$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft File: 8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft (raw, json) Hash identifier: g+cDBEjSavxr3263qn/AOpuhpmbLxJnAjSsQYJatx04= Subject key identifier: D7:16:5E:BC:6C:71:5B:AD:BC:69:3C:2F:71:01:D7:E3:C8:C8:18:97 Authority key identifier: 8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B Certificate issuer: /CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b Certificate serial: 70B2ABA6F01685DD07658ADEE90F2D95871659B6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft Manifest number: 0269 Signing time: Mon 04 Aug 2025 00:00:39 +0000 Manifest this update: Sun 03 Aug 2025 23:55:39 +0000 Manifest next update: Tue 05 Aug 2025 03:32:39 +0000 Files and hashes: 1: 3231322e3130332e34342e302f32342d3234203d3e20323133393138.roa (hash: qGJQiTgIvP4Ve1lRuA50bfURyANdu4X5JKcPosVvvQA=) 2: 3231322e3130332e34352e302f32342d3234203d3e2038303735.roa (hash: fHVIMx8xlYqpN0AXQfWLm0vqOUAEGFXc3sBROHoQyYA=) 3: 3231322e3130332e34362e302f32342d3234203d3e203531303832.roa (hash: 2F+hMcxUeRbuMZ154QcBZjgDbx0tCTkT+4d5LpArwfo=) 4: 3139332e32342e3233342e302f32342d3234203d3e20383334.roa (hash: wDn4WvWEnl0ktIwomfuSX0xxTMgnjS6eS37UfP6tuk8=) 5: 39312e3139302e3135372e302f32342d3234203d3e20323130383330.roa (hash: uxCs+vRLf89Iqe2Vg3VmQVaqgZcbd6t3ZZRDH3hDvaY=) 6: 3139332e32342e3233352e302f32342d3234203d3e203630373831.roa (hash: 3IIPnO8jnB/C9bfC+8H124jFOjjxVU8ltj/gUK5jsA4=) 7: 3231322e3130332e34372e302f32342d3234203d3e203630313137.roa (hash: YdIRouunEJ7v7O6adrWSPqBia6eTO11BexNozDCWbfw=) 8: 3138352e3234302e3130342e302f32342d3234203d3e20323130353338.roa (hash: T9Q1VqRTWLWUsHiQ8nGpX/B35ktvbCl8rYqsuD5dV38=) 9: 3138352e3234302e3130362e302f32342d3234203d3e20323134343538.roa (hash: 1BInd1OedKcqXcFEvGswCnCL2u3VREZrv7xXz/oRjOg=) 10: 3231322e3130332e34342e302f32342d3234203d3e20323131343834.roa (hash: JBx8ym7JHWLmUGZKmy6bIQw3WR5rhPzAi99IbVvWGag=) 11: 34352e39352e38322e302f32332d3234203d3e20313734.roa (hash: j5uBx1ZwzePSy8f9EGQJPGu8wElQLvhVLCemoigNpZM=) 12: 3138352e3234302e3130372e302f32342d3234203d3e203230343733.roa (hash: JMPMOpLF1bcIvbG82aj+pie4xIbRE8z3aJEr+Ha5GDQ=) 13: 34352e39352e38302e302f32342d3234203d3e203136323736.roa (hash: 3x0cRO+g1bZbRHut+QAG7pwDzd80m15dxHMNduCBIhg=) 14: 3138352e3234302e3130352e302f32342d3234203d3e203431353634.roa (hash: TlWGN33+lROz/SyNNq5fptfqzBonbreTLNbM3qDOA4Q=) 15: 8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl (hash: TK6B7DuHhwGE4wVhDaPyvgr7qc5lozqNIJNdlXLR8Y0=) 16: 34352e39352e38312e302f32342d3234203d3e20383334.roa (hash: CfCdj5k+Lj5zHQCoFXqC9dWCvLUmgOEX9Bq56Zw8pDc=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 05 Aug 2025 03:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:b2:ab:a6:f0:16:85:dd:07:65:8a:de:e9:0f:2d:95:87:16:59:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8c12b4273832b4156fe0092f6ae7e5b3ce23ad8b Validity Not Before: Aug 3 23:55:39 2025 GMT Not After : Aug 5 03:32:39 2025 GMT Subject: CN=D7165EBC6C715BADBC693C2F7101D7E3C8C81897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:63:d5:e0:de:39:51:d5:fe:0f:4a:17:02:83: 42:0d:7d:8c:2f:29:54:3c:d1:77:0e:3e:ab:1b:93: 31:6e:dd:62:72:05:77:0e:4e:c8:2c:82:cc:b4:3a: 38:e2:e3:dd:20:5b:9b:aa:40:41:83:01:1c:e3:67: b9:91:77:b0:d9:4c:35:60:9d:2d:dc:57:90:96:87: d4:1a:5d:4b:9e:1b:32:af:b5:a4:26:a3:bd:eb:cf: 14:3f:6b:b7:d9:f1:a5:51:f0:e8:a2:c0:49:5b:71: a0:96:b3:b1:02:07:22:3e:da:d2:4a:e0:40:58:44: 1b:d6:93:d5:b8:5a:2e:84:e9:ab:3b:89:ef:5f:bd: 80:26:c3:a5:c1:ef:ec:43:e8:cd:b9:fc:82:4b:a7: 69:77:99:4e:72:db:2b:80:5f:58:5a:57:da:6d:1a: da:ac:ca:df:4b:91:81:d8:b8:48:b3:6b:9e:7a:07: 39:16:e5:b4:87:b8:f4:47:f6:3b:1c:37:de:e5:01: 5e:9b:51:02:72:5a:0c:28:49:bd:78:12:8d:31:79: 95:de:77:a6:5d:9b:b2:54:43:91:ea:ee:df:25:11: 79:1a:18:e3:fd:c8:f6:34:c9:ef:39:df:4d:05:0e: 49:99:a4:de:f5:eb:c6:0d:c8:aa:8d:2e:c1:df:0f: a1:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:16:5E:BC:6C:71:5B:AD:BC:69:3C:2F:71:01:D7:E3:C8:C8:18:97 X509v3 Authority Key Identifier: keyid:8C:12:B4:27:38:32:B4:15:6F:E0:09:2F:6A:E7:E5:B3:CE:23:AD:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jBK0JzgytBVv4Akvaufls84jrYs.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8bfd6882-d6b3-4aa8-bc0a-711d68bd198b/0/8C12B4273832B4156FE0092F6AE7E5B3CE23AD8B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:72:78:ca:db:e7:80:c6:d1:93:60:fc:7d:da:a8:10:e6:d0: 92:89:78:5b:49:33:61:a0:a0:00:8d:9b:6b:fc:da:19:59:9b: 93:f5:e1:38:c5:96:34:eb:1b:ac:40:08:bb:6b:2c:03:f1:ec: 75:da:0e:bb:7c:6e:7b:7c:23:26:75:6e:82:e6:fa:87:a2:b8: ae:41:93:27:fb:6f:a9:b8:92:8a:ad:18:e3:38:05:5a:3c:81: 44:21:67:b4:5c:33:5a:10:ca:7c:90:89:05:26:9c:b9:09:69: 7a:ec:5e:13:97:1a:77:7e:61:ed:b2:06:83:55:06:00:8f:46: 71:23:88:20:5e:b8:57:cf:2c:8d:6b:b9:d4:8c:4a:64:c2:fa: f6:86:a1:00:6a:69:f3:10:42:95:74:a9:5b:d8:df:1a:d4:7d: 25:e9:b1:82:e5:05:fe:92:f9:d6:76:96:90:35:19:07:59:5d: 06:9d:76:56:f7:44:c6:bb:b6:93:83:0f:5f:5f:4a:fa:ac:3b: aa:35:7c:f1:c8:86:08:d2:e0:26:27:a6:d7:bd:fe:82:b7:05: 13:82:8f:0a:5b:24:d9:f3:92:2d:05:f1:b7:09:e6:a9:5c:15: 8c:29:ee:5f:e5:3a:49:e8:97:52:d3:1d:a5:8b:85:22:4a:11: f6:04:04:80 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUcLKrpvAWhd0HZYre6Q8tlYcWWbYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOGMxMmI0MjczODMyYjQxNTZmZTAwOTJmNmFlN2U1YjNj ZTIzYWQ4YjAeFw0yNTA4MDMyMzU1MzlaFw0yNTA4MDUwMzMyMzlaMDMxMTAvBgNV BAMTKEQ3MTY1RUJDNkM3MTVCQURCQzY5M0MyRjcxMDFEN0UzQzhDODE4OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkY9Xg3jlR1f4PShcCg0INfYwv KVQ80XcOPqsbkzFu3WJyBXcOTsgsgsy0Ojji490gW5uqQEGDARzjZ7mRd7DZTDVg nS3cV5CWh9QaXUueGzKvtaQmo73rzxQ/a7fZ8aVR8OiiwElbcaCWs7ECByI+2tJK 4EBYRBvWk9W4Wi6E6as7ie9fvYAmw6XB7+xD6M25/IJLp2l3mU5y2yuAX1haV9pt Gtqsyt9LkYHYuEiza556BzkW5bSHuPRH9jscN97lAV6bUQJyWgwoSb14Eo0xeZXe d6Zdm7JUQ5Hq7t8lEXkaGOP9yPY0ye85300FDkmZpN7168YNyKqNLsHfD6GxAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU1xZevGxxW628aTwvcQHX48jIGJcwHwYDVR0j BBgwFoAUjBK0JzgytBVv4Akvaufls84jrYswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOGJmZDY4ODItZDZiMy00YWE4LWJjMGEtNzExZDY4YmQx OThiLzAvOEMxMkI0MjczODMyQjQxNTZGRTAwOTJGNkFFN0U1QjNDRTIzQUQ4Qi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2pCSzBKemd5dEJWdjRBa3ZhdWZsczg0 anJZcy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84YmZkNjg4Mi1k NmIzLTRhYTgtYmMwYS03MTFkNjhiZDE5OGIvMC84QzEyQjQyNzM4MzJCNDE1NkZF MDA5MkY2QUU3RTVCM0NFMjNBRDhCLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp3J4ytvngMbRk2D8fdqo EObQkol4W0kzYaCgAI2ba/zaGVmbk/XhOMWWNOsbrEAIu2ssA/HsddoOu3xue3wj JnVugub6h6K4rkGTJ/tvqbiSiq0Y4zgFWjyBRCFntFwzWhDKfJCJBSacuQlpeuxe E5cad35h7bIGg1UGAI9GcSOIIF64V88sjWu51IxKZML69oahAGpp8xBClXSpW9jf GtR9JemxguUF/pL51naWkDUZB1ldBp12VvdExru2k4MPX19K+qw7qjV88ciGCNLg Jiem173+grcFE4KPClsk2fOSLQXxtwnmqVwVjCnuX+U6SeiXUtMdpYuFIkoR9gQE gA== -----END CERTIFICATE-----Generated at Mon Aug 4 18:37:31 2025 by rpki-client