$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft File: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft (raw, json) Hash identifier: n3OiKpnClqT8PQ8jXXL8giWHoIyLHiCriavC4808jeU= Subject key identifier: 98:35:7F:35:60:36:17:6E:FC:EB:FA:CD:92:5C:23:FE:25:8B:D4:1F Authority key identifier: 8B:AD:30:7C:D4:DF:11:01:4E:40:ED:DF:FF:D6:0F:9A:09:E6:E9:5C Certificate issuer: /CN=8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C Certificate serial: 39CC9228B027CF5069C929EB19DA68470E9D4603 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft Manifest number: 01FF Signing time: Sat 23 Aug 2025 23:22:26 +0000 Manifest this update: Sat 23 Aug 2025 23:17:26 +0000 Manifest next update: Mon 25 Aug 2025 00:19:26 +0000 Files and hashes: 1: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.crl (hash: +oCkB2hv/ch7UhGiysqVJajslpT2nhBBTtE97u3J6j8=) 2: 326131333a393634343a343030303a3a2f34302d3430203d3e20323034323931.roa (hash: 1o4m8PJbpPTt/WwCt8wMPBTEbmCl+8vcVtrKZbTYjFM=) 3: 326131333a393634343a343061653a3a2f34382d3438203d3e20323034323931.roa (hash: 0Augomo0JPTrdfBB/3ITj/ZgfSBftNdAdE/vOPCbcS0=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.crl rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 20:37:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:cc:92:28:b0:27:cf:50:69:c9:29:eb:19:da:68:47:0e:9d:46:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C Validity Not Before: Aug 23 23:17:26 2025 GMT Not After : Aug 25 00:19:26 2025 GMT Subject: CN=98357F356036176EFCEBFACD925C23FE258BD41F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:be:1b:1f:26:0c:13:27:54:03:3c:51:cf:22: 15:28:b9:55:e6:71:40:13:08:40:55:fa:e0:cf:34: 7f:dd:16:65:1c:79:0d:97:09:2a:7f:59:31:82:68: 53:d6:81:f4:7c:18:83:0d:a9:01:ae:b1:53:e6:24: 53:84:c0:d2:ba:45:bc:e8:0a:2e:db:88:d7:bc:a2: 8a:0b:ba:cf:8f:6e:73:7d:95:27:3b:17:0e:3f:19: d0:e5:52:2f:96:52:ee:e0:98:ff:ba:fe:5b:94:44: 6d:18:64:2d:2b:a9:b9:76:8a:a0:81:7f:3a:2c:14: 8c:f8:62:f3:46:6a:15:4a:c4:4a:62:46:c1:e6:51: 70:48:1e:69:cb:96:06:28:e7:51:86:b2:89:25:8e: 72:23:12:96:0f:dd:cb:a0:37:7a:ff:9b:3d:a3:d4: 85:ec:e5:fb:2e:de:0a:56:9a:e0:cf:80:47:9b:f0: e7:56:2e:4a:b9:15:f3:13:70:d9:fa:65:9a:21:d3: c4:b0:40:39:52:86:6a:00:6b:60:3c:15:4b:1a:1b: e7:17:ed:51:a7:1d:79:08:53:05:e8:5c:92:14:aa: 2a:5d:3f:e9:c8:c8:26:3a:66:cf:16:e6:5c:a4:d2: bb:c8:77:43:a2:d3:81:5c:64:f2:ac:75:da:52:35: f9:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:35:7F:35:60:36:17:6E:FC:EB:FA:CD:92:5C:23:FE:25:8B:D4:1F X509v3 Authority Key Identifier: keyid:8B:AD:30:7C:D4:DF:11:01:4E:40:ED:DF:FF:D6:0F:9A:09:E6:E9:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:ba:de:22:c8:a2:f2:df:81:33:69:26:a0:9b:93:6f:8e:76: 4d:c8:92:62:b7:8c:f7:b7:76:00:93:ec:14:dc:d8:76:e9:c4: 03:69:95:1a:ef:02:2f:06:f3:86:e1:de:9a:ab:da:b2:80:eb: e4:f5:12:26:b8:68:fd:4e:66:f1:8a:82:29:1a:47:3c:9f:a1: aa:b6:74:ad:86:d4:2a:11:9c:a3:51:cd:d6:c7:2f:d1:55:ba: ff:f6:1a:1e:90:36:ba:3e:49:cb:7d:bd:47:3b:04:09:48:e0: b0:33:39:b6:61:2e:a5:85:44:26:8c:cf:a8:22:5b:c9:76:8d: 04:ef:b7:08:9f:b4:87:a1:ec:e8:ad:45:70:31:62:ef:4d:76: 99:96:f5:58:bd:51:da:4b:83:8a:6f:d3:35:35:45:c4:47:f4: ee:71:f1:fb:5a:6b:94:06:d1:1c:cc:5d:61:e6:77:1f:51:0a: ca:f2:85:d4:d3:66:e5:9f:30:43:97:7b:a6:4b:f5:a5:a4:4c: fa:f1:70:20:10:95:27:ae:28:2c:62:0f:b1:d8:3e:43:01:6f: 7a:90:be:29:f0:21:b9:57:79:6e:48:36:2a:0a:8b:b4:8a:44: ac:13:65:72:fd:50:28:55:37:5d:a5:fa:b5:a9:b3:fb:b7:43: fb:fe:ef:33 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUOcySKLAnz1BpySnrGdpoRw6dRgMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJBRDMwN0NENERGMTEwMTRFNDBFRERGRkZENjBGOUEw OUU2RTk1QzAeFw0yNTA4MjMyMzE3MjZaFw0yNTA4MjUwMDE5MjZaMDMxMTAvBgNV BAMTKDk4MzU3RjM1NjAzNjE3NkVGQ0VCRkFDRDkyNUMyM0ZFMjU4QkQ0MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkvhsfJgwTJ1QDPFHPIhUouVXm cUATCEBV+uDPNH/dFmUceQ2XCSp/WTGCaFPWgfR8GIMNqQGusVPmJFOEwNK6Rbzo Ci7biNe8oooLus+PbnN9lSc7Fw4/GdDlUi+WUu7gmP+6/luURG0YZC0rqbl2iqCB fzosFIz4YvNGahVKxEpiRsHmUXBIHmnLlgYo51GGsokljnIjEpYP3cugN3r/mz2j 1IXs5fsu3gpWmuDPgEeb8OdWLkq5FfMTcNn6ZZoh08SwQDlShmoAa2A8FUsaG+cX 7VGnHXkIUwXoXJIUqipdP+nIyCY6Zs8W5lyk0rvId0Oi04FcZPKsddpSNfl3AgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUmDV/NWA2F2786/rNklwj/iWL1B8wHwYDVR0j BBgwFoAUi60wfNTfEQFOQO3f/9YPmgnm6VwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjVlYWU3NDUtOGFjOS00ZTcxLWJjOTQtZmNiMjYxNzAz Zjk2LzEvOEJBRDMwN0NENERGMTEwMTRFNDBFRERGRkZENjBGOUEwOUU2RTk1Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9lMzBkZTg0Yi00MDBhLTRm ZDEtYWI4YS1lNzYxNmUyNDViNDkvMC84QkFEMzA3Q0Q0REYxMTAxNEU0MEVEREZG RkQ2MEY5QTA5RTZFOTVDLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzY1ZWFlNzQ1LThhYzktNGU3MS1iYzk0LWZjYjI2MTcwM2Y5Ni8xLzhCQUQzMDdD RDRERjExMDE0RTQwRURERkZGRDYwRjlBMDlFNkU5NUMubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBaut4i yKLy34EzaSagm5NvjnZNyJJit4z3t3YAk+wU3Nh26cQDaZUa7wIvBvOG4d6aq9qy gOvk9RImuGj9TmbxioIpGkc8n6GqtnSthtQqEZyjUc3Wxy/RVbr/9hoekDa6PknL fb1HOwQJSOCwMzm2YS6lhUQmjM+oIlvJdo0E77cIn7SHoezorUVwMWLvTXaZlvVY vVHaS4OKb9M1NUXER/TucfH7WmuUBtEczF1h5ncfUQrK8oXU02blnzBDl3umS/Wl pEz68XAgEJUnrigsYg+x2D5DAW96kL4p8CG5V3luSDYqCou0ikSsE2Vy/VAoVTdd pfq1qbP7t0P7/u8z -----END CERTIFICATE-----Generated at Sun Aug 24 05:29:28 2025 by rpki-client