$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft File: 94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft (raw, json) Hash identifier: WT3rprva3e0ZoWQqy9OHPixCPzoLG1aNmgCbnndOAo4= Subject key identifier: B5:E1:9B:F1:AF:5F:C1:AB:E9:02:07:B4:32:AF:6C:A0:B3:8D:A8:67 Authority key identifier: 94:A2:F1:6D:F4:17:C3:2E:05:7A:A2:68:C0:E5:2C:70:D1:A4:06:C5 Certificate issuer: /CN=A91443440000/serialNumber=94A2F16DF417C32E057AA268C0E52C70D1A406C5 Certificate serial: 3647BFA534274CBAB315BC8795AAFC6B58A4AFF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKLxbfQXwy4FeqJowOUscNGkBsU.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft Manifest number: 01BC Signing time: Sat 23 Aug 2025 04:04:15 +0000 Manifest this update: Sat 23 Aug 2025 03:59:15 +0000 Manifest next update: Sun 24 Aug 2025 04:45:15 +0000 Files and hashes: 1: 323030313a6466343a316463303a3a2f34382d3438203d3e20313533313736.roa (hash: kx3ayya4lPrQllp+nogQF65nwTl1whhZEUlAaHtTvAM=) 2: 94A2F16DF417C32E057AA268C0E52C70D1A406C5.crl (hash: MUDmS3F2NKaUd7pCVNrJmNe9SCkg7bh6B0d3VWt0STk=) 3: AS153176.asa (hash: nTAPGafaR0TwBdv5jCAijmg7tuOn6F8lJBqMjy7Nxfk=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.crl rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKLxbfQXwy4FeqJowOUscNGkBsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 04:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:47:bf:a5:34:27:4c:ba:b3:15:bc:87:95:aa:fc:6b:58:a4:af:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91443440000, serialNumber=94A2F16DF417C32E057AA268C0E52C70D1A406C5 Validity Not Before: Aug 23 03:59:15 2025 GMT Not After : Aug 24 04:45:15 2025 GMT Subject: CN=B5E19BF1AF5FC1ABE90207B432AF6CA0B38DA867 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7e:3d:25:72:40:18:05:54:69:92:5f:ac:59: 1e:e7:35:06:d4:ec:d6:4e:4c:2c:7b:e4:63:18:f3: a2:7b:ba:b2:d6:16:b9:7a:1b:c3:96:e9:33:34:24: 7d:a2:11:b2:46:4f:c5:97:80:a9:58:63:7e:9d:ae: 20:6b:19:96:97:fa:2f:8c:14:31:b0:d1:71:5f:f2: ca:0b:d1:c4:eb:68:5f:56:30:1e:87:34:e5:96:8c: 8e:7b:99:52:f5:63:5e:d5:ef:f4:df:ed:fe:11:37: 7f:4c:76:19:39:45:47:b0:6b:af:2b:7f:59:05:5e: 75:9b:e0:2d:b0:32:19:c3:7b:7c:4e:22:d3:ac:d1: f9:06:8f:d3:f6:48:ce:0c:c5:87:e1:ce:b2:b5:39: 06:43:0d:09:6d:64:2f:21:35:55:65:b9:cf:52:7d: a6:2f:07:24:cd:91:2a:b6:e0:70:f6:b3:5f:c1:40: a1:ba:fe:39:c1:e4:f9:69:95:a6:d9:88:fd:f0:bd: 50:6d:7c:8a:5b:5a:54:e0:76:e9:1b:33:bc:5f:23: cc:4b:5e:01:3f:9c:36:f1:8a:5e:4a:3c:e0:44:e1: c7:5e:16:28:78:ac:6d:db:bb:aa:b0:c2:9a:94:d0: f4:96:48:2d:0b:2f:e3:d1:e9:1b:db:49:7f:4d:66: 47:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:E1:9B:F1:AF:5F:C1:AB:E9:02:07:B4:32:AF:6C:A0:B3:8D:A8:67 X509v3 Authority Key Identifier: keyid:94:A2:F1:6D:F4:17:C3:2E:05:7A:A2:68:C0:E5:2C:70:D1:A4:06:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKLxbfQXwy4FeqJowOUscNGkBsU.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:b8:93:90:53:30:65:84:64:50:7d:85:38:da:bb:8d:e6:92: 00:bd:df:34:ac:73:fb:ef:5b:a8:96:7e:0b:c5:1f:7d:6c:1b: c3:91:22:3f:6d:b9:cf:64:c6:47:a5:45:dd:fe:47:87:a5:a8: 4f:60:c4:b4:16:df:8e:65:66:ec:72:bb:1d:2c:a8:7b:61:fd: fc:36:c1:96:9a:21:1d:ca:02:92:75:41:45:d7:cb:37:1d:fa: e7:41:14:f7:02:bb:cf:02:ae:de:c6:ef:97:b3:c3:5c:35:4d: 89:71:db:e3:0e:6d:cd:9e:8e:9e:6c:61:ed:79:9a:3e:aa:d4: 31:cd:0f:b3:a8:36:1c:e0:f4:9f:a5:19:8e:29:2f:db:2c:bb: 2e:95:3b:61:78:b9:f0:22:5b:13:d0:41:e3:ce:60:ed:f5:8b: ae:72:cf:62:b8:75:ad:eb:f3:76:3c:ad:0c:62:d7:ec:03:8e: 91:12:9a:27:fd:27:29:ee:2e:52:65:9d:1d:bf:ba:22:29:71: 31:a2:d1:bf:56:2e:1e:cf:83:2b:48:2a:f9:46:06:b9:65:a2: c8:4d:0f:7e:ea:e3:81:55:00:96:80:0e:e2:97:84:30:90:f9: 0f:29:61:25:fb:e0:77:5c:f0:8c:6f:f0:25:12:18:ee:23:7c: 7e:83:62:b8 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUNke/pTQnTLqzFbyHlar8a1ikr/kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDQzNDQwMDAwMTEwLwYDVQQFEyg5NEEyRjE2REY0 MTdDMzJFMDU3QUEyNjhDMEU1MkM3MEQxQTQwNkM1MB4XDTI1MDgyMzAzNTkxNVoX DTI1MDgyNDA0NDUxNVowMzExMC8GA1UEAxMoQjVFMTlCRjFBRjVGQzFBQkU5MDIw N0I0MzJBRjZDQTBCMzhEQTg2NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKR+PSVyQBgFVGmSX6xZHuc1BtTs1k5MLHvkYxjzonu6stYWuXobw5bpMzQk faIRskZPxZeAqVhjfp2uIGsZlpf6L4wUMbDRcV/yygvRxOtoX1YwHoc05ZaMjnuZ UvVjXtXv9N/t/hE3f0x2GTlFR7Brryt/WQVedZvgLbAyGcN7fE4i06zR+QaP0/ZI zgzFh+HOsrU5BkMNCW1kLyE1VWW5z1J9pi8HJM2RKrbgcPazX8FAobr+OcHk+WmV ptmI/fC9UG18iltaVOB26RszvF8jzEteAT+cNvGKXko84EThx14WKHisbdu7qrDC mpTQ9JZILQsv49HpG9tJf01mRzUCAwEAAaOCAmEwggJdMB0GA1UdDgQWBBS14Zvx r1/Bq+kCB7Qyr2ygs42oZzAfBgNVHSMEGDAWgBSUovFt9BfDLgV6omjA5Sxw0aQG xTAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84ZDVjZDE0ZS01 ZjYzLTRmMWMtOTRlMy0yNzA1MGMyNjY0ODAvMy85NEEyRjE2REY0MTdDMzJFMDU3 QUEyNjhDMEU1MkM3MEQxQTQwNkM1LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1 ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sS0x4YmZRWHd5NEZlcUpvd09Vc2NO R2tCc1UuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGQ1Y2QxNGUt NWY2My00ZjFjLTk0ZTMtMjcwNTBjMjY2NDgwLzMvOTRBMkYxNkRGNDE3QzMyRTA1 N0FBMjY4QzBFNTJDNzBEMUE0MDZDNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAGm4k5BTMGWEZFB9hTja u43mkgC93zSsc/vvW6iWfgvFH31sG8ORIj9tuc9kxkelRd3+R4elqE9gxLQW345l Zuxyux0sqHth/fw2wZaaIR3KApJ1QUXXyzcd+udBFPcCu88Crt7G75ezw1w1TYlx 2+MObc2ejp5sYe15mj6q1DHND7OoNhzg9J+lGY4pL9ssuy6VO2F4ufAiWxPQQePO YO31i65yz2K4da3r83Y8rQxi1+wDjpESmif9JynuLlJlnR2/uiIpcTGi0b9WLh7P gytIKvlGBrlloshND37q44FVAJaADuKXhDCQ+Q8pYSX74Hdc8Ixv8CUSGO4jfH6D Yrg= -----END CERTIFICATE-----Generated at Sat Aug 23 22:06:56 2025 by rpki-client