$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft File: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft (raw, json) Hash identifier: LQbAqxJnOkfJj4O/18PfJNRVCAXDaHodc3kbzciy4l0= Subject key identifier: AE:6C:94:51:03:0C:31:9C:A9:6E:C5:1D:71:D5:0E:79:FC:78:07:FE Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Certificate serial: 143B9D7B037C9CE017B84CC4D47257EAF1D89A9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft Manifest number: 0469 Signing time: Sat 23 Aug 2025 03:42:33 +0000 Manifest this update: Sat 23 Aug 2025 03:37:33 +0000 Manifest next update: Sun 24 Aug 2025 05:44:33 +0000 Files and hashes: 1: 34362e3138332e32372e302f32342d3234203d3e20323132323338.roa (hash: MBTQi0HOcbTwY/4fQl+vTOHLOQ2FmR/EhBIZ6Dj3u14=) 2: 34362e3138332e33302e302f32342d3234203d3e203631333137.roa (hash: pxnqedD3kuwz1m+9x0q4e9R46P3xXGAP6tM7JZr4zqQ=) 3: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl (hash: H6Tf1/BMTzf20ZH3xNcX7uAnG8UfxVhIVNIoiMNOuF4=) 4: 34362e3138332e32392e302f32342d3234203d3e20313734.roa (hash: +2zC2IoOcCso/mftEuke8EnaYM8a1UxQtmNUmYAEM7o=) 5: 34362e3138332e32352e302f32342d3234203d3e20323132323338.roa (hash: lxi2m0tJ4IwcIv1Qu/mxuwgzf8BGdtHdxfKNM9mKZEQ=) 6: 34362e3138332e32342e302f32342d3234203d3e20313432313436.roa (hash: U6sIE1tc5XNg8Vw7jnbxLLCNANnB9wH3voxb1FhuZwc=) 7: 34362e3138332e32352e302f32342d3234203d3e203633303233.roa (hash: 4jq0qwMJqWtfRUuzz3vPyKHtua4FM5/8Y3cvVGfTKBM=) 8: 34362e3138332e32362e302f32342d3234203d3e2039303039.roa (hash: ii72WRjo+pDoTtYybgLKaFsOG8JUV0CPdunTnf7/tAg=) 9: 34362e3138332e33312e302f32342d3234203d3e20383334.roa (hash: xUsUi3YtopFm9VP8hMqKJ5OknqKCy1oSAbxFuFcm2oA=) 10: 34362e3138332e32382e302f32342d3234203d3e203631333137.roa (hash: EQc8ZSWRYu3w3yABE1KT+uLZnchUtUDhUBMKc9gsz8U=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 00:37:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:3b:9d:7b:03:7c:9c:e0:17:b8:4c:c4:d4:72:57:ea:f1:d8:9a:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Validity Not Before: Aug 23 03:37:33 2025 GMT Not After : Aug 24 05:44:33 2025 GMT Subject: CN=AE6C9451030C319CA96EC51D71D50E79FC7807FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:55:a6:25:72:af:54:ca:2f:30:c4:94:4c:d4: 5c:4b:17:23:ea:d1:e8:e7:c2:99:fb:21:32:a6:ca: 34:4f:e2:50:17:30:28:89:36:65:40:ca:b4:15:46: ff:d0:72:e4:e6:57:32:6b:34:02:5e:16:1d:c0:e3: 2c:5f:58:43:22:3c:a0:e3:f2:8d:f0:a1:16:60:2c: 45:25:62:17:ce:c4:a2:5c:63:f0:24:3a:d7:08:18: a2:3b:13:b1:fa:d7:82:a6:45:76:7d:70:9a:05:d0: 93:18:75:04:ad:6f:c7:20:5a:18:d8:70:80:df:ec: e7:fa:9b:3a:20:be:dd:eb:e1:cf:65:8c:e4:b0:0e: 30:33:01:ad:3f:2d:59:ac:e4:9b:03:83:38:ea:9e: 58:6f:41:81:ab:a2:a7:a6:4b:1c:09:a7:14:98:87: 5c:4a:a4:3e:dc:87:47:91:d2:eb:49:92:f0:92:dd: 08:1b:da:a0:9b:d5:9b:b6:88:4a:99:7f:34:06:b7: 14:58:7e:89:e7:f2:2f:28:3f:8d:31:d1:22:dd:45: 3c:33:32:47:e1:f5:80:85:b2:5e:1a:1b:09:a8:28: 29:e1:9c:6a:ea:87:68:db:69:82:4b:7a:9f:d6:86: 30:b8:14:77:44:79:06:f4:f8:e5:15:b7:99:07:33: 98:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:6C:94:51:03:0C:31:9C:A9:6E:C5:1D:71:D5:0E:79:FC:78:07:FE X509v3 Authority Key Identifier: keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:cc:3b:06:cc:47:bc:3c:36:b1:02:41:b1:2a:1c:a3:9f:71: 1d:09:17:1f:00:25:64:5e:01:26:6a:63:5c:00:fd:de:c3:05: ae:b2:3b:8c:40:07:00:e4:4e:82:15:13:0f:07:fa:3c:74:5d: af:a3:bd:e7:0f:3a:cf:58:6e:74:2f:52:53:6d:1a:51:c7:8c: 1c:d9:d5:e9:a3:0e:3b:88:1d:5c:a0:cc:a7:fd:a1:57:0e:6a: 6a:16:39:ab:70:f5:0d:c6:12:89:8b:f7:a7:cb:7c:d0:db:94: eb:21:f1:89:fb:de:f7:a3:b2:eb:c7:63:91:7d:b0:9b:43:24: 5d:ea:e8:85:dd:e3:60:89:be:5e:3d:7e:7e:fd:72:fc:ab:3b: a7:a4:57:41:e9:d4:3f:d7:e3:63:41:68:a0:9b:c4:8b:5b:c7: c3:0f:d7:bd:aa:87:47:e4:91:a6:a6:67:fd:0c:c6:10:d0:4d: 75:63:57:2a:ba:c7:5f:63:34:f1:e9:f2:03:a3:8f:11:66:60: ff:b2:2e:cc:ac:7a:bc:0e:5f:b7:95:fa:d0:cf:56:fd:d1:99: 96:19:14:d0:70:01:f2:38:33:77:c9:e5:d8:e3:bf:07:41:83: c9:a3:30:6f:61:3a:6d:27:af:d7:f1:3c:8b:a7:9b:99:42:ba: a5:3c:e0:5f -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUFDudewN8nOAXuEzE1HJX6vHYmp8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjRlNTM3ODhiZDRlZmEyM2IxYTgyMDdiN2U3NGE4ZTFj YzY3N2IwMDAeFw0yNTA4MjMwMzM3MzNaFw0yNTA4MjQwNTQ0MzNaMDMxMTAvBgNV BAMTKEFFNkM5NDUxMDMwQzMxOUNBOTZFQzUxRDcxRDUwRTc5RkM3ODA3RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZVaYlcq9Uyi8wxJRM1FxLFyPq 0ejnwpn7ITKmyjRP4lAXMCiJNmVAyrQVRv/QcuTmVzJrNAJeFh3A4yxfWEMiPKDj 8o3woRZgLEUlYhfOxKJcY/AkOtcIGKI7E7H614KmRXZ9cJoF0JMYdQStb8cgWhjY cIDf7Of6mzogvt3r4c9ljOSwDjAzAa0/LVms5JsDgzjqnlhvQYGroqemSxwJpxSY h1xKpD7ch0eR0utJkvCS3Qgb2qCb1Zu2iEqZfzQGtxRYfonn8i8oP40x0SLdRTwz Mkfh9YCFsl4aGwmoKCnhnGrqh2jbaYJLep/WhjC4FHdEeQb0+OUVt5kHM5jvAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUrmyUUQMMMZypbsUdcdUOefx4B/4wHwYDVR0j BBgwFoAUJOU3iL1O+iOxqCB7fnSo4cxnewAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTZhY2I5YTAtNmQxZS00YWU0LTkxNzctZDkzOGU5ODA0 Mzk1LzAvMjRFNTM3ODhCRDRFRkEyM0IxQTgyMDdCN0U3NEE4RTFDQzY3N0IwMC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0pPVTNpTDFPLWlPeHFDQjdmblNvNGN4 bmV3QS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xNmFjYjlhMC02 ZDFlLTRhZTQtOTE3Ny1kOTM4ZTk4MDQzOTUvMC8yNEU1Mzc4OEJENEVGQTIzQjFB ODIwN0I3RTc0QThFMUNDNjc3QjAwLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe8w7BsxHvDw2sQJBsSoc o59xHQkXHwAlZF4BJmpjXAD93sMFrrI7jEAHAOROghUTDwf6PHRdr6O95w86z1hu dC9SU20aUceMHNnV6aMOO4gdXKDMp/2hVw5qahY5q3D1DcYSiYv3p8t80NuU6yHx ifve96Oy68djkX2wm0MkXerohd3jYIm+Xj1+fv1y/Ks7p6RXQenUP9fjY0FooJvE i1vHww/XvaqHR+SRpqZn/QzGENBNdWNXKrrHX2M08enyA6OPEWZg/7IuzKx6vA5f t5X60M9W/dGZlhkU0HAB8jgzd8nl2OO/B0GDyaMwb2E6bSev1/E8i6ebmUK6pTzg Xw== -----END CERTIFICATE-----Generated at Sat Aug 23 09:43:04 2025 by rpki-client