$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/308f8b3e-051e-4c44-9cb5-7b8331ef9a04/1/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.mft File: 8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.mft (raw, json) Hash identifier: cbVxa2kj62ZLWNY/A1V+2/us6O60QA/MRorscQzAIk8= Subject key identifier: 8A:4D:06:EF:04:CF:0A:03:97:C9:C4:09:F1:1A:6E:15:89:4F:77:FB Authority key identifier: 8B:CE:7E:72:AB:BB:AD:00:53:63:93:A0:84:0B:BA:0A:BF:3A:A2:8E Certificate issuer: /CN=8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E Certificate serial: 75CE75A8D285224AEE27CC5F580F2F8D0AE5BB25 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/308f8b3e-051e-4c44-9cb5-7b8331ef9a04/1/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.mft Manifest number: 90 Signing time: Wed 25 Mar 2026 16:41:44 +0000 Manifest this update: Wed 25 Mar 2026 16:36:44 +0000 Manifest next update: Thu 26 Mar 2026 18:14:44 +0000 Files and hashes: 1: 8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.crl (hash: Ae/rC5AMuahDw+VWcNVs1XsdRf7+azpRSHH1sPWQsEQ=) 2: 326130663a316363353a313730303a3a2f34302d3438203d3e20323032393339.roa (hash: UEeOHO3GGvYWxfR4E2Tbh4+FLPM0KvboVmPBm/zMcrM=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/308f8b3e-051e-4c44-9cb5-7b8331ef9a04/1/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.crl rsync://rsync.paas.rpki.ripe.net/repository/308f8b3e-051e-4c44-9cb5-7b8331ef9a04/1/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.mft rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.cer rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 18:14:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:ce:75:a8:d2:85:22:4a:ee:27:cc:5f:58:0f:2f:8d:0a:e5:bb:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E Validity Not Before: Mar 25 16:36:44 2026 GMT Not After : Mar 26 18:14:44 2026 GMT Subject: CN=8A4D06EF04CF0A0397C9C409F11A6E15894F77FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8b:8e:88:b1:db:ea:bf:fb:55:25:2e:9f:06: ea:3e:52:a8:6f:1f:75:b2:60:c0:ab:65:9d:f3:34: 7a:cf:cf:4e:3d:39:fb:00:ba:06:10:68:d2:6b:19: 19:af:c7:a0:f8:77:4f:29:20:ae:eb:ed:39:71:3e: d6:8b:e4:f0:cf:41:99:e9:32:79:ea:e3:e1:5d:7a: 10:96:06:99:95:d8:a4:fa:4b:48:b4:22:6e:86:43: b4:86:b9:73:c4:82:60:5a:55:88:12:7f:87:40:06: d7:1b:5d:b5:62:0b:54:aa:9d:a5:b1:af:d9:53:15: 9a:88:6e:5d:59:55:39:1c:85:96:4b:e0:c1:c9:98: e3:72:ea:af:17:d2:0e:e8:88:30:51:49:90:7d:18: bc:13:39:d1:83:6a:ba:0d:44:98:98:77:e0:d7:19: 72:84:5b:75:c7:61:4e:ea:ea:b2:16:01:11:d9:95: 5e:3c:7f:e7:e8:bc:82:2b:1a:01:04:52:27:f4:1b: 6a:23:e5:5b:49:34:6a:98:2a:b7:fd:9e:1c:49:ca: 2a:ef:b4:42:a5:66:79:a3:89:bc:ab:60:07:06:17: 8c:77:6d:1b:29:4c:5b:8e:3f:c6:e7:87:35:c8:28: 58:3b:f7:58:08:c8:45:3b:58:6a:c6:33:c6:d6:1b: 80:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:4D:06:EF:04:CF:0A:03:97:C9:C4:09:F1:1A:6E:15:89:4F:77:FB X509v3 Authority Key Identifier: keyid:8B:CE:7E:72:AB:BB:AD:00:53:63:93:A0:84:0B:BA:0A:BF:3A:A2:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/308f8b3e-051e-4c44-9cb5-7b8331ef9a04/1/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/308f8b3e-051e-4c44-9cb5-7b8331ef9a04/1/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:8c:06:ae:e2:84:3d:90:02:04:33:48:fd:56:2f:8e:71:0d: 62:46:84:3c:05:3a:15:c6:33:8f:3f:01:b4:67:19:db:92:ed: 6f:22:e4:81:ae:50:d6:d3:d9:88:df:fd:c8:9f:00:74:89:ae: 53:47:2f:9a:d4:ee:16:6a:3e:35:e8:d0:00:8e:24:4f:16:50: c8:1f:ad:05:ce:52:0f:c2:77:17:98:c7:69:e4:f3:35:9b:87: 0f:5f:ff:b6:3b:79:cb:69:cf:9f:8d:9c:39:75:ed:23:64:cf: 2a:80:b1:8b:b9:e2:05:fc:5d:ac:a4:dc:39:0e:da:1f:2f:72: 0c:31:94:3f:5e:91:6a:de:45:02:58:7d:1a:67:ab:2a:0b:27: 3e:d0:71:00:77:67:52:6a:8d:a6:52:89:82:40:53:9a:36:80: 21:cd:c1:19:0f:83:8f:ea:c8:d7:e7:b6:39:06:d6:a5:58:c8: 48:62:e5:ac:20:48:ae:72:bc:be:9d:f9:bd:57:77:15:11:14: 76:f6:be:d5:b0:38:05:f3:3c:9a:f4:dc:1f:99:a8:64:59:7b: 27:4e:bb:08:c2:ea:f1:f3:b0:12:36:cb:7f:61:4f:ca:f9:52: ac:7f:2c:5b:41:cf:ac:f9:d1:2a:af:0f:01:04:92:85:32:2f: 51:60:87:a6 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUdc51qNKFIkruJ8xfWA8vjQrluyUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJDRTdFNzJBQkJCQUQwMDUzNjM5M0EwODQwQkJBMEFC RjNBQTI4RTAeFw0yNjAzMjUxNjM2NDRaFw0yNjAzMjYxODE0NDRaMDMxMTAvBgNV BAMTKDhBNEQwNkVGMDRDRjBBMDM5N0M5QzQwOUYxMUE2RTE1ODk0Rjc3RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCii46Isdvqv/tVJS6fBuo+Uqhv H3WyYMCrZZ3zNHrPz049OfsAugYQaNJrGRmvx6D4d08pIK7r7TlxPtaL5PDPQZnp Mnnq4+FdehCWBpmV2KT6S0i0Im6GQ7SGuXPEgmBaVYgSf4dABtcbXbViC1SqnaWx r9lTFZqIbl1ZVTkchZZL4MHJmONy6q8X0g7oiDBRSZB9GLwTOdGDaroNRJiYd+DX GXKEW3XHYU7q6rIWARHZlV48f+fovIIrGgEEUif0G2oj5VtJNGqYKrf9nhxJyirv tEKlZnmjibyrYAcGF4x3bRspTFuOP8bnhzXIKFg791gIyEU7WGrGM8bWG4AXAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUik0G7wTPCgOXycQJ8RpuFYlPd/swHwYDVR0j BBgwFoAUi85+cqu7rQBTY5OghAu6Cr86oo4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzA4ZjhiM2UtMDUxZS00YzQ0LTljYjUtN2I4MzMxZWY5 YTA0LzEvOEJDRTdFNzJBQkJCQUQwMDUzNjM5M0EwODQwQkJBMEFCRjNBQTI4RS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84YWZiNWZlMi0zYzJhLTQ5 MzktOTVlOS0wMDc3YjgwYjRmMGUvMC84QkNFN0U3MkFCQkJBRDAwNTM2MzkzQTA4 NDBCQkEwQUJGM0FBMjhFLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzMwOGY4YjNlLTA1MWUtNGM0NC05Y2I1LTdiODMzMWVmOWEwNC8xLzhCQ0U3RTcy QUJCQkFEMDA1MzYzOTNBMDg0MEJCQTBBQkYzQUEyOEUubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBWjAau 4oQ9kAIEM0j9Vi+OcQ1iRoQ8BToVxjOPPwG0Zxnbku1vIuSBrlDW09mI3/3InwB0 ia5TRy+a1O4Waj416NAAjiRPFlDIH60FzlIPwncXmMdp5PM1m4cPX/+2O3nLac+f jZw5de0jZM8qgLGLueIF/F2spNw5DtofL3IMMZQ/XpFq3kUCWH0aZ6sqCyc+0HEA d2dSao2mUomCQFOaNoAhzcEZD4OP6sjX57Y5BtalWMhIYuWsIEiucry+nfm9V3cV ERR29r7VsDgF8zya9NwfmahkWXsnTrsIwurx87ASNst/YU/K+VKsfyxbQc+s+dEq rw8BBJKFMi9RYIem -----END CERTIFICATE-----Generated at Thu Mar 26 07:20:03 2026 by rpki-client