$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/308f8b3e-051e-4c44-9cb5-7b8331ef9a04/1/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.mft File: 8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.mft (raw, json) Hash identifier: XD723cXtvmYxZRvMJKPOBnctyR/2GxEefpylyw3Ud7U= Subject key identifier: 99:D5:E2:87:27:5C:40:DC:83:5A:F5:AC:25:9E:FA:18:16:0C:F5:5A Authority key identifier: 8B:CE:7E:72:AB:BB:AD:00:53:63:93:A0:84:0B:BA:0A:BF:3A:A2:8E Certificate issuer: /CN=8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E Certificate serial: 10CFBB71F531A0781CEBB4DF514FC5B5EC2A7D10 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/308f8b3e-051e-4c44-9cb5-7b8331ef9a04/1/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.mft Manifest number: D2 Signing time: Tue 12 May 2026 15:52:18 +0000 Manifest this update: Tue 12 May 2026 15:47:18 +0000 Manifest next update: Wed 13 May 2026 19:40:18 +0000 Files and hashes: 1: 326130663a316363353a313730303a3a2f34302d3438203d3e20323032393339.roa (hash: UEeOHO3GGvYWxfR4E2Tbh4+FLPM0KvboVmPBm/zMcrM=) 2: 8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.crl (hash: G+9XhcYycfncZ1MP+leR573H18uJz+0jK0Qac1CsAkA=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/308f8b3e-051e-4c44-9cb5-7b8331ef9a04/1/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.crl rsync://rsync.paas.rpki.ripe.net/repository/308f8b3e-051e-4c44-9cb5-7b8331ef9a04/1/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.mft rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.cer rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 19:40:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:cf:bb:71:f5:31:a0:78:1c:eb:b4:df:51:4f:c5:b5:ec:2a:7d:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E Validity Not Before: May 12 15:47:18 2026 GMT Not After : May 13 19:40:18 2026 GMT Subject: CN=99D5E287275C40DC835AF5AC259EFA18160CF55A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d9:16:d1:b2:1c:cf:b1:20:01:9b:ee:bf:f0: 3b:38:9a:ac:39:74:fe:bf:f4:18:05:c6:60:fd:bc: 1d:98:0d:5a:ff:94:6f:8f:41:85:6e:a2:05:b7:22: 98:cd:77:c1:fd:46:e2:42:e8:5d:a8:5e:f1:01:4c: 7f:9f:4f:8d:6b:ee:10:f5:be:a7:71:b3:e2:11:41: 96:40:d7:3c:ee:6f:13:4c:a5:15:c2:d8:ea:f7:fc: 65:1c:08:c9:24:67:94:38:4a:30:8c:3d:59:3c:1e: 4b:f7:d9:e5:07:26:4d:1a:51:45:f8:8a:54:36:ca: a2:7b:64:80:72:b5:35:8c:e6:a3:57:c9:28:4d:82: 47:f0:dd:93:31:bc:1b:2f:95:99:1d:0b:eb:5e:b6: 45:8d:2b:db:ac:90:d5:88:0f:d9:9d:1a:ab:70:27: bb:d3:1c:88:9c:5a:3e:e9:36:e8:ee:58:37:9b:10: 55:81:88:5e:02:b3:62:f4:d9:c6:6c:e8:23:34:a0: 4e:b9:56:40:98:f8:13:a0:2f:cc:ab:df:10:35:81: 6d:91:27:51:a9:0f:31:f9:15:aa:92:91:4b:7a:7d: 31:6b:15:c1:13:04:31:b2:93:4c:f7:ab:41:cb:8d: d1:b2:51:be:11:c6:5a:be:7c:e2:cd:9e:94:c3:ed: 9e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:D5:E2:87:27:5C:40:DC:83:5A:F5:AC:25:9E:FA:18:16:0C:F5:5A X509v3 Authority Key Identifier: keyid:8B:CE:7E:72:AB:BB:AD:00:53:63:93:A0:84:0B:BA:0A:BF:3A:A2:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/308f8b3e-051e-4c44-9cb5-7b8331ef9a04/1/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/308f8b3e-051e-4c44-9cb5-7b8331ef9a04/1/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:ca:c5:49:6e:62:1d:81:d5:86:f6:96:7c:03:62:ec:08:bf: cb:82:57:d6:b7:5f:86:0e:e7:55:6f:85:39:a8:69:98:19:bf: e5:78:d3:61:48:03:6c:0b:53:76:36:ec:91:41:7e:ea:2c:7c: b4:80:f4:3f:71:9b:fc:bb:56:09:b7:92:76:31:55:63:02:da: 44:16:9e:72:80:ba:4a:e2:95:90:b8:92:b6:db:63:3d:37:24: 64:9e:21:7c:3f:c9:17:56:d5:59:cb:e9:19:26:fb:bf:c6:3b: e1:94:ce:d4:d9:f5:02:8d:db:b7:3f:9e:08:ec:38:f1:80:1a: 12:17:65:5a:63:ea:ae:44:03:29:a3:1a:11:b9:6d:2c:d7:bf: d8:47:27:15:48:32:35:f2:9b:73:1d:25:f2:9a:1b:14:6f:4a: 97:ac:a3:af:35:5e:3a:c9:74:51:ba:5b:63:b1:70:95:16:26: 19:59:67:ad:34:4f:3b:a0:05:9b:e9:be:f8:01:81:03:b9:4c: ef:f5:9a:f9:4a:b0:a7:a5:4e:28:d4:1d:29:f9:88:c0:14:f5: cb:43:82:f2:c2:ba:5d:8c:fc:34:ad:93:a1:d6:c1:42:e9:7a: 44:fd:78:99:0a:af:ae:f7:96:56:40:4c:f5:be:23:04:8f:ae: 59:43:93:5b -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUEM+7cfUxoHgc67TfUU/FtewqfRAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJDRTdFNzJBQkJCQUQwMDUzNjM5M0EwODQwQkJBMEFC RjNBQTI4RTAeFw0yNjA1MTIxNTQ3MThaFw0yNjA1MTMxOTQwMThaMDMxMTAvBgNV BAMTKDk5RDVFMjg3Mjc1QzQwREM4MzVBRjVBQzI1OUVGQTE4MTYwQ0Y1NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm2RbRshzPsSABm+6/8Ds4mqw5 dP6/9BgFxmD9vB2YDVr/lG+PQYVuogW3IpjNd8H9RuJC6F2oXvEBTH+fT41r7hD1 vqdxs+IRQZZA1zzubxNMpRXC2Or3/GUcCMkkZ5Q4SjCMPVk8Hkv32eUHJk0aUUX4 ilQ2yqJ7ZIBytTWM5qNXyShNgkfw3ZMxvBsvlZkdC+tetkWNK9uskNWID9mdGqtw J7vTHIicWj7pNujuWDebEFWBiF4Cs2L02cZs6CM0oE65VkCY+BOgL8yr3xA1gW2R J1GpDzH5FaqSkUt6fTFrFcETBDGyk0z3q0HLjdGyUb4Rxlq+fOLNnpTD7Z5JAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUmdXihydcQNyDWvWsJZ76GBYM9VowHwYDVR0j BBgwFoAUi85+cqu7rQBTY5OghAu6Cr86oo4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzA4ZjhiM2UtMDUxZS00YzQ0LTljYjUtN2I4MzMxZWY5 YTA0LzEvOEJDRTdFNzJBQkJCQUQwMDUzNjM5M0EwODQwQkJBMEFCRjNBQTI4RS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84YWZiNWZlMi0zYzJhLTQ5 MzktOTVlOS0wMDc3YjgwYjRmMGUvMC84QkNFN0U3MkFCQkJBRDAwNTM2MzkzQTA4 NDBCQkEwQUJGM0FBMjhFLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzMwOGY4YjNlLTA1MWUtNGM0NC05Y2I1LTdiODMzMWVmOWEwNC8xLzhCQ0U3RTcy QUJCQkFEMDA1MzYzOTNBMDg0MEJCQTBBQkYzQUEyOEUubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQA6ysVJ bmIdgdWG9pZ8A2LsCL/LglfWt1+GDudVb4U5qGmYGb/leNNhSANsC1N2NuyRQX7q LHy0gPQ/cZv8u1YJt5J2MVVjAtpEFp5ygLpK4pWQuJK222M9NyRkniF8P8kXVtVZ y+kZJvu/xjvhlM7U2fUCjdu3P54I7DjxgBoSF2VaY+quRAMpoxoRuW0s17/YRycV SDI18ptzHSXymhsUb0qXrKOvNV46yXRRultjsXCVFiYZWWetNE87oAWb6b74AYED uUzv9Zr5SrCnpU4o1B0p+YjAFPXLQ4LywrpdjPw0rZOh1sFC6XpE/XiZCq+u95ZW QEz1viMEj65ZQ5Nb -----END CERTIFICATE-----Generated at Wed May 13 03:12:13 2026 by rpki-client