$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft File: F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft (raw, json) Hash identifier: mGOyHmXlNOepjHpY6TA/PWe1MKXjPUTyslnxQ4Jsj7Y= Subject key identifier: F8:40:72:AA:1A:E8:80:68:11:48:12:03:31:C2:9A:BE:F5:6D:F2:8F Authority key identifier: F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE Certificate issuer: /CN=f1d0572fe72991bd32854bac716676ebdad22ace Certificate serial: 2BDDCDB6AA2F77A54D954A592A6D403E71C28E1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft Manifest number: 01DB Signing time: Sat 28 Jun 2025 01:50:44 +0000 Manifest this update: Sat 28 Jun 2025 01:45:44 +0000 Manifest next update: Sun 29 Jun 2025 05:07:44 +0000 Files and hashes: 1: 326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa (hash: eJSksT4tbDIQ9nxZDstLl/kGIUJo4Eck2iH/dVXoJzg=) 2: 326131333a393634343a343030303a3a2f34302d3438203d3e203133333335.roa (hash: 8/2mbGbaC4ennlzI7y1e8hUNr9fsr7Pr+/K69/OYKQg=) 3: 326131333a393634303a3a2f34342d3434203d3e203532313132.roa (hash: Fa+HJyGeN4OUII4mISEevZUyzThis5w7MVhgz+1adr4=) 4: F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl (hash: Eybzr6Ye4KqtMZ/OL6Hgoo0JmJFOQxSkpsD1idtQJIc=) 5: 39312e3230372e31332e302f32342d3234203d3e203532313132.roa (hash: +JU+ydXmMjIBHlt1kVXfkJBGqdmH1ATfk8PRfe8t4Rc=) 6: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer (hash: W33AY8n66YBiKFAdMlU1PcWz7qog9dVaO6LUtxa3ULA=) 7: 326131333a393634323a3130303a3a2f34382d3438203d3e203438323830.roa (hash: 5gKZW/GJ6szyeA660SSSZ04c5MFxaWdT28EUODZAZVs=) 8: 326131333a393634343a343030303a3a2f34302d3438203d3e20323034323931.roa (hash: 7H9TXOPmRSCpSLvpUH5h0kneMvmA5e0Xb9ByogPe2KE=) 9: 326131333a393634343a31303a3a2f34362d3438203d3e203438313934.roa (hash: 2yKfO2WqsfZLWhFp8Vgn43JsqJJGZp0JL5E1MzApx8g=) 10: 326131333a393634343a34303a3a2f34342d3438203d3e20323136333336.roa (hash: lNHaIlVxi/lYCx53I3+MfwePjUfRoiP0WtejKnMjprU=) 11: 326131333a393634343a34303a3a2f34342d3438203d3e20323131343331.roa (hash: UQpEpactphMaN3i4tpyR5s9Tmz685dUuNs8hSuG0cJQ=) 12: 5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC.cer (hash: Nz2k0o2IS41o55idTp4HvK3uNxIMYgMNKvrr57G+kIE=) 13: 326131333a393634343a323232303a3a2f34342d3438203d3e20323134393932.roa (hash: jXKKUMSDIyTb4ezvVpRo3NFIUpia25d8OkLWehTc52I=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 05:07:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:dd:cd:b6:aa:2f:77:a5:4d:95:4a:59:2a:6d:40:3e:71:c2:8e:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f1d0572fe72991bd32854bac716676ebdad22ace Validity Not Before: Jun 28 01:45:44 2025 GMT Not After : Jun 29 05:07:44 2025 GMT Subject: CN=F84072AA1AE880681148120331C29ABEF56DF28F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:09:ca:81:23:a2:24:9b:21:4c:09:cc:85:53: 9a:7f:0c:de:6e:fe:87:0e:eb:f1:03:68:a6:6b:2a: 1f:80:03:37:c8:7b:02:41:af:c7:fe:8b:ff:0c:61: dd:f8:b4:ee:d5:d2:2a:2a:32:8c:b5:2c:2c:27:41: f2:17:4f:19:da:78:f1:eb:c3:ff:5f:e5:31:92:4b: 8b:94:cd:7a:b5:01:02:c9:04:2a:cf:8c:23:e5:68: 7f:9e:08:0c:3c:5a:a9:9e:54:c9:f4:5d:3b:67:43: 0a:52:dc:b5:d6:30:31:ca:c1:48:7a:7a:db:17:ae: 87:03:f2:36:03:44:a0:e3:6f:ae:83:24:56:fc:d7: 94:7e:32:1b:eb:ef:23:08:ff:08:e7:aa:b9:85:cb: 6d:91:1b:fb:d9:75:8e:79:92:1a:e8:d0:8c:57:28: 1a:b2:23:e3:47:87:a7:00:56:27:c3:dc:6b:77:f5: 56:45:10:69:56:13:59:a9:30:50:40:fe:d4:d4:12: 1a:26:87:b6:68:a4:2d:2f:f3:60:50:39:3c:3c:2f: 8e:f4:0c:08:ac:35:4e:a7:6d:9a:6b:6b:75:3a:72: c5:05:ed:74:df:39:2d:15:5f:d2:d0:fb:f6:5e:a1: 82:b0:58:66:de:c5:4e:98:80:d3:a7:9a:95:12:9d: 30:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:40:72:AA:1A:E8:80:68:11:48:12:03:31:C2:9A:BE:F5:6D:F2:8F X509v3 Authority Key Identifier: keyid:F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b1:4c:65:4b:59:a6:4c:b7:5e:7d:0a:cf:19:e0:69:68:5f:8e: fe:88:28:9c:4e:5a:a5:db:e3:24:24:74:cb:ae:e8:bf:9a:7a: 55:f2:c4:b3:f4:47:94:ce:b3:6a:cd:82:f3:c0:1a:6d:9c:e5: f7:ae:80:49:02:72:d9:9c:2d:b8:0e:36:d7:db:bf:12:de:27: 3e:45:d0:85:6b:e1:98:94:b1:71:6c:05:fa:e2:10:dd:16:48: c2:f1:f2:63:6f:6a:b2:c2:a3:8e:cd:4c:a8:76:bc:e9:c6:40: f2:4e:ff:32:69:11:4f:14:a1:3d:4a:c4:3c:0f:88:97:c8:a8: 89:de:f4:e7:e2:01:b2:69:46:4f:29:e4:6c:19:53:df:e4:b6: 87:1f:1b:8c:b3:a9:01:df:14:b7:aa:87:f5:0d:fa:8a:03:e5: a9:da:fe:2b:e1:64:9f:c7:5b:72:f6:f9:bd:a5:de:5e:0c:72: 5d:89:05:c7:36:29:d0:da:40:d4:54:da:69:6d:0b:b5:ea:9e: a7:f8:22:7b:ee:cc:2a:6c:d9:92:a2:1a:60:6b:89:26:bf:56: 4d:06:12:2e:61:9d:a5:46:61:00:45:15:c8:8e:7d:d5:b1:45: 59:9a:68:2e:1f:33:05:e1:e2:c3:79:11:12:65:63:a2:03:5f: 75:54:19:3d -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUK93Ntqovd6VNlUpZKm1APnHCjh8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjFkMDU3MmZlNzI5OTFiZDMyODU0YmFjNzE2Njc2ZWJk YWQyMmFjZTAeFw0yNTA2MjgwMTQ1NDRaFw0yNTA2MjkwNTA3NDRaMDMxMTAvBgNV BAMTKEY4NDA3MkFBMUFFODgwNjgxMTQ4MTIwMzMxQzI5QUJFRjU2REYyOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoCcqBI6IkmyFMCcyFU5p/DN5u /ocO6/EDaKZrKh+AAzfIewJBr8f+i/8MYd34tO7V0ioqMoy1LCwnQfIXTxnaePHr w/9f5TGSS4uUzXq1AQLJBCrPjCPlaH+eCAw8WqmeVMn0XTtnQwpS3LXWMDHKwUh6 etsXrocD8jYDRKDjb66DJFb815R+Mhvr7yMI/wjnqrmFy22RG/vZdY55khro0IxX KBqyI+NHh6cAVifD3Gt39VZFEGlWE1mpMFBA/tTUEhomh7ZopC0v82BQOTw8L470 DAisNU6nbZpra3U6csUF7XTfOS0VX9LQ+/ZeoYKwWGbexU6YgNOnmpUSnTBtAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU+EByqhrogGgRSBIDMcKavvVt8o8wHwYDVR0j BBgwFoAU8dBXL+cpkb0yhUuscWZ269rSKs4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZTMwZGU4NGItNDAwYS00ZmQxLWFiOGEtZTc2MTZlMjQ1 YjQ5LzAvRjFEMDU3MkZFNzI5OTFCRDMyODU0QkFDNzE2Njc2RUJEQUQyMkFDRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhkQlhMLWNwa2IweWhVdXNjV1oyNjly U0tzNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9lMzBkZTg0Yi00 MDBhLTRmZDEtYWI4YS1lNzYxNmUyNDViNDkvMC9GMUQwNTcyRkU3Mjk5MUJEMzI4 NTRCQUM3MTY2NzZFQkRBRDIyQUNFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsUxlS1mmTLdefQrPGeBp aF+O/ogonE5apdvjJCR0y67ov5p6VfLEs/RHlM6zas2C88AabZzl966ASQJy2Zwt uA4219u/Et4nPkXQhWvhmJSxcWwF+uIQ3RZIwvHyY29qssKjjs1MqHa86cZA8k7/ MmkRTxShPUrEPA+Il8ioid705+IBsmlGTynkbBlT3+S2hx8bjLOpAd8Ut6qH9Q36 igPlqdr+K+Fkn8dbcvb5vaXeXgxyXYkFxzYp0NpA1FTaaW0Lteqep/gie+7MKmzZ kqIaYGuJJr9WTQYSLmGdpUZhAEUVyI591bFFWZpoLh8zBeHiw3kREmVjogNfdVQZ PQ== -----END CERTIFICATE-----Generated at Sat Jun 28 19:46:18 2025 by rpki-client