$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft File: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft (raw, json) Hash identifier: 3U8OiW/U6gEKfYieK0kiYAhBVypazVoQpviP5latI9c= Subject key identifier: DE:AA:6E:EE:4D:FC:36:FD:E3:85:A1:95:54:CA:62:9D:C3:6A:B5:EB Authority key identifier: D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD Certificate issuer: /CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead Certificate serial: 610BC106D97889F7778BC2A022AAC8FFA0883FDA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft Manifest number: 05ED Signing time: Sat 13 Jun 2026 07:48:32 +0000 Manifest this update: Sat 13 Jun 2026 07:43:32 +0000 Manifest next update: Sun 14 Jun 2026 08:04:32 +0000 Files and hashes: 1: 323030313a3637383a313161303a3a2f34382d3438203d3e203531303139.roa (hash: WTZJrpZtSK56gi8FgUd2AbaB/s6bTUvq5ttS3fRGoxU=) 2: 323030313a3637633a6264633a3a2f34382d3438203d3e203531303139.roa (hash: WwIB1vpX/Ksy3lM5t4KklPIgz20phM5/z2U20FASusY=) 3: AS51019.asa (hash: Oaa1EvfqOHf6DhtSUIsxpjt+74z+nkVUgLI9NR9q+Vg=) 4: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl (hash: +9Alb46Csspo77c/3UL6khK5RxGsnEtUIU5mNpjufX4=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:0b:c1:06:d9:78:89:f7:77:8b:c2:a0:22:aa:c8:ff:a0:88:3f:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead Validity Not Before: Jun 13 07:43:32 2026 GMT Not After : Jun 14 08:04:32 2026 GMT Subject: CN=DEAA6EEE4DFC36FDE385A19554CA629DC36AB5EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:77:2b:39:c0:7e:45:3e:8c:1a:2c:eb:76:74: 9b:71:c6:a9:82:0e:c4:7d:b2:f7:cb:bf:e7:b6:2b: d4:76:a6:d4:8e:ee:48:7b:db:00:f4:ee:3a:f1:ca: fe:de:c5:d1:a4:8a:50:1c:16:b2:0c:b5:31:d5:6b: fe:43:37:b7:bc:75:e8:45:12:a6:2f:1b:5e:e1:5e: 63:cb:95:d3:68:3f:53:e5:c1:06:cb:4a:99:45:61: 5d:1a:d0:45:b9:5d:ef:39:b9:3e:85:fa:c3:f8:c7: 67:88:63:e1:84:5e:e6:ad:30:ed:80:d6:36:09:e8: 86:85:a9:dc:3b:04:42:ec:64:20:cc:69:91:5f:0a: 33:3a:ab:d3:f8:dd:28:c1:5f:34:9f:ad:06:16:fe: db:4e:46:26:f8:cb:04:96:80:65:f0:58:b6:67:8f: 70:7e:2f:e0:60:94:7c:ad:23:87:56:5a:87:be:b5: 46:d0:59:38:e0:b1:8c:6c:70:11:94:22:7d:00:0a: d5:65:20:85:a5:ae:ca:03:2e:48:b4:dd:dd:25:e4: e3:51:42:72:88:3e:da:58:2d:04:c5:4f:8e:0e:a5: 4a:6e:2b:d5:3c:02:ca:3c:c2:a3:76:ca:50:a6:f1: 76:e1:c0:ff:c8:39:8b:65:f8:69:8f:25:01:73:d3: 89:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:AA:6E:EE:4D:FC:36:FD:E3:85:A1:95:54:CA:62:9D:C3:6A:B5:EB X509v3 Authority Key Identifier: keyid:D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:71:e9:2e:26:2b:73:9d:41:b1:05:2b:35:84:58:70:9b:37: 47:86:5d:46:a1:4d:cf:b0:40:02:8c:19:ec:a3:e5:af:4e:9b: 58:f8:be:7b:5d:10:90:d5:0c:14:ba:62:aa:98:a4:60:05:b0: ee:75:60:0c:c4:d8:79:68:db:82:2c:db:98:dd:71:53:87:4f: ed:41:2e:5a:64:53:ce:07:82:2c:b7:30:f3:c0:1a:77:e1:fb: 96:f8:d4:3e:d5:db:65:08:30:39:16:88:9d:d2:68:b2:97:36: db:d9:91:88:68:95:10:6a:45:21:0b:9a:77:11:4b:c9:90:d5: 76:d8:0c:6e:d6:9a:23:d9:a5:5d:ba:a5:80:89:59:67:98:5f: 79:54:4a:6f:0e:43:d2:6e:4a:b2:db:63:aa:ba:86:c6:d5:a0: 3d:2b:09:ea:42:bd:6e:bd:97:d9:13:5e:4b:ef:99:c8:ca:4d: 6d:69:84:81:a4:93:92:03:c9:f4:e1:60:45:a9:f9:fb:b6:9e: 1d:61:54:94:c2:81:6e:f9:49:94:2c:03:a8:a6:fc:10:9a:cb: d0:73:90:ac:33:4b:4a:b5:7e:ec:0d:a3:cb:b6:d6:48:67:2b: 79:e7:b6:8d:87:61:fa:89:85:42:2c:38:c6:a3:4b:89:43:b6: d3:62:56:b3 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUYQvBBtl4ifd3i8KgIqrI/6CIP9owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZDJmZjA3OTMyYzNmNGMxYjM0NjVmZjRmMGQ5NjQ4NDcz M2UwMmVhZDAeFw0yNjA2MTMwNzQzMzJaFw0yNjA2MTQwODA0MzJaMDMxMTAvBgNV BAMTKERFQUE2RUVFNERGQzM2RkRFMzg1QTE5NTU0Q0E2MjlEQzM2QUI1RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkdys5wH5FPowaLOt2dJtxxqmC DsR9svfLv+e2K9R2ptSO7kh72wD07jrxyv7exdGkilAcFrIMtTHVa/5DN7e8dehF EqYvG17hXmPLldNoP1PlwQbLSplFYV0a0EW5Xe85uT6F+sP4x2eIY+GEXuatMO2A 1jYJ6IaFqdw7BELsZCDMaZFfCjM6q9P43SjBXzSfrQYW/ttORib4ywSWgGXwWLZn j3B+L+BglHytI4dWWoe+tUbQWTjgsYxscBGUIn0ACtVlIIWlrsoDLki03d0l5ONR QnKIPtpYLQTFT44OpUpuK9U8Aso8wqN2ylCm8XbhwP/IOYtl+GmPJQFz04m5AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU3qpu7k38Nv3jhaGVVMpincNqteswHwYDVR0j BBgwFoAU0v8Hkyw/TBs0Zf9PDZZIRzPgLq0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzIvRDJGRjA3OTMyQzNGNEMxQjM0NjVGRjRGMEQ5NjQ4NDczM0UwMkVBRC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzB2OEhreXdfVEJzMFpmOVBEWlpJUnpQ Z0xxMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00 MTliLTRkYjUtYmJkMy01Y2NhNjMzY2FlM2YvMi9EMkZGMDc5MzJDM0Y0QzFCMzQ2 NUZGNEYwRDk2NDg0NzMzRTAyRUFELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArHHpLiYrc51BsQUrNYRY cJs3R4ZdRqFNz7BAAowZ7KPlr06bWPi+e10QkNUMFLpiqpikYAWw7nVgDMTYeWjb gizbmN1xU4dP7UEuWmRTzgeCLLcw88Aad+H7lvjUPtXbZQgwORaIndJospc229mR iGiVEGpFIQuadxFLyZDVdtgMbtaaI9mlXbqlgIlZZ5hfeVRKbw5D0m5KsttjqrqG xtWgPSsJ6kK9br2X2RNeS++ZyMpNbWmEgaSTkgPJ9OFgRan5+7aeHWFUlMKBbvlJ lCwDqKb8EJrL0HOQrDNLSrV+7A2jy7bWSGcreee2jYdh+omFQiw4xqNLiUO202JW sw== -----END CERTIFICATE-----Generated at Sat Jun 13 10:28:19 2026 by rpki-client