$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft File: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft (raw, json) Hash identifier: /WpGe/y9eOM0GYtiJckcZRDfguUqmKar+cAnc/A8FX8= Subject key identifier: 16:7A:E2:0F:13:C8:79:B4:73:21:A3:5E:3B:22:4F:18:55:CB:9E:4F Authority key identifier: 5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE Certificate issuer: /CN=5da3215abfa4621d57709f838a92801f2e90ddfe Certificate serial: 30B4D37450E7AC5F9A2F65AD01CDE103115F4C25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft Manifest number: 0629 Signing time: Tue 12 May 2026 13:44:50 +0000 Manifest this update: Tue 12 May 2026 13:39:50 +0000 Manifest next update: Wed 13 May 2026 14:03:50 +0000 Files and hashes: 1: 34352e38312e35382e302f32342d3234203d3e20323039323432.roa (hash: UKvcqUxUrgd2F0qduNt/9nJuPUaDtCItgdXC0fI9BhQ=) 2: 34352e38312e35372e302f32342d3234203d3e203631333137.roa (hash: wLY+uAAZaapza9rnm+rvcKy/RGqb5OINBZoQF5pW50I=) 3: 326130393a643634303a3a2f32392d3239203d3e20313938333435.roa (hash: 2ZJoizA2XrGcopsLwhs8oaMaqFtkP0G9iClmvxEJgnM=) 4: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl (hash: 98U0SSQi7Ir28G6NutCNM4RwDvQbqAFvZ6DH66ceC5Q=) 5: 34352e38312e35392e302f32342d3234203d3e20323131343339.roa (hash: PzQrEpsLL9icV7+wAMJ22TsUek+9+7dTOPFgPD6vtOM=) 6: 34352e38312e35362e302f32342d3234203d3e20383334.roa (hash: RvBwqpsMFaC4kQ3VLDNfZDDqspDe1yGNu+5Eo3ESLBg=) 7: 34352e38312e35392e302f32342d3234203d3e20323132333834.roa (hash: Z55LDvJNhjuOlIMhPU51UoeT0VK3qlu4pE/EHJdIaDE=) 8: 34352e38312e35382e302f32342d3234203d3e203133333335.roa (hash: q1odFkTeiB/pBEbWg5JpQkAxpmrH9S0QmR2/CtllItc=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 14:03:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:b4:d3:74:50:e7:ac:5f:9a:2f:65:ad:01:cd:e1:03:11:5f:4c:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5da3215abfa4621d57709f838a92801f2e90ddfe Validity Not Before: May 12 13:39:50 2026 GMT Not After : May 13 14:03:50 2026 GMT Subject: CN=167AE20F13C879B47321A35E3B224F1855CB9E4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c6:60:b4:5c:bb:e8:6c:1b:94:de:25:6a:8c: ec:c2:73:31:4a:7a:a7:4e:af:f1:e9:37:77:8f:e3: 46:ec:ed:7e:8a:3e:1c:db:a7:a9:bb:05:78:58:20: 8c:c8:f1:25:94:56:06:24:eb:1c:66:b1:90:7d:f3: 50:dd:a0:88:d8:0e:bc:9f:71:5b:7f:04:ef:91:f7: cf:98:36:5e:e8:2f:a7:0e:91:75:49:65:8a:34:3b: d8:de:47:82:ee:f7:53:a5:38:f4:10:75:57:e6:37: bd:95:f9:6f:ff:ad:50:bf:8c:10:6f:a9:1c:06:ed: 08:bc:0e:3c:dc:d3:ff:2e:f2:7a:a2:dd:ce:d1:5f: a4:56:2e:95:4d:80:7c:27:6e:b5:06:51:6b:3f:9e: 5f:ed:66:50:15:ef:c4:f2:41:30:e0:4c:46:2e:81: ed:2f:f3:c5:a0:e9:99:86:7c:e8:ba:28:9d:12:95: 52:e3:38:89:d2:59:75:85:1b:ef:c0:08:f6:04:d9: b4:43:e8:de:fb:c9:ac:f1:fd:8b:4f:41:72:57:59: 95:62:a7:67:87:6c:bf:05:d2:79:10:2c:20:d5:9d: 52:18:70:63:e8:18:35:8d:70:2e:f5:8a:2e:da:5b: 6a:25:90:8c:a1:b9:e7:f6:31:c4:60:eb:37:d2:63: 14:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:7A:E2:0F:13:C8:79:B4:73:21:A3:5E:3B:22:4F:18:55:CB:9E:4F X509v3 Authority Key Identifier: keyid:5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:3c:1a:cd:61:62:7b:34:cb:c9:0b:59:21:4b:cd:8f:39:31: e5:30:f6:0e:63:e3:ba:c9:20:b4:bd:b2:ff:af:f0:aa:fa:c8: 95:71:01:97:b0:3e:f1:58:ff:62:f7:44:ea:85:0d:22:df:26: f1:ed:58:ce:df:42:32:ba:be:62:2b:e3:e6:ea:2d:18:5c:15: ec:9a:41:50:d8:de:3a:1b:d2:cb:03:f2:4f:26:79:88:1b:66: ce:f8:89:01:16:96:a6:68:b4:82:13:c6:5e:e3:e2:6c:0f:b3: 80:ce:98:55:5e:95:b5:24:fa:8a:ea:4f:41:dc:53:ff:3b:d9: b0:93:e4:11:a5:03:af:7f:18:e8:d5:0f:82:f9:03:95:1a:32: c6:a1:d1:8b:38:43:c1:d3:37:5d:24:23:62:b4:37:b5:54:64: e4:3e:02:f6:6e:ae:1b:91:c7:6d:a4:5b:c1:df:83:89:8b:8f: 38:1c:f0:98:1c:79:67:cb:fe:7a:21:f7:84:19:79:c0:44:3b: 2e:3c:24:11:3f:32:b8:5e:47:31:a7:b7:fe:11:26:30:15:5c: 2f:fd:18:2f:4f:20:99:b3:92:75:79:99:99:67:78:7a:ca:f4: 59:8b:71:90:ab:a9:2c:28:ab:83:c6:ea:f4:69:ee:29:4b:51: 80:b1:33:ae -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUMLTTdFDnrF+aL2WtAc3hAxFfTCUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRhMzIxNWFiZmE0NjIxZDU3NzA5ZjgzOGE5MjgwMWYy ZTkwZGRmZTAeFw0yNjA1MTIxMzM5NTBaFw0yNjA1MTMxNDAzNTBaMDMxMTAvBgNV BAMTKDE2N0FFMjBGMTNDODc5QjQ3MzIxQTM1RTNCMjI0RjE4NTVDQjlFNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUxmC0XLvobBuU3iVqjOzCczFK eqdOr/HpN3eP40bs7X6KPhzbp6m7BXhYIIzI8SWUVgYk6xxmsZB981DdoIjYDryf cVt/BO+R98+YNl7oL6cOkXVJZYo0O9jeR4Lu91OlOPQQdVfmN72V+W//rVC/jBBv qRwG7Qi8Djzc0/8u8nqi3c7RX6RWLpVNgHwnbrUGUWs/nl/tZlAV78TyQTDgTEYu ge0v88Wg6ZmGfOi6KJ0SlVLjOInSWXWFG+/ACPYE2bRD6N77yazx/YtPQXJXWZVi p2eHbL8F0nkQLCDVnVIYcGPoGDWNcC71ii7aW2olkIyhuef2McRg6zfSYxTjAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUFnriDxPIebRzIaNeOyJPGFXLnk8wHwYDVR0j BBgwFoAUXaMhWr+kYh1XcJ+DipKAHy6Q3f4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmYyNDU2N2ItN2E3NC00YzFmLWFhODUtZGQyNGFmNzNj Y2JiLzAvNURBMzIxNUFCRkE0NjIxRDU3NzA5RjgzOEE5MjgwMUYyRTkwRERGRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hhTWhXci1rWWgxWGNKLURpcEtBSHk2 UTNmNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjI0NTY3Yi03 YTc0LTRjMWYtYWE4NS1kZDI0YWY3M2NjYmIvMC81REEzMjE1QUJGQTQ2MjFENTc3 MDlGODM4QTkyODAxRjJFOTBEREZFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJDwazWFiezTLyQtZIUvN jzkx5TD2DmPjuskgtL2y/6/wqvrIlXEBl7A+8Vj/YvdE6oUNIt8m8e1Yzt9CMrq+ Yivj5uotGFwV7JpBUNjeOhvSywPyTyZ5iBtmzviJARaWpmi0ghPGXuPibA+zgM6Y VV6VtST6iupPQdxT/zvZsJPkEaUDr38Y6NUPgvkDlRoyxqHRizhDwdM3XSQjYrQ3 tVRk5D4C9m6uG5HHbaRbwd+DiYuPOBzwmBx5Z8v+eiH3hBl5wEQ7LjwkET8yuF5H Mae3/hEmMBVcL/0YL08gmbOSdXmZmWd4esr0WYtxkKupLCirg8bq9GnuKUtRgLEz rg== -----END CERTIFICATE-----Generated at Wed May 13 03:11:12 2026 by rpki-client