$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft File: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft (raw, json) Hash identifier: gikcH6saS5o3CrBsN//PgX5LPEphBF+2U0swg8r/Kn8= Subject key identifier: C6:85:72:22:A1:EB:6C:34:31:C4:F9:71:A6:69:1E:3E:F7:91:13:F1 Authority key identifier: 8B:AD:30:7C:D4:DF:11:01:4E:40:ED:DF:FF:D6:0F:9A:09:E6:E9:5C Certificate issuer: /CN=8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C Certificate serial: 6A883FF9ACD12F3D1DAD0A50695D24ADDE624C8A Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft Manifest number: 01B5 Signing time: Sun 29 Jun 2025 17:38:17 +0000 Manifest this update: Sun 29 Jun 2025 17:33:17 +0000 Manifest next update: Mon 30 Jun 2025 19:32:17 +0000 Files and hashes: 1: 326131333a393634343a343030303a3a2f34302d3430203d3e20323034323931.roa (hash: tezZfjQIJSEoaPdienMyz3PTigWBtWV225R5RVQQguw=) 2: 326131333a393634343a343061653a3a2f34382d3438203d3e20323034323931.roa (hash: 0Augomo0JPTrdfBB/3ITj/ZgfSBftNdAdE/vOPCbcS0=) 3: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.crl (hash: Ffqvk7AWLHPkU/Jr51HudYEUNiQPfeskcTiEOHl56Wc=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.crl rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Jun 2025 18:12:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:88:3f:f9:ac:d1:2f:3d:1d:ad:0a:50:69:5d:24:ad:de:62:4c:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C Validity Not Before: Jun 29 17:33:17 2025 GMT Not After : Jun 30 19:32:17 2025 GMT Subject: CN=C6857222A1EB6C3431C4F971A6691E3EF79113F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:8d:14:77:ce:5c:63:1e:40:fb:a7:98:b7:3a: f7:c6:2c:be:8c:e6:76:af:16:6e:b1:e9:14:d8:66: d5:73:4b:49:5b:e2:2f:d1:e2:8b:c5:fe:f6:48:35: ea:1d:fc:90:13:b9:69:bf:7c:9a:38:0e:90:b0:13: f4:62:2b:30:fd:33:75:ef:59:7a:67:4e:0a:fb:6f: b9:b4:09:4d:b4:41:be:1b:75:4d:ba:d3:3d:68:de: a2:2a:6c:1f:d7:46:ba:7b:3e:b3:cd:82:e5:6b:09: e3:ed:57:46:f8:cd:bf:47:00:8c:1f:cb:0d:43:ed: e3:70:2f:e4:31:93:7c:49:ae:15:86:a5:2f:2a:10: ad:6a:32:b2:b0:13:e2:b1:31:72:a2:5c:09:19:f3: cd:ef:fd:56:f1:df:b9:b0:ba:d3:03:bd:e2:5e:c8: 24:56:b3:d7:f2:33:07:0e:1e:4c:b7:7c:60:20:6c: 4b:dd:4d:47:1e:11:05:82:03:c4:13:27:2d:5a:61: eb:26:a9:f5:13:49:cc:7b:af:be:5f:f5:f8:c3:38: c8:99:96:cc:55:e3:25:d6:34:c8:85:44:45:7a:f6: bc:30:41:ef:e5:81:fa:71:35:da:d3:4e:1d:a6:97: 75:08:a9:fe:5e:c1:34:34:d6:1c:e5:d6:87:71:8f: f3:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:85:72:22:A1:EB:6C:34:31:C4:F9:71:A6:69:1E:3E:F7:91:13:F1 X509v3 Authority Key Identifier: keyid:8B:AD:30:7C:D4:DF:11:01:4E:40:ED:DF:FF:D6:0F:9A:09:E6:E9:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b8:5a:08:28:94:c9:f1:a0:1e:56:43:8f:1e:66:ff:c4:14:62: f2:8d:c2:18:cd:4f:14:47:6b:5f:46:19:57:8f:c1:df:f0:8e: 60:ec:dd:64:90:1e:98:3c:a8:ba:fc:eb:22:08:69:fa:ca:4c: e1:74:79:82:3b:72:b7:df:8e:70:f7:10:9e:04:f6:0a:c5:b8: cc:bf:b9:89:3d:04:87:74:79:39:cf:59:23:a5:84:6a:c5:4a: 18:e2:03:54:70:6f:52:94:f8:df:59:fd:34:e9:79:46:e7:86: cc:83:f7:fa:35:f5:2b:2f:7b:66:7a:de:5c:4d:86:8a:dc:c7: dc:4c:2b:90:be:a8:c5:e7:3d:ec:96:40:ec:e8:3a:b9:ed:0a: 1f:b5:48:a0:29:27:4a:ab:29:bf:88:67:93:c0:c2:1d:6e:5a: 1e:ff:c2:28:03:8d:ff:fa:d8:bb:ad:2e:c6:d5:2f:56:40:4c: 2b:43:bc:12:4a:67:c7:e5:6b:dc:f2:52:ab:70:75:35:b1:b6: 24:cc:11:14:1e:b0:e8:b5:55:0d:21:7f:74:32:0e:0e:04:65: 4b:e1:db:19:94:2f:0a:ee:14:46:47:6e:f7:98:28:e1:23:2e: 02:84:96:83:29:f7:94:c2:29:52:a0:cb:a1:a1:01:03:87:90: d1:24:22:7f -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUaog/+azRLz0drQpQaV0krd5iTIowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJBRDMwN0NENERGMTEwMTRFNDBFRERGRkZENjBGOUEw OUU2RTk1QzAeFw0yNTA2MjkxNzMzMTdaFw0yNTA2MzAxOTMyMTdaMDMxMTAvBgNV BAMTKEM2ODU3MjIyQTFFQjZDMzQzMUM0Rjk3MUE2NjkxRTNFRjc5MTEzRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSjRR3zlxjHkD7p5i3OvfGLL6M 5navFm6x6RTYZtVzS0lb4i/R4ovF/vZINeod/JATuWm/fJo4DpCwE/RiKzD9M3Xv WXpnTgr7b7m0CU20Qb4bdU260z1o3qIqbB/XRrp7PrPNguVrCePtV0b4zb9HAIwf yw1D7eNwL+Qxk3xJrhWGpS8qEK1qMrKwE+KxMXKiXAkZ883v/Vbx37mwutMDveJe yCRWs9fyMwcOHky3fGAgbEvdTUceEQWCA8QTJy1aYesmqfUTScx7r75f9fjDOMiZ lsxV4yXWNMiFREV69rwwQe/lgfpxNdrTTh2ml3UIqf5ewTQ01hzl1odxj/OpAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUxoVyIqHrbDQxxPlxpmkePveRE/EwHwYDVR0j BBgwFoAUi60wfNTfEQFOQO3f/9YPmgnm6VwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjVlYWU3NDUtOGFjOS00ZTcxLWJjOTQtZmNiMjYxNzAz Zjk2LzEvOEJBRDMwN0NENERGMTEwMTRFNDBFRERGRkZENjBGOUEwOUU2RTk1Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9lMzBkZTg0Yi00MDBhLTRm ZDEtYWI4YS1lNzYxNmUyNDViNDkvMC84QkFEMzA3Q0Q0REYxMTAxNEU0MEVEREZG RkQ2MEY5QTA5RTZFOTVDLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzY1ZWFlNzQ1LThhYzktNGU3MS1iYzk0LWZjYjI2MTcwM2Y5Ni8xLzhCQUQzMDdD RDRERjExMDE0RTQwRURERkZGRDYwRjlBMDlFNkU5NUMubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQC4Wggo lMnxoB5WQ48eZv/EFGLyjcIYzU8UR2tfRhlXj8Hf8I5g7N1kkB6YPKi6/OsiCGn6 ykzhdHmCO3K3345w9xCeBPYKxbjMv7mJPQSHdHk5z1kjpYRqxUoY4gNUcG9SlPjf Wf006XlG54bMg/f6NfUrL3tmet5cTYaK3MfcTCuQvqjF5z3slkDs6Dq57QoftUig KSdKqym/iGeTwMIdbloe/8IoA43/+ti7rS7G1S9WQEwrQ7wSSmfH5Wvc8lKrcHU1 sbYkzBEUHrDotVUNIX90Mg4OBGVL4dsZlC8K7hRGR273mCjhIy4ChJaDKfeUwilS oMuhoQEDh5DRJCJ/ -----END CERTIFICATE-----Generated at Mon Jun 30 07:24:34 2025 by rpki-client