$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft File: 98A87CAD5B710890A9528F166F4202393824E6B8.mft (raw, json) Hash identifier: yrUAd9ijuIcZTjSMWoT0mDYKw1QPz9hJK2/u23wtQWk= Subject key identifier: DA:DD:6E:91:09:BE:C3:CA:E3:E7:1C:BA:1A:13:58:FF:4C:2D:50:06 Authority key identifier: 98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8 Certificate issuer: /CN=98a87cad5b710890a9528f166f4202393824e6b8 Certificate serial: 585C803D80B7C71D2812C961A0448E06E1BD0221 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft Manifest number: 0576 Signing time: Tue 12 May 2026 00:44:38 +0000 Manifest this update: Tue 12 May 2026 00:39:38 +0000 Manifest next update: Wed 13 May 2026 04:09:38 +0000 Files and hashes: 1: 39342e3132362e3233322e302f32342d3234203d3e203438303730.roa (hash: X8PnZpr0EdBA5RUWuQSsCNK5H5VUChiA/ypM8jex1co=) 2: 326131313a353730303a3a2f33322d3332203d3e203438303730.roa (hash: MbZniZRQMpujnB5CTF7VLJsyV8yR9CJ1rSdo27cUHsc=) 3: 39342e3132362e3233392e302f32342d3234203d3e203438303730.roa (hash: vDAXuGHyeNY2jD5RhCiD3jAqscVMZeED2yLzuLCQIEU=) 4: 326131313a353730373a61613a3a2f34382d3438203d3e203438303730.roa (hash: JswRhPyDtXHdt3LcnGr0rU+2WVgkSTrzy91w1+vHXG0=) 5: 98A87CAD5B710890A9528F166F4202393824E6B8.crl (hash: 42GdvWjZaG8eiD5Y62uN85e5g+d4Zx1Xknv2YQmM6b4=) 6: 39342e3132362e3233352e302f32342d3234203d3e203438303730.roa (hash: GAWZYYDwsOlKdKyp7PTXI/UrCvh+l1mDQ2h9llOVew4=) 7: 39342e3132362e3233362e302f32342d3234203d3e203438303730.roa (hash: S6SDwC2GerOednlOJRuHDglzVix1yTGmgDUQmwuEP9k=) 8: 326131313a353730373a3a2f33322d3332203d3e203438303730.roa (hash: qO3aRcnr9Gi4CFBaVLgLXOBcRxl6o1fmjalyJkadHQ8=) 9: 0E4EBC431E3513FC3F641DB880E2B2FE1D040A30.cer (hash: ZiP1RqWlSsPpzjrVI9qMysHcBXHAbQz79mPayejmjY4=) 10: 39342e3132362e3233382e302f32342d3234203d3e203438303730.roa (hash: CARYe+8m35x6yuJ4IaE8NVFGHHdS99rzbE18vdTuqeE=) 11: 39342e3132362e3233372e302f32342d3234203d3e203438303730.roa (hash: xlU4kVdwk7oiDoF+bffscimCuIIUyzgFn5roi6hyudE=) 12: 326131313a353730313a31303a3a2f34342d3434203d3e20323030313938.roa (hash: f5jZj4JC0foqvsXEp/t8cL+4DDB8KHSRlH5lZoBmeIE=) 13: 39342e3132362e3233332e302f32342d3234203d3e203438303730.roa (hash: RhOarzjbzannXSp5iT4H//E19jFxENFr3k1RH9wI878=) 14: AS48070.asa (hash: 5MT6ORI/F8ffsUlifpuRiZkf4qUWanqmxrgKmyiz55A=) 15: 39342e3132362e3233342e302f32342d3234203d3e203438303730.roa (hash: q7oLAxgs51TKBPSOh3FzVwGR8YT0xHlaz5+7M646uzM=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 04:09:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:5c:80:3d:80:b7:c7:1d:28:12:c9:61:a0:44:8e:06:e1:bd:02:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98a87cad5b710890a9528f166f4202393824e6b8 Validity Not Before: May 12 00:39:38 2026 GMT Not After : May 13 04:09:38 2026 GMT Subject: CN=DADD6E9109BEC3CAE3E71CBA1A1358FF4C2D5006 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:30:97:28:be:24:ab:4b:25:6b:aa:5c:4e:ab: 42:3a:38:4e:29:6f:cf:69:ba:90:08:d9:9c:ab:1e: a0:c1:f7:14:dc:e9:dd:95:8f:09:84:44:93:9f:cb: 1b:e8:f8:dc:6a:0b:a3:19:66:18:a4:21:87:b5:61: c2:df:d0:cc:15:ce:29:9d:7f:2c:9c:ad:3b:ac:51: 6e:12:fc:de:ea:08:66:b8:49:62:ef:8b:9b:02:83: 80:4d:42:d3:db:f1:c3:ad:56:f0:82:05:8e:27:b7: bf:1a:ab:a2:04:52:e6:aa:16:1f:52:0d:17:d8:90: 20:43:6d:36:d9:2b:11:a4:06:06:42:43:1f:44:a2: 8b:59:0c:ac:c1:c0:14:2c:32:43:18:52:eb:c5:3e: 68:38:7f:8f:9f:41:b9:61:fe:5d:1d:0d:9d:71:eb: b1:8a:1f:53:19:40:f4:eb:95:e6:bf:d6:34:ec:c2: 94:cd:90:33:67:ec:13:fa:e7:06:1e:ce:4b:9e:a6: 3d:6a:37:c0:1b:5e:ad:1b:48:43:42:95:4f:2c:51: 94:06:53:a5:85:58:ab:01:71:0c:75:cc:f5:ca:d8: 96:7c:02:fc:ce:e4:fb:cf:fa:00:af:13:5f:b6:3f: d9:75:5c:1e:11:ec:4b:c7:2c:8c:ed:d4:0e:fa:8e: 46:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:DD:6E:91:09:BE:C3:CA:E3:E7:1C:BA:1A:13:58:FF:4C:2D:50:06 X509v3 Authority Key Identifier: keyid:98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:60:f4:f8:6a:c4:32:f5:5b:86:ad:53:18:ad:6e:c3:ca:68: 80:5f:b5:95:46:0c:9f:7e:ea:ab:5e:af:6d:28:e1:54:b9:e7: bc:ac:b4:7d:66:65:f5:a7:8d:d1:f9:28:ff:1b:68:1a:0f:2c: 69:79:80:c5:b0:e1:60:91:fb:0b:c9:bc:1f:34:16:9e:f9:7e: f6:5b:cb:d2:0f:4a:b5:55:47:dd:fe:32:b5:63:4f:e9:b8:01: 91:70:a0:c2:8a:a2:c2:67:16:71:62:10:f6:67:20:1a:75:2d: 8b:66:42:52:6e:3a:d6:89:3a:81:c1:52:c0:fb:4d:2d:de:d1: ab:f7:cb:07:64:35:32:42:6d:52:10:c0:32:f6:89:5b:f8:88: 80:26:3b:86:7a:15:10:3b:32:cd:f3:e6:0c:f4:b5:19:86:87: 3f:93:ad:c5:9d:88:fa:f2:c8:ca:1b:97:43:66:22:c7:9d:57: 85:e6:d1:9d:46:f2:bb:f2:28:f7:33:de:36:92:af:d5:ba:fe: 47:e9:57:a2:26:f3:92:47:87:c3:77:d1:23:19:58:29:bb:a5: 87:4d:09:63:10:f7:5e:30:e4:0d:f1:f8:81:ca:46:bb:dd:f1: 2b:5c:02:7f:00:b8:43:68:91:98:ed:4d:4b:f3:19:04:be:68: 82:91:77:ed -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUWFyAPYC3xx0oEslhoESOBuG9AiEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOThhODdjYWQ1YjcxMDg5MGE5NTI4ZjE2NmY0MjAyMzkz ODI0ZTZiODAeFw0yNjA1MTIwMDM5MzhaFw0yNjA1MTMwNDA5MzhaMDMxMTAvBgNV BAMTKERBREQ2RTkxMDlCRUMzQ0FFM0U3MUNCQTFBMTM1OEZGNEMyRDUwMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2MJcoviSrSyVrqlxOq0I6OE4p b89pupAI2ZyrHqDB9xTc6d2VjwmERJOfyxvo+NxqC6MZZhikIYe1YcLf0MwVzimd fyycrTusUW4S/N7qCGa4SWLvi5sCg4BNQtPb8cOtVvCCBY4nt78aq6IEUuaqFh9S DRfYkCBDbTbZKxGkBgZCQx9EootZDKzBwBQsMkMYUuvFPmg4f4+fQblh/l0dDZ1x 67GKH1MZQPTrlea/1jTswpTNkDNn7BP65wYezkuepj1qN8AbXq0bSENClU8sUZQG U6WFWKsBcQx1zPXK2JZ8AvzO5PvP+gCvE1+2P9l1XB4R7EvHLIzt1A76jkajAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU2t1ukQm+w8rj5xy6GhNY/0wtUAYwHwYDVR0j BBgwFoAUmKh8rVtxCJCpUo8Wb0ICOTgk5rgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZGNlMTk2ZmUtNGIxYS00NmVhLTljOTUtNGFmMTI5NjRh NDlkLzAvOThBODdDQUQ1QjcxMDg5MEE5NTI4RjE2NkY0MjAyMzkzODI0RTZCOC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL21LaDhyVnR4Q0pDcFVvOFdiMElDT1Rn azVyZy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kY2UxOTZmZS00 YjFhLTQ2ZWEtOWM5NS00YWYxMjk2NGE0OWQvMC85OEE4N0NBRDVCNzEwODkwQTk1 MjhGMTY2RjQyMDIzOTM4MjRFNkI4Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQmD0+GrEMvVbhq1TGK1u w8pogF+1lUYMn37qq16vbSjhVLnnvKy0fWZl9aeN0fko/xtoGg8saXmAxbDhYJH7 C8m8HzQWnvl+9lvL0g9KtVVH3f4ytWNP6bgBkXCgwoqiwmcWcWIQ9mcgGnUti2ZC Um461ok6gcFSwPtNLd7Rq/fLB2Q1MkJtUhDAMvaJW/iIgCY7hnoVEDsyzfPmDPS1 GYaHP5OtxZ2I+vLIyhuXQ2Yix51XhebRnUbyu/Io9zPeNpKv1br+R+lXoibzkkeH w3fRIxlYKbulh00JYxD3XjDkDfH4gcpGu93xK1wCfwC4Q2iRmO1NS/MZBL5ogpF3 7Q== -----END CERTIFICATE-----Generated at Tue May 12 21:22:34 2026 by rpki-client