$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft File: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft (raw, json) Hash identifier: KYkjzJDLyjkLOOdj+aAta4fgI/uWLufDifKk4+RI+fM= Subject key identifier: 8A:66:C1:D0:EB:01:F2:1E:F9:7A:0B:8D:CB:D3:DE:A2:B3:ED:0E:FC Authority key identifier: 5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE Certificate issuer: /CN=5da3215abfa4621d57709f838a92801f2e90ddfe Certificate serial: 73F1674DAA5A8659A4F1E9369EFB63175685786E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft Manifest number: 0526 Signing time: Tue 04 Nov 2025 13:12:06 +0000 Manifest this update: Tue 04 Nov 2025 13:07:06 +0000 Manifest next update: Wed 05 Nov 2025 16:24:06 +0000 Files and hashes: 1: 34352e38312e35362e302f32342d3234203d3e203634323637.roa (hash: qsXeuHbADvuh5upr+8Iu3ECZr4FlfF2jhb73a28zYXw=) 2: 34352e38312e35392e302f32342d3234203d3e20323132333834.roa (hash: 7ySWNlqh8pfpYqSc3fbfv+VTSwiuDNFNlc7aZa5se9U=) 3: 34352e38312e35372e302f32342d3234203d3e203631333137.roa (hash: Nt6v0on8wvNIRTqw0ZzJ5VjTWjEZFT63u0ZbVbhKyNc=) 4: 34352e38312e35382e302f32342d3234203d3e20323039323432.roa (hash: Cjq2FzLN5G1VEvkKyI6FB5noxcWUxvPOvV4W7hBfw5c=) 5: 326130393a643634303a3a2f32392d3239203d3e20313938333435.roa (hash: LaBCcb8mjeERCC5tHKO7thlovLIwutTtPGiGYEZVPF8=) 6: 34352e38312e35392e302f32342d3234203d3e20323131343339.roa (hash: Y0ZApSmGCRch+djTYBN+U0p8LaOUa+NCEgyRR8hvTcU=) 7: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl (hash: VXalDlZFNoq8C6VLVLSjuOKquo7jMJBj2ZXa4sNPoAA=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 16:24:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:f1:67:4d:aa:5a:86:59:a4:f1:e9:36:9e:fb:63:17:56:85:78:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5da3215abfa4621d57709f838a92801f2e90ddfe Validity Not Before: Nov 4 13:07:06 2025 GMT Not After : Nov 5 16:24:06 2025 GMT Subject: CN=8A66C1D0EB01F21EF97A0B8DCBD3DEA2B3ED0EFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:79:44:49:dd:36:ff:22:30:43:bb:04:14:26: 7f:de:2c:b3:d8:c5:22:71:f8:0d:bd:a3:e3:d0:7f: 4d:81:43:ef:f8:02:66:eb:4e:7b:20:e6:1c:f6:4d: 9a:ca:eb:6e:22:7a:7b:3c:00:8d:f4:fd:ae:46:d0: cb:fc:0c:7e:d0:c7:18:04:a4:61:c1:a8:b2:45:7f: 3d:d1:d2:8c:c5:78:10:99:84:82:9b:49:e5:79:dd: ab:9a:00:d4:3f:d3:6e:37:cc:48:5a:10:d7:68:a7: 8b:cf:a8:b6:0b:01:f0:37:63:69:f2:98:e1:75:56: 38:0a:a7:70:fc:2f:87:0e:52:21:31:34:e8:e8:ef: 0c:ee:6d:96:49:18:69:e2:16:f6:c8:d6:13:6e:59: 09:11:e3:5f:c6:23:5b:c4:52:fe:43:f7:d6:a7:a2: 8b:3c:ae:94:3f:2d:1d:53:84:e9:2d:70:4b:99:96: e1:0a:05:66:9b:92:df:ec:61:59:23:b5:fd:6d:d6: d1:06:9c:88:ea:6d:4f:48:55:17:ff:4d:07:02:c1: 0f:23:9e:e6:5e:6c:af:8c:6f:9f:bb:61:15:41:ad: a3:18:09:3f:30:f5:10:a9:6e:9b:17:4f:ff:51:ed: 99:39:27:3a:75:11:69:24:cf:64:be:8f:88:6f:b4: 5b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:66:C1:D0:EB:01:F2:1E:F9:7A:0B:8D:CB:D3:DE:A2:B3:ED:0E:FC X509v3 Authority Key Identifier: keyid:5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:40:31:d9:e8:51:cf:86:a3:40:9a:6e:60:88:50:c0:ac:11: ca:75:db:e7:ca:83:fe:b4:8d:58:c1:b3:35:6e:3d:0a:1e:7f: 3d:9b:a9:5d:e1:ca:08:17:cf:42:fd:6f:31:eb:cc:b0:c7:34: 0e:f8:58:6f:af:de:81:81:bd:c3:0a:de:40:dd:1b:40:d2:49: 60:68:4a:f4:69:54:8d:c5:fb:77:74:ef:81:c9:49:1c:f3:31: 20:e4:2c:41:fc:03:34:40:7d:4d:c3:68:93:c0:2b:dc:ff:15: d2:78:57:27:a9:63:bc:d2:94:78:db:46:50:4c:e7:78:3b:0b: fd:26:66:01:ba:6f:c4:4e:a3:d5:1f:d0:95:26:fd:28:7b:bb: b5:3b:78:77:1f:01:70:f5:44:e3:a5:0c:b0:ff:3a:6e:f3:f7: 33:0f:1d:04:4e:36:b6:aa:c8:0f:26:43:d9:4b:c0:c3:f8:17: be:d4:d6:c0:8f:04:4e:bc:ae:ed:71:b4:00:a0:51:ff:9e:4d: 90:a8:71:ed:05:31:4d:34:48:1f:e3:b7:bf:6b:96:8e:6d:e6: 68:6c:5e:6e:98:16:3b:61:93:5e:2e:e5:6e:8e:32:44:d0:17: 24:2a:1d:e9:67:50:3e:b8:ad:e2:72:1a:53:04:fe:b4:07:44: 08:36:17:d9 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUc/FnTapahlmk8ek2nvtjF1aFeG4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRhMzIxNWFiZmE0NjIxZDU3NzA5ZjgzOGE5MjgwMWYy ZTkwZGRmZTAeFw0yNTExMDQxMzA3MDZaFw0yNTExMDUxNjI0MDZaMDMxMTAvBgNV BAMTKDhBNjZDMUQwRUIwMUYyMUVGOTdBMEI4RENCRDNERUEyQjNFRDBFRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaeURJ3Tb/IjBDuwQUJn/eLLPY xSJx+A29o+PQf02BQ+/4AmbrTnsg5hz2TZrK624iens8AI30/a5G0Mv8DH7QxxgE pGHBqLJFfz3R0ozFeBCZhIKbSeV53auaANQ/0243zEhaENdop4vPqLYLAfA3Y2ny mOF1VjgKp3D8L4cOUiExNOjo7wzubZZJGGniFvbI1hNuWQkR41/GI1vEUv5D99an oos8rpQ/LR1ThOktcEuZluEKBWabkt/sYVkjtf1t1tEGnIjqbU9IVRf/TQcCwQ8j nuZebK+Mb5+7YRVBraMYCT8w9RCpbpsXT/9R7Zk5Jzp1EWkkz2S+j4hvtFsFAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUimbB0OsB8h75eguNy9PeorPtDvwwHwYDVR0j BBgwFoAUXaMhWr+kYh1XcJ+DipKAHy6Q3f4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmYyNDU2N2ItN2E3NC00YzFmLWFhODUtZGQyNGFmNzNj Y2JiLzAvNURBMzIxNUFCRkE0NjIxRDU3NzA5RjgzOEE5MjgwMUYyRTkwRERGRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hhTWhXci1rWWgxWGNKLURpcEtBSHk2 UTNmNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjI0NTY3Yi03 YTc0LTRjMWYtYWE4NS1kZDI0YWY3M2NjYmIvMC81REEzMjE1QUJGQTQ2MjFENTc3 MDlGODM4QTkyODAxRjJFOTBEREZFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFEAx2ehRz4ajQJpuYIhQ wKwRynXb58qD/rSNWMGzNW49Ch5/PZupXeHKCBfPQv1vMevMsMc0DvhYb6/egYG9 wwreQN0bQNJJYGhK9GlUjcX7d3TvgclJHPMxIOQsQfwDNEB9TcNok8Ar3P8V0nhX J6ljvNKUeNtGUEzneDsL/SZmAbpvxE6j1R/QlSb9KHu7tTt4dx8BcPVE46UMsP86 bvP3Mw8dBE42tqrIDyZD2UvAw/gXvtTWwI8ETryu7XG0AKBR/55NkKhx7QUxTTRI H+O3v2uWjm3maGxebpgWO2GTXi7lbo4yRNAXJCod6WdQPrit4nIaUwT+tAdECDYX 2Q== -----END CERTIFICATE-----Generated at Tue Nov 4 20:18:17 2025 by rpki-client