$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft File: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft (raw, json) Hash identifier: xndgVaBXVxAGkJAEAiHZOdPPfBncLQSPg2jZOP0h3hk= Subject key identifier: 9E:4E:E1:CE:3A:9F:C1:B4:F2:3E:AC:25:7D:19:68:39:A1:D5:9D:31 Authority key identifier: 8B:AD:30:7C:D4:DF:11:01:4E:40:ED:DF:FF:D6:0F:9A:09:E6:E9:5C Certificate issuer: /CN=8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C Certificate serial: 4E8AB92C7DE96D9499B3D35DEEBA00CB0CB3104E Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft Manifest number: 032A Signing time: Tue 12 May 2026 11:22:56 +0000 Manifest this update: Tue 12 May 2026 11:17:56 +0000 Manifest next update: Wed 13 May 2026 12:21:56 +0000 Files and hashes: 1: 326131333a393634343a343030303a3a2f34302d3430203d3e20323034323931.roa (hash: 1o4m8PJbpPTt/WwCt8wMPBTEbmCl+8vcVtrKZbTYjFM=) 2: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.crl (hash: UVm9IPC8pwiW7CyAtL654sLIYfmrGsjyN9ESHZ5L8qk=) 3: 326131333a393634343a343061653a3a2f34382d3438203d3e20323034323931.roa (hash: /APvQtIczoMdPeFgS8yLWOSzDbhA86h5Cc1N87vUKRI=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.crl rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 12:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:8a:b9:2c:7d:e9:6d:94:99:b3:d3:5d:ee:ba:00:cb:0c:b3:10:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C Validity Not Before: May 12 11:17:56 2026 GMT Not After : May 13 12:21:56 2026 GMT Subject: CN=9E4EE1CE3A9FC1B4F23EAC257D196839A1D59D31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f9:6d:6e:f9:56:c5:9e:52:7b:3c:12:fa:2a: a5:dc:03:ad:41:9c:16:b9:b2:7c:f5:53:41:a3:81: 2a:37:cd:08:ae:8f:dc:19:ad:e0:26:97:08:c4:64: 45:01:1f:cd:b9:3c:2c:c9:f5:d3:58:0d:fb:db:7e: e8:90:21:c9:3c:e5:75:8a:2f:a5:88:a0:b1:d6:a4: 77:9d:63:94:fe:41:7c:ac:9c:08:14:3d:22:3e:70: 1d:6d:be:e6:90:25:f3:c9:ef:7f:d4:a4:ad:97:56: db:88:9c:ce:a5:6b:b7:f5:e5:e9:95:d6:f6:53:e7: 7c:d0:a1:f1:c2:fd:9f:d6:47:68:50:dd:7e:4f:f0: cb:22:3a:63:38:32:1c:e4:26:d4:82:90:82:fe:bc: 48:2d:a6:e7:da:3d:54:e9:52:6d:9f:f7:3b:83:48: 67:2d:a4:34:45:c6:2c:7b:60:77:25:bc:a1:64:c6: 1a:57:f0:ec:c3:43:3f:95:42:80:66:5a:0c:85:4b: bd:62:4a:f2:9c:6a:ad:d5:78:25:c4:63:3d:7f:5d: 64:a4:03:38:57:46:23:42:33:50:cc:84:8f:9a:3d: 7e:d7:61:75:15:fe:e1:ce:3b:f3:5e:87:21:03:6e: d4:85:20:85:3b:45:68:1c:f1:80:e0:53:ce:18:d0: 32:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:4E:E1:CE:3A:9F:C1:B4:F2:3E:AC:25:7D:19:68:39:A1:D5:9D:31 X509v3 Authority Key Identifier: keyid:8B:AD:30:7C:D4:DF:11:01:4E:40:ED:DF:FF:D6:0F:9A:09:E6:E9:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:fa:42:5b:71:14:f3:42:9c:3e:6b:85:5a:7d:0c:3e:4f:01: de:05:8c:4c:b2:ba:2a:d3:f9:84:f8:8b:24:78:30:29:06:de: 68:3d:f2:69:0a:b3:41:9c:7e:b0:81:4b:d3:cf:07:2a:11:63: 79:c0:00:8b:d4:0f:8b:17:97:cf:57:02:e1:21:53:c7:48:92: ed:27:17:40:82:8a:61:8b:e9:9b:71:1c:ec:3f:ba:45:96:4d: dc:f8:e4:f9:7f:0f:13:de:79:56:cb:6f:76:96:ab:27:c9:cb: aa:87:27:dc:52:3f:b6:6f:de:2f:3c:d6:f0:31:b5:aa:80:e0: c6:e0:e7:e0:0f:30:90:b7:53:61:68:38:0a:93:b1:db:e0:86: 5d:66:c9:65:2a:51:b8:57:d7:b6:1a:8c:9d:6f:d2:87:f8:c6: c1:1b:a4:b3:bc:ee:f4:5b:4e:2d:7c:54:9a:d9:51:66:11:e8: 27:19:27:48:9a:36:eb:e7:33:c9:b5:3b:fb:c8:27:8f:14:42: b8:dc:27:3c:52:bf:ab:df:2b:16:3a:9a:68:c4:63:bf:dc:44: ad:9e:55:7b:53:93:16:21:5e:1c:90:8e:72:00:2c:e7:eb:ff: 79:45:80:0a:f3:89:ab:7d:89:eb:d4:be:8d:64:09:ff:df:65: 4f:04:2b:f6 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUToq5LH3pbZSZs9Nd7roAywyzEE4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJBRDMwN0NENERGMTEwMTRFNDBFRERGRkZENjBGOUEw OUU2RTk1QzAeFw0yNjA1MTIxMTE3NTZaFw0yNjA1MTMxMjIxNTZaMDMxMTAvBgNV BAMTKDlFNEVFMUNFM0E5RkMxQjRGMjNFQUMyNTdEMTk2ODM5QTFENTlEMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8+W1u+VbFnlJ7PBL6KqXcA61B nBa5snz1U0GjgSo3zQiuj9wZreAmlwjEZEUBH825PCzJ9dNYDfvbfuiQIck85XWK L6WIoLHWpHedY5T+QXysnAgUPSI+cB1tvuaQJfPJ73/UpK2XVtuInM6la7f15emV 1vZT53zQofHC/Z/WR2hQ3X5P8MsiOmM4MhzkJtSCkIL+vEgtpufaPVTpUm2f9zuD SGctpDRFxix7YHclvKFkxhpX8OzDQz+VQoBmWgyFS71iSvKcaq3VeCXEYz1/XWSk AzhXRiNCM1DMhI+aPX7XYXUV/uHOO/NehyEDbtSFIIU7RWgc8YDgU84Y0DKXAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUnk7hzjqfwbTyPqwlfRloOaHVnTEwHwYDVR0j BBgwFoAUi60wfNTfEQFOQO3f/9YPmgnm6VwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjVlYWU3NDUtOGFjOS00ZTcxLWJjOTQtZmNiMjYxNzAz Zjk2LzEvOEJBRDMwN0NENERGMTEwMTRFNDBFRERGRkZENjBGOUEwOUU2RTk1Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9lMzBkZTg0Yi00MDBhLTRm ZDEtYWI4YS1lNzYxNmUyNDViNDkvMC84QkFEMzA3Q0Q0REYxMTAxNEU0MEVEREZG RkQ2MEY5QTA5RTZFOTVDLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzY1ZWFlNzQ1LThhYzktNGU3MS1iYzk0LWZjYjI2MTcwM2Y5Ni8xLzhCQUQzMDdD RDRERjExMDE0RTQwRURERkZGRDYwRjlBMDlFNkU5NUMubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBs+kJb cRTzQpw+a4VafQw+TwHeBYxMsroq0/mE+IskeDApBt5oPfJpCrNBnH6wgUvTzwcq EWN5wACL1A+LF5fPVwLhIVPHSJLtJxdAgophi+mbcRzsP7pFlk3c+OT5fw8T3nlW y292lqsnycuqhyfcUj+2b94vPNbwMbWqgODG4OfgDzCQt1NhaDgKk7Hb4IZdZsll KlG4V9e2Goydb9KH+MbBG6SzvO70W04tfFSa2VFmEegnGSdImjbr5zPJtTv7yCeP FEK43Cc8Ur+r3ysWOppoxGO/3EStnlV7U5MWIV4ckI5yACzn6/95RYAK84mrfYnr 1L6NZAn/32VPBCv2 -----END CERTIFICATE-----Generated at Wed May 13 01:17:35 2026 by rpki-client