$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.mft File: 637FD1BA3FED44454D6D7030247709D28DB3491A.mft (raw, json) Hash identifier: y6qnSDNOSQ0oQxj8OtOZ4P2cjyV8Gi+Ca4QQy1MEQpc= Subject key identifier: 8C:CA:76:34:94:FD:E1:3B:01:BC:98:EA:C8:C4:A0:A4:FC:1D:B9:21 Authority key identifier: 63:7F:D1:BA:3F:ED:44:45:4D:6D:70:30:24:77:09:D2:8D:B3:49:1A Certificate issuer: /CN=637fd1ba3fed44454d6d7030247709d28db3491a Certificate serial: 1E23EDDF4015E267B71F030B50A177B095CFC06A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3_Ruj_tREVNbXAwJHcJ0o2zSRo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.mft Manifest number: 04B7 Signing time: Thu 16 Apr 2026 22:19:42 +0000 Manifest this update: Thu 16 Apr 2026 22:14:42 +0000 Manifest next update: Sat 18 Apr 2026 02:01:42 +0000 Files and hashes: 1: 3133392e32382e32372e302f32342d3234203d3e20323036313530.roa (hash: spk6NtqPTGXoBo4XJMsULHBo1PCje3tyvN9b3jHB/pA=) 2: 3133392e32382e32352e302f32342d3234203d3e20323030303137.roa (hash: KTt7IBC5OKuP6muE0/6zCxuIwEkqcnypdMUhBFAyx18=) 3: 3133392e32382e32342e302f32342d3234203d3e20323131343430.roa (hash: eR+xyo+zY+fM9l50cFs0swlGeIX2NljYGKvE5SQX83U=) 4: 637FD1BA3FED44454D6D7030247709D28DB3491A.crl (hash: 6azrNhmIcKAt5antmXOtBMDQd/AKY4iPQr85hQTPel8=) 5: 3133392e32382e32352e302f32342d3234203d3e20323131343135.roa (hash: kj5wXeF4AQFWN9fpmE1MKtBmtMRLs1TA1rGuGr1+5eA=) 6: 3133392e32382e32362e302f32342d3234203d3e20313337343039.roa (hash: 4dsufrRZZT3ng/M0mUxRioQsmJP0ZwUerMNQTCdj11A=) 7: 3133392e32382e32342e302f32342d3234203d3e20323132363039.roa (hash: Fol0sGIzThvrZaKMHBeLXFldT8huOSBy9x77N8VFj2U=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.crl rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.mft rsync://rpki.ripe.net/repository/DEFAULT/Y3_Ruj_tREVNbXAwJHcJ0o2zSRo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Apr 2026 02:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:23:ed:df:40:15:e2:67:b7:1f:03:0b:50:a1:77:b0:95:cf:c0:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=637fd1ba3fed44454d6d7030247709d28db3491a Validity Not Before: Apr 16 22:14:42 2026 GMT Not After : Apr 18 02:01:42 2026 GMT Subject: CN=8CCA763494FDE13B01BC98EAC8C4A0A4FC1DB921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:10:bd:da:86:80:10:c1:a2:9d:30:ad:2c:fc: ce:88:85:f0:d3:77:23:87:2c:15:cd:13:a5:c1:d7: 08:c5:da:40:2f:e0:a6:37:cd:a6:37:a0:08:16:20: 2f:1b:52:7b:8d:84:87:5e:6f:80:eb:c0:f6:3b:f1: cd:27:b7:fa:28:b1:98:4b:de:e9:b9:be:7b:75:31: f7:fb:6e:84:84:5b:e9:87:97:37:de:b4:76:d2:b9: 83:bf:b2:f5:e6:be:d6:e7:c0:8f:e9:e7:0c:47:30: 66:dc:61:cf:34:8b:b8:96:f5:4f:ea:ab:69:fd:38: 21:c2:da:2f:c9:77:5c:9b:24:4f:1a:d4:8a:ef:86: a5:09:60:c5:c6:66:70:2c:6a:27:65:e9:49:bf:f5: 67:d7:68:e1:4e:b1:05:7e:76:fd:0a:3d:ce:14:84: 8f:e5:1a:e1:a0:33:a7:f4:30:c2:36:1f:7d:7b:53: 83:5e:92:86:9a:68:7b:36:df:f5:40:e1:e1:f1:18: f5:34:a9:93:e1:41:0e:b7:87:66:8a:1e:71:da:a8: cf:84:55:e9:00:6d:1b:76:49:9f:73:69:c4:22:03: 57:c1:f7:5d:43:56:07:f5:0b:2c:53:63:a0:20:cf: 86:4f:26:dd:d2:c8:96:dd:91:31:7c:ec:74:48:64: a0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:CA:76:34:94:FD:E1:3B:01:BC:98:EA:C8:C4:A0:A4:FC:1D:B9:21 X509v3 Authority Key Identifier: keyid:63:7F:D1:BA:3F:ED:44:45:4D:6D:70:30:24:77:09:D2:8D:B3:49:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3_Ruj_tREVNbXAwJHcJ0o2zSRo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:c8:80:13:b4:f6:4a:ec:27:6e:c3:64:29:69:d1:cf:ea:72: d7:52:0b:e0:cc:8f:05:b4:3c:06:27:7e:49:4a:6a:90:2a:86: e5:a2:3c:07:8e:85:11:eb:55:8d:4f:40:15:21:14:f8:86:0d: b6:46:59:78:96:72:8e:69:85:22:1a:24:39:c6:29:01:89:bd: 1c:3a:09:c8:46:82:c3:7d:5d:9c:85:07:d3:01:0c:23:00:79: cc:c6:30:07:2f:8f:bb:8e:fe:42:3c:71:6f:ca:d7:bc:72:7e: cc:00:47:7f:da:16:17:e2:36:75:51:07:5e:9b:9d:5b:28:de: 84:ae:c0:27:fc:4f:5c:c8:c3:d4:a1:a2:f8:3e:03:08:9d:58: 53:e8:99:3b:a8:8b:51:b4:13:05:dd:20:12:a4:e7:4b:6e:8f: 7e:45:01:f8:67:d6:ca:ea:3e:3c:42:0d:c2:7a:06:a4:59:c5: 97:bc:ca:00:6b:04:d5:b9:92:7d:4a:28:64:17:21:3a:c6:2e: 33:9e:a8:fa:b5:55:3e:29:44:13:7b:91:8c:6b:a0:cb:da:24: b6:d8:8b:57:ef:07:b7:a1:5c:6d:08:46:58:16:be:dd:a1:47: 32:61:12:01:f4:48:b5:88:80:77:ce:01:68:97:b3:98:5c:00: 92:17:e8:c3 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUHiPt30AV4me3HwMLUKF3sJXPwGowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjM3ZmQxYmEzZmVkNDQ0NTRkNmQ3MDMwMjQ3NzA5ZDI4 ZGIzNDkxYTAeFw0yNjA0MTYyMjE0NDJaFw0yNjA0MTgwMjAxNDJaMDMxMTAvBgNV BAMTKDhDQ0E3NjM0OTRGREUxM0IwMUJDOThFQUM4QzRBMEE0RkMxREI5MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmEL3ahoAQwaKdMK0s/M6IhfDT dyOHLBXNE6XB1wjF2kAv4KY3zaY3oAgWIC8bUnuNhIdeb4DrwPY78c0nt/oosZhL 3um5vnt1Mff7boSEW+mHlzfetHbSuYO/svXmvtbnwI/p5wxHMGbcYc80i7iW9U/q q2n9OCHC2i/Jd1ybJE8a1IrvhqUJYMXGZnAsaidl6Um/9WfXaOFOsQV+dv0KPc4U hI/lGuGgM6f0MMI2H317U4NekoaaaHs23/VA4eHxGPU0qZPhQQ63h2aKHnHaqM+E VekAbRt2SZ9zacQiA1fB911DVgf1CyxTY6Agz4ZPJt3SyJbdkTF87HRIZKCdAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUjMp2NJT94TsBvJjqyMSgpPwduSEwHwYDVR0j BBgwFoAUY3/Ruj/tREVNbXAwJHcJ0o2zSRowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTk0ZGY3MTQtZDM3ZC00OTQyLThlOTQtOTFkZDg1M2Vm N2UzLzAvNjM3RkQxQkEzRkVENDQ0NTRENkQ3MDMwMjQ3NzA5RDI4REIzNDkxQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1kzX1J1al90UkVWTmJYQXdKSGNKMG8y elNSby5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hOTRkZjcxNC1k MzdkLTQ5NDItOGU5NC05MWRkODUzZWY3ZTMvMC82MzdGRDFCQTNGRUQ0NDQ1NEQ2 RDcwMzAyNDc3MDlEMjhEQjM0OTFBLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcsiAE7T2SuwnbsNkKWnR z+py11IL4MyPBbQ8Bid+SUpqkCqG5aI8B46FEetVjU9AFSEU+IYNtkZZeJZyjmmF IhokOcYpAYm9HDoJyEaCw31dnIUH0wEMIwB5zMYwBy+Pu47+Qjxxb8rXvHJ+zABH f9oWF+I2dVEHXpudWyjehK7AJ/xPXMjD1KGi+D4DCJ1YU+iZO6iLUbQTBd0gEqTn S26PfkUB+GfWyuo+PEINwnoGpFnFl7zKAGsE1bmSfUooZBchOsYuM56o+rVVPilE E3uRjGugy9okttiLV+8Ht6FcbQhGWBa+3aFHMmESAfRItYiAd84BaJezmFwAkhfo ww== -----END CERTIFICATE-----Generated at Fri Apr 17 09:25:35 2026 by rpki-client