$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft File: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft (raw, json) Hash identifier: vPWn75BE8Yq6Yc0In72xiuNqwLckK2+a7bLKsHYG1SE= Subject key identifier: 6A:29:02:70:C0:4F:9F:2F:04:D5:69:FD:0F:59:4E:09:DE:B5:4E:23 Authority key identifier: 5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE Certificate issuer: /CN=5da3215abfa4621d57709f838a92801f2e90ddfe Certificate serial: 2C180EF12D7C607EEE6635D747A42F0E879D2486 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft Manifest number: 0510 Signing time: Sun 19 Oct 2025 04:31:35 +0000 Manifest this update: Sun 19 Oct 2025 04:26:35 +0000 Manifest next update: Mon 20 Oct 2025 05:17:35 +0000 Files and hashes: 1: 34352e38312e35392e302f32342d3234203d3e20323131343339.roa (hash: Y0ZApSmGCRch+djTYBN+U0p8LaOUa+NCEgyRR8hvTcU=) 2: 34352e38312e35362e302f32342d3234203d3e203634323637.roa (hash: kGVNeEKX35ugOpsFmA5GwCl6f0GnZpLJS8pEn3cyWJI=) 3: 34352e38312e35372e302f32342d3234203d3e203631333137.roa (hash: Nt6v0on8wvNIRTqw0ZzJ5VjTWjEZFT63u0ZbVbhKyNc=) 4: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl (hash: VmrOgwLvImnCHs0NvwQY7dciVZwHkhZFzkw1+bCFpew=) 5: 34352e38312e35392e302f32342d3234203d3e20323132333834.roa (hash: 7ySWNlqh8pfpYqSc3fbfv+VTSwiuDNFNlc7aZa5se9U=) 6: 326130393a643634303a3a2f32392d3239203d3e20313938333435.roa (hash: LaBCcb8mjeERCC5tHKO7thlovLIwutTtPGiGYEZVPF8=) 7: 34352e38312e35382e302f32342d3234203d3e20323039323432.roa (hash: Cjq2FzLN5G1VEvkKyI6FB5noxcWUxvPOvV4W7hBfw5c=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 05:17:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:18:0e:f1:2d:7c:60:7e:ee:66:35:d7:47:a4:2f:0e:87:9d:24:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5da3215abfa4621d57709f838a92801f2e90ddfe Validity Not Before: Oct 19 04:26:35 2025 GMT Not After : Oct 20 05:17:35 2025 GMT Subject: CN=6A290270C04F9F2F04D569FD0F594E09DEB54E23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:85:a1:54:a8:0f:f3:c2:30:32:23:30:26:65: 9f:a1:a7:5b:08:07:8d:9f:93:05:74:0d:03:9c:dd: 47:15:ae:8f:c6:5f:e7:9d:ca:87:b6:e8:ae:d9:81: 89:1c:bb:25:65:0a:70:3b:56:60:e9:d4:cb:fd:8c: b7:71:40:5c:0d:02:ae:ad:6f:11:6a:67:41:6a:d5: 36:92:91:f5:ff:89:60:15:6b:12:04:f7:6b:c3:0b: f5:79:7e:b4:50:23:1c:5e:23:3f:b3:a0:8d:18:d0: 25:4b:53:fa:4c:b5:2c:fb:a3:dc:a9:2d:bb:c6:90: 8b:e8:1f:ba:32:51:c1:44:d7:95:c1:62:e6:ee:97: 83:7c:ca:d8:80:01:0f:94:6f:d4:a1:96:91:89:96: 21:c6:a6:64:e7:ed:ce:25:60:9c:b5:42:5a:c2:e8: bf:66:d2:5b:36:02:c7:79:63:78:31:fd:6c:7e:aa: 7c:fc:8a:27:58:7e:37:7e:10:f1:df:ca:c5:dc:01: f7:cb:36:31:6a:1f:b1:31:47:64:ae:b7:47:08:f9: 85:31:0b:5a:47:8f:10:d8:1c:c6:41:b7:cf:84:d9: db:f4:fe:c6:49:07:64:a4:05:1d:94:94:bf:4e:f6: db:5b:62:d7:fc:a8:4a:b8:88:f1:98:03:44:86:78: a6:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:29:02:70:C0:4F:9F:2F:04:D5:69:FD:0F:59:4E:09:DE:B5:4E:23 X509v3 Authority Key Identifier: keyid:5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:01:f5:89:a4:dd:0b:c7:43:d0:28:1b:60:7d:92:c0:bb:80: 5b:0c:91:b7:b0:d0:3c:d7:71:1f:1f:27:96:74:2b:68:5e:d9: d4:d5:5f:c8:83:a9:54:7f:b6:b3:ea:17:47:ca:77:8f:99:c4: ff:70:1f:69:d3:31:b5:58:2f:8b:13:cb:43:e3:53:de:5d:87: d8:9e:36:92:1e:45:f0:3a:1b:fa:1f:8f:ab:ee:9a:d7:67:a3: ab:c7:c3:3b:d0:51:06:8e:63:84:00:ef:a9:dc:d4:85:88:d8: 2f:24:b0:ba:85:48:a7:d2:aa:82:79:3f:54:73:d4:64:20:00: 0c:f5:1d:eb:a5:d8:36:2c:aa:6d:10:31:a4:df:c3:49:3f:ea: 6e:fc:b5:94:96:53:88:c8:63:02:40:95:37:e2:74:0a:e9:60: f8:db:94:b8:38:42:32:db:a5:ca:04:14:a8:a2:ef:e6:b0:9f: 7f:26:ad:9f:cc:3b:45:ee:bb:c1:8e:4b:09:eb:51:2b:db:48: 10:3c:55:ef:31:97:60:2e:fb:81:8b:83:4d:fe:1f:fa:4b:27: a9:aa:41:36:31:86:d5:1d:fb:d5:c5:92:bf:57:f8:25:c2:44: 4c:1b:87:fc:44:03:41:05:79:f4:53:6d:7d:bc:fa:7d:97:66: 62:db:3f:52 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIULBgO8S18YH7uZjXXR6QvDoedJIYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRhMzIxNWFiZmE0NjIxZDU3NzA5ZjgzOGE5MjgwMWYy ZTkwZGRmZTAeFw0yNTEwMTkwNDI2MzVaFw0yNTEwMjAwNTE3MzVaMDMxMTAvBgNV BAMTKDZBMjkwMjcwQzA0RjlGMkYwNEQ1NjlGRDBGNTk0RTA5REVCNTRFMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOhaFUqA/zwjAyIzAmZZ+hp1sI B42fkwV0DQOc3UcVro/GX+edyoe26K7ZgYkcuyVlCnA7VmDp1Mv9jLdxQFwNAq6t bxFqZ0Fq1TaSkfX/iWAVaxIE92vDC/V5frRQIxxeIz+zoI0Y0CVLU/pMtSz7o9yp LbvGkIvoH7oyUcFE15XBYubul4N8ytiAAQ+Ub9ShlpGJliHGpmTn7c4lYJy1QlrC 6L9m0ls2Asd5Y3gx/Wx+qnz8iidYfjd+EPHfysXcAffLNjFqH7ExR2Sut0cI+YUx C1pHjxDYHMZBt8+E2dv0/sZJB2SkBR2UlL9O9ttbYtf8qEq4iPGYA0SGeKZ1AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUaikCcMBPny8E1Wn9D1lOCd61TiMwHwYDVR0j BBgwFoAUXaMhWr+kYh1XcJ+DipKAHy6Q3f4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmYyNDU2N2ItN2E3NC00YzFmLWFhODUtZGQyNGFmNzNj Y2JiLzAvNURBMzIxNUFCRkE0NjIxRDU3NzA5RjgzOEE5MjgwMUYyRTkwRERGRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hhTWhXci1rWWgxWGNKLURpcEtBSHk2 UTNmNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjI0NTY3Yi03 YTc0LTRjMWYtYWE4NS1kZDI0YWY3M2NjYmIvMC81REEzMjE1QUJGQTQ2MjFENTc3 MDlGODM4QTkyODAxRjJFOTBEREZFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAggH1iaTdC8dD0CgbYH2S wLuAWwyRt7DQPNdxHx8nlnQraF7Z1NVfyIOpVH+2s+oXR8p3j5nE/3AfadMxtVgv ixPLQ+NT3l2H2J42kh5F8Dob+h+Pq+6a12ejq8fDO9BRBo5jhADvqdzUhYjYLySw uoVIp9Kqgnk/VHPUZCAADPUd66XYNiyqbRAxpN/DST/qbvy1lJZTiMhjAkCVN+J0 Culg+NuUuDhCMtulygQUqKLv5rCffyatn8w7Re67wY5LCetRK9tIEDxV7zGXYC77 gYuDTf4f+ksnqapBNjGG1R371cWSv1f4JcJETBuH/EQDQQV59FNtfbz6fZdmYts/ Ug== -----END CERTIFICATE-----Generated at Sun Oct 19 15:30:22 2025 by rpki-client