$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft File: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft (raw, json) Hash identifier: nciY/w+plkF6JAkTIsDlqMoNAGYAZENgghEgaDgjAg8= Subject key identifier: 1D:38:08:CA:F2:A4:B2:41:B0:DF:2C:78:57:19:07:11:C9:36:1C:F7 Authority key identifier: 5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE Certificate issuer: /CN=5da3215abfa4621d57709f838a92801f2e90ddfe Certificate serial: 5EA42DE85960251B267DFC2DD394C9119C736641 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft Manifest number: 04AC Signing time: Tue 05 Aug 2025 16:32:21 +0000 Manifest this update: Tue 05 Aug 2025 16:27:21 +0000 Manifest next update: Wed 06 Aug 2025 16:59:21 +0000 Files and hashes: 1: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl (hash: 5t8DdLHLXVFHH0s9ShzswUcEw9lZRE9mpmc1qSLz/z4=) 2: 34352e38312e35382e302f32342d3234203d3e20323039323432.roa (hash: Cjq2FzLN5G1VEvkKyI6FB5noxcWUxvPOvV4W7hBfw5c=) 3: 326130393a643634303a3a2f32392d3239203d3e20313938333435.roa (hash: LaBCcb8mjeERCC5tHKO7thlovLIwutTtPGiGYEZVPF8=) 4: 34352e38312e35392e302f32342d3234203d3e20323132333834.roa (hash: 7ySWNlqh8pfpYqSc3fbfv+VTSwiuDNFNlc7aZa5se9U=) 5: 34352e38312e35392e302f32342d3234203d3e20323131343339.roa (hash: Y0ZApSmGCRch+djTYBN+U0p8LaOUa+NCEgyRR8hvTcU=) 6: 34352e38312e35362e302f32342d3234203d3e203634323637.roa (hash: kGVNeEKX35ugOpsFmA5GwCl6f0GnZpLJS8pEn3cyWJI=) 7: 34352e38312e35372e302f32342d3234203d3e203631333137.roa (hash: Nt6v0on8wvNIRTqw0ZzJ5VjTWjEZFT63u0ZbVbhKyNc=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 06 Aug 2025 16:59:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:a4:2d:e8:59:60:25:1b:26:7d:fc:2d:d3:94:c9:11:9c:73:66:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5da3215abfa4621d57709f838a92801f2e90ddfe Validity Not Before: Aug 5 16:27:21 2025 GMT Not After : Aug 6 16:59:21 2025 GMT Subject: CN=1D3808CAF2A4B241B0DF2C7857190711C9361CF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7d:17:55:b4:2f:ee:22:b3:8e:08:11:2d:01: 75:60:46:d6:ed:d5:16:92:9d:9b:9c:e9:dd:b4:7c: 83:97:f5:62:8f:e8:f2:ae:b6:30:53:ca:a4:71:13: e3:f7:cf:12:54:dd:66:2d:f6:95:1c:78:ee:89:05: bb:8d:75:3d:f9:c7:78:c5:ad:a3:55:c9:d7:73:6a: 65:93:e5:9c:d9:0d:d2:8d:e3:bb:f0:74:94:b6:19: 5d:40:3f:4f:65:30:c9:e1:ad:b9:3a:06:1f:8e:d8: e1:bb:2d:68:20:3a:00:eb:71:00:fa:5c:ba:80:b2: 33:bf:eb:d3:1f:6d:e8:07:49:33:91:fe:1d:34:38: 7a:d2:dc:bd:39:70:3a:d9:a4:12:74:23:f4:cb:c2: b8:92:bc:c9:94:82:4f:f1:a3:c4:f1:9c:51:2b:02: 76:86:eb:92:2d:56:3b:ee:f8:56:b1:fe:93:99:1b: 56:a9:35:a3:a8:cc:c1:bb:c2:09:aa:c5:09:10:18: d2:d5:e5:c4:50:cb:7c:6b:20:67:9e:5c:8d:cc:30: 4b:70:0f:6f:3f:6a:97:23:35:11:c4:c9:56:ef:96: 66:44:34:3d:1b:01:1a:32:77:c9:75:ee:cd:78:21: 63:76:27:98:f6:fa:a6:59:2a:67:86:b9:02:9a:1a: 2f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:38:08:CA:F2:A4:B2:41:B0:DF:2C:78:57:19:07:11:C9:36:1C:F7 X509v3 Authority Key Identifier: keyid:5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:e3:da:14:7d:9c:45:71:6b:17:84:2e:73:01:e4:96:36:28: ca:f7:ca:94:0b:2f:14:aa:f3:3f:a2:da:5f:04:ba:d3:ec:33: 14:cb:41:54:a2:de:03:5f:cf:79:78:81:a4:19:1c:ac:65:fd: c2:34:11:05:98:b8:dc:e4:da:99:aa:5b:e8:41:12:b4:67:7f: 66:32:1f:63:b1:86:52:f7:f9:5b:31:35:21:41:07:2f:eb:ca: 36:22:fa:2a:00:83:c4:42:1f:01:96:9f:83:ce:a5:a1:92:f8: b1:52:c2:42:c8:e2:0a:b7:6e:18:13:5e:13:78:04:de:df:79: 28:d2:97:fb:be:e0:2d:9e:05:8f:f4:b4:8a:15:67:7d:15:d9: 91:f6:8f:18:82:5d:e1:fd:bd:f2:4c:48:51:87:2f:a9:7c:88: f3:2b:d6:82:3a:59:37:76:2a:a8:c9:71:a3:43:a9:fa:82:a4: 07:bf:e6:81:a5:66:73:ba:6b:2d:dd:52:a0:66:85:7d:63:67: 03:0b:19:f9:cf:58:63:a1:f2:34:df:b2:85:df:6d:23:14:22: 2d:dc:fd:69:ae:13:b9:13:ce:b5:12:1a:3c:9d:bf:c3:21:22: 3a:c0:93:d5:cf:d7:92:a3:d2:d9:e4:d3:87:14:5e:39:6c:8d: ef:67:60:8a -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUXqQt6FlgJRsmffwt05TJEZxzZkEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRhMzIxNWFiZmE0NjIxZDU3NzA5ZjgzOGE5MjgwMWYy ZTkwZGRmZTAeFw0yNTA4MDUxNjI3MjFaFw0yNTA4MDYxNjU5MjFaMDMxMTAvBgNV BAMTKDFEMzgwOENBRjJBNEIyNDFCMERGMkM3ODU3MTkwNzExQzkzNjFDRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCfRdVtC/uIrOOCBEtAXVgRtbt 1RaSnZuc6d20fIOX9WKP6PKutjBTyqRxE+P3zxJU3WYt9pUceO6JBbuNdT35x3jF raNVyddzamWT5ZzZDdKN47vwdJS2GV1AP09lMMnhrbk6Bh+O2OG7LWggOgDrcQD6 XLqAsjO/69MfbegHSTOR/h00OHrS3L05cDrZpBJ0I/TLwriSvMmUgk/xo8TxnFEr AnaG65ItVjvu+Fax/pOZG1apNaOozMG7wgmqxQkQGNLV5cRQy3xrIGeeXI3MMEtw D28/apcjNRHEyVbvlmZEND0bARoyd8l17s14IWN2J5j2+qZZKmeGuQKaGi8pAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUHTgIyvKkskGw3yx4VxkHEck2HPcwHwYDVR0j BBgwFoAUXaMhWr+kYh1XcJ+DipKAHy6Q3f4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmYyNDU2N2ItN2E3NC00YzFmLWFhODUtZGQyNGFmNzNj Y2JiLzAvNURBMzIxNUFCRkE0NjIxRDU3NzA5RjgzOEE5MjgwMUYyRTkwRERGRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hhTWhXci1rWWgxWGNKLURpcEtBSHk2 UTNmNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjI0NTY3Yi03 YTc0LTRjMWYtYWE4NS1kZDI0YWY3M2NjYmIvMC81REEzMjE1QUJGQTQ2MjFENTc3 MDlGODM4QTkyODAxRjJFOTBEREZFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATePaFH2cRXFrF4QucwHk ljYoyvfKlAsvFKrzP6LaXwS60+wzFMtBVKLeA1/PeXiBpBkcrGX9wjQRBZi43OTa mapb6EEStGd/ZjIfY7GGUvf5WzE1IUEHL+vKNiL6KgCDxEIfAZafg86loZL4sVLC QsjiCrduGBNeE3gE3t95KNKX+77gLZ4Fj/S0ihVnfRXZkfaPGIJd4f298kxIUYcv qXyI8yvWgjpZN3YqqMlxo0Op+oKkB7/mgaVmc7prLd1SoGaFfWNnAwsZ+c9YY6Hy NN+yhd9tIxQiLdz9aa4TuRPOtRIaPJ2/wyEiOsCT1c/XkqPS2eTThxReOWyN72dg ig== -----END CERTIFICATE-----Generated at Wed Aug 6 07:50:34 2025 by rpki-client