$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft File: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft (raw, json) Hash identifier: Km7n00VDcGdTxDlNzL2fAdddsPJh+jW58ZFiwFfUT4I= Subject key identifier: 74:1D:18:61:12:8A:7B:F1:D5:CE:3C:04:2F:32:76:B0:BE:2C:FC:34 Authority key identifier: F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD Certificate issuer: /CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Certificate serial: 2E4004408A2D994C2F1B1F296B760EA95E78BD17 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft Manifest number: 053A Signing time: Fri 22 Aug 2025 22:22:33 +0000 Manifest this update: Fri 22 Aug 2025 22:17:33 +0000 Manifest next update: Sat 23 Aug 2025 23:29:33 +0000 Files and hashes: 1: 3139332e39332e3135322e302f32342d3234203d3e20313939363134.roa (hash: jNaGJEHXg+vn+v2vVdhmJa1IVdEz/D1ggT5kvM1c0Hk=) 2: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl (hash: B8z/ZAgtyLueczrRzeSzrHHBTfazHqLZub4Z7YK0ADE=) 3: 326130303a386530303a313a3a2f34382d3438203d3e203230373132.roa (hash: jAOxURrHtZvlqdFVdBr3F4ACmPO4DT4L5AmOtZPktVY=) 4: 34362e3235302e3234302e302f32302d3234203d3e20313431393935.roa (hash: 5zFYerIngzLwSwbeiiGPHVQadLBE1/J7oEEXeFR/OFM=) 5: 3139332e39332e3135332e302f32342d3234203d3e20323134303336.roa (hash: FgMfWX7zLNqyUMvyIkAVqVqXpYApxS0iTmFAdZ7lH9Q=) 6: 3139332e39332e3135342e302f32342d3234203d3e20323131343135.roa (hash: lcDvK25Krwnz/wCtWIMtJ+GA0fjdNOA7l7WMMKyVVUU=) 7: 3139332e39332e3135352e302f32342d3234203d3e203230343733.roa (hash: hDOoONSAS9eAuwlCmW30VHEN0/zXt8vJpH/fFLKimsM=) 8: 3139332e39332e3135352e302f32342d3234203d3e203631333137.roa (hash: SV7SbziqH7eMIEMJIbsVc3dV1p2SM237aRtzHljTDkg=) 9: 3139332e39332e3135332e302f32342d3234203d3e203439313237.roa (hash: 0/cfjGj4KR4GGAb3iVBdR7EXi3eZGMMRZK+KEv9RsCI=) 10: 34362e3235302e3232342e302f32302d3234203d3e20313431393935.roa (hash: ht90MUomGkgWhJETWF0rvugOS8SI8qvW9OndsUlGu80=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Aug 2025 23:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:40:04:40:8a:2d:99:4c:2f:1b:1f:29:6b:76:0e:a9:5e:78:bd:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Validity Not Before: Aug 22 22:17:33 2025 GMT Not After : Aug 23 23:29:33 2025 GMT Subject: CN=741D1861128A7BF1D5CE3C042F3276B0BE2CFC34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b1:41:d5:ad:a9:e6:85:bc:a5:d7:4c:9a:c8: 0c:c9:a8:50:be:f2:5b:ee:84:4d:58:b7:ba:e5:84: a7:3e:67:9f:ed:0e:2a:4e:94:90:df:bd:66:6c:b9: c8:6b:ca:76:87:3f:ca:e5:6e:14:f0:c1:22:ee:f0: ab:e0:35:bd:cf:3c:d7:0f:b8:1a:b6:a8:5c:bd:60: 5c:e7:51:62:c0:a9:4d:9e:1a:02:6a:c4:86:fb:07: 6e:8d:a7:90:4c:3e:a4:de:1e:6d:f9:ff:e6:a3:a4: 3d:58:fb:2a:3a:82:87:31:20:17:fe:79:1f:ea:80: 3f:38:28:85:52:32:ab:62:14:52:21:71:b2:6f:63: 8b:b1:8f:b1:09:4e:a1:45:bf:64:16:6c:2c:ab:14: 8e:00:9b:94:42:de:4f:b8:f1:ef:3d:07:50:41:c3: f2:8b:75:e1:19:5b:4e:7f:54:45:5d:4d:5c:7c:7a: 9d:0b:5d:41:1e:eb:7d:92:b1:3f:ac:8d:5b:b8:72: e4:f8:32:2a:de:1b:71:01:f1:e5:28:2b:ae:ad:d5: 60:ed:91:95:49:4e:38:ff:e4:c6:2a:6b:0f:d3:cc: 67:14:eb:ed:2d:6b:76:47:4a:94:be:0c:97:79:d8: 4c:0e:66:5e:04:05:a4:7d:5d:ab:e2:2b:3d:bd:04: 2d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:1D:18:61:12:8A:7B:F1:D5:CE:3C:04:2F:32:76:B0:BE:2C:FC:34 X509v3 Authority Key Identifier: keyid:F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d9:71:5c:c9:4e:c9:f0:97:d4:95:84:71:32:5c:d5:4c:b2:9f: 75:8c:85:e5:c6:18:27:e7:e5:61:e5:68:84:ed:cc:f3:f1:d7: c7:93:a4:94:6b:ab:eb:e2:ab:5d:fa:fe:8d:5d:3a:74:c2:6f: 0a:7b:a6:ad:75:d2:1a:36:d5:0a:56:33:bc:a7:71:e0:dd:7a: 98:7c:79:73:18:63:f2:8b:2c:7b:0d:d4:b0:22:9d:7d:01:95: f1:d6:d5:99:d5:48:f2:5d:36:14:f3:21:28:2b:bf:8f:bd:ac: 7c:26:51:ed:d3:f5:ed:11:c1:76:dd:24:2e:97:b9:c7:76:8a: 69:68:67:30:3a:a8:ed:c5:fe:a9:f3:67:f1:ef:aa:7d:6b:5b: 96:54:0e:86:5a:ef:fe:67:37:41:fd:43:88:7d:0d:b8:44:a9: 6f:87:bf:94:c3:f5:81:f1:15:be:5f:91:6b:a7:2a:4d:16:d5: 65:e2:b8:f0:10:59:c4:5b:d0:56:58:44:03:77:9e:5e:29:ba: 3d:4c:c5:e3:a3:75:63:1c:40:5d:ec:e2:c9:78:fd:36:2f:10: d2:39:fe:3d:16:35:bc:1e:d5:ad:95:fe:9a:3c:2e:3c:ce:2c: a2:59:bc:43:3e:fc:c1:43:80:5d:77:1f:b7:f6:58:92:e6:7d: 0b:9e:34:cc -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIULkAEQIotmUwvGx8pa3YOqV54vRcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjI5ZmJhYjRkYjg2N2Y2YmQ5YTdlZmY2YWE1NWQ5OGMx NjJlMWFhZDAeFw0yNTA4MjIyMjE3MzNaFw0yNTA4MjMyMzI5MzNaMDMxMTAvBgNV BAMTKDc0MUQxODYxMTI4QTdCRjFENUNFM0MwNDJGMzI3NkIwQkUyQ0ZDMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCssUHVranmhbyl10yayAzJqFC+ 8lvuhE1Yt7rlhKc+Z5/tDipOlJDfvWZsuchrynaHP8rlbhTwwSLu8KvgNb3PPNcP uBq2qFy9YFznUWLAqU2eGgJqxIb7B26Np5BMPqTeHm35/+ajpD1Y+yo6gocxIBf+ eR/qgD84KIVSMqtiFFIhcbJvY4uxj7EJTqFFv2QWbCyrFI4Am5RC3k+48e89B1BB w/KLdeEZW05/VEVdTVx8ep0LXUEe632SsT+sjVu4cuT4MireG3EB8eUoK66t1WDt kZVJTjj/5MYqaw/TzGcU6+0ta3ZHSpS+DJd52EwOZl4EBaR9XaviKz29BC0LAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUdB0YYRKKe/HVzjwELzJ2sL4s/DQwHwYDVR0j BBgwFoAU8p+6tNuGf2vZp+/2qlXZjBYuGq0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmY1MmQ4MTQtM2QyZi00ZGY0LTgxNDAtZGZiNTMwZjc0 OTEyLzAvRjI5RkJBQjREQjg2N0Y2QkQ5QTdFRkY2QUE1NUQ5OEMxNjJFMUFBRC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhwLTZ0TnVHZjJ2WnAtXzJxbFhaakJZ dUdxMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjUyZDgxNC0z ZDJmLTRkZjQtODE0MC1kZmI1MzBmNzQ5MTIvMC9GMjlGQkFCNERCODY3RjZCRDlB N0VGRjZBQTU1RDk4QzE2MkUxQUFELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA2XFcyU7J8JfUlYRxMlzV TLKfdYyF5cYYJ+flYeVohO3M8/HXx5OklGur6+KrXfr+jV06dMJvCnumrXXSGjbV ClYzvKdx4N16mHx5cxhj8ossew3UsCKdfQGV8dbVmdVI8l02FPMhKCu/j72sfCZR 7dP17RHBdt0kLpe5x3aKaWhnMDqo7cX+qfNn8e+qfWtbllQOhlrv/mc3Qf1DiH0N uESpb4e/lMP1gfEVvl+Ra6cqTRbVZeK48BBZxFvQVlhEA3eeXim6PUzF46N1YxxA XeziyXj9Ni8Q0jn+PRY1vB7VrZX+mjwuPM4solm8Qz78wUOAXXcft/ZYkuZ9C540 zA== -----END CERTIFICATE-----Generated at Sat Aug 23 10:18:18 2025 by rpki-client