$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft File: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft (raw, json) Hash identifier: tpKgi4ClLDd+DUvOH/TEd3PogF7pIKDhvQlJLHGa9SI= Subject key identifier: C1:9F:39:82:B3:F3:BB:F1:CA:C9:60:B7:1A:99:9B:B3:4D:9D:C8:82 Authority key identifier: D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD Certificate issuer: /CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead Certificate serial: 22C3E14A12ED0EF19843CB78FD1D8885CACAA83B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft Manifest number: 05EC Signing time: Fri 12 Jun 2026 21:10:56 +0000 Manifest this update: Fri 12 Jun 2026 21:05:56 +0000 Manifest next update: Sat 13 Jun 2026 23:18:56 +0000 Files and hashes: 1: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl (hash: 6LtHyP2t6gTB44IZVFa3sLZx+jeVKdiCRrHxGpB7J/8=) 2: 323030313a3637633a6264633a3a2f34382d3438203d3e203531303139.roa (hash: WwIB1vpX/Ksy3lM5t4KklPIgz20phM5/z2U20FASusY=) 3: 323030313a3637383a313161303a3a2f34382d3438203d3e203531303139.roa (hash: WTZJrpZtSK56gi8FgUd2AbaB/s6bTUvq5ttS3fRGoxU=) 4: AS51019.asa (hash: Oaa1EvfqOHf6DhtSUIsxpjt+74z+nkVUgLI9NR9q+Vg=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 23:18:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:c3:e1:4a:12:ed:0e:f1:98:43:cb:78:fd:1d:88:85:ca:ca:a8:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead Validity Not Before: Jun 12 21:05:56 2026 GMT Not After : Jun 13 23:18:56 2026 GMT Subject: CN=C19F3982B3F3BBF1CAC960B71A999BB34D9DC882 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:4f:b5:8c:12:d6:e9:16:e1:88:8c:0d:a0:e7: 2e:00:c0:b0:c7:b0:7d:b0:95:a5:54:2c:3d:f4:11: d9:f4:45:8b:5c:b6:30:88:38:08:cf:ee:f4:be:dc: 4b:e4:cd:f7:24:4a:b9:cb:43:76:04:c6:60:e4:89: c1:36:ac:83:6c:88:de:a2:71:b3:8a:a9:4e:ff:ed: fe:0e:f0:38:28:e0:4b:30:5b:4e:7f:fb:e0:78:14: e7:7d:1b:bf:7e:ce:47:fe:48:71:34:98:91:4c:0e: ab:c4:0a:bb:f8:64:33:b9:2b:30:8e:7e:22:e3:62: e4:ab:2e:71:97:aa:de:84:e1:bc:ba:3f:7d:82:7c: e0:1e:2c:f5:2e:52:3b:77:26:4f:12:4d:0c:8e:d3: e3:97:44:83:07:73:c1:37:fa:07:95:5a:a4:f8:1f: e7:84:4c:1f:5e:ad:9d:9c:d6:cc:4d:b0:e4:46:20: e4:fd:d8:8c:af:4f:f0:de:08:03:f3:9e:45:7b:b1: 47:5c:be:a6:79:97:ae:71:bc:43:25:7f:43:44:3a: e1:59:d0:1f:56:58:4a:5e:70:e5:31:f8:a7:ba:fd: 18:0e:5a:be:d5:8b:12:b5:f1:52:c6:c7:f1:5f:8e: 87:13:4e:9a:9b:f1:67:61:97:91:84:d5:86:98:fc: 3c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:9F:39:82:B3:F3:BB:F1:CA:C9:60:B7:1A:99:9B:B3:4D:9D:C8:82 X509v3 Authority Key Identifier: keyid:D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:be:25:a4:ae:a5:50:ae:31:4a:97:07:82:94:65:79:18:53: e9:b5:20:0e:3e:5d:30:7b:c2:b5:55:7e:8d:eb:ee:3a:5e:af: a5:87:ff:b8:25:b1:d3:03:9a:0f:21:6e:47:73:ae:12:5e:8c: 0a:bf:99:ff:1d:b5:48:13:59:42:9b:7a:f9:63:ab:f6:2a:d6: 13:23:17:2e:69:70:1b:51:bc:61:84:40:69:15:f5:58:a8:8a: 2f:26:bd:e7:ed:04:33:6d:d4:a6:be:8f:0a:60:4f:06:3b:fd: 40:99:a3:94:a8:ff:98:30:b0:fd:e7:07:8b:82:d0:d0:29:2c: 18:e3:00:f6:c6:07:c1:c5:bc:41:3d:e4:0c:b8:06:84:4c:87: 4a:dd:be:c6:a0:83:53:87:a8:03:a8:2c:52:12:38:1d:ca:38: 0c:0b:b3:3b:7f:7d:bb:11:1c:f2:66:88:db:dd:62:68:12:3f: d5:95:64:cf:8b:f3:6c:3e:7a:b0:3f:09:e4:25:84:68:b4:18: 13:4c:a5:b0:e7:e5:2c:6d:bd:09:42:d1:1a:b4:8b:1c:b8:16: 16:dd:23:23:1e:5b:aa:18:65:08:c4:e1:f6:40:b4:4a:94:13: ea:58:1c:ff:37:ce:8c:04:bc:2c:6b:4a:da:26:f0:a4:25:74: ee:de:62:e1 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUIsPhShLtDvGYQ8t4/R2IhcrKqDswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZDJmZjA3OTMyYzNmNGMxYjM0NjVmZjRmMGQ5NjQ4NDcz M2UwMmVhZDAeFw0yNjA2MTIyMTA1NTZaFw0yNjA2MTMyMzE4NTZaMDMxMTAvBgNV BAMTKEMxOUYzOTgyQjNGM0JCRjFDQUM5NjBCNzFBOTk5QkIzNEQ5REM4ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaT7WMEtbpFuGIjA2g5y4AwLDH sH2wlaVULD30Edn0RYtctjCIOAjP7vS+3EvkzfckSrnLQ3YExmDkicE2rINsiN6i cbOKqU7/7f4O8Dgo4EswW05/++B4FOd9G79+zkf+SHE0mJFMDqvECrv4ZDO5KzCO fiLjYuSrLnGXqt6E4by6P32CfOAeLPUuUjt3Jk8STQyO0+OXRIMHc8E3+geVWqT4 H+eETB9erZ2c1sxNsORGIOT92IyvT/DeCAPznkV7sUdcvqZ5l65xvEMlf0NEOuFZ 0B9WWEpecOUx+Ke6/RgOWr7VixK18VLGx/FfjocTTpqb8Wdhl5GE1YaY/DxtAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUwZ85grPzu/HKyWC3Gpmbs02dyIIwHwYDVR0j BBgwFoAU0v8Hkyw/TBs0Zf9PDZZIRzPgLq0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzIvRDJGRjA3OTMyQzNGNEMxQjM0NjVGRjRGMEQ5NjQ4NDczM0UwMkVBRC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzB2OEhreXdfVEJzMFpmOVBEWlpJUnpQ Z0xxMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00 MTliLTRkYjUtYmJkMy01Y2NhNjMzY2FlM2YvMi9EMkZGMDc5MzJDM0Y0QzFCMzQ2 NUZGNEYwRDk2NDg0NzMzRTAyRUFELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIb4lpK6lUK4xSpcHgpRl eRhT6bUgDj5dMHvCtVV+jevuOl6vpYf/uCWx0wOaDyFuR3OuEl6MCr+Z/x21SBNZ Qpt6+WOr9irWEyMXLmlwG1G8YYRAaRX1WKiKLya95+0EM23Upr6PCmBPBjv9QJmj lKj/mDCw/ecHi4LQ0CksGOMA9sYHwcW8QT3kDLgGhEyHSt2+xqCDU4eoA6gsUhI4 Hco4DAuzO399uxEc8maI291iaBI/1ZVkz4vzbD56sD8J5CWEaLQYE0ylsOflLG29 CULRGrSLHLgWFt0jIx5bqhhlCMTh9kC0SpQT6lgc/zfOjAS8LGtK2ibwpCV07t5i 4Q== -----END CERTIFICATE-----Generated at Sat Jun 13 08:06:20 2026 by rpki-client