$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft File: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft (raw, json) Hash identifier: EdLBP27kJya5/9oK2JKxWJxjKseOBK8k9N8j3+jLd/s= Subject key identifier: 0F:D9:10:C4:34:1A:F6:87:C6:88:D7:84:BC:BE:9C:78:30:B8:CA:E5 Authority key identifier: F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD Certificate issuer: /CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Certificate serial: 08186E4FC15FC933C1EC6919F025CD84C5E694B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft Manifest number: 0677 Signing time: Thu 16 Apr 2026 18:09:42 +0000 Manifest this update: Thu 16 Apr 2026 18:04:42 +0000 Manifest next update: Fri 17 Apr 2026 18:56:42 +0000 Files and hashes: 1: 34362e3235302e3234302e302f32302d3234203d3e20313431393935.roa (hash: 5zFYerIngzLwSwbeiiGPHVQadLBE1/J7oEEXeFR/OFM=) 2: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl (hash: eBLdPQ10cXqgCu9ERgozooeMA7LQccQLjD9gLZqoRHg=) 3: 326130303a386530303a313a3a2f34382d3438203d3e203230373132.roa (hash: 2qiBxfK+UGsXjYXrt6Cm3jSdVu6qoZhGBCRhmjYUhjg=) 4: 34362e3235302e3232342e302f32302d3234203d3e20313431393935.roa (hash: ht90MUomGkgWhJETWF0rvugOS8SI8qvW9OndsUlGu80=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 Apr 2026 18:56:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:18:6e:4f:c1:5f:c9:33:c1:ec:69:19:f0:25:cd:84:c5:e6:94:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Validity Not Before: Apr 16 18:04:42 2026 GMT Not After : Apr 17 18:56:42 2026 GMT Subject: CN=0FD910C4341AF687C688D784BCBE9C7830B8CAE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d2:af:ab:35:aa:88:3e:95:8f:8f:e1:6f:27: d7:95:02:70:c1:a5:45:74:97:a1:60:e5:b4:85:23: 97:53:6d:a0:cf:09:c5:e3:40:4e:c5:b9:e4:c8:d3: 07:b3:8c:2c:45:70:bc:3c:fd:3e:5b:b8:17:e1:84: 16:36:3c:b3:5d:f8:bf:06:f3:80:8b:f7:13:db:93: c7:14:b4:6f:80:83:e8:f1:54:32:f0:7c:85:50:44: 68:3b:7a:ad:a2:cb:35:f7:ea:a7:8a:52:51:3f:66: b3:d4:33:51:ef:be:f9:3e:a6:f3:5e:48:50:c9:44: 50:78:4f:d7:30:aa:e1:c6:39:8e:64:90:57:22:b5: 54:95:23:71:fa:59:d5:44:cf:09:71:6b:f1:00:cf: 22:37:dd:a1:bb:dd:76:33:40:b3:90:45:0a:c3:90: 83:14:a6:15:10:81:bb:10:fd:cb:20:eb:6d:9c:99: c5:ee:58:44:a0:73:07:69:6c:d5:9c:e0:86:cc:32: 40:a2:6e:49:dd:af:be:cb:e3:f5:50:33:e3:df:2d: 01:7a:03:f2:a3:2d:60:45:e8:98:83:f9:8c:89:0e: 61:ed:c8:01:ef:91:dc:89:68:96:a9:14:9b:84:2d: cf:c8:f3:b8:bc:a6:3c:80:02:f4:75:93:57:3e:b4: d9:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:D9:10:C4:34:1A:F6:87:C6:88:D7:84:BC:BE:9C:78:30:B8:CA:E5 X509v3 Authority Key Identifier: keyid:F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:87:45:45:63:6b:da:fc:99:4e:25:5f:a7:46:2b:6d:89:4f: 60:09:e5:68:74:2e:d1:e0:70:74:41:cd:fc:a5:b1:de:d8:49: 76:7c:25:d6:5a:4c:b5:71:58:36:37:a8:83:94:35:79:d0:a0: 13:b1:4e:99:99:2b:10:ef:96:5f:bf:5f:41:02:64:78:9e:32: 9a:aa:74:89:72:ea:31:f2:7c:9a:f9:1d:b6:68:5e:38:44:80: 32:d2:d9:43:6b:15:11:ca:03:66:9f:ce:5e:6e:9e:e8:c6:26: d5:28:c8:aa:76:91:8b:e7:49:2a:81:dc:16:a4:ee:62:34:84: 68:b7:84:19:68:dd:e6:54:bf:03:98:01:2b:5e:a6:d2:8f:cc: b2:88:dd:a5:0e:93:08:61:1b:03:5a:c6:79:b7:34:86:72:4c: 9a:23:ab:87:0e:5d:e4:f2:3b:2d:d1:b6:3a:6c:a1:ea:27:3d: 03:81:db:76:61:c3:fc:8c:b3:34:8a:7c:9f:d1:c1:f2:0f:37: 4d:d3:4e:48:f4:fa:09:0e:e4:01:e5:d4:2b:95:ea:e0:a9:84: 52:bd:00:d0:91:23:18:2e:94:e5:3b:b6:fe:49:77:7c:54:56: 9d:ef:56:e7:d6:63:cc:77:27:ab:49:11:f8:e0:bf:83:18:9c: e7:9e:b7:cf -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUCBhuT8FfyTPB7GkZ8CXNhMXmlLAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjI5ZmJhYjRkYjg2N2Y2YmQ5YTdlZmY2YWE1NWQ5OGMx NjJlMWFhZDAeFw0yNjA0MTYxODA0NDJaFw0yNjA0MTcxODU2NDJaMDMxMTAvBgNV BAMTKDBGRDkxMEM0MzQxQUY2ODdDNjg4RDc4NEJDQkU5Qzc4MzBCOENBRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ0q+rNaqIPpWPj+FvJ9eVAnDB pUV0l6Fg5bSFI5dTbaDPCcXjQE7FueTI0wezjCxFcLw8/T5buBfhhBY2PLNd+L8G 84CL9xPbk8cUtG+Ag+jxVDLwfIVQRGg7eq2iyzX36qeKUlE/ZrPUM1Hvvvk+pvNe SFDJRFB4T9cwquHGOY5kkFcitVSVI3H6WdVEzwlxa/EAzyI33aG73XYzQLOQRQrD kIMUphUQgbsQ/csg622cmcXuWESgcwdpbNWc4IbMMkCibkndr77L4/VQM+PfLQF6 A/KjLWBF6JiD+YyJDmHtyAHvkdyJaJapFJuELc/I87i8pjyAAvR1k1c+tNnvAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUD9kQxDQa9ofGiNeEvL6ceDC4yuUwHwYDVR0j BBgwFoAU8p+6tNuGf2vZp+/2qlXZjBYuGq0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmY1MmQ4MTQtM2QyZi00ZGY0LTgxNDAtZGZiNTMwZjc0 OTEyLzAvRjI5RkJBQjREQjg2N0Y2QkQ5QTdFRkY2QUE1NUQ5OEMxNjJFMUFBRC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhwLTZ0TnVHZjJ2WnAtXzJxbFhaakJZ dUdxMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjUyZDgxNC0z ZDJmLTRkZjQtODE0MC1kZmI1MzBmNzQ5MTIvMC9GMjlGQkFCNERCODY3RjZCRDlB N0VGRjZBQTU1RDk4QzE2MkUxQUFELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOodFRWNr2vyZTiVfp0Yr bYlPYAnlaHQu0eBwdEHN/KWx3thJdnwl1lpMtXFYNjeog5Q1edCgE7FOmZkrEO+W X79fQQJkeJ4ymqp0iXLqMfJ8mvkdtmheOESAMtLZQ2sVEcoDZp/OXm6e6MYm1SjI qnaRi+dJKoHcFqTuYjSEaLeEGWjd5lS/A5gBK16m0o/MsojdpQ6TCGEbA1rGebc0 hnJMmiOrhw5d5PI7LdG2Omyh6ic9A4HbdmHD/IyzNIp8n9HB8g83TdNOSPT6CQ7k AeXUK5Xq4KmEUr0A0JEjGC6U5Tu2/kl3fFRWne9W59ZjzHcnq0kR+OC/gxic5563 zw== -----END CERTIFICATE-----Generated at Fri Apr 17 09:26:06 2026 by rpki-client