$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft File: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft (raw, json) Hash identifier: zWC0ZUrOEA4fbBvEvERqMxtX9yPZb3bfQUGqeYzAfrE= Subject key identifier: D2:E2:FC:60:7B:66:D5:EF:CA:38:9B:72:7A:B7:AB:F1:A7:7B:04:02 Authority key identifier: D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD Certificate issuer: /CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead Certificate serial: 6F7A66DFDF880A10085B6302D337BAD9E7F154AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft Manifest number: 0597 Signing time: Fri 17 Apr 2026 05:39:25 +0000 Manifest this update: Fri 17 Apr 2026 05:34:25 +0000 Manifest next update: Sat 18 Apr 2026 07:40:25 +0000 Files and hashes: 1: 323030313a3637383a313161303a3a2f34382d3438203d3e203531303139.roa (hash: WTZJrpZtSK56gi8FgUd2AbaB/s6bTUvq5ttS3fRGoxU=) 2: AS51019.asa (hash: Oaa1EvfqOHf6DhtSUIsxpjt+74z+nkVUgLI9NR9q+Vg=) 3: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl (hash: iwpPVZVAbexkjxcbFozJ9UOyFCsXxkmBwGYVnK8u3Bg=) 4: 323030313a3637633a6264633a3a2f34382d3438203d3e203531303139.roa (hash: WwIB1vpX/Ksy3lM5t4KklPIgz20phM5/z2U20FASusY=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 Apr 2026 22:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:7a:66:df:df:88:0a:10:08:5b:63:02:d3:37:ba:d9:e7:f1:54:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead Validity Not Before: Apr 17 05:34:25 2026 GMT Not After : Apr 18 07:40:25 2026 GMT Subject: CN=D2E2FC607B66D5EFCA389B727AB7ABF1A77B0402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:af:8e:88:8f:d5:a3:69:ed:e7:ed:32:24:9e: ec:9f:cb:b0:f3:a6:ef:64:9c:84:51:52:0c:01:20: 76:32:97:89:45:e9:0e:b0:d6:25:a3:11:2e:f1:18: e0:b4:9e:4a:ab:24:83:55:7f:46:57:5f:d2:cd:74: 06:9e:39:38:47:3d:8a:ca:5c:c9:e5:33:1c:be:88: 93:62:48:0b:e5:ba:51:24:7d:9b:d8:04:72:10:b8: b8:7c:fb:94:68:a1:95:f3:6e:cb:3c:d4:d9:82:01: 2f:26:e8:f0:48:15:fe:35:3c:aa:8c:df:3b:ba:a3: cc:46:49:9c:36:82:fd:5d:83:2c:21:17:29:f1:f9: 65:56:8d:a5:c7:0b:1f:4f:60:56:bb:a6:51:64:91: 2c:bb:be:19:b5:21:d1:1e:6e:bb:4a:8d:dd:7b:e5: b6:13:26:76:64:d4:cd:ea:62:9d:e7:3f:77:26:6e: c5:ad:bf:c3:fc:b4:c2:bc:15:2d:1b:32:e4:08:78: 7e:56:4b:0c:9d:7e:1c:00:8a:fa:ed:43:7d:4e:2b: 79:dc:c1:7b:c8:01:b7:be:4f:a7:a2:1b:14:a2:a5: 6b:e6:5d:f0:61:2c:ea:c4:f8:f7:b7:9b:ac:41:c7: 8d:16:63:8b:02:82:ec:94:8a:0d:d9:c7:56:4c:4e: 17:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:E2:FC:60:7B:66:D5:EF:CA:38:9B:72:7A:B7:AB:F1:A7:7B:04:02 X509v3 Authority Key Identifier: keyid:D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:3e:38:ab:82:ad:74:ec:64:29:58:da:8f:e9:8c:2a:93:8a: d1:8e:d4:23:74:66:59:75:95:05:10:5b:4b:65:f6:1c:ff:5c: 78:2f:18:9d:eb:8d:86:61:e8:00:78:e1:b6:7d:68:63:cb:e7: 0b:ca:ae:ea:25:9e:c5:34:d6:3c:41:f5:c9:e2:de:2d:69:70: 6f:60:a2:71:e0:f1:2b:80:f2:b1:54:9c:3e:79:7d:fe:0f:87: 49:be:53:d3:59:97:37:4c:e5:31:38:6e:68:69:12:16:bb:9c: 0a:05:eb:ee:96:1d:5d:f4:20:86:06:27:44:21:33:35:ef:3f: f7:6b:29:4f:f8:03:a9:6c:8e:97:70:94:00:04:1f:27:ef:c9: cf:dc:4d:a8:93:ec:83:e6:35:7a:4d:45:6b:4c:04:fa:f0:fa: f8:54:59:04:2d:8f:d6:d0:cd:77:e7:1b:8a:61:ba:0c:85:af: 88:19:ee:02:bc:c3:a2:0d:f5:06:a3:fe:b8:5b:10:15:a4:12: a5:28:d7:a8:58:1a:af:1e:0b:48:a0:99:d0:48:6a:0b:24:71: 6f:30:73:c6:cf:f7:7f:68:59:4e:55:5d:9b:60:31:98:09:fa: fb:af:3b:9b:4c:00:c7:fc:59:49:a9:c3:f6:f7:c1:77:03:08: 93:0e:4f:39 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUb3pm39+IChAIW2MC0ze62efxVK4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZDJmZjA3OTMyYzNmNGMxYjM0NjVmZjRmMGQ5NjQ4NDcz M2UwMmVhZDAeFw0yNjA0MTcwNTM0MjVaFw0yNjA0MTgwNzQwMjVaMDMxMTAvBgNV BAMTKEQyRTJGQzYwN0I2NkQ1RUZDQTM4OUI3MjdBQjdBQkYxQTc3QjA0MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+r46Ij9Wjae3n7TIknuyfy7Dz pu9knIRRUgwBIHYyl4lF6Q6w1iWjES7xGOC0nkqrJINVf0ZXX9LNdAaeOThHPYrK XMnlMxy+iJNiSAvlulEkfZvYBHIQuLh8+5RooZXzbss81NmCAS8m6PBIFf41PKqM 3zu6o8xGSZw2gv1dgywhFynx+WVWjaXHCx9PYFa7plFkkSy7vhm1IdEebrtKjd17 5bYTJnZk1M3qYp3nP3cmbsWtv8P8tMK8FS0bMuQIeH5WSwydfhwAivrtQ31OK3nc wXvIAbe+T6eiGxSipWvmXfBhLOrE+Pe3m6xBx40WY4sCguyUig3Zx1ZMThcjAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU0uL8YHtm1e/KOJtyerer8ad7BAIwHwYDVR0j BBgwFoAU0v8Hkyw/TBs0Zf9PDZZIRzPgLq0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzIvRDJGRjA3OTMyQzNGNEMxQjM0NjVGRjRGMEQ5NjQ4NDczM0UwMkVBRC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzB2OEhreXdfVEJzMFpmOVBEWlpJUnpQ Z0xxMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00 MTliLTRkYjUtYmJkMy01Y2NhNjMzY2FlM2YvMi9EMkZGMDc5MzJDM0Y0QzFCMzQ2 NUZGNEYwRDk2NDg0NzMzRTAyRUFELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALD44q4KtdOxkKVjaj+mM KpOK0Y7UI3RmWXWVBRBbS2X2HP9ceC8YneuNhmHoAHjhtn1oY8vnC8qu6iWexTTW PEH1yeLeLWlwb2CiceDxK4DysVScPnl9/g+HSb5T01mXN0zlMThuaGkSFrucCgXr 7pYdXfQghgYnRCEzNe8/92spT/gDqWyOl3CUAAQfJ+/Jz9xNqJPsg+Y1ek1Fa0wE +vD6+FRZBC2P1tDNd+cbimG6DIWviBnuArzDog31BqP+uFsQFaQSpSjXqFgarx4L SKCZ0EhqCyRxbzBzxs/3f2hZTlVdm2AxmAn6+687m0wAx/xZSanD9vfBdwMIkw5P OQ== -----END CERTIFICATE-----Generated at Fri Apr 17 07:42:51 2026 by rpki-client