$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft File: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft (raw, json) Hash identifier: vovxliiqtp+v5/G/z7qqMiLwbe0WQ8uoPcwhatBPF40= Subject key identifier: 27:F7:1B:74:3F:98:7C:89:C0:E9:18:71:16:A1:B9:DA:0A:65:C6:CA Authority key identifier: 5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 Certificate issuer: /CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Certificate serial: 3ADA787705697FB3B2EAC206EE7F7B56E46D7554 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft Manifest number: 0513 Signing time: Tue 12 May 2026 12:09:50 +0000 Manifest this update: Tue 12 May 2026 12:04:50 +0000 Manifest next update: Wed 13 May 2026 13:39:50 +0000 Files and hashes: 1: 34352e3134362e3136332e302f32342d3234203d3e20323136313833.roa (hash: dEyrefnnKSg66lfx459XJ2SroTggGi4go9Zp+DRZdvU=) 2: 34352e3134362e3136322e302f32342d3234203d3e203138363331.roa (hash: mQKE/0/NnV539NSoXtVCOp3+AeXahl8sUnLhuxaZN7o=) 3: 34352e3134362e3136302e302f32332d3233203d3e203437343437.roa (hash: 31YTnxmdtZ2cp3Cw9rcOHPD6ZzrVs4b/Az5vMfbmmIM=) 4: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl (hash: LeGW6MLAno1HdmAKEBITs6AMhJMB77mEpBCEmsZBwTA=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 13:39:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:da:78:77:05:69:7f:b3:b2:ea:c2:06:ee:7f:7b:56:e4:6d:75:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Validity Not Before: May 12 12:04:50 2026 GMT Not After : May 13 13:39:50 2026 GMT Subject: CN=27F71B743F987C89C0E9187116A1B9DA0A65C6CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:e6:5e:6f:b9:ca:fa:84:92:34:de:67:7f:f6: 55:37:d9:f3:6e:de:52:8b:36:f5:c8:a4:ea:fe:8e: ba:74:7a:2b:ff:6a:63:24:64:b7:d3:d5:38:9c:2c: 95:bf:0a:7d:bb:50:fc:8d:c1:0d:ca:28:85:8b:ca: 20:59:fa:23:dd:20:ce:30:21:17:58:1b:80:30:cf: c3:e6:21:48:6e:a1:a4:34:3f:c8:17:33:2d:2a:7e: e1:e3:cb:ab:49:f3:a6:d9:c6:8a:32:c7:28:19:9e: 95:39:94:e2:59:cd:0c:c1:df:bb:c8:a6:90:6b:58: 93:2a:29:5b:1a:6e:13:5d:46:89:83:d7:08:43:52: 58:e3:70:1c:87:6b:90:ed:09:fc:d8:bc:42:90:9d: a9:70:54:cf:2c:9b:68:e1:6c:96:b8:a9:e1:31:b3: 81:c6:d8:5f:17:d7:af:68:e7:ba:5f:05:8f:a4:07: f5:a7:7e:a7:d2:94:f2:31:2f:75:d7:a6:db:15:87: 98:65:dd:6a:07:e5:5f:fe:56:62:00:6c:fa:87:89: d1:e8:73:85:a3:c1:8f:1f:fc:6a:df:35:64:dd:31: b4:4c:00:61:23:c4:40:9c:94:3f:a9:be:46:c5:42: 5f:13:15:9d:a7:0a:4b:d3:7f:df:c4:6a:1b:2a:6a: 6c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:F7:1B:74:3F:98:7C:89:C0:E9:18:71:16:A1:B9:DA:0A:65:C6:CA X509v3 Authority Key Identifier: keyid:5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:91:3c:0e:26:06:01:c9:b4:fe:a8:19:d1:da:58:ff:4c:0f: 52:6f:4a:c7:14:49:7c:88:37:23:ad:ec:f3:96:a1:fa:cc:d8: 22:5a:82:db:ca:36:b7:3d:85:31:f3:dc:23:e8:50:5b:51:4b: f0:49:19:70:bc:af:69:c4:bc:e5:08:ed:a6:86:86:61:6b:ab: a5:17:38:b4:7c:43:76:f0:ea:16:dd:d5:c9:26:88:cf:0d:3f: 5e:bc:e2:56:cd:24:5b:f6:72:5d:c1:8e:a9:a8:55:31:5c:eb: c7:68:d4:c5:38:49:27:72:6b:d8:1e:d1:91:88:bd:3e:5a:7a: ea:c6:e4:46:da:84:9d:11:ca:3e:d7:74:5d:f0:0c:e7:d8:f0: 1e:c3:63:57:0a:80:77:67:7a:db:bd:4b:7a:f2:66:5f:97:25: 2b:38:db:99:c3:32:3f:e5:d1:60:eb:5c:a5:9b:0e:70:94:aa: b8:9b:0a:99:c5:91:f9:c6:1e:f4:d1:de:e4:3a:01:18:e4:4c: 03:8b:33:ac:9a:ac:62:36:a2:9c:da:8c:fe:b3:10:07:f0:e0: 4f:df:26:62:99:ae:10:e1:83:37:39:14:be:c6:71:b6:aa:b9: 5a:fe:e6:d2:00:48:bb:15:d7:11:5b:42:73:04:b8:ba:27:38: 6a:d3:34:4d -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUOtp4dwVpf7Oy6sIG7n97VuRtdVQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRlZmUwOTIyZjRmNTUyNzBkY2Q1YzA4ZjA0ZjFjN2Jm MjYwNzNjMzAeFw0yNjA1MTIxMjA0NTBaFw0yNjA1MTMxMzM5NTBaMDMxMTAvBgNV BAMTKDI3RjcxQjc0M0Y5ODdDODlDMEU5MTg3MTE2QTFCOURBMEE2NUM2Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCa5l5vucr6hJI03md/9lU32fNu 3lKLNvXIpOr+jrp0eiv/amMkZLfT1TicLJW/Cn27UPyNwQ3KKIWLyiBZ+iPdIM4w IRdYG4Awz8PmIUhuoaQ0P8gXMy0qfuHjy6tJ86bZxooyxygZnpU5lOJZzQzB37vI ppBrWJMqKVsabhNdRomD1whDUljjcByHa5DtCfzYvEKQnalwVM8sm2jhbJa4qeEx s4HG2F8X169o57pfBY+kB/WnfqfSlPIxL3XXptsVh5hl3WoH5V/+VmIAbPqHidHo c4WjwY8f/GrfNWTdMbRMAGEjxECclD+pvkbFQl8TFZ2nCkvTf9/Eahsqamw/AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUJ/cbdD+YfInA6RhxFqG52gplxsowHwYDVR0j BBgwFoAUXe/gki9PVScNzVwI8E8ce/Jgc8MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmZlMmIyN2EtMWVjNS00YWI3LTk3OGUtNmRhOWNmOWYz NzkwLzAvNURFRkUwOTIyRjRGNTUyNzBEQ0Q1QzA4RjA0RjFDN0JGMjYwNzNDMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hlX2draTlQVlNjTnpWd0k4RThjZV9K Z2M4TS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZmUyYjI3YS0x ZWM1LTRhYjctOTc4ZS02ZGE5Y2Y5ZjM3OTAvMC81REVGRTA5MjJGNEY1NTI3MERD RDVDMDhGMDRGMUM3QkYyNjA3M0MzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIZE8DiYGAcm0/qgZ0dpY /0wPUm9KxxRJfIg3I63s85ah+szYIlqC28o2tz2FMfPcI+hQW1FL8EkZcLyvacS8 5QjtpoaGYWurpRc4tHxDdvDqFt3VySaIzw0/XrziVs0kW/ZyXcGOqahVMVzrx2jU xThJJ3Jr2B7RkYi9Plp66sbkRtqEnRHKPtd0XfAM59jwHsNjVwqAd2d6271LevJm X5clKzjbmcMyP+XRYOtcpZsOcJSquJsKmcWR+cYe9NHe5DoBGORMA4szrJqsYjai nNqM/rMQB/DgT98mYpmuEOGDNzkUvsZxtqq5Wv7m0gBIuxXXEVtCcwS4uic4atM0 TQ== -----END CERTIFICATE-----Generated at Wed May 13 06:34:11 2026 by rpki-client