$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft File: 42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft (raw, json) Hash identifier: 2xw/utSZ5m5L6UBClRHX5kEyWowQgOsyVjvMZLxypq4= Subject key identifier: DB:52:A3:D8:87:53:11:8D:79:58:89:D3:CD:59:6A:29:4E:58:A0:D5 Authority key identifier: 42:E5:08:FB:A8:96:0F:48:07:1B:11:9A:CC:BF:57:BD:BF:3A:80:57 Certificate issuer: /CN=42e508fba8960f48071b119accbf57bdbf3a8057 Certificate serial: 716F0AFF793CACD447EB6AD61230E729F12EA4B6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft Manifest number: 01BD Signing time: Sat 23 Aug 2025 04:51:17 +0000 Manifest this update: Sat 23 Aug 2025 04:46:17 +0000 Manifest next update: Sun 24 Aug 2025 05:02:17 +0000 Files and hashes: 1: 36322e3138322e3139322e302f32312d3234203d3e203432353332.roa (hash: 3uX+IJtCK1auUN/owB303ntI6bBy0+b5ouSYztCnTmQ=) 2: 326130623a346530343a626565663a3a2f34382d3438203d3e203236393534.roa (hash: dXSnrOSsmksjfaruQTR4onccvLxLXawLPmHLDP+0pZ0=) 3: 42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl (hash: M3OfoLQMgfLUmOlNh6Fyujq+XSipGbYxzmlG18E4Ma0=) 4: 326130623a346530343a3a2f34382d3438203d3e203236393534.roa (hash: kjCVplBQIQWTrk/MT/vsXbIMmP0BY/AuB2NZAKC1i00=) 5: 3139352e39352e3134392e302f32342d3234203d3e203236393534.roa (hash: 4RKcXrOywUF2n3zLGUholuQfQjsDw3jfgXGtm0jfONU=) 6: 5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer (hash: xVnvGBOQAGx7ddcmxacteZKEbUgAqtkW3B5rWiVC4Gw=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 05:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:6f:0a:ff:79:3c:ac:d4:47:eb:6a:d6:12:30:e7:29:f1:2e:a4:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42e508fba8960f48071b119accbf57bdbf3a8057 Validity Not Before: Aug 23 04:46:17 2025 GMT Not After : Aug 24 05:02:17 2025 GMT Subject: CN=DB52A3D88753118D795889D3CD596A294E58A0D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:f3:5e:a7:8b:d8:2e:81:1a:8a:00:e6:4b:f1: 6d:47:a9:33:13:4e:41:54:b6:04:c5:a8:3f:3e:fc: f8:5c:36:2f:5a:a7:98:1f:dc:73:e0:15:b9:33:69: 53:31:5a:41:76:28:9a:30:ac:ee:08:99:b2:f7:66: 4e:fe:4f:0a:a3:b7:f0:75:79:88:06:17:18:84:20: 0e:1d:ef:9e:85:c3:09:25:eb:93:8a:3b:35:d6:64: 23:dd:0d:f6:b7:35:ad:c0:42:7c:ce:de:66:22:de: 5f:c7:19:a8:17:6a:9a:e5:0b:b7:87:52:9c:1d:52: 7a:c3:8c:45:12:02:47:84:82:b9:38:a7:fe:74:11: dd:47:d6:a1:ce:fc:76:6a:b9:a0:78:65:e6:2b:07: f1:80:7d:2e:7c:e6:60:c2:cc:d7:d0:58:2e:f7:fb: 26:a6:c2:d6:3d:db:ae:1e:dd:e1:cf:33:56:f0:2c: c6:c7:55:df:53:d0:d9:09:0f:1f:55:cb:05:92:6e: 44:fc:7f:09:71:aa:3e:f7:3d:a5:67:b3:a0:80:78: 17:40:59:81:88:4b:95:99:7a:50:6b:55:f5:63:3d: 6d:95:ed:a9:e3:5d:c6:28:68:a8:76:fb:a3:89:31: 80:6f:cd:62:91:41:bf:ed:00:0f:2d:c6:4a:63:38: 77:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:52:A3:D8:87:53:11:8D:79:58:89:D3:CD:59:6A:29:4E:58:A0:D5 X509v3 Authority Key Identifier: keyid:42:E5:08:FB:A8:96:0F:48:07:1B:11:9A:CC:BF:57:BD:BF:3A:80:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:0d:d7:b9:f9:59:fc:a2:bf:00:2a:40:62:c4:30:52:c6:0e: 5d:fb:28:3e:8a:6c:20:44:81:2d:c8:f0:7a:f8:c6:db:c3:bf: 2c:9f:a5:d0:42:18:8a:45:78:32:12:84:db:02:6e:7c:e6:15: c4:95:24:9c:72:20:b4:8b:a7:3e:38:d7:0b:da:c3:58:1b:30: fe:88:9d:e2:61:84:f9:cc:ee:e6:79:95:97:ee:76:82:79:3e: 15:97:85:15:62:55:21:82:c8:bd:06:24:6f:22:de:43:14:5d: 74:12:ef:8c:5c:b7:a5:df:f1:f0:21:5c:ef:33:0e:e4:8c:68: 20:41:91:83:62:6a:13:13:b9:d0:9e:16:d0:12:77:ed:4b:d0: 7f:5a:d6:97:d6:ec:af:68:5c:b1:86:23:33:8a:23:f9:c5:0c: 90:40:23:28:bd:ba:36:bb:77:99:29:83:48:8a:e1:5c:b0:26: 2f:de:93:d4:1f:6a:0b:ce:7c:c8:54:e2:6b:3d:d6:0c:48:2f: 7c:a7:d1:0b:62:02:d4:17:9a:c2:5f:7e:be:b8:c3:e1:ee:7e: a5:8c:7b:79:f7:67:aa:02:3f:4b:2e:6d:d1:32:77:46:f9:bb: 70:77:b7:79:54:f1:0f:ef:29:59:81:c5:09:ba:b0:13:b2:e4: 95:cd:35:ba -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUcW8K/3k8rNRH62rWEjDnKfEupLYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJlNTA4ZmJhODk2MGY0ODA3MWIxMTlhY2NiZjU3YmRi ZjNhODA1NzAeFw0yNTA4MjMwNDQ2MTdaFw0yNTA4MjQwNTAyMTdaMDMxMTAvBgNV BAMTKERCNTJBM0Q4ODc1MzExOEQ3OTU4ODlEM0NENTk2QTI5NEU1OEEwRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDn816ni9gugRqKAOZL8W1HqTMT TkFUtgTFqD8+/PhcNi9ap5gf3HPgFbkzaVMxWkF2KJowrO4ImbL3Zk7+Twqjt/B1 eYgGFxiEIA4d756Fwwkl65OKOzXWZCPdDfa3Na3AQnzO3mYi3l/HGagXaprlC7eH UpwdUnrDjEUSAkeEgrk4p/50Ed1H1qHO/HZquaB4ZeYrB/GAfS585mDCzNfQWC73 +yamwtY9264e3eHPM1bwLMbHVd9T0NkJDx9VywWSbkT8fwlxqj73PaVns6CAeBdA WYGIS5WZelBrVfVjPW2V7anjXcYoaKh2+6OJMYBvzWKRQb/tAA8txkpjOHfnAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU21Kj2IdTEY15WInTzVlqKU5YoNUwHwYDVR0j BBgwFoAUQuUI+6iWD0gHGxGazL9Xvb86gFcwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzNiOGVjMDEtOGJhNS00NzlmLWEyMjktMGFiNzBlNDgx NWJiLzAvNDJFNTA4RkJBODk2MEY0ODA3MUIxMTlBQ0NCRjU3QkRCRjNBODA1Ny5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1F1VUktNmlXRDBnSEd4R2F6TDlYdmI4 NmdGYy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04 YmE1LTQ3OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC80MkU1MDhGQkE4OTYwRjQ4MDcx QjExOUFDQ0JGNTdCREJGM0E4MDU3Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmQ3XuflZ/KK/ACpAYsQw UsYOXfsoPopsIESBLcjwevjG28O/LJ+l0EIYikV4MhKE2wJufOYVxJUknHIgtIun PjjXC9rDWBsw/oid4mGE+czu5nmVl+52gnk+FZeFFWJVIYLIvQYkbyLeQxRddBLv jFy3pd/x8CFc7zMO5IxoIEGRg2JqExO50J4W0BJ37UvQf1rWl9bsr2hcsYYjM4oj +cUMkEAjKL26Nrt3mSmDSIrhXLAmL96T1B9qC858yFTiaz3WDEgvfKfRC2IC1Bea wl9+vrjD4e5+pYx7efdnqgI/Sy5t0TJ3Rvm7cHe3eVTxD+8pWYHFCbqwE7Lklc01 ug== -----END CERTIFICATE-----Generated at Sat Aug 23 10:51:06 2025 by rpki-client