$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft File: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft (raw, json) Hash identifier: Vl7iZ820Dt0sPSxW/AH632mWorTtre4uXrvqC3kqWUI= Subject key identifier: 20:4D:1D:DD:8E:CD:0C:4A:0B:2A:C8:F1:2B:8A:2B:27:09:CC:7D:8E Authority key identifier: F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD Certificate issuer: /CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Certificate serial: 2581CEC64288DCB06B91A7BA131BE14479B467C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft Manifest number: 069A Signing time: Tue 12 May 2026 19:55:04 +0000 Manifest this update: Tue 12 May 2026 19:50:04 +0000 Manifest next update: Wed 13 May 2026 22:45:04 +0000 Files and hashes: 1: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl (hash: p20/xhQczepiZwkHe5/IpwKW1bETqIA04O0BnEmECXg=) 2: 34362e3235302e3232342e302f32302d3234203d3e20313431393935.roa (hash: ht90MUomGkgWhJETWF0rvugOS8SI8qvW9OndsUlGu80=) 3: 34362e3235302e3234302e302f32302d3234203d3e20313431393935.roa (hash: 5zFYerIngzLwSwbeiiGPHVQadLBE1/J7oEEXeFR/OFM=) 4: 326130303a386530303a313a3a2f34382d3438203d3e203230373132.roa (hash: 2qiBxfK+UGsXjYXrt6Cm3jSdVu6qoZhGBCRhmjYUhjg=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 14:18:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:81:ce:c6:42:88:dc:b0:6b:91:a7:ba:13:1b:e1:44:79:b4:67:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Validity Not Before: May 12 19:50:04 2026 GMT Not After : May 13 22:45:04 2026 GMT Subject: CN=204D1DDD8ECD0C4A0B2AC8F12B8A2B2709CC7D8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:9b:bc:b3:0b:67:46:2d:84:77:bf:cd:1b:04: e0:64:cc:47:b2:04:e1:97:8b:bc:77:55:68:c5:33: b6:09:ac:00:04:62:1e:34:97:9c:41:3e:3d:fa:6a: c4:63:2e:40:c8:63:b3:0d:78:49:d6:73:7f:a0:7c: 04:82:f6:f0:81:55:e0:29:62:09:bb:e0:90:f3:6f: 31:40:f2:2a:d2:48:d8:64:cf:ab:07:d6:58:5b:3d: 3d:ee:e8:34:41:7a:d3:61:23:d8:71:69:b1:fa:e1: 71:ad:8d:45:50:00:59:b2:99:fb:fe:9d:0f:4a:fc: d3:59:af:24:b9:03:42:fa:59:1f:a4:b1:87:ca:48: 1e:77:d5:39:6f:ff:5a:f2:8c:b5:aa:0c:89:78:aa: ac:5a:f0:79:3e:c7:7c:65:97:4f:ad:a3:bd:3d:65: 79:a7:3c:06:9b:a7:ff:3a:07:89:35:77:be:4a:d8: 13:ac:df:3b:1e:6b:6e:41:7a:d4:8a:9c:9c:81:3b: 4d:6d:47:69:69:21:f4:fb:e6:a7:ae:3e:0a:65:e0: e0:6b:10:f2:f1:1f:8d:46:86:2b:43:77:81:4c:69: 8a:1d:7a:50:f5:33:24:fa:0f:39:c9:65:e7:0a:3c: aa:bd:15:e8:c9:c0:f5:21:32:8a:c0:a6:f1:0b:22: c4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:4D:1D:DD:8E:CD:0C:4A:0B:2A:C8:F1:2B:8A:2B:27:09:CC:7D:8E X509v3 Authority Key Identifier: keyid:F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:b6:10:80:12:b8:da:33:ab:7c:c2:82:aa:88:50:f8:16:17: 5c:09:c9:c4:26:79:a5:2d:88:ac:dc:9e:49:8e:25:53:54:d5: f7:e9:62:0c:1c:d5:ad:8c:53:36:14:f6:ed:49:ab:ef:0e:16: bf:30:4f:a5:9d:d8:a5:5c:09:3a:a1:21:e5:7d:ae:b2:73:d4: 78:7e:19:7d:20:83:46:79:90:25:e6:e5:47:60:4d:b2:8b:ac: 7f:74:2b:82:b7:dc:92:ab:e5:11:c1:7b:25:9a:5e:97:3b:3b: 64:d7:93:46:4a:9f:a5:98:d2:11:98:dd:2c:57:c3:74:96:9a: f8:a0:92:c3:ab:c3:ee:0d:7d:70:63:bb:87:f2:25:74:af:30: de:fb:4e:23:cb:f9:5f:b7:7f:98:32:a9:5d:a8:bf:c2:4e:9e: 0f:9a:78:ba:9f:3f:89:57:2a:73:ef:c7:ce:dc:10:10:57:49: 5e:00:9f:58:92:4c:6c:24:82:24:d4:8c:a4:70:12:ff:a0:a0: 18:bf:42:3c:57:bc:8f:5b:87:4d:77:b9:8e:29:e4:87:7b:db: ce:4c:6c:5e:17:f4:36:46:1f:8c:cf:ac:28:83:c7:c6:93:5b: 68:92:8b:22:a5:0c:82:3a:da:49:6d:97:c8:00:ea:41:3f:67: ed:67:3b:fc -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUJYHOxkKI3LBrkae6ExvhRHm0Z8IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjI5ZmJhYjRkYjg2N2Y2YmQ5YTdlZmY2YWE1NWQ5OGMx NjJlMWFhZDAeFw0yNjA1MTIxOTUwMDRaFw0yNjA1MTMyMjQ1MDRaMDMxMTAvBgNV BAMTKDIwNEQxREREOEVDRDBDNEEwQjJBQzhGMTJCOEEyQjI3MDlDQzdEOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUm7yzC2dGLYR3v80bBOBkzEey BOGXi7x3VWjFM7YJrAAEYh40l5xBPj36asRjLkDIY7MNeEnWc3+gfASC9vCBVeAp Ygm74JDzbzFA8irSSNhkz6sH1lhbPT3u6DRBetNhI9hxabH64XGtjUVQAFmymfv+ nQ9K/NNZryS5A0L6WR+ksYfKSB531Tlv/1ryjLWqDIl4qqxa8Hk+x3xll0+to709 ZXmnPAabp/86B4k1d75K2BOs3zsea25BetSKnJyBO01tR2lpIfT75qeuPgpl4OBr EPLxH41GhitDd4FMaYodelD1MyT6DznJZecKPKq9FejJwPUhMorApvELIsTfAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUIE0d3Y7NDEoLKsjxK4orJwnMfY4wHwYDVR0j BBgwFoAU8p+6tNuGf2vZp+/2qlXZjBYuGq0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmY1MmQ4MTQtM2QyZi00ZGY0LTgxNDAtZGZiNTMwZjc0 OTEyLzAvRjI5RkJBQjREQjg2N0Y2QkQ5QTdFRkY2QUE1NUQ5OEMxNjJFMUFBRC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhwLTZ0TnVHZjJ2WnAtXzJxbFhaakJZ dUdxMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjUyZDgxNC0z ZDJmLTRkZjQtODE0MC1kZmI1MzBmNzQ5MTIvMC9GMjlGQkFCNERCODY3RjZCRDlB N0VGRjZBQTU1RDk4QzE2MkUxQUFELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWrYQgBK42jOrfMKCqohQ +BYXXAnJxCZ5pS2IrNyeSY4lU1TV9+liDBzVrYxTNhT27Umr7w4WvzBPpZ3YpVwJ OqEh5X2usnPUeH4ZfSCDRnmQJeblR2BNsousf3QrgrfckqvlEcF7JZpelzs7ZNeT RkqfpZjSEZjdLFfDdJaa+KCSw6vD7g19cGO7h/IldK8w3vtOI8v5X7d/mDKpXai/ wk6eD5p4up8/iVcqc+/HztwQEFdJXgCfWJJMbCSCJNSMpHAS/6CgGL9CPFe8j1uH TXe5jinkh3vbzkxsXhf0NkYfjM+sKIPHxpNbaJKLIqUMgjraSW2XyADqQT9n7Wc7 /A== -----END CERTIFICATE-----Generated at Wed May 13 00:56:02 2026 by rpki-client