$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft File: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft (raw, json) Hash identifier: IyPMYkz0EHxgmuQl4aQ6MMG3OY2ftG0gQQlP4UM6Rzs= Subject key identifier: 12:74:72:01:A4:33:1F:C0:C7:3F:09:49:DE:D5:FB:A4:95:8C:EB:F0 Authority key identifier: 5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE Certificate issuer: /CN=5da3215abfa4621d57709f838a92801f2e90ddfe Certificate serial: 64BDBBB21A9E7323B306411069C4399D702D674D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft Manifest number: 0652 Signing time: Sat 13 Jun 2026 00:47:45 +0000 Manifest this update: Sat 13 Jun 2026 00:42:45 +0000 Manifest next update: Sun 14 Jun 2026 01:01:45 +0000 Files and hashes: 1: 34352e38312e35372e302f32342d3234203d3e203631333137.roa (hash: wLY+uAAZaapza9rnm+rvcKy/RGqb5OINBZoQF5pW50I=) 2: 34352e38312e35392e302f32342d3234203d3e20323131343339.roa (hash: PzQrEpsLL9icV7+wAMJ22TsUek+9+7dTOPFgPD6vtOM=) 3: 34352e38312e35382e302f32342d3234203d3e20323039323432.roa (hash: UKvcqUxUrgd2F0qduNt/9nJuPUaDtCItgdXC0fI9BhQ=) 4: 34352e38312e35362e302f32342d3234203d3e20383334.roa (hash: RvBwqpsMFaC4kQ3VLDNfZDDqspDe1yGNu+5Eo3ESLBg=) 5: 326130393a643634303a3a2f32392d3239203d3e20313938333435.roa (hash: 2ZJoizA2XrGcopsLwhs8oaMaqFtkP0G9iClmvxEJgnM=) 6: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl (hash: 0d1krBw9rVaKKwHICS2bMsemwnC6W8+3rB46HrtSUWE=) 7: 34352e38312e35392e302f32342d3234203d3e20323132333834.roa (hash: Z55LDvJNhjuOlIMhPU51UoeT0VK3qlu4pE/EHJdIaDE=) 8: 34352e38312e35382e302f32342d3234203d3e203133333335.roa (hash: q1odFkTeiB/pBEbWg5JpQkAxpmrH9S0QmR2/CtllItc=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:bd:bb:b2:1a:9e:73:23:b3:06:41:10:69:c4:39:9d:70:2d:67:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5da3215abfa4621d57709f838a92801f2e90ddfe Validity Not Before: Jun 13 00:42:45 2026 GMT Not After : Jun 14 01:01:45 2026 GMT Subject: CN=12747201A4331FC0C73F0949DED5FBA4958CEBF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b8:52:18:78:51:d5:38:e2:31:c2:b5:96:9f: eb:f6:72:d2:9d:ef:30:ab:ba:2b:8d:39:11:c1:06: 49:49:da:86:c4:eb:c2:2c:8c:3b:49:db:bb:d7:49: 5a:1d:ac:5f:94:96:3f:32:06:94:a5:20:24:7a:45: 5e:bb:2e:3f:1f:69:8c:c2:f8:2b:ff:60:61:e8:5b: c8:1a:8b:e8:3f:7b:0e:fe:6e:31:43:5c:9b:6c:e8: 26:a1:c1:c7:86:39:ac:cf:a0:bb:a2:ce:60:a2:89: 39:a1:1a:8a:23:48:b0:e8:5a:43:06:d1:6d:51:03: 12:a2:bc:82:74:6e:b5:03:52:d2:12:1e:df:9d:47: dd:bf:78:69:fc:8a:d9:ad:57:ad:cb:60:b3:d9:11: 13:96:f1:30:5a:cb:af:5c:7f:f8:69:52:c3:74:66: d7:61:be:b2:05:9b:92:5a:40:55:5f:f9:d9:1e:4b: 4c:a3:c8:d5:2e:f2:71:a5:96:04:4c:29:04:8a:5d: b7:e5:3a:d1:cd:81:a9:dd:46:72:3c:a8:de:79:0e: 40:f8:35:06:ac:19:01:7a:4f:21:83:7c:38:7d:7d: 86:be:e2:2b:27:ba:9d:8b:7c:f7:eb:31:e6:c8:94: ab:fb:68:6c:f2:6f:8a:c2:db:b7:20:a6:43:06:af: 7a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:74:72:01:A4:33:1F:C0:C7:3F:09:49:DE:D5:FB:A4:95:8C:EB:F0 X509v3 Authority Key Identifier: keyid:5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:eb:4d:05:5a:01:c1:0e:02:81:6b:ed:07:f1:6f:03:32:0e: 58:99:4c:08:8a:53:59:65:9c:d1:5e:d2:51:d2:cd:07:5f:a4: 8d:3e:18:e9:f2:70:a1:cb:d6:a4:dc:4e:e9:d4:ec:5f:78:e4: 00:40:29:63:4c:af:9d:ba:7a:f4:70:dc:42:a2:b4:8b:a1:6f: be:a1:8d:0a:2e:f6:dc:3a:22:fb:0d:dd:ee:10:4e:0e:ae:52: be:4b:8a:8d:8c:ed:a1:12:c6:82:4a:4b:9a:7f:b4:2d:1b:d0: 7e:ce:90:8c:98:1a:10:99:09:ce:c5:97:6a:61:3b:e8:9c:c7: cf:23:60:57:aa:a5:78:41:5a:9e:de:b1:1e:59:ae:f9:69:e3: fc:d2:8c:99:67:d1:5a:32:f4:ee:19:17:36:95:9d:d8:0b:39: 65:f6:a3:93:1f:e3:5f:2e:b9:66:9c:7f:01:7e:22:0e:71:fd: 3c:6f:dd:66:d2:2c:55:a9:3a:f1:9d:fe:a6:7e:2d:d9:65:92: 4d:ba:f5:90:33:d0:10:24:67:a5:06:1f:ad:ef:55:5b:6d:17: 5e:43:8c:9c:13:f6:80:d1:14:e5:65:7b:60:74:04:87:53:9d: 5c:d2:bd:f3:bc:14:27:36:88:bb:a1:aa:13:ff:4e:a2:76:39: a9:20:73:7e -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUZL27shqecyOzBkEQacQ5nXAtZ00wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRhMzIxNWFiZmE0NjIxZDU3NzA5ZjgzOGE5MjgwMWYy ZTkwZGRmZTAeFw0yNjA2MTMwMDQyNDVaFw0yNjA2MTQwMTAxNDVaMDMxMTAvBgNV BAMTKDEyNzQ3MjAxQTQzMzFGQzBDNzNGMDk0OURFRDVGQkE0OTU4Q0VCRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGuFIYeFHVOOIxwrWWn+v2ctKd 7zCruiuNORHBBklJ2obE68IsjDtJ27vXSVodrF+Ulj8yBpSlICR6RV67Lj8faYzC +Cv/YGHoW8gai+g/ew7+bjFDXJts6CahwceGOazPoLuizmCiiTmhGoojSLDoWkMG 0W1RAxKivIJ0brUDUtISHt+dR92/eGn8itmtV63LYLPZEROW8TBay69cf/hpUsN0 ZtdhvrIFm5JaQFVf+dkeS0yjyNUu8nGllgRMKQSKXbflOtHNgandRnI8qN55DkD4 NQasGQF6TyGDfDh9fYa+4isnup2LfPfrMebIlKv7aGzyb4rC27cgpkMGr3oHAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUEnRyAaQzH8DHPwlJ3tX7pJWM6/AwHwYDVR0j BBgwFoAUXaMhWr+kYh1XcJ+DipKAHy6Q3f4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmYyNDU2N2ItN2E3NC00YzFmLWFhODUtZGQyNGFmNzNj Y2JiLzAvNURBMzIxNUFCRkE0NjIxRDU3NzA5RjgzOEE5MjgwMUYyRTkwRERGRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hhTWhXci1rWWgxWGNKLURpcEtBSHk2 UTNmNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjI0NTY3Yi03 YTc0LTRjMWYtYWE4NS1kZDI0YWY3M2NjYmIvMC81REEzMjE1QUJGQTQ2MjFENTc3 MDlGODM4QTkyODAxRjJFOTBEREZFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIutNBVoBwQ4CgWvtB/Fv AzIOWJlMCIpTWWWc0V7SUdLNB1+kjT4Y6fJwocvWpNxO6dTsX3jkAEApY0yvnbp6 9HDcQqK0i6FvvqGNCi723Doi+w3d7hBODq5SvkuKjYztoRLGgkpLmn+0LRvQfs6Q jJgaEJkJzsWXamE76JzHzyNgV6qleEFant6xHlmu+Wnj/NKMmWfRWjL07hkXNpWd 2As5Zfajkx/jXy65Zpx/AX4iDnH9PG/dZtIsVak68Z3+pn4t2WWSTbr1kDPQECRn pQYfre9VW20XXkOMnBP2gNEU5WV7YHQEh1OdXNK987wUJzaIu6GqE/9OonY5qSBz fg== -----END CERTIFICATE-----Generated at Sat Jun 13 08:27:38 2026 by rpki-client