$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft File: 42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft (raw, json) Hash identifier: qhAKfko4GYexXGz430LMpFjv3wToMcQvihZzSUyZySs= Subject key identifier: E6:24:0F:A0:99:F8:0C:1C:62:9F:F5:42:D5:2D:F3:CC:4B:35:32:2D Authority key identifier: 42:E5:08:FB:A8:96:0F:48:07:1B:11:9A:CC:BF:57:BD:BF:3A:80:57 Certificate issuer: /CN=42e508fba8960f48071b119accbf57bdbf3a8057 Certificate serial: 55E37AAFD1BE0525E921ACDB93781406C34BBA9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft Manifest number: 0335 Signing time: Tue 12 May 2026 04:56:48 +0000 Manifest this update: Tue 12 May 2026 04:51:48 +0000 Manifest next update: Wed 13 May 2026 08:12:48 +0000 Files and hashes: 1: 326130623a346530343a646561643a3a2f34382d3438203d3e203331383938.roa (hash: V5g1oVVpactG3mKu8PF61hy91x6gtyEU1mTZQLj69yk=) 2: 3139352e39352e3134392e302f32342d3234203d3e203236393534.roa (hash: 4RKcXrOywUF2n3zLGUholuQfQjsDw3jfgXGtm0jfONU=) 3: 5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer (hash: WWtxj/K3gg98FXG8mxbqLG1rtIGMraouHkd6hTdHCHo=) 4: 326130623a346530343a34323a3a2f34382d3438203d3e203236393534.roa (hash: J0sU27KhsWLAQskvnilOEJPNfUn6f6vWuMhZwx5IsPQ=) 5: 326130623a346530343a3a2f34382d3438203d3e203236393534.roa (hash: kjCVplBQIQWTrk/MT/vsXbIMmP0BY/AuB2NZAKC1i00=) 6: 3139352e39352e3134392e302f32342d3234203d3e203331383938.roa (hash: nIlM4wp0iNBT5SN8C9VsrwDGSOsVnjaNLplEtHDOmPI=) 7: 36322e3138322e3139322e302f32312d3234203d3e203432353332.roa (hash: k22wzf+MNF3rdZwWDi2NJmXkW92pMk1IiR0y5N9dN8c=) 8: 326130623a346530343a646561643a3a2f34382d3438203d3e203236393534.roa (hash: baWQi1OtzFs3EXfopwYbyPRpvtk3lpDNhJaB1/yO3UE=) 9: 42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl (hash: CFrOymVqvEh3VRfCDYON0mGExav/awOmwN4oPhbW2Xc=) 10: 326130623a346530343a626565663a3a2f34382d3438203d3e203236393534.roa (hash: dXSnrOSsmksjfaruQTR4onccvLxLXawLPmHLDP+0pZ0=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 08:12:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:e3:7a:af:d1:be:05:25:e9:21:ac:db:93:78:14:06:c3:4b:ba:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42e508fba8960f48071b119accbf57bdbf3a8057 Validity Not Before: May 12 04:51:48 2026 GMT Not After : May 13 08:12:48 2026 GMT Subject: CN=E6240FA099F80C1C629FF542D52DF3CC4B35322D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:70:3f:68:2f:3e:6e:c1:b5:4d:a1:44:38:d6: 8b:7f:73:de:7f:b6:87:a1:d7:d4:98:10:56:b0:11: 7f:6d:ab:43:bd:2a:df:48:4e:20:ec:97:d1:ba:e1: 97:7d:c4:6b:a6:79:9b:9d:91:84:63:e4:7a:42:ca: 54:0f:c0:36:fd:58:c4:d4:40:1c:95:c4:a3:5e:f9: dd:d7:46:47:bf:09:5c:fb:db:62:c1:3c:16:15:64: 78:81:8c:73:2a:3b:14:cf:07:ae:c3:da:0f:90:d2: 08:ce:20:8e:28:ef:97:50:ad:2d:df:72:f8:c1:58: 16:cf:40:20:d4:dd:5b:db:81:1f:bb:99:7f:28:04: 0d:e8:ed:27:31:43:89:d9:68:52:41:16:a4:a2:fd: 5f:ea:11:a2:ba:35:99:d5:79:1d:53:92:c7:d5:ce: 67:0a:59:60:79:51:4d:8f:d4:6f:da:f3:57:83:fe: 71:75:66:c2:e8:23:7e:c1:40:ec:aa:79:39:cb:01: df:05:16:79:d9:3a:d7:24:ff:72:96:48:5a:12:d6: 16:1c:a6:a8:7f:a4:1b:84:ea:23:e3:c6:d8:ed:e7: 19:2a:91:87:96:e4:c2:e5:5b:67:d0:95:ec:16:22: b3:54:e3:14:f9:c5:65:01:5c:27:98:28:35:31:9c: b1:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:24:0F:A0:99:F8:0C:1C:62:9F:F5:42:D5:2D:F3:CC:4B:35:32:2D X509v3 Authority Key Identifier: keyid:42:E5:08:FB:A8:96:0F:48:07:1B:11:9A:CC:BF:57:BD:BF:3A:80:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:b6:cf:91:14:4d:29:3b:d4:cc:ae:ce:ec:06:3e:ad:88:6f: 79:38:42:c8:81:6d:a0:43:02:79:12:b1:60:38:cd:b1:9e:07: 58:e9:52:ae:3b:e2:31:06:95:da:aa:81:aa:63:39:85:63:04: 0d:cf:a6:ba:cc:00:6f:02:82:b9:82:92:c1:e6:61:00:09:d9: 44:02:28:79:00:bb:71:7d:13:48:b5:ea:d2:dd:3c:3c:85:22: 4b:3f:54:3b:2d:ad:fb:9b:b0:47:2a:e5:27:d0:c7:b2:0b:e1: 68:aa:0a:fa:b1:15:f2:74:31:fe:67:a8:40:15:61:c6:3c:b7: 41:3f:60:e0:77:ef:65:7c:28:16:81:07:0d:c6:7e:8c:6a:85: b7:6b:d8:91:7d:78:e4:43:55:46:cc:d3:f4:12:ef:90:e6:ae: 2a:bd:04:ca:0e:24:91:00:59:50:57:71:ca:37:a4:9e:e0:af: c4:58:e5:3f:19:03:66:7b:a8:19:af:e6:41:ff:8f:a5:04:9c: ac:a2:d8:cf:15:07:34:87:51:05:a5:56:c2:bf:b3:75:2a:e1: dc:62:99:82:50:49:e1:2b:0f:d3:3e:8e:6e:03:77:af:27:25: d4:71:55:d6:2c:b0:7e:98:f7:a5:e4:f7:4c:4f:45:d4:25:e8: 2f:11:25:c7 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUVeN6r9G+BSXpIazbk3gUBsNLupwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJlNTA4ZmJhODk2MGY0ODA3MWIxMTlhY2NiZjU3YmRi ZjNhODA1NzAeFw0yNjA1MTIwNDUxNDhaFw0yNjA1MTMwODEyNDhaMDMxMTAvBgNV BAMTKEU2MjQwRkEwOTlGODBDMUM2MjlGRjU0MkQ1MkRGM0NDNEIzNTMyMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1cD9oLz5uwbVNoUQ41ot/c95/ toeh19SYEFawEX9tq0O9Kt9ITiDsl9G64Zd9xGumeZudkYRj5HpCylQPwDb9WMTU QByVxKNe+d3XRke/CVz722LBPBYVZHiBjHMqOxTPB67D2g+Q0gjOII4o75dQrS3f cvjBWBbPQCDU3VvbgR+7mX8oBA3o7ScxQ4nZaFJBFqSi/V/qEaK6NZnVeR1TksfV zmcKWWB5UU2P1G/a81eD/nF1ZsLoI37BQOyqeTnLAd8FFnnZOtck/3KWSFoS1hYc pqh/pBuE6iPjxtjt5xkqkYeW5MLlW2fQlewWIrNU4xT5xWUBXCeYKDUxnLGDAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU5iQPoJn4DBxin/VC1S3zzEs1Mi0wHwYDVR0j BBgwFoAUQuUI+6iWD0gHGxGazL9Xvb86gFcwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzNiOGVjMDEtOGJhNS00NzlmLWEyMjktMGFiNzBlNDgx NWJiLzAvNDJFNTA4RkJBODk2MEY0ODA3MUIxMTlBQ0NCRjU3QkRCRjNBODA1Ny5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1F1VUktNmlXRDBnSEd4R2F6TDlYdmI4 NmdGYy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04 YmE1LTQ3OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC80MkU1MDhGQkE4OTYwRjQ4MDcx QjExOUFDQ0JGNTdCREJGM0E4MDU3Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcLbPkRRNKTvUzK7O7AY+ rYhveThCyIFtoEMCeRKxYDjNsZ4HWOlSrjviMQaV2qqBqmM5hWMEDc+muswAbwKC uYKSweZhAAnZRAIoeQC7cX0TSLXq0t08PIUiSz9UOy2t+5uwRyrlJ9DHsgvhaKoK +rEV8nQx/meoQBVhxjy3QT9g4HfvZXwoFoEHDcZ+jGqFt2vYkX145ENVRszT9BLv kOauKr0Eyg4kkQBZUFdxyjeknuCvxFjlPxkDZnuoGa/mQf+PpQScrKLYzxUHNIdR BaVWwr+zdSrh3GKZglBJ4SsP0z6ObgN3rycl1HFV1iywfpj3peT3TE9F1CXoLxEl xw== -----END CERTIFICATE-----Generated at Wed May 13 01:33:51 2026 by rpki-client