$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft File: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft (raw, json) Hash identifier: TxhFHpoLD0O/D3jkQtHh8MVocL6EkqrAb51mCmiuWx0= Subject key identifier: B3:BD:89:80:61:3B:A5:FB:4C:4F:04:78:52:48:AC:60:57:3C:CE:C0 Authority key identifier: 5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE Certificate issuer: /CN=5da3215abfa4621d57709f838a92801f2e90ddfe Certificate serial: 1CCECFDE1439197B1D33734E31205CB1FB8938F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft Manifest number: 04C3 Signing time: Sat 23 Aug 2025 03:32:33 +0000 Manifest this update: Sat 23 Aug 2025 03:27:33 +0000 Manifest next update: Sun 24 Aug 2025 05:45:33 +0000 Files and hashes: 1: 34352e38312e35362e302f32342d3234203d3e203634323637.roa (hash: kGVNeEKX35ugOpsFmA5GwCl6f0GnZpLJS8pEn3cyWJI=) 2: 34352e38312e35392e302f32342d3234203d3e20323131343339.roa (hash: Y0ZApSmGCRch+djTYBN+U0p8LaOUa+NCEgyRR8hvTcU=) 3: 326130393a643634303a3a2f32392d3239203d3e20313938333435.roa (hash: LaBCcb8mjeERCC5tHKO7thlovLIwutTtPGiGYEZVPF8=) 4: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl (hash: UN03mv2IfKxBhzMnBn+ry94bGLJOHyuRKqe1mehk9ws=) 5: 34352e38312e35392e302f32342d3234203d3e20323132333834.roa (hash: 7ySWNlqh8pfpYqSc3fbfv+VTSwiuDNFNlc7aZa5se9U=) 6: 34352e38312e35382e302f32342d3234203d3e20323039323432.roa (hash: Cjq2FzLN5G1VEvkKyI6FB5noxcWUxvPOvV4W7hBfw5c=) 7: 34352e38312e35372e302f32342d3234203d3e203631333137.roa (hash: Nt6v0on8wvNIRTqw0ZzJ5VjTWjEZFT63u0ZbVbhKyNc=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 00:37:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:ce:cf:de:14:39:19:7b:1d:33:73:4e:31:20:5c:b1:fb:89:38:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5da3215abfa4621d57709f838a92801f2e90ddfe Validity Not Before: Aug 23 03:27:33 2025 GMT Not After : Aug 24 05:45:33 2025 GMT Subject: CN=B3BD8980613BA5FB4C4F04785248AC60573CCEC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2c:b7:11:36:3e:9d:8b:95:46:50:30:1a:04: 26:c2:7f:5b:70:2c:b3:78:5e:5f:af:7f:2c:56:0a: 93:8d:0c:5e:ba:dc:19:df:bc:fe:38:04:ce:e1:94: cd:fd:73:d9:51:4d:c4:e4:14:9c:fd:d7:77:e0:59: 03:d5:60:bc:0d:32:9b:d2:24:6d:9b:b1:09:30:16: d7:2b:26:00:56:92:c7:d1:66:6d:05:22:ee:a9:4a: 38:02:29:01:d0:58:af:a3:cc:1e:19:c4:da:b3:52: 05:bf:d2:2b:a9:18:d2:c2:6d:f7:15:21:33:52:3b: 3d:3b:7b:27:ac:0a:22:1c:6e:a2:5f:7d:d8:c7:28: 2a:35:c0:04:ce:28:86:23:d0:67:65:f1:c8:60:f4: bc:3a:28:03:ab:57:25:9d:89:1b:ba:04:4f:44:98: a9:e0:da:35:1a:7e:a0:97:56:18:1a:31:73:28:ce: f0:f7:ae:5c:b7:9f:6c:a0:f6:66:54:8c:12:36:71: bf:41:ef:8e:f0:d8:d0:1a:51:7b:32:ed:fb:54:9b: 8a:63:4d:cb:fc:cc:f7:0b:e8:15:44:e7:49:2a:5a: 4b:29:e9:28:e2:e9:4c:cc:43:27:e9:a4:84:29:6f: 0f:31:e4:61:87:3f:bd:24:46:d0:13:5c:78:37:ee: 98:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:BD:89:80:61:3B:A5:FB:4C:4F:04:78:52:48:AC:60:57:3C:CE:C0 X509v3 Authority Key Identifier: keyid:5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:ba:f5:6c:4b:73:dd:a9:9a:0d:b0:02:a5:f0:e9:c4:9c:a0: af:92:6a:b0:f6:68:2e:12:77:b3:d4:3c:64:6c:7f:9f:46:75: 4c:5c:d1:68:61:a0:b2:f8:39:96:aa:32:1f:b7:a3:2e:bd:f2: 89:66:9d:9e:fa:37:2d:93:74:63:43:c8:fc:c4:8c:76:60:dc: d3:57:de:41:16:c1:f8:c2:81:68:88:fb:69:55:cc:23:4d:7b: 3d:a5:53:40:7d:f6:de:fb:94:ef:b5:fb:ad:1d:57:1d:ca:50: d7:dc:39:6e:6e:e7:23:51:48:44:d8:df:02:2a:d9:79:2e:09: 6a:c1:5e:b5:57:6a:c9:23:e6:53:6b:27:39:02:9b:ef:61:cb: 54:99:7b:6f:a1:34:9e:7c:7e:3e:81:a4:20:cc:6c:6c:d9:69: 22:f7:00:d4:f9:7e:63:c2:7c:28:4c:75:3f:11:17:98:78:25: 7d:e7:15:74:0e:b3:68:c6:4a:40:49:c3:25:be:23:63:49:f7: d3:0d:b7:7d:9d:89:51:78:07:18:22:8a:aa:58:9f:b8:d8:e4: 0b:04:3c:f5:32:2a:ba:3e:0b:5e:48:22:65:80:96:04:30:59: 20:92:a0:58:b9:24:9c:e9:46:18:76:b2:f3:21:3e:19:27:9f: 01:5b:58:ad -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUHM7P3hQ5GXsdM3NOMSBcsfuJOPYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRhMzIxNWFiZmE0NjIxZDU3NzA5ZjgzOGE5MjgwMWYy ZTkwZGRmZTAeFw0yNTA4MjMwMzI3MzNaFw0yNTA4MjQwNTQ1MzNaMDMxMTAvBgNV BAMTKEIzQkQ4OTgwNjEzQkE1RkI0QzRGMDQ3ODUyNDhBQzYwNTczQ0NFQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8LLcRNj6di5VGUDAaBCbCf1tw LLN4Xl+vfyxWCpONDF663BnfvP44BM7hlM39c9lRTcTkFJz913fgWQPVYLwNMpvS JG2bsQkwFtcrJgBWksfRZm0FIu6pSjgCKQHQWK+jzB4ZxNqzUgW/0iupGNLCbfcV ITNSOz07eyesCiIcbqJffdjHKCo1wATOKIYj0Gdl8chg9Lw6KAOrVyWdiRu6BE9E mKng2jUafqCXVhgaMXMozvD3rly3n2yg9mZUjBI2cb9B747w2NAaUXsy7ftUm4pj Tcv8zPcL6BVE50kqWksp6Sji6UzMQyfppIQpbw8x5GGHP70kRtATXHg37pilAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUs72JgGE7pftMTwR4UkisYFc8zsAwHwYDVR0j BBgwFoAUXaMhWr+kYh1XcJ+DipKAHy6Q3f4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmYyNDU2N2ItN2E3NC00YzFmLWFhODUtZGQyNGFmNzNj Y2JiLzAvNURBMzIxNUFCRkE0NjIxRDU3NzA5RjgzOEE5MjgwMUYyRTkwRERGRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hhTWhXci1rWWgxWGNKLURpcEtBSHk2 UTNmNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjI0NTY3Yi03 YTc0LTRjMWYtYWE4NS1kZDI0YWY3M2NjYmIvMC81REEzMjE1QUJGQTQ2MjFENTc3 MDlGODM4QTkyODAxRjJFOTBEREZFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVbr1bEtz3amaDbACpfDp xJygr5JqsPZoLhJ3s9Q8ZGx/n0Z1TFzRaGGgsvg5lqoyH7ejLr3yiWadnvo3LZN0 Y0PI/MSMdmDc01feQRbB+MKBaIj7aVXMI017PaVTQH323vuU77X7rR1XHcpQ19w5 bm7nI1FIRNjfAirZeS4JasFetVdqySPmU2snOQKb72HLVJl7b6E0nnx+PoGkIMxs bNlpIvcA1Pl+Y8J8KEx1PxEXmHglfecVdA6zaMZKQEnDJb4jY0n30w23fZ2JUXgH GCKKqlifuNjkCwQ89TIquj4LXkgiZYCWBDBZIJKgWLkknOlGGHay8yE+GSefAVtY rQ== -----END CERTIFICATE-----Generated at Sat Aug 23 10:24:18 2025 by rpki-client