$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft File: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft (raw, json) Hash identifier: YaXc8YJsEjRWBTWfGoRB2CrWUBajmelUXBvYrpCeqDc= Subject key identifier: 16:02:0C:14:FB:6F:7D:6F:0D:4E:D9:62:B2:C1:63:34:79:C8:0D:2E Authority key identifier: F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD Certificate issuer: /CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Certificate serial: 7372AE853A04AEDE6BC53243FBA0BC420FBE5DB0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft Manifest number: 04EF Signing time: Sat 28 Jun 2025 13:19:10 +0000 Manifest this update: Sat 28 Jun 2025 13:14:10 +0000 Manifest next update: Sun 29 Jun 2025 16:42:10 +0000 Files and hashes: 1: 3139332e39332e3135342e302f32342d3234203d3e20323131343135.roa (hash: lcDvK25Krwnz/wCtWIMtJ+GA0fjdNOA7l7WMMKyVVUU=) 2: 34362e3235302e3232342e302f32302d3234203d3e20313431393935.roa (hash: j/tvDF/xrBJ6Z/GVFcZpOag/ZBQuFXiJ56kFmYlSx34=) 3: 3139332e39332e3135352e302f32342d3234203d3e203230343733.roa (hash: Yia13ZpyH/rxCHPO1ZKxkaJKT40u4xmMRfCLnQCmpaw=) 4: 3139332e39332e3135332e302f32342d3234203d3e20323134303336.roa (hash: FgMfWX7zLNqyUMvyIkAVqVqXpYApxS0iTmFAdZ7lH9Q=) 5: 3139332e39332e3135352e302f32342d3234203d3e203631333137.roa (hash: SV7SbziqH7eMIEMJIbsVc3dV1p2SM237aRtzHljTDkg=) 6: 34362e3235302e3234302e302f32302d3234203d3e20313431393935.roa (hash: NLU++5xZjzD437PtmNgvfxHCqYMIFnb00RqdIBmj2Iw=) 7: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl (hash: m66YjiraLEKuG+44RXUrpgKzKPI/XOa+IY0kBe5SX3Y=) 8: 3139332e39332e3135332e302f32342d3234203d3e203439313237.roa (hash: 0/cfjGj4KR4GGAb3iVBdR7EXi3eZGMMRZK+KEv9RsCI=) 9: 326130303a386530303a313a3a2f34382d3438203d3e203230373132.roa (hash: jAOxURrHtZvlqdFVdBr3F4ACmPO4DT4L5AmOtZPktVY=) 10: 3139332e39332e3135322e302f32342d3234203d3e20313939363134.roa (hash: jNaGJEHXg+vn+v2vVdhmJa1IVdEz/D1ggT5kvM1c0Hk=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 15:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:72:ae:85:3a:04:ae:de:6b:c5:32:43:fb:a0:bc:42:0f:be:5d:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Validity Not Before: Jun 28 13:14:10 2025 GMT Not After : Jun 29 16:42:10 2025 GMT Subject: CN=16020C14FB6F7D6F0D4ED962B2C1633479C80D2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:65:3f:7b:99:dd:32:00:ec:a6:6d:5e:83:b8: 7a:f6:03:e5:4a:59:2e:59:6e:f5:9b:ef:9c:4d:2f: 82:40:25:c4:7d:14:4f:60:0d:77:03:d4:6a:0e:60: 14:21:74:7f:1e:e8:f4:27:76:ca:f0:48:97:98:6f: c5:ac:f8:b4:bc:f5:d6:6a:cd:76:3b:5c:3a:f3:f1: 21:d0:62:0d:6d:61:54:38:e4:a1:a5:90:c6:6c:57: ee:c3:60:80:88:e9:ab:02:d4:29:89:e1:2e:2c:cf: 9a:5e:b8:19:4a:3d:b5:e7:54:82:3f:cf:e9:0a:26: 96:0b:2e:9b:67:47:66:11:ab:e9:ae:64:5f:b9:c0: d8:5e:7c:c7:15:e6:5e:83:e4:ba:5b:8a:f9:18:33: 91:32:95:8b:28:1c:31:49:32:69:f6:81:55:50:b0: c6:d0:21:e4:df:ca:08:ba:f2:ce:2c:b9:98:54:03: ea:ee:dd:85:c9:72:ce:c6:9e:02:89:c9:7a:f4:0c: a3:fc:b4:2c:9c:6a:df:5f:53:10:46:b6:c4:fd:5e: 2b:ec:c2:28:28:f7:96:9c:d3:21:36:cf:76:f0:31: 0f:a2:10:96:f5:05:48:a2:20:4c:38:a4:40:bb:63: 9e:e8:2b:35:63:05:9f:00:f0:99:07:3d:2c:63:ac: c0:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:02:0C:14:FB:6F:7D:6F:0D:4E:D9:62:B2:C1:63:34:79:C8:0D:2E X509v3 Authority Key Identifier: keyid:F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:52:b1:7f:43:49:7b:2f:49:83:54:44:48:bf:b7:26:60:28: ff:ba:a2:4a:7d:65:b5:0c:f8:fb:2b:7a:c7:3e:13:5a:16:7f: dc:ae:be:d7:ae:07:ec:23:a0:c6:79:a5:1c:6c:12:8f:3c:11: b2:c9:71:50:74:3f:38:6a:9c:ec:fa:6b:79:e8:bd:66:67:ff: 71:12:61:ed:10:9e:5d:2d:fd:4b:44:36:b2:94:20:9d:22:50: bf:9e:2e:44:e3:9d:60:d9:5f:30:24:3b:bb:59:16:8c:7f:9d: 4e:11:a2:db:18:40:ab:a3:09:60:36:f2:e2:8d:41:d7:5d:81: 52:42:52:82:cc:45:1b:05:45:b8:f8:d3:f6:59:c8:37:18:c6: db:c4:6e:22:f6:a8:57:8a:3a:76:ef:b7:9f:dc:ba:0b:c8:c2: 8d:c0:9d:65:16:f9:a1:67:c1:1f:fc:f0:2d:b1:e1:18:28:0b: be:83:7b:9c:52:03:1b:65:6b:ef:a5:ce:ea:2f:3f:23:de:00: 44:98:dc:16:9d:8e:26:03:b9:ec:8f:e4:b5:b3:58:16:08:4b: b5:28:08:3f:c7:42:17:41:94:63:1b:37:d7:f8:1e:14:b0:d2: 90:ab:72:c1:30:cc:ea:b4:01:70:95:c2:30:5b:f1:cb:9f:dc: 7a:30:94:06 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUc3KuhToErt5rxTJD+6C8Qg++XbAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjI5ZmJhYjRkYjg2N2Y2YmQ5YTdlZmY2YWE1NWQ5OGMx NjJlMWFhZDAeFw0yNTA2MjgxMzE0MTBaFw0yNTA2MjkxNjQyMTBaMDMxMTAvBgNV BAMTKDE2MDIwQzE0RkI2RjdENkYwRDRFRDk2MkIyQzE2MzM0NzlDODBEMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoZT97md0yAOymbV6DuHr2A+VK WS5ZbvWb75xNL4JAJcR9FE9gDXcD1GoOYBQhdH8e6PQndsrwSJeYb8Ws+LS89dZq zXY7XDrz8SHQYg1tYVQ45KGlkMZsV+7DYICI6asC1CmJ4S4sz5peuBlKPbXnVII/ z+kKJpYLLptnR2YRq+muZF+5wNhefMcV5l6D5LpbivkYM5EylYsoHDFJMmn2gVVQ sMbQIeTfygi68s4suZhUA+ru3YXJcs7GngKJyXr0DKP8tCycat9fUxBGtsT9Xivs wigo95ac0yE2z3bwMQ+iEJb1BUiiIEw4pEC7Y57oKzVjBZ8A8JkHPSxjrMAxAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUFgIMFPtvfW8NTtlissFjNHnIDS4wHwYDVR0j BBgwFoAU8p+6tNuGf2vZp+/2qlXZjBYuGq0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmY1MmQ4MTQtM2QyZi00ZGY0LTgxNDAtZGZiNTMwZjc0 OTEyLzAvRjI5RkJBQjREQjg2N0Y2QkQ5QTdFRkY2QUE1NUQ5OEMxNjJFMUFBRC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhwLTZ0TnVHZjJ2WnAtXzJxbFhaakJZ dUdxMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjUyZDgxNC0z ZDJmLTRkZjQtODE0MC1kZmI1MzBmNzQ5MTIvMC9GMjlGQkFCNERCODY3RjZCRDlB N0VGRjZBQTU1RDk4QzE2MkUxQUFELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbFKxf0NJey9Jg1RESL+3 JmAo/7qiSn1ltQz4+yt6xz4TWhZ/3K6+164H7COgxnmlHGwSjzwRsslxUHQ/OGqc 7Ppreei9Zmf/cRJh7RCeXS39S0Q2spQgnSJQv54uROOdYNlfMCQ7u1kWjH+dThGi 2xhAq6MJYDby4o1B112BUkJSgsxFGwVFuPjT9lnINxjG28RuIvaoV4o6du+3n9y6 C8jCjcCdZRb5oWfBH/zwLbHhGCgLvoN7nFIDG2Vr76XO6i8/I94ARJjcFp2OJgO5 7I/ktbNYFghLtSgIP8dCF0GUYxs31/geFLDSkKtywTDM6rQBcJXCMFvxy5/cejCU Bg== -----END CERTIFICATE-----Generated at Sat Jun 28 20:11:46 2025 by rpki-client