$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft File: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft (raw, json) Hash identifier: XspXA+y947Hi9Pps1vozjfSpXD5zCrlDMs3xE3603c0= Subject key identifier: 05:7C:EC:79:E5:02:68:A7:5F:8D:76:42:30:CE:C8:4B:6C:82:A7:1A Authority key identifier: F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD Certificate issuer: /CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Certificate serial: 6C5BBA1DEC1DFF4649B959C0FEAE3DC99069F78B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft Manifest number: 04DA Signing time: Fri 13 Jun 2025 01:57:46 +0000 Manifest this update: Fri 13 Jun 2025 01:52:46 +0000 Manifest next update: Sat 14 Jun 2025 03:04:46 +0000 Files and hashes: 1: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl (hash: WhBT05CdvDnI0O7/ouAD3LsWhQpnZGrVfViEqBTyFSQ=) 2: 3139332e39332e3135332e302f32342d3234203d3e203439313237.roa (hash: 0/cfjGj4KR4GGAb3iVBdR7EXi3eZGMMRZK+KEv9RsCI=) 3: 3139332e39332e3135342e302f32342d3234203d3e20323131343135.roa (hash: lcDvK25Krwnz/wCtWIMtJ+GA0fjdNOA7l7WMMKyVVUU=) 4: 3139332e39332e3135352e302f32342d3234203d3e203631333137.roa (hash: SV7SbziqH7eMIEMJIbsVc3dV1p2SM237aRtzHljTDkg=) 5: 3139332e39332e3135322e302f32342d3234203d3e20313939363134.roa (hash: jNaGJEHXg+vn+v2vVdhmJa1IVdEz/D1ggT5kvM1c0Hk=) 6: 326130303a386530303a313a3a2f34382d3438203d3e203230373132.roa (hash: jAOxURrHtZvlqdFVdBr3F4ACmPO4DT4L5AmOtZPktVY=) 7: 3139332e39332e3135352e302f32342d3234203d3e203230343733.roa (hash: Yia13ZpyH/rxCHPO1ZKxkaJKT40u4xmMRfCLnQCmpaw=) 8: 34362e3235302e3234302e302f32302d3234203d3e20313431393935.roa (hash: NLU++5xZjzD437PtmNgvfxHCqYMIFnb00RqdIBmj2Iw=) 9: 3139332e39332e3135332e302f32342d3234203d3e20323134303336.roa (hash: FgMfWX7zLNqyUMvyIkAVqVqXpYApxS0iTmFAdZ7lH9Q=) 10: 34362e3235302e3232342e302f32302d3234203d3e20313431393935.roa (hash: j/tvDF/xrBJ6Z/GVFcZpOag/ZBQuFXiJ56kFmYlSx34=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 14 Jun 2025 03:04:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:5b:ba:1d:ec:1d:ff:46:49:b9:59:c0:fe:ae:3d:c9:90:69:f7:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Validity Not Before: Jun 13 01:52:46 2025 GMT Not After : Jun 14 03:04:46 2025 GMT Subject: CN=057CEC79E50268A75F8D764230CEC84B6C82A71A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8e:e4:c9:96:24:b3:8d:39:8f:23:6d:67:7e: b7:5c:2c:ed:ae:ee:a9:a0:1b:22:0d:36:32:f3:0d: 68:8a:d8:3a:d6:e4:a6:00:8b:e3:b5:fd:fa:28:6d: cc:89:84:45:02:26:35:78:95:49:a3:80:fa:c3:1f: 65:c5:25:de:d7:ca:0d:b1:36:e3:88:29:e0:f1:73: b5:04:e0:97:2d:25:fc:70:1a:08:dd:cb:f2:30:4b: 9b:1a:a6:bb:35:5e:80:b2:83:2e:32:c4:1a:34:69: 84:d8:2c:ea:64:97:8f:7a:32:c0:bc:29:a8:10:10: bd:12:b5:ea:6d:a9:be:f1:79:40:97:57:fb:89:95: be:04:e5:56:11:1e:49:c4:3c:25:bf:81:81:a2:bd: c7:5d:93:6c:37:cb:87:ed:75:2f:68:93:ac:eb:0f: f0:27:64:9f:cf:52:3a:ea:af:47:ba:60:98:e7:c2: 75:4e:5a:bf:22:70:22:70:ad:33:49:c3:d4:e2:ec: bb:47:03:c6:b5:4c:89:f2:57:3b:7e:5d:52:69:55: 85:ac:f0:4d:6b:c5:2b:52:58:5a:33:e1:41:43:c1: d5:b0:fa:62:51:26:94:34:ba:b8:33:ce:6c:41:11: 12:79:12:d1:2b:eb:b0:24:26:2d:64:2b:93:cc:c7: 17:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:7C:EC:79:E5:02:68:A7:5F:8D:76:42:30:CE:C8:4B:6C:82:A7:1A X509v3 Authority Key Identifier: keyid:F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:c6:90:ef:a9:dd:a6:87:87:a5:0b:9a:be:9d:cd:95:8e:89: 0a:d8:87:35:0c:08:59:79:64:53:d9:7e:2e:ca:61:64:8c:71: db:1c:e2:93:a8:7f:e9:a8:61:9e:67:9b:cb:12:ba:5d:0c:94: 56:0e:bc:94:53:db:ce:3a:23:6d:5c:db:9d:ae:00:72:07:91: b5:50:4a:57:9a:84:72:a1:66:7e:cc:7a:2a:89:76:b4:6b:20: 9e:85:27:bf:b4:b2:4d:40:6e:6e:c6:2f:5c:50:86:46:56:b8: 22:a9:8f:8c:b3:69:5a:1c:b1:5b:d2:1b:e1:a7:0e:f4:65:1c: 4a:c9:85:06:65:a1:69:15:e0:2b:12:a0:c7:5b:8f:a3:08:ab: a7:d5:a1:93:6e:7a:be:54:db:41:81:33:55:45:cf:ba:9b:e9: de:3c:c8:dc:c7:e1:52:c2:78:da:63:9e:23:d9:2f:91:2c:7f: 39:11:12:da:5e:65:7d:88:9f:05:64:84:31:50:b6:ce:72:6a: ff:d0:f2:c9:b5:cd:17:70:6d:af:95:0c:64:86:8f:6c:b6:d7: 09:ed:e3:16:aa:1c:c4:b4:04:3a:5d:10:c1:60:34:95:03:c3: 5a:bf:06:5c:fd:e7:b0:6a:27:92:03:ba:ab:01:6d:10:dd:4f: b1:d5:1c:97 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUbFu6Hewd/0ZJuVnA/q49yZBp94swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjI5ZmJhYjRkYjg2N2Y2YmQ5YTdlZmY2YWE1NWQ5OGMx NjJlMWFhZDAeFw0yNTA2MTMwMTUyNDZaFw0yNTA2MTQwMzA0NDZaMDMxMTAvBgNV BAMTKDA1N0NFQzc5RTUwMjY4QTc1RjhENzY0MjMwQ0VDODRCNkM4MkE3MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWjuTJliSzjTmPI21nfrdcLO2u 7qmgGyINNjLzDWiK2DrW5KYAi+O1/foobcyJhEUCJjV4lUmjgPrDH2XFJd7Xyg2x NuOIKeDxc7UE4JctJfxwGgjdy/IwS5saprs1XoCygy4yxBo0aYTYLOpkl496MsC8 KagQEL0Steptqb7xeUCXV/uJlb4E5VYRHknEPCW/gYGivcddk2w3y4ftdS9ok6zr D/AnZJ/PUjrqr0e6YJjnwnVOWr8icCJwrTNJw9Ti7LtHA8a1TInyVzt+XVJpVYWs 8E1rxStSWFoz4UFDwdWw+mJRJpQ0urgzzmxBERJ5EtEr67AkJi1kK5PMxxdVAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUBXzseeUCaKdfjXZCMM7IS2yCpxowHwYDVR0j BBgwFoAU8p+6tNuGf2vZp+/2qlXZjBYuGq0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmY1MmQ4MTQtM2QyZi00ZGY0LTgxNDAtZGZiNTMwZjc0 OTEyLzAvRjI5RkJBQjREQjg2N0Y2QkQ5QTdFRkY2QUE1NUQ5OEMxNjJFMUFBRC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhwLTZ0TnVHZjJ2WnAtXzJxbFhaakJZ dUdxMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjUyZDgxNC0z ZDJmLTRkZjQtODE0MC1kZmI1MzBmNzQ5MTIvMC9GMjlGQkFCNERCODY3RjZCRDlB N0VGRjZBQTU1RDk4QzE2MkUxQUFELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC8aQ76ndpoeHpQuavp3N lY6JCtiHNQwIWXlkU9l+LsphZIxx2xzik6h/6ahhnmebyxK6XQyUVg68lFPbzjoj bVzbna4AcgeRtVBKV5qEcqFmfsx6Kol2tGsgnoUnv7SyTUBubsYvXFCGRla4IqmP jLNpWhyxW9Ib4acO9GUcSsmFBmWhaRXgKxKgx1uPowirp9Whk256vlTbQYEzVUXP upvp3jzI3MfhUsJ42mOeI9kvkSx/ORES2l5lfYifBWSEMVC2znJq/9DyybXNF3Bt r5UMZIaPbLbXCe3jFqocxLQEOl0QwWA0lQPDWr8GXP3nsGonkgO6qwFtEN1PsdUc lw== -----END CERTIFICATE-----Generated at Fri Jun 13 19:21:46 2025 by rpki-client