$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft File: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft (raw, json) Hash identifier: Gqm3xHiR7F27a/cG+HjHK7oHu2ytYlSrRCv3yOYeh2Q= Subject key identifier: B6:67:7B:C3:FE:1E:5D:38:A4:41:9D:92:50:5E:C8:BE:E7:BC:A1:03 Authority key identifier: F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 Certificate issuer: /CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Certificate serial: 33FA1C42A570A2E17925E6E905390F3B35C77C7C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft Manifest number: 0262 Signing time: Wed 25 Mar 2026 22:47:08 +0000 Manifest this update: Wed 25 Mar 2026 22:42:08 +0000 Manifest next update: Fri 27 Mar 2026 00:30:08 +0000 Files and hashes: 1: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl (hash: TJPXTnuzFAxd6tDZdsDoGZ+Rk135i4gIbcMN9roUtjU=) 2: 326131343a373538303a663330323a3a2f34382d3438203d3e20313331363330.roa (hash: 0U978EwLr0cQOJZIpeug1XzeDzeS9rc2Q8ZVm/cX9Sc=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 00:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:fa:1c:42:a5:70:a2:e1:79:25:e6:e9:05:39:0f:3b:35:c7:7c:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Validity Not Before: Mar 25 22:42:08 2026 GMT Not After : Mar 27 00:30:08 2026 GMT Subject: CN=B6677BC3FE1E5D38A4419D92505EC8BEE7BCA103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4d:96:2f:e7:09:bf:b4:3a:6e:4d:2b:7a:8f: 6e:93:26:9d:a2:24:7e:cc:e6:35:78:63:8f:5b:ff: 1b:e9:1c:ff:74:22:99:89:23:25:76:2a:90:83:64: 07:ac:6f:ab:43:c6:01:70:00:af:b6:26:ca:30:34: 39:df:aa:ee:64:8c:2c:89:44:57:d9:07:1d:74:17: 87:ae:f5:8e:42:a9:af:6a:b5:2f:49:29:85:f2:0b: 2f:5f:a5:c4:14:7e:0b:2d:57:ba:01:50:12:6e:11: eb:cc:b6:c0:22:5f:18:f6:be:bf:62:ff:42:0c:39: df:f5:b7:18:18:f9:9c:ab:9f:29:4f:ff:3f:e3:ba: c7:aa:b4:e9:f4:97:98:9a:38:39:0a:af:20:4c:24: 4b:a2:b9:45:99:3d:17:a3:58:55:0f:99:03:6f:6d: d1:08:64:74:89:35:71:10:0e:88:08:02:ca:6b:57: 14:41:32:5c:d1:0d:93:2b:de:3f:e3:eb:b1:42:53: 2d:68:cc:22:65:3f:1a:16:95:c7:af:50:0b:b2:f6: f0:24:ca:87:ec:d2:53:99:07:6f:ec:3e:cb:a2:49: ad:35:14:ad:33:1f:4c:68:f2:2b:53:0d:77:14:33: ed:a2:18:03:12:ee:45:e0:6b:6c:36:80:c0:12:08: 79:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:67:7B:C3:FE:1E:5D:38:A4:41:9D:92:50:5E:C8:BE:E7:BC:A1:03 X509v3 Authority Key Identifier: keyid:F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:a9:2a:73:e0:b4:1d:d7:37:f1:c6:47:ff:b5:da:6b:68:36: 73:1e:be:9c:a7:77:75:47:8a:9f:3e:7d:09:35:a9:ea:2e:ee: 7a:ad:d5:8b:82:25:93:f1:4e:5b:79:70:cb:f4:f7:f3:43:cf: fa:a8:47:c1:e2:33:87:9b:09:cf:e2:00:96:40:ee:c5:4e:81: e5:00:d6:85:1f:33:ff:18:19:ed:5d:31:33:a6:c1:89:ed:b1: b4:57:a3:47:39:37:d0:fb:8d:2a:dc:d7:a4:78:50:6d:1b:9d: 9d:72:d0:bc:37:66:4c:ed:02:df:7b:6e:f7:58:90:36:d6:23: 66:00:e7:30:9f:d2:b0:80:2f:3d:1a:70:78:e7:13:6e:2a:0a: c8:05:bd:b4:6c:ff:d9:a1:42:91:ab:eb:9e:bd:ff:81:ce:16: f4:ad:a6:f1:8a:fe:05:6d:79:43:5f:a0:c2:31:9f:ec:5c:1b: 96:69:a1:14:04:08:58:74:62:0a:fc:31:ee:be:1d:ef:37:5a: ff:95:87:fc:f8:91:bf:a2:a8:b6:c6:79:20:e2:74:59:2c:3d: f5:cf:01:5f:a3:c9:64:10:c9:8b:3d:4a:7f:d6:c7:f0:b3:5a: bc:86:09:3d:b9:98:22:d8:ce:8d:bb:04:ad:ec:f8:72:5c:df: 17:44:8d:da -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUM/ocQqVwouF5JebpBTkPOzXHfHwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENG OTM5RjRGNDAeFw0yNjAzMjUyMjQyMDhaFw0yNjAzMjcwMDMwMDhaMDMxMTAvBgNV BAMTKEI2Njc3QkMzRkUxRTVEMzhBNDQxOUQ5MjUwNUVDOEJFRTdCQ0ExMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDETZYv5wm/tDpuTSt6j26TJp2i JH7M5jV4Y49b/xvpHP90IpmJIyV2KpCDZAesb6tDxgFwAK+2JsowNDnfqu5kjCyJ RFfZBx10F4eu9Y5Cqa9qtS9JKYXyCy9fpcQUfgstV7oBUBJuEevMtsAiXxj2vr9i /0IMOd/1txgY+ZyrnylP/z/juseqtOn0l5iaODkKryBMJEuiuUWZPRejWFUPmQNv bdEIZHSJNXEQDogIAsprVxRBMlzRDZMr3j/j67FCUy1ozCJlPxoWlcevUAuy9vAk yofs0lOZB2/sPsuiSa01FK0zH0xo8itTDXcUM+2iGAMS7kXga2w2gMASCHmXAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUtmd7w/4eXTikQZ2SUF7Ivue8oQMwHwYDVR0j BBgwFoAU9ABy/9wPGxWmnlvHmi9YjPk59PQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTlhYTlkYTctZjFlNC00ZDk4LWJmOTUtOWZkZmNmNDQ4 Zjc3LzAvRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENGOTM5RjRGNC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GNDAwNzJGRkRDMEYxQjE1QTY5RTVCQzc5 QTJGNTg4Q0Y5MzlGNEY0LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzE5YWE5ZGE3LWYxZTQtNGQ5OC1iZjk1LTlmZGZjZjQ0OGY3Ny8wL0Y0MDA3MkZG REMwRjFCMTVBNjlFNUJDNzlBMkY1ODhDRjkzOUY0RjQubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQA5qSpz 4LQd1zfxxkf/tdpraDZzHr6cp3d1R4qfPn0JNanqLu56rdWLgiWT8U5beXDL9Pfz Q8/6qEfB4jOHmwnP4gCWQO7FToHlANaFHzP/GBntXTEzpsGJ7bG0V6NHOTfQ+40q 3NekeFBtG52dctC8N2ZM7QLfe273WJA21iNmAOcwn9KwgC89GnB45xNuKgrIBb20 bP/ZoUKRq+uevf+Bzhb0rabxiv4FbXlDX6DCMZ/sXBuWaaEUBAhYdGIK/DHuvh3v N1r/lYf8+JG/oqi2xnkg4nRZLD31zwFfo8lkEMmLPUp/1sfws1q8hgk9uZgi2M6N uwSt7PhyXN8XRI3a -----END CERTIFICATE-----Generated at Thu Mar 26 04:18:52 2026 by rpki-client