$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft File: 98A87CAD5B710890A9528F166F4202393824E6B8.mft (raw, json) Hash identifier: eJhTNEEarU/hqzd9gjQeG4zlLfiwctA/N+vNe4Kjmyo= Subject key identifier: 63:31:92:9C:A2:DA:9F:EC:A2:D4:93:35:E2:30:68:C4:C8:A7:48:BE Authority key identifier: 98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8 Certificate issuer: /CN=98a87cad5b710890a9528f166f4202393824e6b8 Certificate serial: 7039490E40F95D31F13CD9D320FF23B9398E4B83 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft Manifest number: 03C4 Signing time: Sat 28 Jun 2025 06:34:53 +0000 Manifest this update: Sat 28 Jun 2025 06:29:53 +0000 Manifest next update: Sun 29 Jun 2025 09:59:53 +0000 Files and hashes: 1: 326131313a353730323a623030623a3a2f34382d3438203d3e20323132313439.roa (hash: zY7Phzmd75TKCthkmSaY4oyTFaKkCEl/y4pnJz6mHMw=) 2: 39342e3132362e3233352e302f32342d3234203d3e203438303730.roa (hash: S5WIAkzllTXfMiWpREUuucFgM0BSw7Pb5gT995rR5+k=) 3: 326131313a353730313a623030623a3a2f34382d3438203d3e20323132313439.roa (hash: 0SF0WfEKn6tAt+SqtI0zWos8/5DwYGM33/T6SlnO8Oc=) 4: 39342e3132362e3233342e302f32342d3234203d3e203438303730.roa (hash: wQ/YXS5V0WqyAz3I38Grxwtf2vC7Tnq0YU0pMolmNpk=) 5: 39342e3132362e3233382e302f32342d3234203d3e203438303730.roa (hash: EEtfGKQPQ42nFzzdsRfixi4zKQ5tTYPEdAQ1iAcmdE4=) 6: 326131313a353730373a3a2f33322d3332203d3e203438303730.roa (hash: 242POLRepYH713AUptOGvBkM/JpRNVCsIm5BodQGTyY=) 7: AS48070.asa (hash: YsK0/rV2BmXeHeRJ0VrNqX7Hbez3e33zUXMrV6bup5Y=) 8: 326131313a353730313a31303a3a2f34342d3434203d3e20323030313938.roa (hash: IiLsd5rWyRAEtPC2BRNztBwgXOWFkCLAq6FHsMnhQxg=) 9: 326131313a353730343a623030623a3a2f34382d3438203d3e20323132313439.roa (hash: e6pNQA8izdBKRkcuzWtfOOmNK456AAkxlNJ6pMTNpsc=) 10: 0E4EBC431E3513FC3F641DB880E2B2FE1D040A30.cer (hash: Pc4F216M/oD/fxZDUk8HLynWg8D1IQ0ANHs5N2ZC0VQ=) 11: 326131313a353730303a3a2f33322d3332203d3e203438303730.roa (hash: Fqs+xGh2wCPoRebx3WWGGz8gG+3wDYrzV+eGaABVra0=) 12: 39342e3132362e3233372e302f32342d3234203d3e203438303730.roa (hash: SY6OvQv9R/Ut8R5yFxdy0RVK/9dKsg8ZwmC3iNS9Rpw=) 13: 39342e3132362e3233322e302f32342d3234203d3e203438303730.roa (hash: VIdYFIOIqW5zJ3T1LDGwWjmJ764XjM+ac+86S8Ja5hk=) 14: 98A87CAD5B710890A9528F166F4202393824E6B8.crl (hash: PwPfPVAKSNiw46esHae4BwBB5z0UzPn+hpAfMEA7cZY=) 15: 39342e3132362e3233392e302f32342d3234203d3e203438303730.roa (hash: NDHvIIcUiAk7uX5boyMA8yHxKUGe6BZWK+cptlXNnOA=) 16: 39342e3132362e3233362e302f32342d3234203d3e203438303730.roa (hash: ma+wlMqMsb7J0TC2Gy822cEZS57hTDfS/GzCjZsgQ1k=) 17: 326131313a353730363a623030623a3a2f34382d3438203d3e20323132313439.roa (hash: +GiVUNSbcYm0MXNlVgxa6VflGOlRp9hOfbY/aidYY1U=) 18: 326131313a353730333a623030623a3a2f34382d3438203d3e20323132313439.roa (hash: amyhppkunQUKDCiBGMFxQfAHBmd/6ZM1Y2JA6Xv6mjw=) 19: 326131313a353730373a623030623a3a2f34382d3438203d3e20323132313439.roa (hash: 11LkJhM5pGNm95iRuza8Ye8pvz7Hby+G2YVPV9KFFMI=) 20: 326131313a353730353a623030623a3a2f34382d3438203d3e20323132313439.roa (hash: YvH+3atWqaB4zJsHYK1cEoa4+J3Y8wbDOetaRpGkY9U=) 21: 39342e3132362e3233332e302f32342d3234203d3e203438303730.roa (hash: /8dVa93viKNoM1pCJooeH0rtbsVAVvDJFpjlC3WNZyI=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 09:59:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:39:49:0e:40:f9:5d:31:f1:3c:d9:d3:20:ff:23:b9:39:8e:4b:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98a87cad5b710890a9528f166f4202393824e6b8 Validity Not Before: Jun 28 06:29:53 2025 GMT Not After : Jun 29 09:59:53 2025 GMT Subject: CN=6331929CA2DA9FECA2D49335E23068C4C8A748BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0a:58:dc:3d:4f:4a:16:25:9b:91:e4:14:51: 4b:ea:ec:83:f2:40:46:d9:c9:e7:5b:e8:5a:22:e6: 5b:a0:26:4b:86:f0:86:70:a5:ed:28:bc:3f:f3:a5: 61:f5:73:f7:ec:03:56:62:d9:3f:59:0f:d8:0b:91: e0:dc:dd:39:df:18:4f:27:fb:bf:2d:b8:3f:9a:ab: 4e:71:f1:6d:0f:73:89:67:ad:03:48:04:6f:04:c4: 39:26:71:18:9f:f4:b6:71:46:89:90:19:78:66:f7: f1:30:9e:3b:59:6f:ae:9d:d9:2b:df:02:21:20:b7: d0:c4:6e:54:7a:ce:db:42:27:f0:f4:0a:98:5b:53: 35:40:17:8b:b6:94:49:82:16:33:0c:fd:87:05:87: 87:70:75:c0:04:e3:57:a7:d0:61:2c:28:e3:7a:17: dc:67:38:16:05:7c:9f:12:f0:ac:de:2a:d4:7b:6c: 6f:30:d3:d2:76:ed:0a:f0:32:76:17:3c:4a:c3:df: 18:20:54:48:11:72:55:bf:d2:b8:c9:64:16:4b:9b: 63:f4:c5:f7:ac:2e:f3:12:96:f3:71:d4:b8:7e:f1: e8:42:fb:d0:68:7b:f4:e8:6f:02:86:2e:a7:06:6e: a6:23:b7:d9:eb:cb:20:74:e5:a3:fa:2e:72:39:26: ad:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:31:92:9C:A2:DA:9F:EC:A2:D4:93:35:E2:30:68:C4:C8:A7:48:BE X509v3 Authority Key Identifier: keyid:98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:6d:8e:33:38:45:77:63:88:f6:9a:8f:b9:88:08:9b:1b:e8: 51:c6:79:87:2f:f6:32:69:77:28:fe:eb:11:fe:49:e3:94:69: 33:19:da:c7:db:d9:42:d9:95:f5:0c:7a:58:57:c5:73:46:70: 41:54:0c:58:32:95:d9:90:b4:93:ce:7d:3f:41:e4:e9:6a:74: c1:a8:0c:e9:7b:8e:2f:ae:b4:3f:3e:fc:e8:95:c4:1e:92:e1: 69:d4:a9:73:cc:76:ac:7a:39:3a:05:85:25:da:fb:07:0e:e6: e6:ce:65:67:3d:2e:f5:ee:af:ad:ef:c7:f1:7b:6c:f3:0b:0b: 06:7a:34:e3:4a:1d:c9:b9:6b:92:66:fb:58:f2:68:a0:4d:70: 7a:45:3a:ee:dd:73:b2:89:5a:30:cb:fd:a0:23:df:17:18:c2: 61:8c:2b:a7:a8:b7:a0:18:f0:47:08:6c:c1:d1:7a:10:4a:6a: 32:53:a3:0e:8f:50:89:4e:06:21:fa:1f:ca:3c:cd:bc:f7:0a: bd:9c:be:cd:19:a0:7b:e7:3e:f1:01:ed:8e:0c:f6:0c:f6:12: 28:6f:e0:96:6f:f0:44:68:4e:53:7d:9d:23:38:1f:69:a8:c9: b5:0a:f6:2b:ce:89:80:13:3d:5e:01:b1:49:c6:f1:ab:27:6a: d4:9c:b1:6f -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUcDlJDkD5XTHxPNnTIP8juTmOS4MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOThhODdjYWQ1YjcxMDg5MGE5NTI4ZjE2NmY0MjAyMzkz ODI0ZTZiODAeFw0yNTA2MjgwNjI5NTNaFw0yNTA2MjkwOTU5NTNaMDMxMTAvBgNV BAMTKDYzMzE5MjlDQTJEQTlGRUNBMkQ0OTMzNUUyMzA2OEM0QzhBNzQ4QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+CljcPU9KFiWbkeQUUUvq7IPy QEbZyedb6Foi5lugJkuG8IZwpe0ovD/zpWH1c/fsA1Zi2T9ZD9gLkeDc3TnfGE8n +78tuD+aq05x8W0Pc4lnrQNIBG8ExDkmcRif9LZxRomQGXhm9/EwnjtZb66d2Svf AiEgt9DEblR6zttCJ/D0CphbUzVAF4u2lEmCFjMM/YcFh4dwdcAE41en0GEsKON6 F9xnOBYFfJ8S8KzeKtR7bG8w09J27QrwMnYXPErD3xggVEgRclW/0rjJZBZLm2P0 xfesLvMSlvNx1Lh+8ehC+9Boe/TobwKGLqcGbqYjt9nryyB05aP6LnI5Jq3hAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUYzGSnKLan+yi1JM14jBoxMinSL4wHwYDVR0j BBgwFoAUmKh8rVtxCJCpUo8Wb0ICOTgk5rgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZGNlMTk2ZmUtNGIxYS00NmVhLTljOTUtNGFmMTI5NjRh NDlkLzAvOThBODdDQUQ1QjcxMDg5MEE5NTI4RjE2NkY0MjAyMzkzODI0RTZCOC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL21LaDhyVnR4Q0pDcFVvOFdiMElDT1Rn azVyZy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kY2UxOTZmZS00 YjFhLTQ2ZWEtOWM5NS00YWYxMjk2NGE0OWQvMC85OEE4N0NBRDVCNzEwODkwQTk1 MjhGMTY2RjQyMDIzOTM4MjRFNkI4Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABm2OMzhFd2OI9pqPuYgI mxvoUcZ5hy/2Mml3KP7rEf5J45RpMxnax9vZQtmV9Qx6WFfFc0ZwQVQMWDKV2ZC0 k859P0Hk6Wp0wagM6XuOL660Pz786JXEHpLhadSpc8x2rHo5OgWFJdr7Bw7m5s5l Zz0u9e6vre/H8Xts8wsLBno040odyblrkmb7WPJooE1wekU67t1zsolaMMv9oCPf FxjCYYwrp6i3oBjwRwhswdF6EEpqMlOjDo9QiU4GIfofyjzNvPcKvZy+zRmge+c+ 8QHtjgz2DPYSKG/glm/wRGhOU32dIzgfaajJtQr2K86JgBM9XgGxScbxqydq1Jyx bw== -----END CERTIFICATE-----Generated at Sat Jun 28 21:41:53 2025 by rpki-client