest number: 021C Signing time: Fri 13 Jun 2025 13:12:48 +0000 Manifest this update: Fri 13 Jun 2025 13:07:48 +0000 Manifest next update: Sat 14 Jun 2025 16:50:48 +0000 Files and hashes: 1: 3138352e3234302e3130342e302f32342d3234203d3e20323130353338.roa (hash: e7DAYp4SHfxn2VHLApclYeubQioRqGakPF4YwyLlJQg=) 2: 3138352e3234302e3130352e302f32342d3234203d3e20323135323837.roa (hash: +0THkzX29inBKKwe48Y2pKEbomX7avoCZF5U6SDswlY=) 3: 39312e3139302e3135372e302f32342d3234203d3e20323130383330.roa (hash: LHHDMQAiPEKdKz+17Sj/aubO3T0fJoOtFfvF63ozlF8=) 4: 34352e39352e38312e302f32342d3234203d3e203239383032.roa (hash: RSLVUL+AislPXW7KHmpbzgP/rzQAkGuHFrgP4qIPD94=) 5: 3231322e3130332e34372e302f32342d3234203d3e203630313137.roa (hash: YdIRouunEJ7v7O6adrWSPqBia6eTO11BexNozDCWbfw=) 6: 8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl (hash: 2MAhNYKVYv4q+uTx5HYn6k0scJVIE7cwDxj89Hn3jYE=) 7: 3138352e3234302e3130372e302f32342d3234203d3e20323135333034.roa (hash: Kgf8wBPJNXdSfK4BtuP3v6qDzrmpjRHzp1OmZMiqMVk=) 8: 3138352e3234302e3130372e302f32342d3234203d3e203336353330.roa (hash: +aP4/yrjDfXMUvY2aoslM1y69SiDmKFLNj/CHXaFL2o=) 9: 3231322e3130332e34352e302f32342d3234203d3e2038303735.roa (hash: fHVIMx8xlYqpN0AXQfWLm0vqOUAEGFXc3sBROHoQyYA=) 10: 34352e39352e38302e302f32342d3234203d3e203136323736.roa (hash: 3x0cRO+g1bZbRHut+QAG7pwDzd80m15dxHMNduCBIhg=) 11: 3231322e3130332e34362e302f32342d3234203d3e203531303832.roa (hash: 2F+hMcxUeRbuMZ154QcBZjgDbx0tCTkT+4d5LpArwfo=) 12: 3139332e32342e3233352e302f32342d3234203d3e203630373831.roa (hash: 3IIPnO8jnB/C9bfC+8H124jFOjjxVU8ltj/gUK5jsA4=) 13: 34352e39352e38322e302f32332d3234203d3e20313734.roa (hash: j5uBx1ZwzePSy8f9EGQJPGu8wElQLvhVLCemoigNpZM=) 14: 3231322e3130332e34342e302f32342d3234203d3e20323133393138.roa (hash: qGJQiTgIvP4Ve1lRuA50bfURyANdu4X5JKcPosVvvQA=) 15: 3138352e3234302e3130362e302f32342d3234203d3e20323134343538.roa (hash: A4xSoaJgKGvgYyxTiRaQc7hyiiMELV+dvyPZYNnypk4=) 16: 3139332e32342e3233342e302f32342d3234203d3e20383334.roa (hash: wDn4WvWEnl0ktIwomfuSX0xxTMgnjS6eS37UfP6tuk8=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 14 Jun 2025 13:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:64:35:03:6f:eb:60:7b:04:2f:6d:fe:ba:23:03:3f:b8:43:67:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b Validity Not Before: Jun 13 13:07:48 2025 GMT Not After : Jun 14 16:50:48 2025 GMT Subject: CN=AD4E56FED9C425375EE1ED4515975453A998E22E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b6:80:86:c6:7b:81:5e:43:cb:9e:8b:54:61: 1e:0b:52:9b:b1:ba:49:01:13:a3:c5:b1:ef:5d:02: 7d:c5:5b:11:07:f4:1f:c8:85:0d:e7:bd:75:d1:cb: c6:91:7b:ea:fa:0f:42:c0:86:5c:d6:c8:5b:65:90: b1:36:c9:59:85:43:04:77:c5:4f:f5:0d:c2:20:39: 08:9a:26:c4:ec:03:8a:78:3a:1b:16:54:95:d9:ab: 98:03:94:7b:1f:82:8a:cc:32:c5:f9:65:b7:09:57: 4f:f8:f4:37:d4:8a:59:1e:29:04:e2:cf:3c:07:0a: 28:9b:e2:76:f3:6b:d3:e7:69:5f:45:53:47:98:03: 81:ef:c6:e2:c4:c4:cc:f5:5b:17:5e:6b:84:28:82: f6:42:a3:07:a0:d5:d9:d6:dd:81:ac:29:5a:90:7d: 6d:cd:a8:d7:76:80:a3:9d:b9:de:26:db:7b:5e:63: b3:f3:a7:9d:b3:a8:2a:09:94:ba:70:9e:5e:60:76: dd:8a:c9:62:49:8d:ef:15:2a:27:b4:23:30:93:89: 1b:4d:b9:48:f2:80:bd:a0:fa:62:0b:23:62:39:a9: ed:cc:05:ad:2e:6b:5f:23:e0:78:d1:57:b9:1f:f6: 2a:9c:a7:3d:58:d8:3e:7f:23:83:54:0d:4a:ac:e2: 32:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:4E:56:FE:D9:C4:25:37:5E:E1:ED:45:15:97:54:53:A9:98:E2:2E X509v3 Authority Key Identifier: keyid:8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:89:01:d1:e4:80:29:5b:b0:dd:ec:4e:1f:c3:86:4a:73:8f: 50:0c:ae:c9:15:2b:7b:36:b3:8b:25:35:2b:e3:05:2b:1c:61: 94:7d:e2:05:89:11:66:19:23:d7:22:59:7f:43:86:cf:8a:93: d3:1f:c7:07:8e:38:1e:d0:b4:61:8b:b8:b0:40:31:ec:a3:29: b7:90:a5:da:78:dd:a1:93:b4:36:4b:7d:b4:a8:15:ea:0d:29: de:d5:90:76:24:7b:6b:0f:5c:86:6e:18:f4:4f:e8:34:1b:ce: 89:15:5e:1c:07:61:73:a9:17:16:8c:10:29:75:f2:54:3f:92: f1:ee:c3:d5:af:37:f5:45:7d:dd:e2:0d:75:c5:cb:bc:12:a8: d6:d1:8f:fb:29:11:91:ef:ea:73:0b:0d:fa:e3:e0:21:15:ec: 08:1a:54:74:40:1a:16:ee:62:a6:a3:be:33:de:47:d8:c7:bd: 43:cc:06:24:3a:9c:09:86:43:cb:68:2d:3f:f6:b0:6c:3d:06: 99:57:fb:bc:78:21:20:75:46:d9:d7:64:a7:7a:87:c0:d6:5e: 1a:b7:88:77:8b:99:8a:10:b4:ed:f0:5a:d3:ae:ae:18:67:9f: f2:1a:ca:5c:ab:a4:5b:a8:a8:27:3e:7f:fa:70:b7:02:ae:37: fe:0c:67:08 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUGWQ1A2/rYHsEL23+uiMDP7hDZ/UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGMxMmI0MjczODMyYjQxNTZmZTAwOTJmNmFlN2U1YjNj ZTIzYWQ4YjAeFw0yNTA2MTMxMzA3NDhaFw0yNTA2MTQxNjUwNDhaMDMxMTAvBgNV BAMTKEFENEU1NkZFRDlDNDI1Mzc1RUUxRUQ0NTE1OTc1NDUzQTk5OEUyMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVtoCGxnuBXkPLnotUYR4LUpux ukkBE6PFse9dAn3FWxEH9B/IhQ3nvXXRy8aRe+r6D0LAhlzWyFtlkLE2yVmFQwR3 xU/1DcIgOQiaJsTsA4p4OhsWVJXZq5gDlHsfgorMMsX5ZbcJV0/49DfUilkeKQTi zzwHCiib4nbza9PnaV9FU0eYA4HvxuLExMz1Wxdea4QogvZCoweg1dnW3YGsKVqQ fW3NqNd2gKOdud4m23teY7Pzp52zqCoJlLpwnl5gdt2KyWJJje8VKie0IzCTiRtN uUjygL2g+mILI2I5qe3MBa0ua18j4HjRV7kf9iqcpz1Y2D5/I4NUDUqs4jKfAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUrU5W/tnEJTde4e1FFZdUU6mY4i4wHwYDVR0j BBgwFoAUjBK0JzgytBVv4Akvaufls84jrYswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOGJmZDY4ODItZDZiMy00YWE4LWJjMGEtNzExZDY4YmQx OThiLzAvOEMxMkI0MjczODMyQjQxNTZGRTAwOTJGNkFFN0U1QjNDRTIzQUQ4Qi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2pCSzBKemd5dEJWdjRBa3ZhdWZsczg0 anJZcy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84YmZkNjg4Mi1k NmIzLTRhYTgtYmMwYS03MTFkNjhiZDE5OGIvMC84QzEyQjQyNzM4MzJCNDE1NkZF MDA5MkY2QUU3RTVCM0NFMjNBRDhCLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHIkB0eSAKVuw3exOH8OG SnOPUAyuyRUrezaziyU1K+MFKxxhlH3iBYkRZhkj1yJZf0OGz4qT0x/HB444HtC0 YYu4sEAx7KMpt5Cl2njdoZO0Nkt9tKgV6g0p3tWQdiR7aw9chm4Y9E/oNBvOiRVe HAdhc6kXFowQKXXyVD+S8e7D1a839UV93eINdcXLvBKo1tGP+ykRke/qcwsN+uPg IRXsCBpUdEAaFu5ipqO+M95H2Me9Q8wGJDqcCYZDy2gtP/awbD0GmVf7vHghIHVG 2ddkp3qHwNZeGreId4uZihC07fBa066uGGef8hrKXKukW6ioJz5/+nC3Aq43/gxn CA== -----END CERTIFICATE-----Generated at Fri Jun 13 19:10:48 2025 by rpki-client