$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft File: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft (raw, json) Hash identifier: 53LHXXBN6KGq5VSBWylrq0wJermwThh2+z6PIFnfytU= Subject key identifier: 32:6F:85:F8:C0:74:08:8B:91:3B:47:19:0A:3A:F3:C9:9F:B1:4B:3D Authority key identifier: F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD Certificate issuer: /CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Certificate serial: 104C9A713C0377408FEC25950127DBF1DBD6EC52 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft Manifest number: 0522 Signing time: Tue 05 Aug 2025 07:54:13 +0000 Manifest this update: Tue 05 Aug 2025 07:49:13 +0000 Manifest next update: Wed 06 Aug 2025 09:08:13 +0000 Files and hashes: 1: 3139332e39332e3135322e302f32342d3234203d3e20313939363134.roa (hash: jNaGJEHXg+vn+v2vVdhmJa1IVdEz/D1ggT5kvM1c0Hk=) 2: 3139332e39332e3135332e302f32342d3234203d3e203439313237.roa (hash: 0/cfjGj4KR4GGAb3iVBdR7EXi3eZGMMRZK+KEv9RsCI=) 3: 326130303a386530303a313a3a2f34382d3438203d3e203230373132.roa (hash: jAOxURrHtZvlqdFVdBr3F4ACmPO4DT4L5AmOtZPktVY=) 4: 34362e3235302e3234302e302f32302d3234203d3e20313431393935.roa (hash: NLU++5xZjzD437PtmNgvfxHCqYMIFnb00RqdIBmj2Iw=) 5: 3139332e39332e3135332e302f32342d3234203d3e20323134303336.roa (hash: FgMfWX7zLNqyUMvyIkAVqVqXpYApxS0iTmFAdZ7lH9Q=) 6: 3139332e39332e3135352e302f32342d3234203d3e203230343733.roa (hash: hDOoONSAS9eAuwlCmW30VHEN0/zXt8vJpH/fFLKimsM=) 7: 3139332e39332e3135342e302f32342d3234203d3e20323131343135.roa (hash: lcDvK25Krwnz/wCtWIMtJ+GA0fjdNOA7l7WMMKyVVUU=) 8: 34362e3235302e3232342e302f32302d3234203d3e20313431393935.roa (hash: j/tvDF/xrBJ6Z/GVFcZpOag/ZBQuFXiJ56kFmYlSx34=) 9: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl (hash: jlX5cvSr+MaBFUbsf/KbKFljHVQji0EqgpYebkSWqyk=) 10: 3139332e39332e3135352e302f32342d3234203d3e203631333137.roa (hash: SV7SbziqH7eMIEMJIbsVc3dV1p2SM237aRtzHljTDkg=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 06 Aug 2025 09:08:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:4c:9a:71:3c:03:77:40:8f:ec:25:95:01:27:db:f1:db:d6:ec:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Validity Not Before: Aug 5 07:49:13 2025 GMT Not After : Aug 6 09:08:13 2025 GMT Subject: CN=326F85F8C074088B913B47190A3AF3C99FB14B3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:53:63:88:2c:f9:18:1c:49:6b:ff:fb:20:85: 80:d5:af:14:1c:cd:1b:c5:0f:1b:83:bb:c2:5b:94: 92:2b:cb:85:81:72:00:f8:4c:2e:34:70:37:c1:a8: 33:a8:1a:00:d2:8a:c1:74:8b:6a:eb:3a:d9:0a:1d: 8e:19:c7:a1:dd:fe:c7:da:04:b3:11:e4:ca:57:3a: 47:4c:77:81:96:cb:d1:b9:41:03:4b:3f:cd:78:81: 3b:f5:ff:17:e3:11:c3:04:b4:80:e8:be:db:80:db: 6e:e7:09:f4:47:39:30:da:46:58:5f:cb:fb:1b:6d: 12:98:85:f6:49:b5:cf:c4:4d:da:4a:dc:ac:c6:dc: 87:35:03:2e:f1:3a:81:6f:4f:de:26:aa:66:49:1e: 24:60:81:70:94:ae:63:54:5e:d1:fb:a9:a1:b4:7a: 55:73:43:a9:83:3d:4e:d3:07:93:3b:b3:eb:6a:d1: a1:42:ed:fa:ee:f2:cc:5e:61:04:14:61:1e:85:2d: a4:10:13:43:0f:5c:f5:67:5c:8b:61:d7:eb:25:2b: e4:d0:75:4d:4a:fb:ea:59:23:18:45:b7:e0:84:2a: f7:16:af:5f:ce:c1:1c:c6:f3:6a:a2:e0:de:2e:75: 1f:02:65:a5:82:5d:77:b6:26:bf:08:4d:1d:fd:78: 7e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:6F:85:F8:C0:74:08:8B:91:3B:47:19:0A:3A:F3:C9:9F:B1:4B:3D X509v3 Authority Key Identifier: keyid:F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:af:cd:5b:60:96:29:92:07:70:89:14:22:ee:ee:8b:3d:b7: 03:89:b8:21:73:6a:fb:e4:df:c8:8f:29:63:ad:af:87:29:9d: e0:b3:27:55:ee:e6:c2:dc:a6:75:00:eb:ce:b6:c0:9d:43:7d: 68:ab:08:e4:f4:b0:64:9d:7a:c4:96:17:51:d8:b2:44:9b:4d: 01:54:b8:e1:59:3d:44:c4:fa:60:9f:9f:57:56:82:19:99:40: e0:04:09:18:a0:55:7c:1b:07:22:d6:ff:39:e4:1e:c8:15:12: a4:de:bf:db:4c:b3:95:13:ad:70:53:b0:76:7f:ed:a6:81:00: e0:2e:41:e7:39:59:47:0c:2a:8c:80:b7:f7:bc:c9:66:1b:13: 05:6f:c0:5d:92:5e:8b:e9:df:13:99:13:87:06:f9:14:e6:61: a9:63:2a:41:11:99:aa:b1:70:78:e3:61:47:22:80:7d:2b:a2: 1f:d5:8e:ad:b1:d7:24:e2:39:a1:68:5b:b5:24:9a:19:3f:93: 7c:8a:ed:a5:d7:8e:30:1e:ec:12:78:1e:47:20:99:b8:36:3e: 7c:58:1f:93:2c:69:61:c9:5e:cc:76:fd:39:1c:fb:0e:e4:53: 28:54:47:da:5f:85:fd:53:2a:34:db:eb:76:51:e7:ed:cb:23: 3e:be:09:c2 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUEEyacTwDd0CP7CWVASfb8dvW7FIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjI5ZmJhYjRkYjg2N2Y2YmQ5YTdlZmY2YWE1NWQ5OGMx NjJlMWFhZDAeFw0yNTA4MDUwNzQ5MTNaFw0yNTA4MDYwOTA4MTNaMDMxMTAvBgNV BAMTKDMyNkY4NUY4QzA3NDA4OEI5MTNCNDcxOTBBM0FGM0M5OUZCMTRCM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0U2OILPkYHElr//sghYDVrxQc zRvFDxuDu8JblJIry4WBcgD4TC40cDfBqDOoGgDSisF0i2rrOtkKHY4Zx6Hd/sfa BLMR5MpXOkdMd4GWy9G5QQNLP814gTv1/xfjEcMEtIDovtuA227nCfRHOTDaRlhf y/sbbRKYhfZJtc/ETdpK3KzG3Ic1Ay7xOoFvT94mqmZJHiRggXCUrmNUXtH7qaG0 elVzQ6mDPU7TB5M7s+tq0aFC7fru8sxeYQQUYR6FLaQQE0MPXPVnXIth1+slK+TQ dU1K++pZIxhFt+CEKvcWr1/OwRzG82qi4N4udR8CZaWCXXe2Jr8ITR39eH5TAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUMm+F+MB0CIuRO0cZCjrzyZ+xSz0wHwYDVR0j BBgwFoAU8p+6tNuGf2vZp+/2qlXZjBYuGq0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmY1MmQ4MTQtM2QyZi00ZGY0LTgxNDAtZGZiNTMwZjc0 OTEyLzAvRjI5RkJBQjREQjg2N0Y2QkQ5QTdFRkY2QUE1NUQ5OEMxNjJFMUFBRC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhwLTZ0TnVHZjJ2WnAtXzJxbFhaakJZ dUdxMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjUyZDgxNC0z ZDJmLTRkZjQtODE0MC1kZmI1MzBmNzQ5MTIvMC9GMjlGQkFCNERCODY3RjZCRDlB N0VGRjZBQTU1RDk4QzE2MkUxQUFELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADa/NW2CWKZIHcIkUIu7u iz23A4m4IXNq++TfyI8pY62vhymd4LMnVe7mwtymdQDrzrbAnUN9aKsI5PSwZJ16 xJYXUdiyRJtNAVS44Vk9RMT6YJ+fV1aCGZlA4AQJGKBVfBsHItb/OeQeyBUSpN6/ 20yzlROtcFOwdn/tpoEA4C5B5zlZRwwqjIC397zJZhsTBW/AXZJei+nfE5kThwb5 FOZhqWMqQRGZqrFweONhRyKAfSuiH9WOrbHXJOI5oWhbtSSaGT+TfIrtpdeOMB7s EngeRyCZuDY+fFgfkyxpYclezHb9ORz7DuRTKFRH2l+F/VMqNNvrdlHn7csjPr4J wg== -----END CERTIFICATE-----Generated at Tue Aug 5 17:13:01 2025 by rpki-client