$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft File: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft (raw, json) Hash identifier: tvWYXTBx3cq5gXLUUBbP0/ThKlWEGlYQqZOn9bQepdk= Subject key identifier: 4A:D1:AE:24:F6:F5:74:E3:73:7C:05:10:87:D9:10:37:51:C0:D1:38 Authority key identifier: D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD Certificate issuer: /CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead Certificate serial: 54CF2856FD80FF52602FC349F3B8EA7AFA20C39F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft Manifest number: 05B9 Signing time: Tue 12 May 2026 17:34:42 +0000 Manifest this update: Tue 12 May 2026 17:29:42 +0000 Manifest next update: Wed 13 May 2026 17:56:42 +0000 Files and hashes: 1: AS51019.asa (hash: Oaa1EvfqOHf6DhtSUIsxpjt+74z+nkVUgLI9NR9q+Vg=) 2: 323030313a3637633a6264633a3a2f34382d3438203d3e203531303139.roa (hash: WwIB1vpX/Ksy3lM5t4KklPIgz20phM5/z2U20FASusY=) 3: 323030313a3637383a313161303a3a2f34382d3438203d3e203531303139.roa (hash: WTZJrpZtSK56gi8FgUd2AbaB/s6bTUvq5ttS3fRGoxU=) 4: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl (hash: BC+ywAKn85K59OYrOwT+dn77Y+h6mVzsgXmMgRX/eM4=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 14:18:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:cf:28:56:fd:80:ff:52:60:2f:c3:49:f3:b8:ea:7a:fa:20:c3:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead Validity Not Before: May 12 17:29:42 2026 GMT Not After : May 13 17:56:42 2026 GMT Subject: CN=4AD1AE24F6F574E3737C051087D9103751C0D138 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:f7:4e:d9:f9:4e:fd:45:28:4d:ec:45:3b:69: 4c:7f:95:97:96:8f:ef:55:a9:72:5d:b5:3d:b4:57: 80:8f:dd:d5:ae:8e:5c:f8:16:1a:bf:09:7d:72:21: 36:31:0b:91:58:d9:74:0c:19:ce:9e:fa:39:54:a0: f9:f5:d9:88:31:07:c6:a4:ff:1d:76:89:00:a0:3e: 17:93:0b:48:15:8e:20:c4:ec:62:47:bb:9b:45:99: 80:2d:10:bc:99:06:90:9c:ca:99:69:36:10:c9:1c: 84:ac:8d:f0:13:91:59:07:f0:b6:d0:a6:04:c0:d0: 31:78:b3:bc:e4:3f:29:5b:82:ee:de:15:fc:82:55: 02:d7:54:fc:76:e3:a2:5c:7c:2c:b0:48:b2:90:15: 92:60:66:a0:42:de:de:f0:dc:fc:71:d4:f5:b7:51: cf:0f:81:5f:08:3b:76:34:9f:6d:64:48:56:24:04: 14:18:71:3b:77:c4:79:bc:48:06:92:18:c6:ba:c1: 5c:e7:5e:49:c1:dc:cb:2c:f6:77:10:bc:f2:45:79: 6e:28:ab:84:74:56:7e:f8:16:df:f3:31:cc:e3:0c: 16:28:1d:89:e1:81:ea:57:b5:6f:f6:99:62:78:5e: 0e:cc:e2:d0:98:3b:5c:d5:8d:41:a8:78:74:8f:f5: 38:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:D1:AE:24:F6:F5:74:E3:73:7C:05:10:87:D9:10:37:51:C0:D1:38 X509v3 Authority Key Identifier: keyid:D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:16:c2:f3:e0:cf:a4:58:ce:1d:7f:fb:92:70:8c:47:2a:48: 57:50:13:bb:7e:36:3e:7c:f6:0d:78:f8:cd:1d:73:d8:32:c0: e2:c9:86:28:0c:9f:54:3a:c7:9e:a1:55:40:30:a5:43:1c:11: f7:e4:4b:f8:d3:41:2d:72:2e:c3:ad:1f:20:b6:f9:32:db:af: eb:1d:f1:1c:34:1b:75:19:7f:ea:24:a6:6a:cf:f4:e1:5a:b4: 88:66:48:31:b9:63:ec:3b:9c:16:97:7e:d5:de:96:01:ca:52: 81:6d:f3:13:28:e5:76:80:64:30:1e:ac:d6:48:99:cc:0a:fc: 39:87:45:ca:61:72:36:46:c9:c2:74:1c:98:ea:97:4f:41:50: 20:7b:d7:7d:0c:16:a1:b9:fc:6a:d8:50:bb:e3:44:d8:b6:a7: f7:4c:7a:1c:35:df:c3:97:c2:24:bb:5a:24:4f:33:c1:4a:54: e5:f8:87:64:f3:a8:f4:70:f0:d4:53:61:b2:b3:bf:83:9f:22: 06:5d:52:eb:93:ef:c6:8b:d7:77:7f:d7:58:ee:8c:7f:70:84: aa:89:47:85:d8:39:5b:94:18:24:d5:b1:dd:10:ff:63:07:08: ef:49:06:f8:72:91:df:cc:78:55:b7:5e:f4:bb:9d:ab:0b:e5: ad:52:39:cd -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUVM8oVv2A/1JgL8NJ87jqevogw58wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZDJmZjA3OTMyYzNmNGMxYjM0NjVmZjRmMGQ5NjQ4NDcz M2UwMmVhZDAeFw0yNjA1MTIxNzI5NDJaFw0yNjA1MTMxNzU2NDJaMDMxMTAvBgNV BAMTKDRBRDFBRTI0RjZGNTc0RTM3MzdDMDUxMDg3RDkxMDM3NTFDMEQxMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDr907Z+U79RShN7EU7aUx/lZeW j+9VqXJdtT20V4CP3dWujlz4Fhq/CX1yITYxC5FY2XQMGc6e+jlUoPn12YgxB8ak /x12iQCgPheTC0gVjiDE7GJHu5tFmYAtELyZBpCcyplpNhDJHISsjfATkVkH8LbQ pgTA0DF4s7zkPylbgu7eFfyCVQLXVPx246JcfCywSLKQFZJgZqBC3t7w3Pxx1PW3 Uc8PgV8IO3Y0n21kSFYkBBQYcTt3xHm8SAaSGMa6wVznXknB3Mss9ncQvPJFeW4o q4R0Vn74Ft/zMczjDBYoHYnhgepXtW/2mWJ4Xg7M4tCYO1zVjUGoeHSP9TipAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUStGuJPb1dONzfAUQh9kQN1HA0TgwHwYDVR0j BBgwFoAU0v8Hkyw/TBs0Zf9PDZZIRzPgLq0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzIvRDJGRjA3OTMyQzNGNEMxQjM0NjVGRjRGMEQ5NjQ4NDczM0UwMkVBRC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzB2OEhreXdfVEJzMFpmOVBEWlpJUnpQ Z0xxMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00 MTliLTRkYjUtYmJkMy01Y2NhNjMzY2FlM2YvMi9EMkZGMDc5MzJDM0Y0QzFCMzQ2 NUZGNEYwRDk2NDg0NzMzRTAyRUFELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmRbC8+DPpFjOHX/7knCM RypIV1ATu342Pnz2DXj4zR1z2DLA4smGKAyfVDrHnqFVQDClQxwR9+RL+NNBLXIu w60fILb5Mtuv6x3xHDQbdRl/6iSmas/04Vq0iGZIMblj7DucFpd+1d6WAcpSgW3z EyjldoBkMB6s1kiZzAr8OYdFymFyNkbJwnQcmOqXT0FQIHvXfQwWobn8athQu+NE 2Lan90x6HDXfw5fCJLtaJE8zwUpU5fiHZPOo9HDw1FNhsrO/g58iBl1S65PvxovX d3/XWO6Mf3CEqolHhdg5W5QYJNWx3RD/YwcI70kG+HKR38x4Vbde9LudqwvlrVI5 zQ== -----END CERTIFICATE-----Generated at Tue May 12 21:49:02 2026 by rpki-client