
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
File: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft (raw, json)
Hash identifier: 3U8OiW/U6gEKfYieK0kiYAhBVypazVoQpviP5latI9c=
Subject key identifier: DE:AA:6E:EE:4D:FC:36:FD:E3:85:A1:95:54:CA:62:9D:C3:6A:B5:EB
Authority key identifier: D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD
Certificate issuer: /CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead
Certificate serial: 610BC106D97889F7778BC2A022AAC8FFA0883FDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
Manifest number: 05ED
Signing time: Sat 13 Jun 2026 07:48:32 +0000
Manifest this update: Sat 13 Jun 2026 07:43:32 +0000
Manifest next update: Sun 14 Jun 2026 08:04:32 +0000
Files and hashes: 1: 323030313a3637383a313161303a3a2f34382d3438203d3e203531303139.roa (hash: WTZJrpZtSK56gi8FgUd2AbaB/s6bTUvq5ttS3fRGoxU=)
2: 323030313a3637633a6264633a3a2f34382d3438203d3e203531303139.roa (hash: WwIB1vpX/Ksy3lM5t4KklPIgz20phM5/z2U20FASusY=)
3: AS51019.asa (hash: Oaa1EvfqOHf6DhtSUIsxpjt+74z+nkVUgLI9NR9q+Vg=)
4: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl (hash: +9Alb46Csspo77c/3UL6khK5RxGsnEtUIU5mNpjufX4=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl
rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:0b:c1:06:d9:78:89:f7:77:8b:c2:a0:22:aa:c8:ff:a0:88:3f:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead
Validity
Not Before: Jun 13 07:43:32 2026 GMT
Not After : Jun 14 08:04:32 2026 GMT
Subject: CN=DEAA6EEE4DFC36FDE385A19554CA629DC36AB5EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:77:2b:39:c0:7e:45:3e:8c:1a:2c:eb:76:74:
9b:71:c6:a9:82:0e:c4:7d:b2:f7:cb:bf:e7:b6:2b:
d4:76:a6:d4:8e:ee:48:7b:db:00:f4:ee:3a:f1:ca:
fe:de:c5:d1:a4:8a:50:1c:16:b2:0c:b5:31:d5:6b:
fe:43:37:b7:bc:75:e8:45:12:a6:2f:1b:5e:e1:5e:
63:cb:95:d3:68:3f:53:e5:c1:06:cb:4a:99:45:61:
5d:1a:d0:45:b9:5d:ef:39:b9:3e:85:fa:c3:f8:c7:
67:88:63:e1:84:5e:e6:ad:30:ed:80:d6:36:09:e8:
86:85:a9:dc:3b:04:42:ec:64:20:cc:69:91:5f:0a:
33:3a:ab:d3:f8:dd:28:c1:5f:34:9f:ad:06:16:fe:
db:4e:46:26:f8:cb:04:96:80:65:f0:58:b6:67:8f:
70:7e:2f:e0:60:94:7c:ad:23:87:56:5a:87:be:b5:
46:d0:59:38:e0:b1:8c:6c:70:11:94:22:7d:00:0a:
d5:65:20:85:a5:ae:ca:03:2e:48:b4:dd:dd:25:e4:
e3:51:42:72:88:3e:da:58:2d:04:c5:4f:8e:0e:a5:
4a:6e:2b:d5:3c:02:ca:3c:c2:a3:76:ca:50:a6:f1:
76:e1:c0:ff:c8:39:8b:65:f8:69:8f:25:01:73:d3:
89:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:AA:6E:EE:4D:FC:36:FD:E3:85:A1:95:54:CA:62:9D:C3:6A:B5:EB
X509v3 Authority Key Identifier:
keyid:D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:71:e9:2e:26:2b:73:9d:41:b1:05:2b:35:84:58:70:9b:37:
47:86:5d:46:a1:4d:cf:b0:40:02:8c:19:ec:a3:e5:af:4e:9b:
58:f8:be:7b:5d:10:90:d5:0c:14:ba:62:aa:98:a4:60:05:b0:
ee:75:60:0c:c4:d8:79:68:db:82:2c:db:98:dd:71:53:87:4f:
ed:41:2e:5a:64:53:ce:07:82:2c:b7:30:f3:c0:1a:77:e1:fb:
96:f8:d4:3e:d5:db:65:08:30:39:16:88:9d:d2:68:b2:97:36:
db:d9:91:88:68:95:10:6a:45:21:0b:9a:77:11:4b:c9:90:d5:
76:d8:0c:6e:d6:9a:23:d9:a5:5d:ba:a5:80:89:59:67:98:5f:
79:54:4a:6f:0e:43:d2:6e:4a:b2:db:63:aa:ba:86:c6:d5:a0:
3d:2b:09:ea:42:bd:6e:bd:97:d9:13:5e:4b:ef:99:c8:ca:4d:
6d:69:84:81:a4:93:92:03:c9:f4:e1:60:45:a9:f9:fb:b6:9e:
1d:61:54:94:c2:81:6e:f9:49:94:2c:03:a8:a6:fc:10:9a:cb:
d0:73:90:ac:33:4b:4a:b5:7e:ec:0d:a3:cb:b6:d6:48:67:2b:
79:e7:b6:8d:87:61:fa:89:85:42:2c:38:c6:a3:4b:89:43:b6:
d3:62:56:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:28:19 2026 by rpki-client