$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft File: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft (raw, json) Hash identifier: OyJWscdBCoY3euhsqeobcK6MA1mmk186HQVZei1xgPI= Subject key identifier: 23:F5:3C:93:03:B9:4B:5B:E3:79:3E:A2:26:DA:31:7F:3A:59:DE:20 Authority key identifier: F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 Certificate issuer: /CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Certificate serial: 6F76FEF698A1077E5F6632974A5280F195024B68 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft Manifest number: 0177 Signing time: Sun 19 Oct 2025 04:18:41 +0000 Manifest this update: Sun 19 Oct 2025 04:13:41 +0000 Manifest next update: Mon 20 Oct 2025 06:43:41 +0000 Files and hashes: 1: 326131343a373538303a663330303a3a2f34302d3430203d3e20323135343730.roa (hash: NYjufeU5nji5tNLR9669xX3/zAC6IxnZWFE8KHjLm6Y=) 2: 326131343a373538303a663334303a3a2f34342d3438203d3e20323133343238.roa (hash: Z7InVHvKI4/fqGkdwdL0zl1WS4Iyc09xlEsVxaD8p5A=) 3: 326131343a373538303a383030303a3a2f33362d3438203d3e20323135343730.roa (hash: eW78302x42s0yWxTWFOWa+EI8gsEah6kU2PGz4oxB3o=) 4: 326131343a373538303a663331303a3a2f34342d3438203d3e20323134303834.roa (hash: CM6yYKZbtILEkjFEjxVgY2XszlZITvyYfxEqji4AD0c=) 5: 326131343a373538303a663333303a3a2f34342d3438203d3e20323134303330.roa (hash: xT802+pU8TCiwwtqUkMgmyrnKplgnOIvmjCKunR0EEU=) 6: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl (hash: MIVX5Ecnqh1wBKnj98Urru7f1QA306vLyrguNlH0Nbw=) 7: 326131343a373538303a363030303a3a2f33362d3438203d3e20323039353534.roa (hash: 7bwiHUB+0vEKFxOfRTRz/zFRAxgK1WxBsECd2SJxocI=) 8: 326131343a373538303a663332303a3a2f34342d3434203d3e20323135343730.roa (hash: XgYHMfBb1tBckmqvYy7acYD3hSj36S+vN34vUn5oaD4=) 9: 326131343a373538303a663335303a3a2f34342d3438203d3e20323135343730.roa (hash: QilIoQFDy86/kZThJ8L3yMVtIo9IuLOdGRNLTOrhh2s=) 10: 326131343a373538303a343030303a3a2f33362d3336203d3e20323133343238.roa (hash: f38GGJwA8aLs49rknYyp3/ozCmX5eTGnavOZGUBAqUw=) 11: 326131343a373538303a663330313a3a2f34382d3438203d3e20323135343730.roa (hash: AE4p/Aixbf8sW/I3bLOtRbnycH5RSiNSfyRxjv0S1Bw=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 06:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:76:fe:f6:98:a1:07:7e:5f:66:32:97:4a:52:80:f1:95:02:4b:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Validity Not Before: Oct 19 04:13:41 2025 GMT Not After : Oct 20 06:43:41 2025 GMT Subject: CN=23F53C9303B94B5BE3793EA226DA317F3A59DE20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a3:f1:c8:5b:6d:0e:1d:e6:01:d0:23:9e:15: cc:30:66:78:b0:aa:f5:50:8a:b7:06:c1:2b:41:07: 94:03:7a:c7:33:0a:1c:83:71:db:d9:15:fe:c3:31: ff:7c:7c:a4:80:88:57:d2:65:a7:c9:a5:14:0e:33: 97:0e:b7:50:73:00:ff:cf:9f:2f:c7:6b:54:ff:14: 33:91:67:79:83:a4:6e:23:9c:96:82:66:6d:90:c4: 78:45:3f:8f:8a:8d:70:63:a8:40:91:0f:6a:2c:bc: 85:73:44:ed:47:70:7d:f2:a4:65:aa:4c:25:f5:a2: 55:62:1d:ca:3a:19:e4:c1:2a:fe:da:6d:3e:05:87: 4f:5d:b1:24:ad:41:5a:99:d4:ed:c8:51:0a:d4:99: e4:5d:9c:df:a1:1e:83:97:bc:56:b5:cc:bc:b6:30: 64:ce:e6:66:4c:22:85:33:22:c9:21:59:b5:82:d7: 9f:71:62:ce:bc:75:65:0f:7d:18:b3:00:2b:a9:d8: ec:db:87:7a:7e:5d:35:72:5d:70:98:f0:98:b0:71: f4:20:9a:6a:a9:10:a8:be:48:e9:77:f8:ae:c0:e2: be:a2:36:ec:87:e9:67:81:de:e0:25:af:ae:41:d3: 4c:29:29:d9:06:ec:dc:6a:1b:09:3f:00:c6:b5:3c: 44:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:F5:3C:93:03:B9:4B:5B:E3:79:3E:A2:26:DA:31:7F:3A:59:DE:20 X509v3 Authority Key Identifier: keyid:F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:d0:0d:0d:68:1f:3c:45:ed:b3:b2:39:e1:e8:4c:c9:9e:53: d7:8c:75:b0:43:bf:0a:46:d6:91:40:fe:c6:44:10:c9:c6:c5: 45:f9:bc:82:3f:0a:6e:69:b2:1d:56:7b:87:f0:83:40:98:c9: 7f:f1:39:16:5e:01:07:a8:24:54:a4:fa:99:1a:a3:7d:69:7b: a1:10:4a:91:26:7c:fd:5d:79:21:59:5f:7e:0c:0b:d4:39:05: 79:7a:e5:ec:45:04:dd:05:7a:94:dd:2c:ac:e8:ad:8a:a2:23: b2:46:27:75:f5:7d:0d:61:5c:29:42:87:ac:fb:52:7a:a4:25: 5e:05:39:17:5e:e1:6c:b8:95:8e:0f:4e:e3:f3:fb:a6:d3:0b: 33:bc:a3:88:5a:bb:0e:3f:fc:a8:bb:f3:2d:81:88:f9:21:18: 2d:d9:54:ca:21:07:c4:f5:01:23:7a:b4:95:5b:6b:aa:98:b0: 6f:0e:df:8d:a8:c5:a4:0b:c2:0b:e1:1c:32:f1:0e:49:29:5c: eb:49:f1:92:0c:d7:1e:30:45:0d:8b:57:b3:d0:e1:6c:61:87: 4f:a5:4d:96:2e:ff:a3:e3:8d:d6:fb:b2:7b:87:2e:90:aa:4e: f4:3a:61:11:0f:ac:5f:bb:12:42:21:39:b9:b3:11:62:14:68: 96:9b:71:70 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUb3b+9pihB35fZjKXSlKA8ZUCS2gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENG OTM5RjRGNDAeFw0yNTEwMTkwNDEzNDFaFw0yNTEwMjAwNjQzNDFaMDMxMTAvBgNV BAMTKDIzRjUzQzkzMDNCOTRCNUJFMzc5M0VBMjI2REEzMTdGM0E1OURFMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQo/HIW20OHeYB0COeFcwwZniw qvVQircGwStBB5QDesczChyDcdvZFf7DMf98fKSAiFfSZafJpRQOM5cOt1BzAP/P ny/Ha1T/FDORZ3mDpG4jnJaCZm2QxHhFP4+KjXBjqECRD2osvIVzRO1HcH3ypGWq TCX1olViHco6GeTBKv7abT4Fh09dsSStQVqZ1O3IUQrUmeRdnN+hHoOXvFa1zLy2 MGTO5mZMIoUzIskhWbWC159xYs68dWUPfRizACup2Ozbh3p+XTVyXXCY8JiwcfQg mmqpEKi+SOl3+K7A4r6iNuyH6WeB3uAlr65B00wpKdkG7NxqGwk/AMa1PETzAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUI/U8kwO5S1vjeT6iJtoxfzpZ3iAwHwYDVR0j BBgwFoAU9ABy/9wPGxWmnlvHmi9YjPk59PQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTlhYTlkYTctZjFlNC00ZDk4LWJmOTUtOWZkZmNmNDQ4 Zjc3LzAvRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENGOTM5RjRGNC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GNDAwNzJGRkRDMEYxQjE1QTY5RTVCQzc5 QTJGNTg4Q0Y5MzlGNEY0LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzE5YWE5ZGE3LWYxZTQtNGQ5OC1iZjk1LTlmZGZjZjQ0OGY3Ny8wL0Y0MDA3MkZG REMwRjFCMTVBNjlFNUJDNzlBMkY1ODhDRjkzOUY0RjQubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCX0A0N aB88Re2zsjnh6EzJnlPXjHWwQ78KRtaRQP7GRBDJxsVF+byCPwpuabIdVnuH8INA mMl/8TkWXgEHqCRUpPqZGqN9aXuhEEqRJnz9XXkhWV9+DAvUOQV5euXsRQTdBXqU 3Sys6K2KoiOyRid19X0NYVwpQoes+1J6pCVeBTkXXuFsuJWOD07j8/um0wszvKOI WrsOP/you/MtgYj5IRgt2VTKIQfE9QEjerSVW2uqmLBvDt+NqMWkC8IL4Rwy8Q5J KVzrSfGSDNceMEUNi1ez0OFsYYdPpU2WLv+j443W+7J7hy6Qqk70OmERD6xfuxJC ITm5sxFiFGiWm3Fw -----END CERTIFICATE-----Generated at Mon Oct 20 00:07:21 2025 by rpki-client