$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft File: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft (raw, json) Hash identifier: mFiRP26simyMkXCDvRkOl5d4uM+LHGyTsxPWr9VfhvE= Subject key identifier: 13:B4:B2:59:AA:3C:FF:9B:6B:76:9F:F2:A3:EA:F8:A0:7D:A1:7F:3A Authority key identifier: 8B:AD:30:7C:D4:DF:11:01:4E:40:ED:DF:FF:D6:0F:9A:09:E6:E9:5C Certificate issuer: /CN=8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C Certificate serial: 472FFB221506377CED3982D5F2DE5375C4762543 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft Manifest number: 02EB Signing time: Wed 25 Mar 2026 20:32:46 +0000 Manifest this update: Wed 25 Mar 2026 20:27:46 +0000 Manifest next update: Thu 26 Mar 2026 22:01:46 +0000 Files and hashes: 1: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.crl (hash: wqK8HB6Fl31JPkQ4ST2CgiS8uB/TKvLuUOfITV/B6EY=) 2: 326131333a393634343a343030303a3a2f34302d3430203d3e20323034323931.roa (hash: 1o4m8PJbpPTt/WwCt8wMPBTEbmCl+8vcVtrKZbTYjFM=) 3: 326131333a393634343a343061653a3a2f34382d3438203d3e20323034323931.roa (hash: /APvQtIczoMdPeFgS8yLWOSzDbhA86h5Cc1N87vUKRI=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.crl rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 22:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:2f:fb:22:15:06:37:7c:ed:39:82:d5:f2:de:53:75:c4:76:25:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C Validity Not Before: Mar 25 20:27:46 2026 GMT Not After : Mar 26 22:01:46 2026 GMT Subject: CN=13B4B259AA3CFF9B6B769FF2A3EAF8A07DA17F3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:2b:c7:83:2d:73:94:e8:0a:a8:e7:ad:3d:a0: 52:77:3d:02:03:7b:93:c0:2b:9c:eb:67:45:ea:db: 43:cd:47:9b:28:f0:b4:2c:60:fa:f3:33:c6:fa:b6: ae:e4:e3:36:af:b4:8f:66:7e:ef:19:c5:18:fb:e0: a8:45:1d:cb:28:68:7d:43:a6:29:16:54:b6:29:a0: 90:c0:4f:e5:b6:6a:48:06:35:06:0a:b7:27:70:48: 99:f5:12:c1:36:40:b0:da:05:ee:a7:e1:b6:67:d1: ca:48:c2:db:3b:03:0f:eb:c5:46:21:11:d3:6d:15: fd:b5:09:d3:af:c4:73:42:98:34:d0:b8:0a:a1:41: 1d:a8:b9:f7:6e:c4:1f:fb:be:fa:f2:27:4e:72:3b: c6:d3:0d:10:50:b5:60:b2:ce:a7:4d:e1:ca:53:47: a4:03:12:2a:12:5e:20:b0:e7:e2:78:aa:b2:7e:e0: 9e:61:98:fe:3e:8a:5a:3f:c3:aa:04:8f:21:b6:39: 80:4b:32:31:24:b1:de:ca:ea:04:0a:95:4e:8e:4a: d3:b8:08:b1:f3:1f:cb:ce:67:43:6e:ab:96:32:4f: 89:41:22:97:7f:69:a2:13:8d:f6:4d:99:f0:ed:2d: 67:7c:f5:d6:41:5a:b0:b2:f5:53:f8:ab:53:45:9d: f9:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:B4:B2:59:AA:3C:FF:9B:6B:76:9F:F2:A3:EA:F8:A0:7D:A1:7F:3A X509v3 Authority Key Identifier: keyid:8B:AD:30:7C:D4:DF:11:01:4E:40:ED:DF:FF:D6:0F:9A:09:E6:E9:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c2:e7:37:99:12:ad:b4:73:51:f4:49:93:ac:c8:5c:bb:f3:33: 0f:20:25:8f:22:77:3d:c5:15:7b:ed:73:74:f1:fc:60:73:ed: 94:9c:66:18:94:9a:bb:c5:3b:fb:a0:13:65:da:44:6d:08:69: c5:93:56:eb:0a:d0:fb:8f:88:d5:0e:ba:27:7c:75:9a:97:dc: 21:11:65:8a:35:ee:a0:b4:9b:58:cf:7b:0b:a1:b4:85:0d:ed: 0f:1a:87:32:53:1d:4f:b5:a3:76:df:70:54:1e:55:9e:c8:69: ce:68:39:d8:4b:cf:34:a1:22:1c:5a:76:6d:b4:d7:28:53:ad: 8d:fe:49:89:70:59:5f:61:29:28:59:b5:eb:66:25:2e:93:32: 3c:5a:0d:09:a2:ec:c4:aa:8c:b3:c1:a5:20:6a:08:11:3c:10: df:72:0d:2c:38:ac:14:4a:50:1d:c8:8a:eb:33:17:77:5f:46: 80:66:ff:1b:79:dc:9d:b7:01:eb:65:f7:f2:f0:10:6d:58:2f: 88:e3:f2:99:43:3c:b2:f2:93:71:e3:12:eb:3b:14:c0:67:2f: f3:43:d4:dd:3c:8a:6f:81:61:06:60:8f:27:b2:20:90:01:f5: 76:37:a5:06:e8:8b:7d:36:c7:40:50:60:b7:b0:e7:4c:53:2e: c8:df:1c:1f -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIURy/7IhUGN3ztOYLV8t5TdcR2JUMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJBRDMwN0NENERGMTEwMTRFNDBFRERGRkZENjBGOUEw OUU2RTk1QzAeFw0yNjAzMjUyMDI3NDZaFw0yNjAzMjYyMjAxNDZaMDMxMTAvBgNV BAMTKDEzQjRCMjU5QUEzQ0ZGOUI2Qjc2OUZGMkEzRUFGOEEwN0RBMTdGM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgK8eDLXOU6Aqo5609oFJ3PQID e5PAK5zrZ0Xq20PNR5so8LQsYPrzM8b6tq7k4zavtI9mfu8ZxRj74KhFHcsoaH1D pikWVLYpoJDAT+W2akgGNQYKtydwSJn1EsE2QLDaBe6n4bZn0cpIwts7Aw/rxUYh EdNtFf21CdOvxHNCmDTQuAqhQR2oufduxB/7vvryJ05yO8bTDRBQtWCyzqdN4cpT R6QDEioSXiCw5+J4qrJ+4J5hmP4+ilo/w6oEjyG2OYBLMjEksd7K6gQKlU6OStO4 CLHzH8vOZ0Nuq5YyT4lBIpd/aaITjfZNmfDtLWd89dZBWrCy9VP4q1NFnfmRAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUE7SyWao8/5trdp/yo+r4oH2hfzowHwYDVR0j BBgwFoAUi60wfNTfEQFOQO3f/9YPmgnm6VwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjVlYWU3NDUtOGFjOS00ZTcxLWJjOTQtZmNiMjYxNzAz Zjk2LzEvOEJBRDMwN0NENERGMTEwMTRFNDBFRERGRkZENjBGOUEwOUU2RTk1Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9lMzBkZTg0Yi00MDBhLTRm ZDEtYWI4YS1lNzYxNmUyNDViNDkvMC84QkFEMzA3Q0Q0REYxMTAxNEU0MEVEREZG RkQ2MEY5QTA5RTZFOTVDLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzY1ZWFlNzQ1LThhYzktNGU3MS1iYzk0LWZjYjI2MTcwM2Y5Ni8xLzhCQUQzMDdD RDRERjExMDE0RTQwRURERkZGRDYwRjlBMDlFNkU5NUMubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQDC5zeZ Eq20c1H0SZOsyFy78zMPICWPInc9xRV77XN08fxgc+2UnGYYlJq7xTv7oBNl2kRt CGnFk1brCtD7j4jVDronfHWal9whEWWKNe6gtJtYz3sLobSFDe0PGocyUx1PtaN2 33BUHlWeyGnOaDnYS880oSIcWnZttNcoU62N/kmJcFlfYSkoWbXrZiUukzI8Wg0J ouzEqoyzwaUgaggRPBDfcg0sOKwUSlAdyIrrMxd3X0aAZv8bedydtwHrZffy8BBt WC+I4/KZQzyy8pNx4xLrOxTAZy/zQ9TdPIpvgWEGYI8nsiCQAfV2N6UG6It9NsdA UGC3sOdMUy7I3xwf -----END CERTIFICATE-----Generated at Thu Mar 26 12:54:41 2026 by rpki-client