$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft File: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft (raw, json) Hash identifier: VNQBxPdoOpcGRPMl/cda4tJKI2BEYYBfXSj7WqDWndI= Subject key identifier: 79:42:DA:B6:7F:54:9C:7A:77:21:CA:4F:6E:F3:22:80:83:48:B5:C7 Authority key identifier: F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 Certificate issuer: /CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Certificate serial: 614E3C576435024A967CA70C034CBF2938B20E91 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft Manifest number: 02A1 Signing time: Tue 12 May 2026 09:12:30 +0000 Manifest this update: Tue 12 May 2026 09:07:30 +0000 Manifest next update: Wed 13 May 2026 10:41:30 +0000 Files and hashes: 1: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl (hash: dF/1O8gobQ8MVWvBXTFX5oXVv4AzYBEO11r4Jt/3Lxw=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 10:41:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:4e:3c:57:64:35:02:4a:96:7c:a7:0c:03:4c:bf:29:38:b2:0e:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Validity Not Before: May 12 09:07:30 2026 GMT Not After : May 13 10:41:30 2026 GMT Subject: CN=7942DAB67F549C7A7721CA4F6EF322808348B5C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d7:9d:9b:55:22:04:f1:2d:49:5f:e4:ed:4b: ce:28:c3:88:56:ec:95:98:6c:db:13:c9:de:54:9a: a4:0e:d2:b6:a8:5c:1b:96:84:bf:00:e5:04:be:a1: 18:15:cb:35:5f:2d:d5:d9:44:f1:ec:f2:97:1d:53: 92:fd:9c:48:a2:44:9b:c3:52:94:2c:a7:f2:69:e9: 87:17:32:99:71:8a:d2:0e:0b:26:c5:a3:32:c5:96: b8:f2:69:90:ba:9e:db:bd:68:df:cd:56:00:bd:c5: 74:5e:7a:44:bd:c5:01:7c:e4:c3:7c:ce:05:f7:1e: 12:f2:c2:04:f8:7f:85:cf:47:88:4e:c6:19:ee:72: cc:f0:14:c2:64:32:df:28:0c:71:f2:f6:58:f6:bd: c3:ee:55:b5:a4:0b:5d:ab:9a:16:89:46:6a:9e:c1: 9d:47:c5:b0:8e:06:fc:f5:e5:e2:df:49:f8:e4:10: cf:14:83:2b:db:db:91:2b:f5:63:e4:68:33:6a:fe: 3d:d2:ab:e2:f0:32:ff:8a:db:da:30:b5:96:71:4e: ec:e2:67:61:65:ad:cb:5f:ed:44:57:5c:c9:86:cf: 15:14:d0:a6:f8:25:20:94:48:a6:aa:b8:42:80:04: 0a:2b:cc:29:49:96:78:3d:56:cf:09:50:c2:78:c1: e3:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:42:DA:B6:7F:54:9C:7A:77:21:CA:4F:6E:F3:22:80:83:48:B5:C7 X509v3 Authority Key Identifier: keyid:F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:a2:de:dd:f7:b9:ae:5e:94:af:24:b4:51:20:17:a4:3f:a6: c4:25:ac:d3:ba:80:55:8c:74:58:1f:5e:0d:85:c6:e0:31:bf: 0c:1a:4b:60:16:06:ef:3c:c1:82:cb:62:7a:33:bd:8f:b0:5d: dd:3c:20:17:17:54:48:fe:e1:50:e8:ea:7d:be:0e:2d:d0:d3: ff:ed:f3:17:05:33:69:9c:b6:15:d1:e5:ee:31:c9:a0:ca:3e: 27:57:ff:18:26:ef:f8:c2:13:70:73:f1:53:4e:50:55:63:b5: 99:36:6e:3c:b0:a8:0f:b4:79:8b:68:21:ca:13:d5:35:66:6f: fd:c7:39:72:8a:d2:1e:cd:f2:a6:81:e4:f8:f2:ac:39:ea:12: 5e:1c:29:2f:79:7a:98:29:ec:97:39:36:22:1f:07:7a:5c:cd: b4:e7:03:c0:72:79:1f:9a:7c:ab:27:16:16:1b:42:d3:bc:08: b5:fd:ec:24:7a:d8:6d:3e:e5:f4:17:52:af:42:03:e1:6a:29: 1f:7a:c9:27:7e:93:94:d9:4a:aa:cb:b9:4f:06:05:04:8b:26: e9:0e:23:a1:8e:ed:24:b8:78:d3:c7:00:2e:ce:42:9a:b6:8f: 6e:90:37:65:3a:4a:36:a6:07:61:a5:b3:bc:88:64:42:b0:fb: 8a:c4:9e:0a -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUYU48V2Q1AkqWfKcMA0y/KTiyDpEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENG OTM5RjRGNDAeFw0yNjA1MTIwOTA3MzBaFw0yNjA1MTMxMDQxMzBaMDMxMTAvBgNV BAMTKDc5NDJEQUI2N0Y1NDlDN0E3NzIxQ0E0RjZFRjMyMjgwODM0OEI1QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw152bVSIE8S1JX+TtS84ow4hW 7JWYbNsTyd5UmqQO0raoXBuWhL8A5QS+oRgVyzVfLdXZRPHs8pcdU5L9nEiiRJvD UpQsp/Jp6YcXMplxitIOCybFozLFlrjyaZC6ntu9aN/NVgC9xXReekS9xQF85MN8 zgX3HhLywgT4f4XPR4hOxhnucszwFMJkMt8oDHHy9lj2vcPuVbWkC12rmhaJRmqe wZ1HxbCOBvz15eLfSfjkEM8Ugyvb25Er9WPkaDNq/j3Sq+LwMv+K29owtZZxTuzi Z2Flrctf7URXXMmGzxUU0Kb4JSCUSKaquEKABAorzClJlng9Vs8JUMJ4weMzAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUeULatn9UnHp3IcpPbvMigINItccwHwYDVR0j BBgwFoAU9ABy/9wPGxWmnlvHmi9YjPk59PQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTlhYTlkYTctZjFlNC00ZDk4LWJmOTUtOWZkZmNmNDQ4 Zjc3LzAvRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENGOTM5RjRGNC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GNDAwNzJGRkRDMEYxQjE1QTY5RTVCQzc5 QTJGNTg4Q0Y5MzlGNEY0LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzE5YWE5ZGE3LWYxZTQtNGQ5OC1iZjk1LTlmZGZjZjQ0OGY3Ny8wL0Y0MDA3MkZG REMwRjFCMTVBNjlFNUJDNzlBMkY1ODhDRjkzOUY0RjQubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAdot7d 97muXpSvJLRRIBekP6bEJazTuoBVjHRYH14NhcbgMb8MGktgFgbvPMGCy2J6M72P sF3dPCAXF1RI/uFQ6Op9vg4t0NP/7fMXBTNpnLYV0eXuMcmgyj4nV/8YJu/4whNw c/FTTlBVY7WZNm48sKgPtHmLaCHKE9U1Zm/9xzlyitIezfKmgeT48qw56hJeHCkv eXqYKeyXOTYiHwd6XM205wPAcnkfmnyrJxYWG0LTvAi1/ewkethtPuX0F1KvQgPh aikfesknfpOU2Uqqy7lPBgUEiybpDiOhju0kuHjTxwAuzkKato9ukDdlOko2pgdh pbO8iGRCsPuKxJ4K -----END CERTIFICATE-----Generated at Wed May 13 05:03:24 2026 by rpki-client