$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.mft File: 637FD1BA3FED44454D6D7030247709D28DB3491A.mft (raw, json) Hash identifier: C6TX+UEjlu3eb9Krv9M4vEYiNghuyEX/OAZlBNc6iIg= Subject key identifier: 59:BA:35:5A:6C:FB:41:3D:B2:C7:35:A9:9E:28:19:E7:DF:2C:65:B2 Authority key identifier: 63:7F:D1:BA:3F:ED:44:45:4D:6D:70:30:24:77:09:D2:8D:B3:49:1A Certificate issuer: /CN=637fd1ba3fed44454d6d7030247709d28db3491a Certificate serial: 209E20B85E23E556DA1E3C9909D63E3B364A3817 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3_Ruj_tREVNbXAwJHcJ0o2zSRo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.mft Manifest number: 0361 Signing time: Sun 03 Aug 2025 22:47:16 +0000 Manifest this update: Sun 03 Aug 2025 22:42:16 +0000 Manifest next update: Mon 04 Aug 2025 23:49:16 +0000 Files and hashes: 1: 3133392e32382e32372e302f32342d3234203d3e20323036313530.roa (hash: PhaaQ0B2G4/BYaJYdmj2wNhh4+UZzlq/QFz8ZTfUDhY=) 2: 3133392e32382e32342e302f32342d3234203d3e20323132363039.roa (hash: Zbml066pXi3G2h7cDhaY/zBOXtPP1DXZek0hCHsXFhc=) 3: 637FD1BA3FED44454D6D7030247709D28DB3491A.crl (hash: Jj4FcefIYeHWhjt9Ap7v2ajPrRk4WMGijhFVuA028sI=) 4: 3133392e32382e32362e302f32342d3234203d3e20313337343039.roa (hash: jGCu+6PUFJehV7SD97XGwxO4qcYEtjZiP9+tOlftrfA=) 5: 3133392e32382e32342e302f32342d3234203d3e20323131343430.roa (hash: sQzRaIn68UKgeOhWa3EKecj44XiFcDfTSSWOvDZfL50=) 6: 3133392e32382e32352e302f32342d3234203d3e20323131343135.roa (hash: t2eZOXbWa1wSXQ/lRcYYBLRQZdrsUg6kK3TUWhBYOoo=) 7: 3133392e32382e32352e302f32342d3234203d3e20323030303137.roa (hash: KTt7IBC5OKuP6muE0/6zCxuIwEkqcnypdMUhBFAyx18=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.crl rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.mft rsync://rpki.ripe.net/repository/DEFAULT/Y3_Ruj_tREVNbXAwJHcJ0o2zSRo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 04 Aug 2025 23:49:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:9e:20:b8:5e:23:e5:56:da:1e:3c:99:09:d6:3e:3b:36:4a:38:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=637fd1ba3fed44454d6d7030247709d28db3491a Validity Not Before: Aug 3 22:42:16 2025 GMT Not After : Aug 4 23:49:16 2025 GMT Subject: CN=59BA355A6CFB413DB2C735A99E2819E7DF2C65B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:20:15:ea:83:0b:3c:24:c8:48:26:32:4a:a4: ad:5e:c2:ef:08:b1:5a:17:53:c1:e1:2a:94:0b:c4: 49:4d:dc:c2:10:e8:46:13:29:3b:f7:bc:46:8f:5a: 72:0b:a6:76:29:c9:92:51:34:a3:e9:fc:fc:e7:23: 09:3d:02:92:0d:4e:ad:68:f9:9a:b2:ea:3a:d4:17: 4b:3c:0c:d8:4c:95:9c:00:aa:20:84:50:c9:83:03: 5f:ec:80:35:f8:e5:12:de:4b:80:bc:8c:b9:c5:58: 1b:40:75:b2:3f:b5:2c:94:84:06:4a:0a:c5:26:6f: fa:1b:31:71:b2:3a:fe:74:35:c7:5b:b1:06:0a:b9: 62:ed:fd:1d:c6:fd:bf:58:b1:3e:ed:d1:4e:d8:a4: ec:b2:d0:8a:9d:9d:15:11:75:0e:2c:91:8f:42:1e: a4:6e:e9:be:4c:67:28:7f:4f:be:c5:b5:61:39:1f: 93:89:88:f9:cd:06:b8:6b:30:01:c7:d7:eb:7f:23: 5b:ae:0a:78:a1:70:85:a2:d4:78:c9:16:f3:2e:e1: 07:0a:03:a3:11:d0:2f:cc:20:13:43:d1:aa:c7:2d: 48:af:91:c6:79:0b:29:00:3b:7a:b9:15:83:58:21: 84:06:6e:fc:2e:da:8a:0f:7e:51:d0:b5:dc:c6:a4: 14:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:BA:35:5A:6C:FB:41:3D:B2:C7:35:A9:9E:28:19:E7:DF:2C:65:B2 X509v3 Authority Key Identifier: keyid:63:7F:D1:BA:3F:ED:44:45:4D:6D:70:30:24:77:09:D2:8D:B3:49:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3_Ruj_tREVNbXAwJHcJ0o2zSRo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a94df714-d37d-4942-8e94-91dd853ef7e3/0/637FD1BA3FED44454D6D7030247709D28DB3491A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:78:4e:05:ab:6f:53:f5:f9:9f:ed:42:3c:d5:5d:52:02:07: a5:25:ca:07:8e:9c:08:91:4c:6d:74:cf:e9:e4:9b:ed:42:90: ef:fa:46:3d:e4:87:fd:db:b4:c6:0e:c7:0f:f1:e3:b4:4b:8f: 17:b5:57:40:0c:6d:4a:4d:39:98:fb:fe:24:03:c1:a6:6f:4d: 28:54:8e:bb:ef:25:c6:02:17:d5:2e:6d:47:05:f1:f9:12:2f: ab:47:bf:4d:77:a9:63:e6:20:46:ef:2a:9c:a5:58:cc:47:bf: 2d:ed:35:fb:d5:56:88:cf:65:2e:77:e8:e5:95:b1:11:94:84: fa:6a:2f:ab:03:ec:ef:d4:db:c6:4a:3d:a9:74:52:d8:29:c9: 6f:0a:14:63:f5:d2:4a:e2:e8:8f:7b:e4:bb:ea:1b:3e:38:13: a1:10:4b:06:0b:0d:09:0b:4e:73:f6:d9:03:c8:73:61:43:15: d5:8e:31:59:f2:d2:ed:28:13:fe:c8:29:96:85:e0:94:73:35: 6b:52:63:e3:7b:9d:8a:fa:8c:21:10:4e:91:90:8e:1b:9b:ec: 03:70:0c:b9:c2:71:f5:93:20:75:8d:86:3a:8f:9b:99:f3:a9: d3:d1:8d:10:e2:49:1a:6c:ab:d9:de:6f:2f:38:c2:12:23:05: a1:6d:df:3e -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUIJ4guF4j5VbaHjyZCdY+OzZKOBcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjM3ZmQxYmEzZmVkNDQ0NTRkNmQ3MDMwMjQ3NzA5ZDI4 ZGIzNDkxYTAeFw0yNTA4MDMyMjQyMTZaFw0yNTA4MDQyMzQ5MTZaMDMxMTAvBgNV BAMTKDU5QkEzNTVBNkNGQjQxM0RCMkM3MzVBOTlFMjgxOUU3REYyQzY1QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTIBXqgws8JMhIJjJKpK1ewu8I sVoXU8HhKpQLxElN3MIQ6EYTKTv3vEaPWnILpnYpyZJRNKPp/PznIwk9ApINTq1o +Zqy6jrUF0s8DNhMlZwAqiCEUMmDA1/sgDX45RLeS4C8jLnFWBtAdbI/tSyUhAZK CsUmb/obMXGyOv50NcdbsQYKuWLt/R3G/b9YsT7t0U7YpOyy0IqdnRURdQ4skY9C HqRu6b5MZyh/T77FtWE5H5OJiPnNBrhrMAHH1+t/I1uuCnihcIWi1HjJFvMu4QcK A6MR0C/MIBND0arHLUivkcZ5CykAO3q5FYNYIYQGbvwu2ooPflHQtdzGpBRZAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUWbo1Wmz7QT2yxzWpnigZ598sZbIwHwYDVR0j BBgwFoAUY3/Ruj/tREVNbXAwJHcJ0o2zSRowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTk0ZGY3MTQtZDM3ZC00OTQyLThlOTQtOTFkZDg1M2Vm N2UzLzAvNjM3RkQxQkEzRkVENDQ0NTRENkQ3MDMwMjQ3NzA5RDI4REIzNDkxQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1kzX1J1al90UkVWTmJYQXdKSGNKMG8y elNSby5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hOTRkZjcxNC1k MzdkLTQ5NDItOGU5NC05MWRkODUzZWY3ZTMvMC82MzdGRDFCQTNGRUQ0NDQ1NEQ2 RDcwMzAyNDc3MDlEMjhEQjM0OTFBLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEnhOBatvU/X5n+1CPNVd UgIHpSXKB46cCJFMbXTP6eSb7UKQ7/pGPeSH/du0xg7HD/HjtEuPF7VXQAxtSk05 mPv+JAPBpm9NKFSOu+8lxgIX1S5tRwXx+RIvq0e/TXepY+YgRu8qnKVYzEe/Le01 +9VWiM9lLnfo5ZWxEZSE+movqwPs79Tbxko9qXRS2CnJbwoUY/XSSuLoj3vku+ob PjgToRBLBgsNCQtOc/bZA8hzYUMV1Y4xWfLS7SgT/sgploXglHM1a1Jj43udivqM IRBOkZCOG5vsA3AMucJx9ZMgdY2GOo+bmfOp09GNEOJJGmyr2d5vLzjCEiMFoW3f Pg== -----END CERTIFICATE-----Generated at Mon Aug 4 11:09:34 2025 by rpki-client