$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft File: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft (raw, json) Hash identifier: D6ig+iiDnYeUfSlOjW1d2ybMlszSxwNbeYgmCpR3GhM= Subject key identifier: E0:3E:EF:55:D4:35:BE:EE:14:EC:22:87:8B:3E:7E:32:31:E3:DB:2A Authority key identifier: 5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE Certificate issuer: /CN=5da3215abfa4621d57709f838a92801f2e90ddfe Certificate serial: 7B0C7162801C5AFD44CB7BFD0B291FFC5DD0D4ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft Manifest number: 05C7 Signing time: Sun 01 Mar 2026 00:39:41 +0000 Manifest this update: Sun 01 Mar 2026 00:34:41 +0000 Manifest next update: Mon 02 Mar 2026 04:02:41 +0000 Files and hashes: 1: 34352e38312e35372e302f32342d3234203d3e203631333137.roa (hash: wLY+uAAZaapza9rnm+rvcKy/RGqb5OINBZoQF5pW50I=) 2: 34352e38312e35382e302f32342d3234203d3e20323039323432.roa (hash: Cjq2FzLN5G1VEvkKyI6FB5noxcWUxvPOvV4W7hBfw5c=) 3: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl (hash: dhK9Fy9w4sQtSFtaRS8AbaDJOHYHckwZFDd4/E6Fmf4=) 4: 34352e38312e35392e302f32342d3234203d3e20323132333834.roa (hash: Z55LDvJNhjuOlIMhPU51UoeT0VK3qlu4pE/EHJdIaDE=) 5: 34352e38312e35392e302f32342d3234203d3e20323131343339.roa (hash: PzQrEpsLL9icV7+wAMJ22TsUek+9+7dTOPFgPD6vtOM=) 6: 34352e38312e35382e302f32342d3234203d3e203133333335.roa (hash: q1odFkTeiB/pBEbWg5JpQkAxpmrH9S0QmR2/CtllItc=) 7: 326130393a643634303a3a2f32392d3239203d3e20313938333435.roa (hash: 2ZJoizA2XrGcopsLwhs8oaMaqFtkP0G9iClmvxEJgnM=) 8: 34352e38312e35362e302f32342d3234203d3e20383334.roa (hash: RvBwqpsMFaC4kQ3VLDNfZDDqspDe1yGNu+5Eo3ESLBg=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 04:02:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:0c:71:62:80:1c:5a:fd:44:cb:7b:fd:0b:29:1f:fc:5d:d0:d4:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5da3215abfa4621d57709f838a92801f2e90ddfe Validity Not Before: Mar 1 00:34:41 2026 GMT Not After : Mar 2 04:02:41 2026 GMT Subject: CN=E03EEF55D435BEEE14EC22878B3E7E3231E3DB2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4a:9e:47:0f:f0:45:b5:70:02:89:14:68:e9: a7:8c:2d:37:f3:d7:ba:98:c6:31:08:4a:b3:21:81: 63:fe:5b:dc:15:92:6a:01:2a:b7:b2:4a:18:7c:66: 39:25:7c:bc:31:b3:31:9f:1e:56:ff:9a:83:4c:57: a7:df:95:d1:03:40:27:85:75:b4:be:16:03:5f:0e: bb:9a:fc:76:1c:eb:8c:13:22:df:b0:1a:b9:28:d3: 55:4c:f0:c3:c5:b0:0a:1a:43:7a:9c:70:9c:5f:c0: ac:48:c6:31:8f:67:5c:54:ba:26:e9:79:d7:c0:28: 52:aa:ea:a4:71:c6:7c:9a:7a:57:c0:80:7a:a5:9c: ff:db:c7:97:1d:6b:70:97:32:f5:0d:9d:c5:5a:cf: 94:ed:d8:b9:0c:ac:b0:b7:64:95:2e:19:89:ed:19: 70:44:72:84:b4:42:91:44:9f:57:00:5e:fd:92:85: 2c:07:64:21:c3:82:d8:18:46:b5:16:5b:f7:96:cc: bc:ec:17:99:74:0c:66:da:c4:94:c8:a2:13:7b:bb: fa:45:f0:de:48:94:44:d7:6a:c9:4e:81:de:04:f5: 73:f5:39:6d:a7:5d:d2:b1:2c:6a:3a:93:56:2c:bc: 44:07:28:49:c8:1c:56:76:5d:fe:2f:0c:0c:72:99: d0:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:3E:EF:55:D4:35:BE:EE:14:EC:22:87:8B:3E:7E:32:31:E3:DB:2A X509v3 Authority Key Identifier: keyid:5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:3c:0e:d2:9b:0e:17:48:b4:1d:15:f2:d3:1f:2b:75:66:ac: a7:78:3e:a5:c1:0f:4a:4d:5d:c1:39:85:75:65:66:23:48:d3: eb:67:34:61:a7:0a:38:ff:5b:f1:d9:8a:5b:b2:6b:e0:89:d2: 89:bd:2f:8a:1e:0c:22:47:ff:bd:ec:c4:db:5b:e6:1f:7e:88: 78:19:8e:3a:83:61:bb:0b:fe:8f:bf:46:06:d5:d6:9f:80:8c: 68:fb:c3:72:85:67:40:c2:12:5e:9d:1d:d7:8a:a7:65:f9:fa: 98:d5:52:4e:86:d0:15:b3:36:42:c0:4b:d7:2e:2d:ce:05:a0: b2:c6:cd:36:b4:ca:16:b3:21:31:28:93:00:30:36:1a:32:35: 7c:14:05:7d:a4:04:ea:33:f4:89:b7:35:cd:ba:21:be:a6:e8: d6:e3:c1:4e:ec:7f:50:b0:7d:4b:02:a9:55:41:ae:09:d9:c4: 91:5c:7f:8c:1e:ea:57:40:a2:ec:0d:d2:01:45:ea:69:1e:68: b2:d8:68:47:60:3e:e8:18:35:99:4e:cc:d5:d5:8e:84:ee:8e: bf:72:34:e2:b9:cf:15:33:c6:56:e2:16:04:49:ca:0f:6a:28: 3a:76:fe:a0:49:dc:2b:ba:52:64:ff:32:2e:9d:6a:49:74:14: 47:f3:a5:3d -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUewxxYoAcWv1Ey3v9Cykf/F3Q1O0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRhMzIxNWFiZmE0NjIxZDU3NzA5ZjgzOGE5MjgwMWYy ZTkwZGRmZTAeFw0yNjAzMDEwMDM0NDFaFw0yNjAzMDIwNDAyNDFaMDMxMTAvBgNV BAMTKEUwM0VFRjU1RDQzNUJFRUUxNEVDMjI4NzhCM0U3RTMyMzFFM0RCMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+Sp5HD/BFtXACiRRo6aeMLTfz 17qYxjEISrMhgWP+W9wVkmoBKreyShh8ZjklfLwxszGfHlb/moNMV6ffldEDQCeF dbS+FgNfDrua/HYc64wTIt+wGrko01VM8MPFsAoaQ3qccJxfwKxIxjGPZ1xUuibp edfAKFKq6qRxxnyaelfAgHqlnP/bx5cda3CXMvUNncVaz5Tt2LkMrLC3ZJUuGYnt GXBEcoS0QpFEn1cAXv2ShSwHZCHDgtgYRrUWW/eWzLzsF5l0DGbaxJTIohN7u/pF 8N5IlETXaslOgd4E9XP1OW2nXdKxLGo6k1YsvEQHKEnIHFZ2Xf4vDAxymdCVAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU4D7vVdQ1vu4U7CKHiz5+MjHj2yowHwYDVR0j BBgwFoAUXaMhWr+kYh1XcJ+DipKAHy6Q3f4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmYyNDU2N2ItN2E3NC00YzFmLWFhODUtZGQyNGFmNzNj Y2JiLzAvNURBMzIxNUFCRkE0NjIxRDU3NzA5RjgzOEE5MjgwMUYyRTkwRERGRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hhTWhXci1rWWgxWGNKLURpcEtBSHk2 UTNmNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjI0NTY3Yi03 YTc0LTRjMWYtYWE4NS1kZDI0YWY3M2NjYmIvMC81REEzMjE1QUJGQTQ2MjFENTc3 MDlGODM4QTkyODAxRjJFOTBEREZFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADDwO0psOF0i0HRXy0x8r dWasp3g+pcEPSk1dwTmFdWVmI0jT62c0YacKOP9b8dmKW7Jr4InSib0vih4MIkf/ vezE21vmH36IeBmOOoNhuwv+j79GBtXWn4CMaPvDcoVnQMISXp0d14qnZfn6mNVS TobQFbM2QsBL1y4tzgWgssbNNrTKFrMhMSiTADA2GjI1fBQFfaQE6jP0ibc1zboh vqbo1uPBTux/ULB9SwKpVUGuCdnEkVx/jB7qV0Ci7A3SAUXqaR5osthoR2A+6Bg1 mU7M1dWOhO6Ov3I04rnPFTPGVuIWBEnKD2ooOnb+oEncK7pSZP8yLp1qSXQUR/Ol PQ== -----END CERTIFICATE-----Generated at Sun Mar 1 20:21:59 2026 by rpki-client