$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft File: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft (raw, json) Hash identifier: kpfSwtbArTTY8h64TH5O5QxBRW62QeBLni4KKYBTjJ4= Subject key identifier: FB:D8:6A:13:8A:07:D3:5D:C8:35:33:2C:C2:58:09:5D:17:7D:0B:23 Authority key identifier: F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD Certificate issuer: /CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Certificate serial: 130AAFC9556676E69D9F952B83039E3DCCC898E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft Manifest number: 0659 Signing time: Wed 25 Mar 2026 07:35:08 +0000 Manifest this update: Wed 25 Mar 2026 07:30:08 +0000 Manifest next update: Thu 26 Mar 2026 09:23:08 +0000 Files and hashes: 1: 34362e3235302e3234302e302f32302d3234203d3e20313431393935.roa (hash: 5zFYerIngzLwSwbeiiGPHVQadLBE1/J7oEEXeFR/OFM=) 2: 34362e3235302e3232342e302f32302d3234203d3e20313431393935.roa (hash: ht90MUomGkgWhJETWF0rvugOS8SI8qvW9OndsUlGu80=) 3: 326130303a386530303a313a3a2f34382d3438203d3e203230373132.roa (hash: 2qiBxfK+UGsXjYXrt6Cm3jSdVu6qoZhGBCRhmjYUhjg=) 4: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl (hash: WXRr16Az7JQkuRhcYRA9oRo2xaAZ46PA00s3mixxTXw=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 09:23:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:0a:af:c9:55:66:76:e6:9d:9f:95:2b:83:03:9e:3d:cc:c8:98:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Validity Not Before: Mar 25 07:30:08 2026 GMT Not After : Mar 26 09:23:08 2026 GMT Subject: CN=FBD86A138A07D35DC835332CC258095D177D0B23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a2:21:fd:3c:36:48:f1:4e:88:bd:07:8f:d9: 5a:1c:af:30:64:ed:54:b7:51:0e:75:3f:b6:68:47: a6:ff:c5:95:d1:c2:61:5f:f2:2a:cd:69:43:a8:71: 8e:a5:df:86:3d:ca:0c:5e:9c:d5:c2:12:64:02:d7: 29:0b:ac:c4:68:36:fd:6a:75:dd:df:e0:7d:43:1b: 75:fd:64:81:47:79:65:8c:70:92:23:9b:19:82:90: d3:71:9f:c7:cf:b9:dd:23:c9:b2:ef:55:f5:1e:dd: 53:32:5f:02:8c:d8:c2:60:7d:47:3e:88:5a:0d:73: e3:a4:48:9f:b0:35:69:ea:51:d2:cb:c7:68:d9:b2: 13:76:4d:f1:02:69:cd:f0:12:8c:d9:a3:c9:41:3a: 8b:83:ae:f7:81:b1:f1:19:53:e7:26:bc:fb:66:0c: a8:ca:ef:28:d9:02:27:8e:cd:2a:da:4d:59:85:77: a1:aa:cc:1b:ef:a1:b0:e4:f6:fd:72:11:02:32:84: b5:97:e0:af:97:a1:9d:79:1c:ce:25:05:3c:d7:32: 69:98:7c:00:c8:c8:83:f6:32:a5:dc:f1:5a:7f:f2: 38:3b:d2:f6:3f:8b:a0:db:a0:f4:3f:20:7a:e4:c1: 1c:c0:98:fb:5c:f6:2c:34:9a:42:de:80:49:45:d2: 5c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:D8:6A:13:8A:07:D3:5D:C8:35:33:2C:C2:58:09:5D:17:7D:0B:23 X509v3 Authority Key Identifier: keyid:F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c7:f6:0f:7a:99:85:6b:13:6a:43:cc:11:a5:42:bd:ee:d3:fa: 00:d8:e1:c4:65:90:88:d0:2a:88:ea:a4:d0:eb:9b:6e:25:07: 11:fb:d3:74:ea:9e:3b:59:f2:94:d1:2d:15:55:86:b6:a9:5e: e5:45:54:6b:71:91:99:d6:2a:43:ba:26:a7:05:d7:cf:4e:1c: 78:4a:6b:03:a6:f9:70:92:e9:99:bb:dc:6c:18:72:7a:8f:fe: 9e:34:89:15:8d:ed:7b:3f:40:7e:52:1f:d8:87:6f:2d:d0:1e: 2c:86:ce:df:7d:e7:a3:f1:0a:18:44:c1:46:f3:20:a3:55:da: d6:aa:15:21:e8:0a:d0:a3:ba:06:69:bb:46:69:ce:09:b6:5c: 4e:df:d4:69:fa:92:e0:63:ae:c6:4d:dc:47:8e:14:c2:ed:26: 3e:50:ca:42:90:76:d8:ac:20:71:fc:ba:c5:e8:48:3d:49:2b: a5:cf:0e:d0:ac:e2:a0:a6:38:8a:c0:85:75:a7:b1:bb:80:43: 80:c9:e1:5f:d3:01:d6:86:d7:49:ef:c3:dd:5a:e7:11:c9:1f: 11:e7:ea:74:b6:35:57:15:10:1f:2d:33:39:b1:e8:bf:65:68: 7f:33:a6:73:3a:13:d1:13:c6:41:02:4d:01:d3:b6:93:f2:a0: 24:cf:ec:43 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUEwqvyVVmduadn5UrgwOePczImOAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjI5ZmJhYjRkYjg2N2Y2YmQ5YTdlZmY2YWE1NWQ5OGMx NjJlMWFhZDAeFw0yNjAzMjUwNzMwMDhaFw0yNjAzMjYwOTIzMDhaMDMxMTAvBgNV BAMTKEZCRDg2QTEzOEEwN0QzNURDODM1MzMyQ0MyNTgwOTVEMTc3RDBCMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPoiH9PDZI8U6IvQeP2VocrzBk 7VS3UQ51P7ZoR6b/xZXRwmFf8irNaUOocY6l34Y9ygxenNXCEmQC1ykLrMRoNv1q dd3f4H1DG3X9ZIFHeWWMcJIjmxmCkNNxn8fPud0jybLvVfUe3VMyXwKM2MJgfUc+ iFoNc+OkSJ+wNWnqUdLLx2jZshN2TfECac3wEozZo8lBOouDrveBsfEZU+cmvPtm DKjK7yjZAieOzSraTVmFd6GqzBvvobDk9v1yEQIyhLWX4K+XoZ15HM4lBTzXMmmY fADIyIP2MqXc8Vp/8jg70vY/i6DboPQ/IHrkwRzAmPtc9iw0mkLegElF0lwjAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU+9hqE4oH013INTMswlgJXRd9CyMwHwYDVR0j BBgwFoAU8p+6tNuGf2vZp+/2qlXZjBYuGq0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmY1MmQ4MTQtM2QyZi00ZGY0LTgxNDAtZGZiNTMwZjc0 OTEyLzAvRjI5RkJBQjREQjg2N0Y2QkQ5QTdFRkY2QUE1NUQ5OEMxNjJFMUFBRC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhwLTZ0TnVHZjJ2WnAtXzJxbFhaakJZ dUdxMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjUyZDgxNC0z ZDJmLTRkZjQtODE0MC1kZmI1MzBmNzQ5MTIvMC9GMjlGQkFCNERCODY3RjZCRDlB N0VGRjZBQTU1RDk4QzE2MkUxQUFELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAx/YPepmFaxNqQ8wRpUK9 7tP6ANjhxGWQiNAqiOqk0OubbiUHEfvTdOqeO1nylNEtFVWGtqle5UVUa3GRmdYq Q7ompwXXz04ceEprA6b5cJLpmbvcbBhyeo/+njSJFY3tez9AflIf2IdvLdAeLIbO 333no/EKGETBRvMgo1Xa1qoVIegK0KO6Bmm7RmnOCbZcTt/UafqS4GOuxk3cR44U wu0mPlDKQpB22Kwgcfy6xehIPUkrpc8O0KzioKY4isCFdaexu4BDgMnhX9MB1obX Se/D3VrnEckfEefqdLY1VxUQHy0zObHov2VofzOmczoT0RPGQQJNAdO2k/KgJM/s Qw== -----END CERTIFICATE-----Generated at Thu Mar 26 02:26:34 2026 by rpki-client