$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft File: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft (raw, json) Hash identifier: DQx9oTMtwnwDb947k22WcQ9IDS9edIvqCnnabgJgbdg= Subject key identifier: F8:23:71:A6:D1:72:41:78:07:13:97:AE:13:80:37:DF:92:C6:27:7F Authority key identifier: 5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE Certificate issuer: /CN=5da3215abfa4621d57709f838a92801f2e90ddfe Certificate serial: 3FDA9EC90D26E8A2C1BE31672CFFA742FCBE005F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft Manifest number: 0479 Signing time: Sat 28 Jun 2025 18:19:11 +0000 Manifest this update: Sat 28 Jun 2025 18:14:11 +0000 Manifest next update: Sun 29 Jun 2025 21:15:11 +0000 Files and hashes: 1: 326130393a643634303a3a2f32392d3239203d3e20313938333435.roa (hash: LaBCcb8mjeERCC5tHKO7thlovLIwutTtPGiGYEZVPF8=) 2: 34352e38312e35382e302f32342d3234203d3e20323039323432.roa (hash: Cjq2FzLN5G1VEvkKyI6FB5noxcWUxvPOvV4W7hBfw5c=) 3: 34352e38312e35372e302f32342d3234203d3e203631333137.roa (hash: Nt6v0on8wvNIRTqw0ZzJ5VjTWjEZFT63u0ZbVbhKyNc=) 4: 34352e38312e35392e302f32342d3234203d3e20323131343339.roa (hash: Y0ZApSmGCRch+djTYBN+U0p8LaOUa+NCEgyRR8hvTcU=) 5: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl (hash: NDYKpH3iRomVK5PgR14A8dQxDdke+P/rkzCigpARTgo=) 6: 34352e38312e35392e302f32342d3234203d3e20323132333834.roa (hash: 7ySWNlqh8pfpYqSc3fbfv+VTSwiuDNFNlc7aZa5se9U=) 7: 34352e38312e35362e302f32342d3234203d3e203634323637.roa (hash: kGVNeEKX35ugOpsFmA5GwCl6f0GnZpLJS8pEn3cyWJI=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 21:15:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:da:9e:c9:0d:26:e8:a2:c1:be:31:67:2c:ff:a7:42:fc:be:00:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5da3215abfa4621d57709f838a92801f2e90ddfe Validity Not Before: Jun 28 18:14:11 2025 GMT Not After : Jun 29 21:15:11 2025 GMT Subject: CN=F82371A6D1724178071397AE138037DF92C6277F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c5:10:fd:8e:9f:39:a2:8f:2e:5e:da:62:0b: 73:25:bc:4c:d2:2a:3b:d1:36:b1:df:f7:c9:88:df: cd:3f:9e:d2:63:c5:78:19:e3:c7:04:1d:94:49:7d: f8:77:86:73:c6:6d:74:4f:13:c1:a9:c1:d4:4e:41: 46:9f:33:4e:54:88:48:c3:c3:8a:9d:cd:78:16:4b: 8c:4f:a9:6d:31:5c:76:24:e8:92:13:df:27:13:f3: ec:c7:9e:11:cf:db:1f:2a:4b:2b:f6:c6:62:f8:6f: 08:4b:f4:6c:73:5c:17:a6:d5:eb:80:75:cf:16:ec: 16:46:64:c5:5d:70:df:7e:dd:b2:73:5c:27:10:08: 43:90:0c:30:35:5b:02:bd:39:2e:64:71:40:bb:01: 18:94:09:31:18:a9:ca:fa:c7:ef:c3:3b:f0:5b:95: 59:a9:f2:d1:17:92:6e:41:4f:e0:4c:40:01:0b:03: d3:59:09:88:b5:00:29:f5:b8:61:5c:a8:d8:80:1d: cf:58:13:1a:89:91:8a:96:6c:d9:e8:f6:8c:bf:8f: 53:1c:f6:c4:b0:ac:48:26:2d:5c:dc:b4:a8:de:59: 5a:24:84:10:79:ea:33:56:36:a9:1a:3c:93:b0:ff: 28:b1:98:5d:71:5b:fd:58:e9:67:16:39:d3:7c:5a: ea:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:23:71:A6:D1:72:41:78:07:13:97:AE:13:80:37:DF:92:C6:27:7F X509v3 Authority Key Identifier: keyid:5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:f8:65:f5:71:f8:72:f0:40:2e:1b:6b:52:17:9e:45:bd:64: 79:a6:f2:ec:96:24:e5:9e:f1:95:45:54:af:1f:60:d0:dc:e4: ca:5c:44:6a:ad:05:72:ab:08:d4:ee:07:c2:39:5b:48:d0:d2: 23:c4:ae:18:4b:e8:56:44:11:e7:cb:da:66:4a:45:5c:86:fb: f6:2d:32:66:c9:ff:05:f6:ea:58:39:a2:27:25:71:89:ff:5c: cd:9c:b5:eb:43:2a:6f:f3:1f:8b:a9:07:4e:97:2c:f5:2c:5c: 44:d6:73:48:04:e2:50:db:06:08:04:d5:17:f0:23:55:eb:41: d1:c1:6f:53:16:35:c5:46:f3:8c:cc:46:65:a8:60:d9:d5:81: bb:2c:3f:2b:47:3b:52:74:1a:8a:6f:fd:57:13:79:29:d9:48: 8d:c1:43:b7:a6:b2:02:bc:74:03:0e:4d:35:3a:a8:03:59:5f: e0:94:25:31:a6:aa:f6:3b:dd:98:0f:e5:53:19:78:ca:e9:1b: 35:a7:39:3d:6b:27:e1:57:ac:9b:58:d3:28:54:c7:8f:e2:4e: d0:f4:6a:eb:64:be:b0:80:1b:5e:1c:4d:14:7d:fb:27:a2:cc: a0:fc:b8:54:28:a2:8e:5d:a5:0c:ef:b5:ef:6d:9d:d3:f4:de: 1e:bd:3e:ff -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUP9qeyQ0m6KLBvjFnLP+nQvy+AF8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRhMzIxNWFiZmE0NjIxZDU3NzA5ZjgzOGE5MjgwMWYy ZTkwZGRmZTAeFw0yNTA2MjgxODE0MTFaFw0yNTA2MjkyMTE1MTFaMDMxMTAvBgNV BAMTKEY4MjM3MUE2RDE3MjQxNzgwNzEzOTdBRTEzODAzN0RGOTJDNjI3N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdxRD9jp85oo8uXtpiC3MlvEzS KjvRNrHf98mI380/ntJjxXgZ48cEHZRJffh3hnPGbXRPE8GpwdROQUafM05UiEjD w4qdzXgWS4xPqW0xXHYk6JIT3ycT8+zHnhHP2x8qSyv2xmL4bwhL9GxzXBem1euA dc8W7BZGZMVdcN9+3bJzXCcQCEOQDDA1WwK9OS5kcUC7ARiUCTEYqcr6x+/DO/Bb lVmp8tEXkm5BT+BMQAELA9NZCYi1ACn1uGFcqNiAHc9YExqJkYqWbNno9oy/j1Mc 9sSwrEgmLVzctKjeWVokhBB56jNWNqkaPJOw/yixmF1xW/1Y6WcWOdN8WuqHAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU+CNxptFyQXgHE5euE4A335LGJ38wHwYDVR0j BBgwFoAUXaMhWr+kYh1XcJ+DipKAHy6Q3f4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmYyNDU2N2ItN2E3NC00YzFmLWFhODUtZGQyNGFmNzNj Y2JiLzAvNURBMzIxNUFCRkE0NjIxRDU3NzA5RjgzOEE5MjgwMUYyRTkwRERGRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hhTWhXci1rWWgxWGNKLURpcEtBSHk2 UTNmNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjI0NTY3Yi03 YTc0LTRjMWYtYWE4NS1kZDI0YWY3M2NjYmIvMC81REEzMjE1QUJGQTQ2MjFENTc3 MDlGODM4QTkyODAxRjJFOTBEREZFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdfhl9XH4cvBALhtrUhee Rb1keaby7JYk5Z7xlUVUrx9g0NzkylxEaq0FcqsI1O4HwjlbSNDSI8SuGEvoVkQR 58vaZkpFXIb79i0yZsn/BfbqWDmiJyVxif9czZy160Mqb/Mfi6kHTpcs9SxcRNZz SATiUNsGCATVF/AjVetB0cFvUxY1xUbzjMxGZahg2dWBuyw/K0c7UnQaim/9VxN5 KdlIjcFDt6ayArx0Aw5NNTqoA1lf4JQlMaaq9jvdmA/lUxl4yukbNac5PWsn4Ves m1jTKFTHj+JO0PRq62S+sIAbXhxNFH37J6LMoPy4VCiijl2lDO+1722d0/TeHr0+ /w== -----END CERTIFICATE-----Generated at Sun Jun 29 09:17:36 2025 by rpki-client