$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft File: 94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft (raw, json) Hash identifier: iOvYxkMw4NVrKautDFLAL+IK1GhlRz2M+MijuGSlo/g= Subject key identifier: 7C:60:A2:54:19:25:2D:46:BA:92:B7:AC:F9:F5:64:21:EB:B0:3E:8C Authority key identifier: 94:A2:F1:6D:F4:17:C3:2E:05:7A:A2:68:C0:E5:2C:70:D1:A4:06:C5 Certificate issuer: /CN=A91443440000/serialNumber=94A2F16DF417C32E057AA268C0E52C70D1A406C5 Certificate serial: 3F0AC61F4A04BDF5ACD125AC69DFCABAD5773620 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKLxbfQXwy4FeqJowOUscNGkBsU.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft Manifest number: 0292 Signing time: Wed 25 Mar 2026 19:36:14 +0000 Manifest this update: Wed 25 Mar 2026 19:31:14 +0000 Manifest next update: Thu 26 Mar 2026 22:49:14 +0000 Files and hashes: 1: AS153176.asa (hash: YcrzTg+SBKdEmHSIK1udwefH81IvEnVPIpXsuF8j4aw=) 2: 94A2F16DF417C32E057AA268C0E52C70D1A406C5.crl (hash: sHTUBtupVfBxtne83Y+pB27LVfqbASw/WRAu6RTZgQo=) 3: 323030313a6466343a316463303a3a2f34382d3438203d3e20313533313736.roa (hash: kx3ayya4lPrQllp+nogQF65nwTl1whhZEUlAaHtTvAM=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.crl rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKLxbfQXwy4FeqJowOUscNGkBsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 22:49:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:0a:c6:1f:4a:04:bd:f5:ac:d1:25:ac:69:df:ca:ba:d5:77:36:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91443440000, serialNumber=94A2F16DF417C32E057AA268C0E52C70D1A406C5 Validity Not Before: Mar 25 19:31:14 2026 GMT Not After : Mar 26 22:49:14 2026 GMT Subject: CN=7C60A25419252D46BA92B7ACF9F56421EBB03E8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:81:f9:52:79:56:ef:77:68:f1:58:49:f0:1a: dc:77:0f:b8:eb:67:dc:18:5f:42:d2:77:4f:31:6a: b1:96:4b:7b:27:0a:ed:be:25:20:b7:bd:fc:59:4e: 23:12:b3:91:f3:57:cb:62:2d:5a:17:64:c5:b0:9b: 8e:a6:8a:a3:1a:f1:80:92:46:b7:db:72:6a:c5:07: fe:5f:32:3c:fc:dd:ea:94:10:32:25:09:76:ad:4d: dc:d9:fc:b4:53:e6:dd:10:9c:ab:73:e4:37:11:39: d0:26:dc:5f:68:08:e4:5d:a2:df:5d:9a:13:16:a0: fb:17:93:03:73:f5:0d:5a:ca:88:85:d1:4d:d0:08: 11:4e:eb:60:7d:29:90:ec:91:bc:55:7e:bc:57:0c: e8:48:34:fb:c4:39:42:c1:dc:8a:f4:e8:3e:8d:92: d5:8d:32:ac:28:7b:c1:e4:11:30:ca:19:c7:20:00: be:bd:bc:d8:40:b5:83:0e:ca:71:3e:3b:15:ab:b3: 18:43:97:63:bb:1e:81:f2:e8:f4:e3:5c:65:36:7b: 3e:69:c1:51:6f:7b:b5:3d:dd:22:7b:9e:ac:e8:1c: 7f:c2:6d:37:56:96:96:75:af:13:1b:2f:01:29:3a: c2:8b:64:af:4f:a0:3a:74:36:f4:17:bd:9f:1d:f5: a1:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:60:A2:54:19:25:2D:46:BA:92:B7:AC:F9:F5:64:21:EB:B0:3E:8C X509v3 Authority Key Identifier: keyid:94:A2:F1:6D:F4:17:C3:2E:05:7A:A2:68:C0:E5:2C:70:D1:A4:06:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKLxbfQXwy4FeqJowOUscNGkBsU.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e2:23:7a:c4:38:34:cb:ae:f8:0c:f2:57:57:1f:fb:fd:1b:bd: c9:00:74:a9:e3:1a:61:ce:81:a1:77:d4:cb:1c:c8:52:e8:e4: 1e:92:d4:75:49:db:49:ec:42:81:a5:b1:b4:87:a8:c4:d4:39: 7f:5f:cf:e8:60:20:3c:e7:70:3e:d8:d6:fb:5a:b4:9a:d9:f6: 4b:04:d8:34:09:40:81:b0:f4:40:bd:87:0b:a2:d1:ee:c1:80: c1:c3:f1:94:c3:6a:11:8a:f0:fc:62:24:b6:8f:75:7f:4d:61: 8e:47:c9:de:3d:18:f0:38:9a:38:66:c7:f2:9c:79:b3:fd:95: dd:9e:7b:53:ab:31:66:71:bf:c3:b6:66:63:c4:dc:e3:5c:11: 7f:61:30:84:6f:10:59:f8:78:aa:1b:40:c6:af:95:13:b7:cf: d4:98:fd:83:38:24:95:47:03:78:ec:f8:c0:ce:79:0b:dc:e8: 92:02:d1:69:e1:6b:8a:47:db:42:04:0b:56:82:22:de:a9:f6: c0:42:fc:2f:94:dd:d6:0d:79:74:5b:84:84:ec:3b:40:95:06: 28:bd:a6:6e:6d:e3:f4:13:be:01:39:4e:e8:50:bd:40:6e:72: 3a:c8:f2:1a:ed:b4:49:21:6e:b0:5b:96:a6:df:32:d6:53:c5: 03:49:2b:f0 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUPwrGH0oEvfWs0SWsad/KutV3NiAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDQzNDQwMDAwMTEwLwYDVQQFEyg5NEEyRjE2REY0 MTdDMzJFMDU3QUEyNjhDMEU1MkM3MEQxQTQwNkM1MB4XDTI2MDMyNTE5MzExNFoX DTI2MDMyNjIyNDkxNFowMzExMC8GA1UEAxMoN0M2MEEyNTQxOTI1MkQ0NkJBOTJC N0FDRjlGNTY0MjFFQkIwM0U4QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALKB+VJ5Vu93aPFYSfAa3HcPuOtn3BhfQtJ3TzFqsZZLeycK7b4lILe9/FlO IxKzkfNXy2ItWhdkxbCbjqaKoxrxgJJGt9tyasUH/l8yPPzd6pQQMiUJdq1N3Nn8 tFPm3RCcq3PkNxE50CbcX2gI5F2i312aExag+xeTA3P1DVrKiIXRTdAIEU7rYH0p kOyRvFV+vFcM6Eg0+8Q5QsHcivToPo2S1Y0yrCh7weQRMMoZxyAAvr282EC1gw7K cT47FauzGEOXY7segfLo9ONcZTZ7PmnBUW97tT3dInuerOgcf8JtN1aWlnWvExsv ASk6wotkr0+gOnQ29Be9nx31oXECAwEAAaOCAmEwggJdMB0GA1UdDgQWBBR8YKJU GSUtRrqSt6z59WQh67A+jDAfBgNVHSMEGDAWgBSUovFt9BfDLgV6omjA5Sxw0aQG xTAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84ZDVjZDE0ZS01 ZjYzLTRmMWMtOTRlMy0yNzA1MGMyNjY0ODAvMy85NEEyRjE2REY0MTdDMzJFMDU3 QUEyNjhDMEU1MkM3MEQxQTQwNkM1LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1 ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sS0x4YmZRWHd5NEZlcUpvd09Vc2NO R2tCc1UuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGQ1Y2QxNGUt NWY2My00ZjFjLTk0ZTMtMjcwNTBjMjY2NDgwLzMvOTRBMkYxNkRGNDE3QzMyRTA1 N0FBMjY4QzBFNTJDNzBEMUE0MDZDNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAOIjesQ4NMuu+AzyV1cf +/0bvckAdKnjGmHOgaF31MscyFLo5B6S1HVJ20nsQoGlsbSHqMTUOX9fz+hgIDzn cD7Y1vtatJrZ9ksE2DQJQIGw9EC9hwui0e7BgMHD8ZTDahGK8PxiJLaPdX9NYY5H yd49GPA4mjhmx/KcebP9ld2ee1OrMWZxv8O2ZmPE3ONcEX9hMIRvEFn4eKobQMav lRO3z9SY/YM4JJVHA3js+MDOeQvc6JIC0Wnha4pH20IEC1aCIt6p9sBC/C+U3dYN eXRbhITsO0CVBii9pm5t4/QTvgE5TuhQvUBucjrI8hrttEkhbrBblqbfMtZTxQNJ K/A= -----END CERTIFICATE-----Generated at Wed Mar 25 23:19:28 2026 by rpki-client