$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft File: 98A87CAD5B710890A9528F166F4202393824E6B8.mft (raw, json) Hash identifier: z//iTFvhaRagd7R7NQi4/lI8825pE7Rlgn52NuK9Srs= Subject key identifier: E0:43:D3:3F:67:71:FF:31:1D:D5:6F:53:82:F4:C9:8A:4D:0F:AC:3F Authority key identifier: 98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8 Certificate issuer: /CN=98a87cad5b710890a9528f166f4202393824e6b8 Certificate serial: 390ACEBCDE4DA34DCA6E234E5FC0F8ABD7F4FC4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft Manifest number: 040E Signing time: Fri 22 Aug 2025 21:37:54 +0000 Manifest this update: Fri 22 Aug 2025 21:32:54 +0000 Manifest next update: Sun 24 Aug 2025 00:53:54 +0000 Files and hashes: 1: 326131313a353730373a3a2f33322d3332203d3e203438303730.roa (hash: 242POLRepYH713AUptOGvBkM/JpRNVCsIm5BodQGTyY=) 2: 39342e3132362e3233342e302f32342d3234203d3e203438303730.roa (hash: wQ/YXS5V0WqyAz3I38Grxwtf2vC7Tnq0YU0pMolmNpk=) 3: 0E4EBC431E3513FC3F641DB880E2B2FE1D040A30.cer (hash: Pc4F216M/oD/fxZDUk8HLynWg8D1IQ0ANHs5N2ZC0VQ=) 4: 326131313a353730343a623030623a3a2f34382d3438203d3e20323132313439.roa (hash: e6pNQA8izdBKRkcuzWtfOOmNK456AAkxlNJ6pMTNpsc=) 5: 39342e3132362e3233382e302f32342d3234203d3e203438303730.roa (hash: EEtfGKQPQ42nFzzdsRfixi4zKQ5tTYPEdAQ1iAcmdE4=) 6: 326131313a353730373a623030623a3a2f34382d3438203d3e20323132313439.roa (hash: 11LkJhM5pGNm95iRuza8Ye8pvz7Hby+G2YVPV9KFFMI=) 7: 39342e3132362e3233362e302f32342d3234203d3e203438303730.roa (hash: ma+wlMqMsb7J0TC2Gy822cEZS57hTDfS/GzCjZsgQ1k=) 8: AS48070.asa (hash: YsK0/rV2BmXeHeRJ0VrNqX7Hbez3e33zUXMrV6bup5Y=) 9: 39342e3132362e3233322e302f32342d3234203d3e203438303730.roa (hash: VIdYFIOIqW5zJ3T1LDGwWjmJ764XjM+ac+86S8Ja5hk=) 10: 326131313a353730363a623030623a3a2f34382d3438203d3e20323132313439.roa (hash: +GiVUNSbcYm0MXNlVgxa6VflGOlRp9hOfbY/aidYY1U=) 11: 98A87CAD5B710890A9528F166F4202393824E6B8.crl (hash: rYtnvCTKYKSikTOMc5fUx0YXSSTwewHgfI400cqa0SM=) 12: 326131313a353730303a3a2f33322d3332203d3e203438303730.roa (hash: Fqs+xGh2wCPoRebx3WWGGz8gG+3wDYrzV+eGaABVra0=) 13: 326131313a353730313a623030623a3a2f34382d3438203d3e20323132313439.roa (hash: 0SF0WfEKn6tAt+SqtI0zWos8/5DwYGM33/T6SlnO8Oc=) 14: 39342e3132362e3233332e302f32342d3234203d3e203438303730.roa (hash: /8dVa93viKNoM1pCJooeH0rtbsVAVvDJFpjlC3WNZyI=) 15: 326131313a353730323a623030623a3a2f34382d3438203d3e20323132313439.roa (hash: zY7Phzmd75TKCthkmSaY4oyTFaKkCEl/y4pnJz6mHMw=) 16: 326131313a353730313a31303a3a2f34342d3434203d3e20323030313938.roa (hash: IiLsd5rWyRAEtPC2BRNztBwgXOWFkCLAq6FHsMnhQxg=) 17: 39342e3132362e3233352e302f32342d3234203d3e203438303730.roa (hash: S5WIAkzllTXfMiWpREUuucFgM0BSw7Pb5gT995rR5+k=) 18: 39342e3132362e3233392e302f32342d3234203d3e203438303730.roa (hash: NDHvIIcUiAk7uX5boyMA8yHxKUGe6BZWK+cptlXNnOA=) 19: 39342e3132362e3233372e302f32342d3234203d3e203438303730.roa (hash: SY6OvQv9R/Ut8R5yFxdy0RVK/9dKsg8ZwmC3iNS9Rpw=) 20: 326131313a353730333a623030623a3a2f34382d3438203d3e20323132313439.roa (hash: amyhppkunQUKDCiBGMFxQfAHBmd/6ZM1Y2JA6Xv6mjw=) 21: 326131313a353730353a623030623a3a2f34382d3438203d3e20323132313439.roa (hash: YvH+3atWqaB4zJsHYK1cEoa4+J3Y8wbDOetaRpGkY9U=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 00:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:0a:ce:bc:de:4d:a3:4d:ca:6e:23:4e:5f:c0:f8:ab:d7:f4:fc:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98a87cad5b710890a9528f166f4202393824e6b8 Validity Not Before: Aug 22 21:32:54 2025 GMT Not After : Aug 24 00:53:54 2025 GMT Subject: CN=E043D33F6771FF311DD56F5382F4C98A4D0FAC3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ba:77:01:46:03:48:65:86:6c:c3:ab:25:36: 3a:2a:16:df:f6:03:21:e9:c3:12:c9:d3:f9:b6:83: b8:a2:90:d6:5e:1a:34:d0:af:93:d5:20:0b:16:70: de:a9:14:92:39:20:d6:14:64:8b:11:80:c6:91:b7: 04:43:1d:ca:d8:99:af:bc:5a:4b:13:48:ac:be:83: 50:3f:e1:b2:11:4d:8e:f4:62:c8:0c:0c:79:2b:83: f6:4b:55:55:f3:3a:20:96:dd:e1:68:67:37:ec:6e: 88:22:a5:45:a3:0e:b7:5b:36:1a:63:62:c2:60:91: f8:e5:b4:dd:e4:2d:f0:82:38:5f:46:c6:46:0a:40: f7:75:06:f2:55:39:cf:a7:c5:36:13:f4:5b:55:96: c0:3e:db:a6:aa:a6:92:bd:20:c4:45:e8:81:97:15: ca:4d:b0:4d:dd:25:81:23:55:9e:d6:2f:da:2a:10: 0f:18:e2:d8:e4:db:5c:67:cd:03:a1:b5:27:09:61: 40:43:2b:0f:47:c8:f9:db:1b:fc:6a:01:e9:14:4d: 6e:66:cd:7f:41:10:0b:c5:71:e2:d9:51:cb:1c:c4: 39:6d:6c:78:f1:d3:ee:2d:2c:3a:7e:73:c0:c0:51: 20:2a:75:ee:a9:d3:de:df:c8:f1:f8:a6:7e:03:53: 13:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:43:D3:3F:67:71:FF:31:1D:D5:6F:53:82:F4:C9:8A:4D:0F:AC:3F X509v3 Authority Key Identifier: keyid:98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:81:d1:88:d1:29:8a:7b:18:2d:c2:13:93:22:51:22:61:1a: 72:74:ea:b9:c1:d6:d4:b1:d9:15:88:89:26:cd:05:58:d1:37: d6:d3:d1:c7:9b:71:1c:19:5c:78:e7:6f:b2:bc:54:eb:61:88: 90:f1:d7:2a:bb:53:bd:6b:5c:ba:66:2e:9f:4f:b5:be:8e:b3: e8:13:47:c3:0e:aa:28:f9:ac:ef:07:4f:04:a5:6b:fe:9a:63: f0:dd:05:bb:d3:3c:fe:30:a7:1b:3f:03:01:b5:2d:a7:0f:b9: 61:b4:d6:d8:4e:e3:0b:a2:2d:61:f9:23:97:f3:7a:cd:36:4b: 65:91:01:f7:17:cb:a4:41:e3:7a:77:a8:40:c6:59:d1:6e:4d: db:2c:5b:bd:fe:e8:75:53:07:12:1a:13:3f:9c:19:0a:1b:a0: ec:f1:89:15:e9:84:76:b2:a3:03:90:29:cc:9d:d1:c7:86:95: 7d:2c:fc:67:a1:3b:62:0a:37:a2:b5:f8:62:19:17:a5:35:25: b7:fd:b3:df:0b:07:11:ea:69:44:e4:f0:e6:64:bd:ec:fc:2c: 64:c7:f1:02:31:cd:54:53:3c:02:9b:07:4f:11:dd:e3:52:60: 6b:9b:5f:5e:e1:9f:5f:85:7b:07:6d:00:28:28:8b:6f:f0:ed: ce:bb:6d:7b -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUOQrOvN5No03KbiNOX8D4q9f0/E0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOThhODdjYWQ1YjcxMDg5MGE5NTI4ZjE2NmY0MjAyMzkz ODI0ZTZiODAeFw0yNTA4MjIyMTMyNTRaFw0yNTA4MjQwMDUzNTRaMDMxMTAvBgNV BAMTKEUwNDNEMzNGNjc3MUZGMzExREQ1NkY1MzgyRjRDOThBNEQwRkFDM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYuncBRgNIZYZsw6slNjoqFt/2 AyHpwxLJ0/m2g7iikNZeGjTQr5PVIAsWcN6pFJI5INYUZIsRgMaRtwRDHcrYma+8 WksTSKy+g1A/4bIRTY70YsgMDHkrg/ZLVVXzOiCW3eFoZzfsbogipUWjDrdbNhpj YsJgkfjltN3kLfCCOF9GxkYKQPd1BvJVOc+nxTYT9FtVlsA+26aqppK9IMRF6IGX FcpNsE3dJYEjVZ7WL9oqEA8Y4tjk21xnzQOhtScJYUBDKw9HyPnbG/xqAekUTW5m zX9BEAvFceLZUcscxDltbHjx0+4tLDp+c8DAUSAqde6p097fyPH4pn4DUxO5AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU4EPTP2dx/zEd1W9TgvTJik0PrD8wHwYDVR0j BBgwFoAUmKh8rVtxCJCpUo8Wb0ICOTgk5rgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZGNlMTk2ZmUtNGIxYS00NmVhLTljOTUtNGFmMTI5NjRh NDlkLzAvOThBODdDQUQ1QjcxMDg5MEE5NTI4RjE2NkY0MjAyMzkzODI0RTZCOC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL21LaDhyVnR4Q0pDcFVvOFdiMElDT1Rn azVyZy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kY2UxOTZmZS00 YjFhLTQ2ZWEtOWM5NS00YWYxMjk2NGE0OWQvMC85OEE4N0NBRDVCNzEwODkwQTk1 MjhGMTY2RjQyMDIzOTM4MjRFNkI4Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMYHRiNEpinsYLcITkyJR ImEacnTqucHW1LHZFYiJJs0FWNE31tPRx5txHBlceOdvsrxU62GIkPHXKrtTvWtc umYun0+1vo6z6BNHww6qKPms7wdPBKVr/ppj8N0Fu9M8/jCnGz8DAbUtpw+5YbTW 2E7jC6ItYfkjl/N6zTZLZZEB9xfLpEHjeneoQMZZ0W5N2yxbvf7odVMHEhoTP5wZ Chug7PGJFemEdrKjA5ApzJ3Rx4aVfSz8Z6E7Ygo3orX4YhkXpTUlt/2z3wsHEepp ROTw5mS97PwsZMfxAjHNVFM8ApsHTxHd41Jga5tfXuGfX4V7B20AKCiLb/Dtzrtt ew== -----END CERTIFICATE-----Generated at Sat Aug 23 15:29:30 2025 by rpki-client