$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft File: 42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft (raw, json) Hash identifier: IsfE+6IZCdpTAAFk68ye7aOG4YJteEv8fPF/sIn6tDs= Subject key identifier: E2:32:AE:AF:B8:C9:9C:83:5F:69:17:57:D6:E7:17:54:95:1B:5C:09 Authority key identifier: 42:E5:08:FB:A8:96:0F:48:07:1B:11:9A:CC:BF:57:BD:BF:3A:80:57 Certificate issuer: /CN=42e508fba8960f48071b119accbf57bdbf3a8057 Certificate serial: 09890C122C1CC9FC30A517B97BF99A768A34AC98 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft Manifest number: 016F Signing time: Sat 28 Jun 2025 13:09:11 +0000 Manifest this update: Sat 28 Jun 2025 13:04:11 +0000 Manifest next update: Sun 29 Jun 2025 16:57:11 +0000 Files and hashes: 1: 5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer (hash: xVnvGBOQAGx7ddcmxacteZKEbUgAqtkW3B5rWiVC4Gw=) 2: 36322e3138322e3139322e302f32312d3234203d3e203432353332.roa (hash: 3uX+IJtCK1auUN/owB303ntI6bBy0+b5ouSYztCnTmQ=) 3: 326130623a346530343a3a2f33322d3438203d3e203236393534.roa (hash: LizvwJL2nprToghg5qQqGpfO97UmahWuyDJ1ZaaEJS0=) 4: 42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl (hash: j8OKwkr6bKicHhK7lEkly+3Blphb4B8L0qeXp0YEBzU=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 10:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:89:0c:12:2c:1c:c9:fc:30:a5:17:b9:7b:f9:9a:76:8a:34:ac:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42e508fba8960f48071b119accbf57bdbf3a8057 Validity Not Before: Jun 28 13:04:11 2025 GMT Not After : Jun 29 16:57:11 2025 GMT Subject: CN=E232AEAFB8C99C835F691757D6E71754951B5C09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:6a:f1:2e:97:a9:d8:26:a1:7e:d4:54:87:4d: 9b:06:db:a7:60:13:de:a8:63:88:c5:2f:b7:06:2a: 1c:78:9e:e1:c6:d3:22:ed:22:fb:10:42:11:5b:38: 0b:3c:ab:bd:fd:d1:33:19:74:18:47:f6:ba:3e:5b: d1:7e:62:cb:4d:d7:cd:d6:76:df:81:93:25:c5:0a: 40:eb:81:fd:6e:4e:88:54:89:f8:06:35:c1:47:d9: b4:ea:ba:22:4e:b6:cd:43:a9:8d:38:50:2a:40:5c: 64:f8:c0:6a:87:bb:6a:d9:b5:5b:4b:e9:20:7b:b3: 5e:85:fa:60:2d:15:f8:65:7e:8f:81:e8:44:a3:fc: 22:9d:e9:80:09:80:84:7b:68:bd:86:5d:7d:50:db: 62:e2:de:e8:b6:ef:57:42:a6:4b:29:89:56:4d:dc: b5:b3:49:04:b8:b3:95:1f:c2:43:22:0c:3f:13:8f: e8:04:00:f6:bb:41:9e:81:94:e4:c7:04:78:4e:e7: 4b:99:26:ad:3a:84:c7:ab:b7:bd:de:30:e4:83:ce: 32:76:d0:11:36:ff:2a:35:79:f6:7a:6c:d9:43:a8: eb:4e:d1:6e:a9:e6:0b:2d:79:57:d1:15:3c:ac:12: a0:95:fe:9c:b2:9c:3d:9f:50:fd:7e:f6:42:77:27: 84:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:32:AE:AF:B8:C9:9C:83:5F:69:17:57:D6:E7:17:54:95:1B:5C:09 X509v3 Authority Key Identifier: keyid:42:E5:08:FB:A8:96:0F:48:07:1B:11:9A:CC:BF:57:BD:BF:3A:80:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:3a:70:f4:52:fb:22:e8:93:dc:b0:69:a0:d0:a6:68:e4:f6: c2:42:ff:3d:f1:7d:2a:b0:81:91:cb:0a:62:3f:e4:06:bd:b4: fc:0e:c3:13:63:4e:d7:74:ea:88:75:71:ef:c3:12:76:4b:f4: 4d:6d:49:64:da:2e:b0:fd:90:15:cb:dd:3c:ef:57:59:ee:04: 05:97:d6:ea:f5:9d:e4:66:19:ee:99:b4:f2:2b:81:a0:9d:54: bf:d4:62:17:17:61:3b:81:49:34:54:da:0f:7f:e1:70:7b:88: c2:92:2d:ad:01:f3:f9:02:d5:14:09:02:d9:8e:99:92:aa:16: 2a:29:b4:ce:1e:1c:e3:66:00:a7:1d:71:c9:87:17:9f:b7:3d: 1a:a1:fa:b0:12:5f:b0:a9:68:26:30:78:c8:6a:11:a1:b1:85: 08:13:5d:dc:96:62:93:5b:9f:57:e9:ed:61:6a:06:a0:89:6f: bb:8a:86:a9:28:10:63:0e:13:1f:4e:d9:09:49:18:77:6a:97: d6:69:06:8e:7f:27:e0:49:a0:8e:9b:21:cc:a8:1f:06:9b:fe: dc:a7:cd:20:fc:3a:7c:93:fc:53:6c:84:44:cc:41:a1:31:77: d3:1a:bf:fd:b5:1b:01:b3:1d:ff:5f:43:09:18:1e:e5:db:47: bc:40:ad:73 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUCYkMEiwcyfwwpRe5e/madoo0rJgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJlNTA4ZmJhODk2MGY0ODA3MWIxMTlhY2NiZjU3YmRi ZjNhODA1NzAeFw0yNTA2MjgxMzA0MTFaFw0yNTA2MjkxNjU3MTFaMDMxMTAvBgNV BAMTKEUyMzJBRUFGQjhDOTlDODM1RjY5MTc1N0Q2RTcxNzU0OTUxQjVDMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnavEul6nYJqF+1FSHTZsG26dg E96oY4jFL7cGKhx4nuHG0yLtIvsQQhFbOAs8q7390TMZdBhH9ro+W9F+YstN183W dt+BkyXFCkDrgf1uTohUifgGNcFH2bTquiJOts1DqY04UCpAXGT4wGqHu2rZtVtL 6SB7s16F+mAtFfhlfo+B6ESj/CKd6YAJgIR7aL2GXX1Q22Li3ui271dCpkspiVZN 3LWzSQS4s5UfwkMiDD8Tj+gEAPa7QZ6BlOTHBHhO50uZJq06hMert73eMOSDzjJ2 0BE2/yo1efZ6bNlDqOtO0W6p5gsteVfRFTysEqCV/pyynD2fUP1+9kJ3J4SxAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU4jKur7jJnINfaRdX1ucXVJUbXAkwHwYDVR0j BBgwFoAUQuUI+6iWD0gHGxGazL9Xvb86gFcwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzNiOGVjMDEtOGJhNS00NzlmLWEyMjktMGFiNzBlNDgx NWJiLzAvNDJFNTA4RkJBODk2MEY0ODA3MUIxMTlBQ0NCRjU3QkRCRjNBODA1Ny5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1F1VUktNmlXRDBnSEd4R2F6TDlYdmI4 NmdGYy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04 YmE1LTQ3OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC80MkU1MDhGQkE4OTYwRjQ4MDcx QjExOUFDQ0JGNTdCREJGM0E4MDU3Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQzpw9FL7IuiT3LBpoNCm aOT2wkL/PfF9KrCBkcsKYj/kBr20/A7DE2NO13TqiHVx78MSdkv0TW1JZNousP2Q FcvdPO9XWe4EBZfW6vWd5GYZ7pm08iuBoJ1Uv9RiFxdhO4FJNFTaD3/hcHuIwpIt rQHz+QLVFAkC2Y6ZkqoWKim0zh4c42YApx1xyYcXn7c9GqH6sBJfsKloJjB4yGoR obGFCBNd3JZik1ufV+ntYWoGoIlvu4qGqSgQYw4TH07ZCUkYd2qX1mkGjn8n4Emg jpshzKgfBpv+3KfNIPw6fJP8U2yERMxBoTF30xq//bUbAbMd/19DCRge5dtHvECt cw== -----END CERTIFICATE-----Generated at Sat Jun 28 19:59:40 2025 by rpki-client