$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft File: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft (raw, json) Hash identifier: qtZgF5oMFURleOrUfTcfPRWqWwESlXD+NXjMjUEPzXM= Subject key identifier: 24:AB:55:52:11:94:04:67:35:87:86:46:EA:E2:25:DD:57:65:97:53 Authority key identifier: F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD Certificate issuer: /CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Certificate serial: 631ABFA023E0A5E9522D28D0EC6B03B12203CA14 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft Manifest number: 063A Signing time: Sun 01 Mar 2026 16:02:11 +0000 Manifest this update: Sun 01 Mar 2026 15:57:11 +0000 Manifest next update: Mon 02 Mar 2026 17:34:11 +0000 Files and hashes: 1: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl (hash: th8FmAN+rQa5DboovuB2LnpxG1j4cZSlpEuOmJu7hLo=) 2: 34362e3235302e3234302e302f32302d3234203d3e20313431393935.roa (hash: 5zFYerIngzLwSwbeiiGPHVQadLBE1/J7oEEXeFR/OFM=) 3: 326130303a386530303a313a3a2f34382d3438203d3e203230373132.roa (hash: 2qiBxfK+UGsXjYXrt6Cm3jSdVu6qoZhGBCRhmjYUhjg=) 4: 34362e3235302e3232342e302f32302d3234203d3e20313431393935.roa (hash: ht90MUomGkgWhJETWF0rvugOS8SI8qvW9OndsUlGu80=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 15:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:1a:bf:a0:23:e0:a5:e9:52:2d:28:d0:ec:6b:03:b1:22:03:ca:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Validity Not Before: Mar 1 15:57:11 2026 GMT Not After : Mar 2 17:34:11 2026 GMT Subject: CN=24AB55521194046735878646EAE225DD57659753 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ca:90:23:ce:67:52:46:e7:66:8d:39:79:8f: ec:e0:b3:e7:6e:76:17:7f:cf:d1:0d:f3:25:fc:da: a2:76:7c:72:2d:db:39:05:42:23:93:d2:d8:cf:28: e1:dd:e5:a5:2f:ba:b0:03:cd:af:3d:56:c0:95:8e: 7e:79:09:02:dc:17:a2:ad:fa:61:f7:c6:eb:bc:b6: 16:cc:f7:2d:5d:fe:2c:8b:10:51:b0:a3:4a:81:e2: fc:7b:e1:61:6c:60:76:25:d9:38:aa:2a:c2:3d:0a: 20:19:31:6d:df:06:56:be:46:b6:49:c8:60:f9:a7: f2:a0:c2:f7:71:a4:ef:96:68:88:d8:ab:ac:90:10: 8b:81:0c:f6:10:64:be:c0:e8:a8:16:fc:12:b7:73: b2:1f:89:77:5e:af:41:03:4c:96:49:72:eb:3a:d4: a5:1a:c3:da:16:1e:2c:53:0d:82:9d:98:04:a5:15: 78:20:93:41:4e:db:04:21:77:48:52:e7:30:ac:20: 6c:ab:00:b1:1b:30:5c:29:8d:ed:9e:2d:fb:2b:b1: 44:26:9d:3e:2b:b1:47:d0:01:4c:f8:45:8e:ef:56: f1:b6:6a:97:2d:ed:8e:3f:a6:b8:6d:d1:38:0a:c0: 04:18:96:d6:cf:7f:fc:28:a7:83:d2:42:32:42:34: 27:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:AB:55:52:11:94:04:67:35:87:86:46:EA:E2:25:DD:57:65:97:53 X509v3 Authority Key Identifier: keyid:F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:4b:f4:f2:86:59:0d:f0:d7:d3:67:64:d0:da:34:8a:99:25: ed:07:b2:4d:ad:bc:d9:fe:f8:4f:a3:16:10:82:6c:f5:d0:a4: fd:ca:33:d6:bd:5b:24:45:f3:7a:ba:f4:01:77:72:4b:6f:51: 2b:f0:ae:cc:83:61:84:5c:44:95:bb:6b:9e:ad:41:d6:ae:7a: a5:7a:31:4d:0d:51:21:15:13:78:cf:6a:1a:52:d8:88:df:92: 5e:e5:2f:2c:f6:c8:16:91:8e:2a:62:a0:f0:1c:a3:d6:08:00: f9:66:9c:fa:b8:60:15:d8:74:22:fe:eb:cb:56:cb:8b:96:e8: 48:66:ac:27:6d:54:47:e6:eb:ca:de:ff:54:f9:c7:59:1b:5b: 1c:fe:ff:f3:1b:dd:b6:8c:62:ed:93:01:0d:25:e1:7e:e2:cd: 41:cb:45:33:35:02:8b:20:40:2f:e3:3f:bc:e6:f9:98:93:ce: fa:52:10:30:2c:f6:f2:dc:d2:b3:d8:d0:a5:7f:32:7b:dd:a3: d8:fd:8f:33:34:ef:1a:e4:aa:88:12:2e:b9:84:1a:dd:50:84: 4f:8a:ca:d9:b9:d8:af:ba:ab:b6:df:58:85:44:f5:d9:ea:35: ff:79:dc:59:d0:be:88:04:52:1c:ad:c3:7c:16:a8:98:22:1a: c6:7c:57:b1 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUYxq/oCPgpelSLSjQ7GsDsSIDyhQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjI5ZmJhYjRkYjg2N2Y2YmQ5YTdlZmY2YWE1NWQ5OGMx NjJlMWFhZDAeFw0yNjAzMDExNTU3MTFaFw0yNjAzMDIxNzM0MTFaMDMxMTAvBgNV BAMTKDI0QUI1NTUyMTE5NDA0NjczNTg3ODY0NkVBRTIyNURENTc2NTk3NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoypAjzmdSRudmjTl5j+zgs+du dhd/z9EN8yX82qJ2fHIt2zkFQiOT0tjPKOHd5aUvurADza89VsCVjn55CQLcF6Kt +mH3xuu8thbM9y1d/iyLEFGwo0qB4vx74WFsYHYl2TiqKsI9CiAZMW3fBla+RrZJ yGD5p/KgwvdxpO+WaIjYq6yQEIuBDPYQZL7A6KgW/BK3c7IfiXder0EDTJZJcus6 1KUaw9oWHixTDYKdmASlFXggk0FO2wQhd0hS5zCsIGyrALEbMFwpje2eLfsrsUQm nT4rsUfQAUz4RY7vVvG2apct7Y4/prht0TgKwAQYltbPf/wop4PSQjJCNCe9AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUJKtVUhGUBGc1h4ZG6uIl3Vdll1MwHwYDVR0j BBgwFoAU8p+6tNuGf2vZp+/2qlXZjBYuGq0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmY1MmQ4MTQtM2QyZi00ZGY0LTgxNDAtZGZiNTMwZjc0 OTEyLzAvRjI5RkJBQjREQjg2N0Y2QkQ5QTdFRkY2QUE1NUQ5OEMxNjJFMUFBRC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhwLTZ0TnVHZjJ2WnAtXzJxbFhaakJZ dUdxMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjUyZDgxNC0z ZDJmLTRkZjQtODE0MC1kZmI1MzBmNzQ5MTIvMC9GMjlGQkFCNERCODY3RjZCRDlB N0VGRjZBQTU1RDk4QzE2MkUxQUFELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT0v08oZZDfDX02dk0No0 ipkl7QeyTa282f74T6MWEIJs9dCk/coz1r1bJEXzerr0AXdyS29RK/CuzINhhFxE lbtrnq1B1q56pXoxTQ1RIRUTeM9qGlLYiN+SXuUvLPbIFpGOKmKg8Byj1ggA+Wac +rhgFdh0Iv7ry1bLi5boSGasJ21UR+bryt7/VPnHWRtbHP7/8xvdtoxi7ZMBDSXh fuLNQctFMzUCiyBAL+M/vOb5mJPO+lIQMCz28tzSs9jQpX8ye92j2P2PMzTvGuSq iBIuuYQa3VCET4rK2bnYr7qrtt9YhUT12eo1/3ncWdC+iARSHK3DfBaomCIaxnxX sQ== -----END CERTIFICATE-----Generated at Sun Mar 1 23:57:09 2026 by rpki-client