$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft File: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft (raw, json) Hash identifier: KKyQv30kkXDN57N+KoSBwtU547j+GyMN2zuQeMO8zP4= Subject key identifier: 33:20:FD:6E:0B:32:AD:0F:C2:66:E7:E3:BC:03:BC:00:AE:F9:F3:D5 Authority key identifier: F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 Certificate issuer: /CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Certificate serial: 3DB3BAB57E96B90F807048A473D61800E7E26808 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft Manifest number: DF Signing time: Sun 29 Jun 2025 14:40:56 +0000 Manifest this update: Sun 29 Jun 2025 14:35:56 +0000 Manifest next update: Mon 30 Jun 2025 16:09:56 +0000 Files and hashes: 1: 326131343a373538303a383030303a3a2f33362d3438203d3e20323135343730.roa (hash: ibb68AQAVWJMES3NYRBIOdUeHnGKp+tFUocAxCKgPEU=) 2: 326131343a373538303a663330313a3a2f34382d3438203d3e20323135343730.roa (hash: GyqnDZwlRU44RSAJS6AmGof5uxXXmzhkRtpFSrxG7Nw=) 3: 326131343a373538303a663331303a3a2f34342d3438203d3e20323134303834.roa (hash: 7Ht9ysaUQlknniITxiGGZVb7FReUYStDZL1yen2prNE=) 4: 326131343a373538303a363030303a3a2f33362d3438203d3e20323039353534.roa (hash: 7bwiHUB+0vEKFxOfRTRz/zFRAxgK1WxBsECd2SJxocI=) 5: 326131343a373538303a663334303a3a2f34342d3438203d3e20323133343238.roa (hash: Z7InVHvKI4/fqGkdwdL0zl1WS4Iyc09xlEsVxaD8p5A=) 6: 326131343a373538303a343030303a3a2f33362d3336203d3e20323133343238.roa (hash: f38GGJwA8aLs49rknYyp3/ozCmX5eTGnavOZGUBAqUw=) 7: 326131343a373538303a663332303a3a2f34342d3434203d3e20323135343730.roa (hash: XgYHMfBb1tBckmqvYy7acYD3hSj36S+vN34vUn5oaD4=) 8: 326131343a373538303a663330303a3a2f34302d3430203d3e20323135343730.roa (hash: NYjufeU5nji5tNLR9669xX3/zAC6IxnZWFE8KHjLm6Y=) 9: 326131343a373538303a663333303a3a2f34342d3438203d3e20323134303330.roa (hash: E8taggS6sI4q0LKjH6/GmLcIK3Cj0Fw4lwLi8ILdzT4=) 10: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl (hash: Xh9sNdtUSQ8dEsQCIND0gsQhOViVKR6XWonaRBru/pM=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Jun 2025 13:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:b3:ba:b5:7e:96:b9:0f:80:70:48:a4:73:d6:18:00:e7:e2:68:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Validity Not Before: Jun 29 14:35:56 2025 GMT Not After : Jun 30 16:09:56 2025 GMT Subject: CN=3320FD6E0B32AD0FC266E7E3BC03BC00AEF9F3D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f5:71:4b:85:c3:b0:3c:90:46:18:94:9a:a1: 06:a1:84:a5:a0:55:ee:fe:3e:14:1f:8e:34:b7:e2: 58:50:ba:64:6b:b8:15:47:eb:f5:85:f9:99:95:81: e5:23:18:20:11:2e:a7:78:bf:03:60:c9:cc:2e:0b: 93:86:1f:05:c9:a6:6c:f1:2a:d9:e2:19:95:42:f2: 54:32:b8:8c:81:0a:d6:76:e4:ff:73:0e:ae:4c:91: e5:05:8f:30:be:03:b6:d1:71:89:fc:5d:df:ed:8d: 26:3c:d7:f5:60:a5:aa:34:18:6e:92:63:ea:9b:63: 9d:5f:dd:15:3a:4d:17:eb:f4:27:59:c2:81:1a:1b: 8e:16:37:b1:c7:95:d9:a2:0b:89:3c:cd:af:1c:e0: 1e:dd:74:66:04:0f:c4:3b:23:11:72:52:c1:fe:92: 92:12:d2:11:4b:c9:53:2d:84:ce:3d:47:1f:c3:6e: f3:8c:5f:73:c2:fa:ad:a8:19:da:e4:5d:29:9b:c4: 69:65:6a:d1:32:7b:f9:86:bc:5f:70:b4:8d:0a:04: bd:4b:cb:ae:26:bb:e9:a5:c8:6d:7a:2f:3f:1a:ba: 66:d9:98:7b:a5:53:ee:41:af:4d:96:da:c9:fc:4e: 78:51:fc:ae:e3:67:b6:b8:5d:67:78:12:05:ab:0e: 5f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:20:FD:6E:0B:32:AD:0F:C2:66:E7:E3:BC:03:BC:00:AE:F9:F3:D5 X509v3 Authority Key Identifier: keyid:F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:48:a3:34:01:ef:22:6c:43:df:de:97:38:b2:94:e6:03:d2: 13:8e:85:fd:7d:5f:50:41:d4:22:98:47:5a:58:ba:68:ab:8d: 90:4d:35:af:5d:3a:df:6d:da:e0:a0:d0:16:8e:5a:1b:26:be: 2b:da:a9:8b:1f:8d:b4:38:18:be:be:28:4a:e2:f7:4c:7c:ed: 44:6c:f7:a7:a5:4a:27:2f:98:40:ee:79:48:8b:bb:2e:3b:db: 66:a4:90:b0:70:dd:b4:a4:2e:dd:c1:9c:02:fb:b5:65:aa:46: 7b:18:f2:db:4e:90:31:c5:6b:8f:77:07:a1:bf:c9:79:6a:6d: f6:3a:6d:77:33:02:b4:f4:fa:d3:ae:cf:b5:2c:14:56:c1:95: 93:35:18:0b:2e:2e:dc:0e:e7:19:37:47:3b:49:59:67:14:d6: 34:27:7e:48:5b:ae:fc:46:ef:b5:d4:b6:6a:32:2e:4e:e0:72: 11:57:96:d7:fa:e9:d7:c3:b1:7c:b1:e2:8a:9b:f9:eb:5e:fa: 9a:87:32:ac:0a:3c:75:9a:5f:8c:23:f5:d6:14:6e:08:27:ef: da:e4:d6:a3:58:64:a7:eb:d9:a7:2a:ce:da:d6:ce:55:5d:9e: 7c:f1:37:79:b8:f8:55:0c:53:38:4d:18:67:1b:51:5a:61:26: 52:f9:fc:cd -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUPbO6tX6WuQ+AcEikc9YYAOfiaAgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENG OTM5RjRGNDAeFw0yNTA2MjkxNDM1NTZaFw0yNTA2MzAxNjA5NTZaMDMxMTAvBgNV BAMTKDMzMjBGRDZFMEIzMkFEMEZDMjY2RTdFM0JDMDNCQzAwQUVGOUYzRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu9XFLhcOwPJBGGJSaoQahhKWg Ve7+PhQfjjS34lhQumRruBVH6/WF+ZmVgeUjGCARLqd4vwNgycwuC5OGHwXJpmzx KtniGZVC8lQyuIyBCtZ25P9zDq5MkeUFjzC+A7bRcYn8Xd/tjSY81/Vgpao0GG6S Y+qbY51f3RU6TRfr9CdZwoEaG44WN7HHldmiC4k8za8c4B7ddGYED8Q7IxFyUsH+ kpIS0hFLyVMthM49Rx/DbvOMX3PC+q2oGdrkXSmbxGllatEye/mGvF9wtI0KBL1L y64mu+mlyG16Lz8aumbZmHulU+5Br02W2sn8TnhR/K7jZ7a4XWd4EgWrDl8JAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUMyD9bgsyrQ/CZufjvAO8AK7589UwHwYDVR0j BBgwFoAU9ABy/9wPGxWmnlvHmi9YjPk59PQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTlhYTlkYTctZjFlNC00ZDk4LWJmOTUtOWZkZmNmNDQ4 Zjc3LzAvRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENGOTM5RjRGNC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GNDAwNzJGRkRDMEYxQjE1QTY5RTVCQzc5 QTJGNTg4Q0Y5MzlGNEY0LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzE5YWE5ZGE3LWYxZTQtNGQ5OC1iZjk1LTlmZGZjZjQ0OGY3Ny8wL0Y0MDA3MkZG REMwRjFCMTVBNjlFNUJDNzlBMkY1ODhDRjkzOUY0RjQubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCuSKM0 Ae8ibEPf3pc4spTmA9ITjoX9fV9QQdQimEdaWLpoq42QTTWvXTrfbdrgoNAWjlob Jr4r2qmLH420OBi+vihK4vdMfO1EbPenpUonL5hA7nlIi7suO9tmpJCwcN20pC7d wZwC+7VlqkZ7GPLbTpAxxWuPdwehv8l5am32Om13MwK09PrTrs+1LBRWwZWTNRgL Li7cDucZN0c7SVlnFNY0J35IW678Ru+11LZqMi5O4HIRV5bX+unXw7F8seKKm/nr XvqahzKsCjx1ml+MI/XWFG4IJ+/a5NajWGSn69mnKs7a1s5VXZ588Td5uPhVDFM4 TRhnG1FaYSZS+fzN -----END CERTIFICATE-----Generated at Sun Jun 29 19:40:28 2025 by rpki-client