$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e9d7e455-0658-4960-bff4-0352219c2b1e/0/C00F1497E83F6AB40A7834FB450BFFE527DB2BB2.mft File: C00F1497E83F6AB40A7834FB450BFFE527DB2BB2.mft (raw, json) Hash identifier: bineYZtNNa6A086mXtFvuVMQ+EBJN7A1Sq/6jSPM5GI= Subject key identifier: 83:2F:BF:EB:6E:7D:2F:EE:AF:E8:F7:89:57:E3:FB:A1:AD:B4:66:77 Authority key identifier: C0:0F:14:97:E8:3F:6A:B4:0A:78:34:FB:45:0B:FF:E5:27:DB:2B:B2 Certificate issuer: /CN=c00f1497e83f6ab40a7834fb450bffe527db2bb2 Certificate serial: 50F72D06E91D2BC19AC100F448FC7DC505509E65 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wA8Ul-g_arQKeDT7RQv_5SfbK7I.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e9d7e455-0658-4960-bff4-0352219c2b1e/0/C00F1497E83F6AB40A7834FB450BFFE527DB2BB2.mft Manifest number: 2A Signing time: Sun 01 Mar 2026 22:57:27 +0000 Manifest this update: Sun 01 Mar 2026 22:52:27 +0000 Manifest next update: Tue 03 Mar 2026 02:40:27 +0000 Files and hashes: 1: 34352e3133332e37362e302f32342d3234203d3e203137353631.roa (hash: wx44McGEkXjXTCa0tT9MYO+m2X9qO8t/GKDms0o2eWo=) 2: C00F1497E83F6AB40A7834FB450BFFE527DB2BB2.crl (hash: jXr95XED1T7hXFiJ8kEJfSQfS5zxHyg4bfCMHS3pISk=) 3: 34352e3133332e37372e302f32342d3234203d3e203137353631.roa (hash: DRqCqjTTmocXEMPhaAW2LfrGPc7Vql9LBY0UQUvukm8=) 4: 34352e3133332e37382e302f32342d3234203d3e203137353631.roa (hash: 2wssyJyM8SuWuVvKG5z/cWE13aPnMXN7R14l3hWD+TQ=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e9d7e455-0658-4960-bff4-0352219c2b1e/0/C00F1497E83F6AB40A7834FB450BFFE527DB2BB2.crl rsync://rsync.paas.rpki.ripe.net/repository/e9d7e455-0658-4960-bff4-0352219c2b1e/0/C00F1497E83F6AB40A7834FB450BFFE527DB2BB2.mft rsync://rpki.ripe.net/repository/DEFAULT/wA8Ul-g_arQKeDT7RQv_5SfbK7I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Mar 2026 02:40:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:f7:2d:06:e9:1d:2b:c1:9a:c1:00:f4:48:fc:7d:c5:05:50:9e:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c00f1497e83f6ab40a7834fb450bffe527db2bb2 Validity Not Before: Mar 1 22:52:27 2026 GMT Not After : Mar 3 02:40:27 2026 GMT Subject: CN=832FBFEB6E7D2FEEAFE8F78957E3FBA1ADB46677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:24:09:76:db:0d:4d:7f:ef:ae:f9:8a:29:7c: 0b:05:9a:11:79:35:f8:bc:9a:0b:56:59:57:02:99: 46:81:b5:86:c9:b1:06:9c:c0:d2:d1:9c:83:2e:24: cc:7a:1c:f4:67:0c:d7:16:59:f0:33:f5:c7:c6:8e: 4a:da:66:eb:b5:46:04:ed:74:34:23:f4:41:13:b2: 20:9a:38:7a:eb:3f:11:68:ff:4f:d3:e8:be:86:a6: f8:b5:f7:04:ea:07:3a:ba:8f:9c:c8:b9:76:9c:b2: 12:75:bd:c1:a0:6e:36:ee:70:bc:bf:d3:4a:04:e4: 3d:8d:7b:ff:82:1d:d9:7b:fe:5d:df:5e:27:8a:8e: f2:fe:bd:0f:27:20:2c:14:9e:6c:6e:f2:14:92:b2: 51:49:26:78:6a:86:ca:81:5e:5a:d0:35:cd:a2:a9: 73:24:b3:00:6c:29:44:04:a7:bd:fa:1a:c2:33:51: 50:58:b8:df:4e:8b:d4:0d:99:72:df:6e:51:20:b7: 92:66:9a:9d:af:bb:13:bc:5d:7c:14:7b:f2:7e:b5: 29:53:7e:3e:6d:42:51:11:8c:22:5d:e1:fc:7f:8e: 09:c2:70:e0:cb:61:49:05:7c:03:90:54:c1:94:bb: 59:44:9b:3b:37:83:72:c9:4c:7d:7b:ec:f8:97:03: d1:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:2F:BF:EB:6E:7D:2F:EE:AF:E8:F7:89:57:E3:FB:A1:AD:B4:66:77 X509v3 Authority Key Identifier: keyid:C0:0F:14:97:E8:3F:6A:B4:0A:78:34:FB:45:0B:FF:E5:27:DB:2B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/e9d7e455-0658-4960-bff4-0352219c2b1e/0/C00F1497E83F6AB40A7834FB450BFFE527DB2BB2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wA8Ul-g_arQKeDT7RQv_5SfbK7I.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e9d7e455-0658-4960-bff4-0352219c2b1e/0/C00F1497E83F6AB40A7834FB450BFFE527DB2BB2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:6b:7d:78:b7:6a:ab:a6:f6:6f:91:3b:fb:8e:cc:42:47:0c: 81:c1:45:5e:5b:81:b7:8e:f8:a6:21:88:65:11:35:e7:92:c4: 8a:53:45:e3:c2:0f:ab:b4:b3:aa:ed:38:c7:6c:5a:31:44:80: ca:83:e1:9f:f7:e3:c3:44:d0:2f:c0:b0:10:72:c5:ae:e3:72: 61:67:a0:f9:21:70:6d:4b:00:bd:eb:34:bd:62:3c:ba:00:a6: 0e:67:52:5a:7c:e7:54:4c:5f:e4:27:d1:0e:b6:45:61:58:08: 44:b2:0f:36:ba:28:33:96:b8:81:aa:32:44:ff:f9:5b:93:f2: 53:14:78:7f:0e:2a:35:2a:33:a7:1a:cc:54:d2:ee:ed:42:3d: 67:e4:f1:0e:21:5e:63:89:6b:1e:ea:87:bc:ce:ea:14:af:d9: 11:34:01:e2:70:2f:8d:5f:82:cc:94:bd:65:63:ac:1b:00:d7: fc:44:b9:a7:76:33:ce:92:aa:58:4d:85:39:9a:0f:94:0c:2a: a9:ac:24:0f:e9:a8:3b:7e:0d:8d:22:ce:c1:c9:b7:8c:18:2f: 4d:db:29:a5:9c:f2:aa:0a:43:3b:b1:a1:b7:bd:7b:b2:49:b2: 11:6c:7e:40:85:8b:84:af:d6:ef:e4:d2:f8:ee:5f:e6:d6:ab: 4d:a5:ab:e7 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUUPctBukdK8GawQD0SPx9xQVQnmUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYzAwZjE0OTdlODNmNmFiNDBhNzgzNGZiNDUwYmZmZTUy N2RiMmJiMjAeFw0yNjAzMDEyMjUyMjdaFw0yNjAzMDMwMjQwMjdaMDMxMTAvBgNV BAMTKDgzMkZCRkVCNkU3RDJGRUVBRkU4Rjc4OTU3RTNGQkExQURCNDY2NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/JAl22w1Nf++u+YopfAsFmhF5 Nfi8mgtWWVcCmUaBtYbJsQacwNLRnIMuJMx6HPRnDNcWWfAz9cfGjkraZuu1RgTt dDQj9EETsiCaOHrrPxFo/0/T6L6Gpvi19wTqBzq6j5zIuXacshJ1vcGgbjbucLy/ 00oE5D2Ne/+CHdl7/l3fXieKjvL+vQ8nICwUnmxu8hSSslFJJnhqhsqBXlrQNc2i qXMkswBsKUQEp736GsIzUVBYuN9Oi9QNmXLfblEgt5Jmmp2vuxO8XXwUe/J+tSlT fj5tQlERjCJd4fx/jgnCcODLYUkFfAOQVMGUu1lEmzs3g3LJTH177PiXA9G1AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUgy+/6259L+6v6PeJV+P7oa20ZncwHwYDVR0j BBgwFoAUwA8Ul+g/arQKeDT7RQv/5SfbK7IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZTlkN2U0NTUtMDY1OC00OTYwLWJmZjQtMDM1MjIxOWMy YjFlLzAvQzAwRjE0OTdFODNGNkFCNDBBNzgzNEZCNDUwQkZGRTUyN0RCMkJCMi5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3dBOFVsLWdfYXJRS2VEVDdSUXZfNVNm Yks3SS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9lOWQ3ZTQ1NS0w NjU4LTQ5NjAtYmZmNC0wMzUyMjE5YzJiMWUvMC9DMDBGMTQ5N0U4M0Y2QUI0MEE3 ODM0RkI0NTBCRkZFNTI3REIyQkIyLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY2t9eLdqq6b2b5E7+47M QkcMgcFFXluBt474piGIZRE155LEilNF48IPq7Szqu04x2xaMUSAyoPhn/fjw0TQ L8CwEHLFruNyYWeg+SFwbUsAves0vWI8ugCmDmdSWnznVExf5CfRDrZFYVgIRLIP NrooM5a4gaoyRP/5W5PyUxR4fw4qNSozpxrMVNLu7UI9Z+TxDiFeY4lrHuqHvM7q FK/ZETQB4nAvjV+CzJS9ZWOsGwDX/ES5p3YzzpKqWE2FOZoPlAwqqawkD+moO34N jSLOwcm3jBgvTdsppZzyqgpDO7Ght717skmyEWx+QIWLhK/W7+TS+O5f5tarTaWr 5w== -----END CERTIFICATE-----Generated at Mon Mar 2 14:45:18 2026 by rpki-client