$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft File: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft (raw, json) Hash identifier: mcbwJX+5MPt5DhGDqoNv4XDxj7KmBG1OcoTzvA9fpNQ= Subject key identifier: 88:39:34:6D:76:BC:94:37:A9:5D:11:0C:E9:2C:24:01:91:D5:9C:FD Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Certificate serial: 71A735A98E1D517A2441C903C1BAF887B048367C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft Manifest number: 05D6 Signing time: Wed 13 May 2026 04:45:48 +0000 Manifest this update: Wed 13 May 2026 04:40:48 +0000 Manifest next update: Thu 14 May 2026 07:09:48 +0000 Files and hashes: 1: 34362e3138332e32342e302f32342d3234203d3e20313432313436.roa (hash: 3mHdqoYOlm/9t7fBBGZ6MyRWfPgkHCq5iWxroEvrW6w=) 2: 34362e3138332e32352e302f32342d3234203d3e203633303233.roa (hash: xQUOQgb0PWc+/72PSNuNhyH/1WTrTU3f/QF4HqRWRbI=) 3: 34362e3138332e33302e302f32342d3234203d3e203239383032.roa (hash: 72nHdO4b4bTlOVAl3qEYnqrejyz7ta1anmrlcAXdAWw=) 4: 34362e3138332e32382e302f32342d3234203d3e203631333137.roa (hash: fvI4RQQ01xEAqUe6KVlJ1GGLeZTmhK5W4DnyDfr2VQg=) 5: 34362e3138332e32382e302f32342d3234203d3e203239383032.roa (hash: kUcJYnZDGTlKIzzpmv1f5LvT/3qyw3JDmGespkIKDl8=) 6: 34362e3138332e32352e302f32342d3234203d3e20323132323338.roa (hash: P1+0nsQvOjxz4uhyz/dzfXbHlZHNA/BWK3bhubdLlKg=) 7: 34362e3138332e32392e302f32342d3234203d3e20383334.roa (hash: cCNMl/j8O4+QWokqGu7uLfEk807f860f4W6iD80yDww=) 8: 34362e3138332e32362e302f32342d3234203d3e2039303039.roa (hash: ckwThy9Ftd6Jb/nTbj53dd12b3F3RSR9Etp8JSW5svM=) 9: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl (hash: 9Xap34SpaWjh0s1yzp41G7DN0fv9s3DRVNwcVsgd+68=) 10: 34362e3138332e33302e302f32342d3234203d3e203631333137.roa (hash: Ss/HYpCtXLgsgjLt2I87OIMAV3Zt1zbXev+rVN4ldH4=) 11: 34362e3138332e33312e302f32342d3234203d3e203433333530.roa (hash: xgztmir76zbcn1TSqgELAY0RZNOYsv6tbCBjd0ajcKA=) 12: 34362e3138332e32372e302f32342d3234203d3e20323132323338.roa (hash: hl0LwIkWgXiEYZpFaX3uPN7EPrDq4mPps9alNUssHF4=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 06:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:a7:35:a9:8e:1d:51:7a:24:41:c9:03:c1:ba:f8:87:b0:48:36:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Validity Not Before: May 13 04:40:48 2026 GMT Not After : May 14 07:09:48 2026 GMT Subject: CN=8839346D76BC9437A95D110CE92C240191D59CFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:0d:b3:6a:e4:7d:c4:65:4f:35:a2:40:c3:ed: e0:3a:87:9b:cf:2e:16:4d:e9:13:30:7a:ea:6f:6d: 8e:29:45:0f:96:10:93:70:d4:ea:d6:27:d1:67:c4: 7a:28:a7:96:b8:be:73:58:24:e2:ba:b8:64:2e:ce: 88:df:ac:9e:a4:e8:4c:d4:92:23:30:ab:04:01:44: 1d:f1:32:4b:fd:2c:a1:27:94:d1:0d:c9:e3:b2:12: 4f:b5:71:6a:bd:c9:2c:ba:01:fb:c5:eb:01:b9:78: 34:ea:52:06:5a:54:0f:74:e4:7b:60:cb:73:99:aa: 6a:ac:10:4d:2c:b2:27:1f:b7:f5:24:6b:c0:b6:f6: 8f:c3:18:e1:35:10:ae:33:24:1f:f0:fa:c0:66:fe: 73:c6:ea:67:b7:c5:25:4a:dc:a5:89:1e:85:b4:96: 1e:0e:22:76:5d:67:45:a2:58:15:e2:0f:2b:ed:d6: c0:cf:22:c0:a9:da:0c:d5:84:5f:6c:66:a5:57:a2: da:fd:aa:32:43:ac:d3:91:40:52:5d:69:c4:9b:4e: c8:c4:8f:a5:ba:19:fc:26:32:1a:a9:f3:b6:c2:16: 26:bd:cb:30:9d:50:11:13:12:25:4d:8c:a5:30:25: 82:67:11:99:55:53:cd:3a:ad:d7:e1:0e:88:aa:e1: 43:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:39:34:6D:76:BC:94:37:A9:5D:11:0C:E9:2C:24:01:91:D5:9C:FD X509v3 Authority Key Identifier: keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:11:fd:b1:e7:a6:da:6f:eb:01:82:9e:c6:9c:fe:ae:91:43: bd:1b:cd:ed:88:f6:f2:f1:f3:a2:2c:43:cd:ba:e6:2c:73:21: 3a:df:ce:55:1b:e3:b0:dc:78:9c:34:67:62:cf:80:2a:29:58: d7:af:7b:cc:0f:ad:86:4f:3d:15:86:73:d7:4c:37:d6:09:2d: f8:c2:5f:f8:95:a1:4e:fd:7c:cf:7e:02:e8:f1:dc:9f:19:31: 8e:09:8d:c1:fe:4a:95:66:cc:e4:72:23:7f:8f:35:57:fd:4d: 13:2a:c1:e5:f7:e0:6d:23:a3:73:ae:22:a6:2c:79:d0:11:10: b9:0a:c2:10:dc:cf:e8:f0:48:5f:3d:bd:22:69:6d:75:a6:6b: 34:76:7f:d6:ee:3d:69:48:7b:11:ef:bb:c9:3d:bf:1c:51:52: e3:d7:11:18:ed:af:95:92:b4:08:55:cd:62:a1:cd:48:0a:f2: 10:2b:3c:ec:c9:2b:e4:19:ff:2a:3e:23:1d:96:c7:cb:b2:1d: 35:77:24:09:29:c6:5a:5d:ac:53:4a:bb:4a:af:50:bb:0a:a9: f0:0d:56:97:68:a4:24:f0:e3:2a:84:bb:f0:d7:4d:c2:9b:f8: ef:33:1a:2b:6e:fe:3a:92:10:e1:f5:13:b8:ba:1c:81:08:8f: a4:3e:32:44 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUcac1qY4dUXokQckDwbr4h7BINnwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjRlNTM3ODhiZDRlZmEyM2IxYTgyMDdiN2U3NGE4ZTFj YzY3N2IwMDAeFw0yNjA1MTMwNDQwNDhaFw0yNjA1MTQwNzA5NDhaMDMxMTAvBgNV BAMTKDg4MzkzNDZENzZCQzk0MzdBOTVEMTEwQ0U5MkMyNDAxOTFENTlDRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVDbNq5H3EZU81okDD7eA6h5vP LhZN6RMweupvbY4pRQ+WEJNw1OrWJ9FnxHoop5a4vnNYJOK6uGQuzojfrJ6k6EzU kiMwqwQBRB3xMkv9LKEnlNENyeOyEk+1cWq9ySy6AfvF6wG5eDTqUgZaVA905Htg y3OZqmqsEE0ssicft/Uka8C29o/DGOE1EK4zJB/w+sBm/nPG6me3xSVK3KWJHoW0 lh4OInZdZ0WiWBXiDyvt1sDPIsCp2gzVhF9sZqVXotr9qjJDrNORQFJdacSbTsjE j6W6GfwmMhqp87bCFia9yzCdUBETEiVNjKUwJYJnEZlVU806rdfhDoiq4UMZAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUiDk0bXa8lDepXREM6SwkAZHVnP0wHwYDVR0j BBgwFoAUJOU3iL1O+iOxqCB7fnSo4cxnewAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTZhY2I5YTAtNmQxZS00YWU0LTkxNzctZDkzOGU5ODA0 Mzk1LzAvMjRFNTM3ODhCRDRFRkEyM0IxQTgyMDdCN0U3NEE4RTFDQzY3N0IwMC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0pPVTNpTDFPLWlPeHFDQjdmblNvNGN4 bmV3QS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xNmFjYjlhMC02 ZDFlLTRhZTQtOTE3Ny1kOTM4ZTk4MDQzOTUvMC8yNEU1Mzc4OEJENEVGQTIzQjFB ODIwN0I3RTc0QThFMUNDNjc3QjAwLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjRH9seem2m/rAYKexpz+ rpFDvRvN7Yj28vHzoixDzbrmLHMhOt/OVRvjsNx4nDRnYs+AKilY1697zA+thk89 FYZz10w31gkt+MJf+JWhTv18z34C6PHcnxkxjgmNwf5KlWbM5HIjf481V/1NEyrB 5ffgbSOjc64ipix50BEQuQrCENzP6PBIXz29ImltdaZrNHZ/1u49aUh7Ee+7yT2/ HFFS49cRGO2vlZK0CFXNYqHNSAryECs87Mkr5Bn/Kj4jHZbHy7IdNXckCSnGWl2s U0q7Sq9Quwqp8A1Wl2ikJPDjKoS78NdNwpv47zMaK27+OpIQ4fUTuLocgQiPpD4y RA== -----END CERTIFICATE-----Generated at Wed May 13 13:19:41 2026 by rpki-client