$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft File: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft (raw, json) Hash identifier: N7F/uf4Bl+knjjJk9e6gYTuXcgtDD/T3r2GwoaE9ilc= Subject key identifier: FE:4A:A6:78:D6:D3:28:2F:7A:28:D1:5A:32:E8:95:CA:C2:04:FF:3B Authority key identifier: 5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 Certificate issuer: /CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Certificate serial: 44D2A32E56CD89DC38D78408F7F6EDCD4C7BDCC2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft Manifest number: 03B4 Signing time: Sat 23 Aug 2025 01:42:33 +0000 Manifest this update: Sat 23 Aug 2025 01:37:33 +0000 Manifest next update: Sun 24 Aug 2025 02:35:33 +0000 Files and hashes: 1: 34352e3134362e3136302e302f32332d3233203d3e203437343437.roa (hash: RhIjHNXayp0tS4DN32atD6aHafLrHUAz0HkdV618CRY=) 2: 34352e3134362e3136322e302f32342d3234203d3e203138363331.roa (hash: C/6HJC1mRnTjt5un9I/ly/ex3eg1Ngny62cwbLuyXag=) 3: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl (hash: cTocIK1sSwo1iBs43x0cSoj0WiLuplPuH8kuhhU16IE=) 4: 34352e3134362e3136332e302f32342d3234203d3e20323136313833.roa (hash: VqRU0PsdkYcQlfLEqZmAkEPw8yvo7sqFgCP45AzG5Gs=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 00:37:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:d2:a3:2e:56:cd:89:dc:38:d7:84:08:f7:f6:ed:cd:4c:7b:dc:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Validity Not Before: Aug 23 01:37:33 2025 GMT Not After : Aug 24 02:35:33 2025 GMT Subject: CN=FE4AA678D6D3282F7A28D15A32E895CAC204FF3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9a:4b:95:18:fb:1a:3e:9f:15:c2:78:8e:09: 91:c4:e7:64:1e:5f:f4:63:55:73:1d:05:69:0a:db: 62:cb:23:fa:d8:da:39:bd:f6:16:d1:01:c1:5d:66: 65:5e:d0:f7:21:9a:2a:af:ac:8d:5f:da:77:63:05: e8:89:02:e3:f8:00:6c:56:94:ad:4f:48:af:de:26: c1:bb:6e:18:da:27:53:22:09:e5:29:26:b7:0f:04: 2e:1a:18:1b:01:15:31:e0:fd:f8:c0:8c:5c:1d:4e: 27:3d:f7:60:82:47:ee:aa:c4:af:52:b8:f6:f5:f3: d2:79:5a:9e:64:e0:51:78:fd:60:dc:3e:9e:ba:dc: 0a:3b:ab:30:cc:6a:9f:3b:82:81:ac:b1:8a:8e:92: 14:07:8b:75:21:6e:cf:f6:9b:ef:88:39:8f:08:22: a6:48:7e:fa:b5:67:99:d8:51:77:5f:e5:a9:b0:27: 80:26:ad:bf:a8:79:59:98:9d:8d:af:21:09:17:20: 3d:df:3c:8c:66:3a:2d:67:19:25:5b:b8:ce:71:81: a5:7b:c1:c0:c6:8a:b1:a4:d7:d3:50:e4:0c:7c:7f: 0c:87:8f:c8:de:af:8f:f4:42:a3:49:fc:6e:03:d5: e6:51:ba:ac:c1:fa:e1:90:6b:f3:ba:e8:fc:80:8e: b5:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:4A:A6:78:D6:D3:28:2F:7A:28:D1:5A:32:E8:95:CA:C2:04:FF:3B X509v3 Authority Key Identifier: keyid:5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:a9:56:7a:94:bf:1c:c6:1e:aa:ae:9e:ba:44:99:17:42:9b: 92:51:50:19:2c:f5:a3:41:e0:9d:f9:79:a8:64:69:97:ed:0c: a1:d1:44:28:ce:3c:57:92:ec:9d:e3:9d:e0:98:8a:88:35:98: b6:20:dd:6b:fc:59:1e:7b:f4:77:f3:06:30:73:a6:89:42:fb: a3:c1:a3:dd:cc:50:d1:a8:6a:c8:2f:c3:01:78:a2:48:a6:24: 54:d1:21:2e:67:62:5d:1e:bb:26:be:5e:be:9d:a1:9f:97:33: ad:30:ac:0a:38:37:ce:2f:e8:b0:b3:8c:a4:d4:06:48:d8:07: 76:fe:41:96:d4:5f:20:89:ab:4d:7a:40:43:cc:bf:cc:e1:3a: 76:c1:7c:fa:0e:5f:b3:87:dc:b9:de:ff:68:c4:ba:8b:27:44: e4:95:94:89:dc:e5:6e:73:42:8c:4a:e9:7e:ce:42:03:22:36: 2a:bb:96:03:44:1f:7d:45:ac:04:fb:fd:6c:75:fa:95:a9:c2: 6e:6a:73:05:a7:8a:b5:fe:c8:28:05:08:dc:fc:76:95:0e:ed: 32:68:a7:43:94:44:6c:00:70:3c:3f:d1:51:cb:fa:f7:74:7c: c4:3f:44:05:23:93:f5:63:58:fe:4d:7c:f2:9b:75:3f:23:41: d5:b2:6c:7d -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIURNKjLlbNidw414QI9/btzUx73MIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRlZmUwOTIyZjRmNTUyNzBkY2Q1YzA4ZjA0ZjFjN2Jm MjYwNzNjMzAeFw0yNTA4MjMwMTM3MzNaFw0yNTA4MjQwMjM1MzNaMDMxMTAvBgNV BAMTKEZFNEFBNjc4RDZEMzI4MkY3QTI4RDE1QTMyRTg5NUNBQzIwNEZGM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLmkuVGPsaPp8VwniOCZHE52Qe X/RjVXMdBWkK22LLI/rY2jm99hbRAcFdZmVe0PchmiqvrI1f2ndjBeiJAuP4AGxW lK1PSK/eJsG7bhjaJ1MiCeUpJrcPBC4aGBsBFTHg/fjAjFwdTic992CCR+6qxK9S uPb189J5Wp5k4FF4/WDcPp663Ao7qzDMap87goGssYqOkhQHi3Uhbs/2m++IOY8I IqZIfvq1Z5nYUXdf5amwJ4Amrb+oeVmYnY2vIQkXID3fPIxmOi1nGSVbuM5xgaV7 wcDGirGk19NQ5Ax8fwyHj8jer4/0QqNJ/G4D1eZRuqzB+uGQa/O66PyAjrXtAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU/kqmeNbTKC96KNFaMuiVysIE/zswHwYDVR0j BBgwFoAUXe/gki9PVScNzVwI8E8ce/Jgc8MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmZlMmIyN2EtMWVjNS00YWI3LTk3OGUtNmRhOWNmOWYz NzkwLzAvNURFRkUwOTIyRjRGNTUyNzBEQ0Q1QzA4RjA0RjFDN0JGMjYwNzNDMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hlX2draTlQVlNjTnpWd0k4RThjZV9K Z2M4TS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZmUyYjI3YS0x ZWM1LTRhYjctOTc4ZS02ZGE5Y2Y5ZjM3OTAvMC81REVGRTA5MjJGNEY1NTI3MERD RDVDMDhGMDRGMUM3QkYyNjA3M0MzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF6lWepS/HMYeqq6eukSZ F0KbklFQGSz1o0Hgnfl5qGRpl+0ModFEKM48V5LsneOd4JiKiDWYtiDda/xZHnv0 d/MGMHOmiUL7o8Gj3cxQ0ahqyC/DAXiiSKYkVNEhLmdiXR67Jr5evp2hn5czrTCs Cjg3zi/osLOMpNQGSNgHdv5BltRfIImrTXpAQ8y/zOE6dsF8+g5fs4fcud7/aMS6 iydE5JWUidzlbnNCjErpfs5CAyI2KruWA0QffUWsBPv9bHX6lanCbmpzBaeKtf7I KAUI3Px2lQ7tMminQ5REbABwPD/RUcv693R8xD9EBSOT9WNY/k188pt1PyNB1bJs fQ== -----END CERTIFICATE-----Generated at Sat Aug 23 10:07:29 2025 by rpki-client