$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft File: F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft (raw, json) Hash identifier: VlPFWS7qQXst4oyopFFbrjWg7QvnXItflksiCNBkPhQ= Subject key identifier: 04:16:0E:2B:5A:4C:69:B3:10:10:2B:8C:6B:DC:A6:64:7E:89:31:41 Authority key identifier: F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE Certificate issuer: /CN=f1d0572fe72991bd32854bac716676ebdad22ace Certificate serial: 262F0B72238B7F61742EE57D237E4AF9673E35BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft Manifest number: 0273 Signing time: Mon 20 Oct 2025 05:38:06 +0000 Manifest this update: Mon 20 Oct 2025 05:33:06 +0000 Manifest next update: Tue 21 Oct 2025 05:43:06 +0000 Files and hashes: 1: 326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa (hash: e3gM8xBShVESXc8MaKIMDq1iDa8wjJWbHPjdOfhPuFQ=) 2: 5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC.cer (hash: Nz2k0o2IS41o55idTp4HvK3uNxIMYgMNKvrr57G+kIE=) 3: 326131333a393634343a323232303a3a2f34342d3438203d3e20323134393932.roa (hash: 894RTKAEh4ciZZOdefpuTBSaNDM2TQpQSdGle6pgy08=) 4: F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl (hash: zgmLa+E6TbWqEBYacKVoa10f0X+kRdgj5V3wyHgmAjs=) 5: 326131333a393634343a34303a3a2f34342d3438203d3e20323136333336.roa (hash: lNHaIlVxi/lYCx53I3+MfwePjUfRoiP0WtejKnMjprU=) 6: 326131333a393634343a31303a3a2f34362d3438203d3e203438313934.roa (hash: WOAaZY65k+/GoeKbXXymPrZVu7CfbDlQvCXqyS0ZjLA=) 7: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer (hash: nYcdq/fifitjvFyPoNBEJvUP1WGfqAJvzv/Dj2Iivv0=) 8: 39312e3230372e31332e302f32342d3234203d3e203532313132.roa (hash: +JU+ydXmMjIBHlt1kVXfkJBGqdmH1ATfk8PRfe8t4Rc=) 9: 326131333a393634323a3130303a3a2f34382d3438203d3e203438323830.roa (hash: j84/Fm1nc/JJrf9h3dAaKkat+XV/si7APTv6iSnl64I=) 10: 326131333a393634343a343030303a3a2f34302d3438203d3e20323034323931.roa (hash: OXH7kpuguUKmKnwoouN0IGAOMj3E/W/ffH2kJO7vbOY=) 11: 326131333a393634343a343030303a3a2f34302d3438203d3e203133333335.roa (hash: 8/2mbGbaC4ennlzI7y1e8hUNr9fsr7Pr+/K69/OYKQg=) 12: 326131333a393634343a34303a3a2f34342d3438203d3e20323131343331.roa (hash: UQpEpactphMaN3i4tpyR5s9Tmz685dUuNs8hSuG0cJQ=) 13: 326131333a393634303a3a2f34342d3434203d3e203532313132.roa (hash: DOR1Pt3ct68s+ey18ZghPrs5rAUoZlIbwxjvP68BE+k=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 Oct 2025 00:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:2f:0b:72:23:8b:7f:61:74:2e:e5:7d:23:7e:4a:f9:67:3e:35:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f1d0572fe72991bd32854bac716676ebdad22ace Validity Not Before: Oct 20 05:33:06 2025 GMT Not After : Oct 21 05:43:06 2025 GMT Subject: CN=04160E2B5A4C69B310102B8C6BDCA6647E893141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4d:1e:70:90:5d:8e:1e:53:ea:00:f2:67:a0: 12:9a:e5:5e:6c:9b:1f:62:5b:cb:3f:c6:da:a4:d6: b3:90:0e:f5:5c:98:9f:48:b0:54:01:e6:c8:83:36: 89:89:38:6b:32:93:6e:d6:bb:9d:20:56:51:45:45: c0:d8:f1:f2:c1:81:64:cc:43:db:09:40:63:bb:7e: 61:1a:55:9d:30:3a:7f:d8:2e:5f:56:18:a0:93:20: a2:9b:fa:85:5b:78:79:2b:25:b5:4f:f1:5f:d6:b8: 28:9c:99:a3:97:f0:c2:f9:bb:f6:06:a1:4e:bb:26: f6:c5:98:31:b7:08:30:b8:70:bd:54:b0:c1:ea:a4: 07:7f:bf:f8:8f:51:4a:08:c1:61:54:d2:d7:a5:00: e7:49:dd:40:ce:c3:c3:f2:0d:b5:2e:c9:44:88:3f: a0:d0:f0:65:d1:04:69:a9:a1:c1:06:20:22:15:8e: 87:b0:a2:dc:a2:68:64:96:7d:25:8a:d1:44:b3:37: 30:f1:e6:5a:27:5e:e9:1d:8c:e9:28:56:c6:f2:4f: 6b:15:24:36:15:a6:a2:80:c6:67:2e:f8:9e:48:d9: bf:2f:cc:a2:cb:18:93:78:6b:c5:e3:80:c7:5b:9e: c0:7f:54:e4:86:b7:69:d6:8e:08:5d:25:4c:bb:c5: 72:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:16:0E:2B:5A:4C:69:B3:10:10:2B:8C:6B:DC:A6:64:7E:89:31:41 X509v3 Authority Key Identifier: keyid:F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:81:a2:57:16:5a:14:49:79:aa:b9:23:e7:18:2f:23:62:44: 46:fd:a6:b0:c7:a6:39:00:0a:7b:4a:5d:22:8b:17:4a:37:99: 82:77:46:e6:9d:bf:9f:f7:d1:a8:b9:0e:09:f1:ac:aa:20:16: 8f:da:e3:5a:7b:30:c5:47:ad:50:30:1d:a2:f7:00:65:14:25: ee:87:52:86:63:82:74:f1:ea:08:4e:d5:26:24:52:e8:8f:ee: fe:45:bf:e5:fe:7c:d0:34:a7:fb:8a:85:aa:a9:5d:29:25:ce: b3:2c:af:cd:5d:b7:50:87:9e:d3:6c:c0:b6:2c:9e:19:65:2f: b5:d1:92:a5:23:e8:03:1e:70:89:60:f5:67:e1:ae:8d:c0:23: f2:16:5c:a9:4c:3f:5c:4d:8b:55:53:1a:58:73:34:24:24:da: 76:fc:ac:1c:97:20:0d:21:bd:6e:be:e7:39:3c:29:ce:e4:fa: be:ae:a4:ea:bd:80:7f:b5:db:8d:66:85:58:96:3c:90:eb:e8: 26:e6:99:6f:9e:bc:54:bd:d4:d9:be:ab:2e:77:55:f8:51:ad: ba:28:ac:42:ea:46:1a:12:f1:00:21:62:53:03:39:aa:8a:91: 4d:9c:c4:aa:7e:32:02:1f:80:00:75:99:40:76:d1:a2:a4:e6: 5d:0a:53:67 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUJi8LciOLf2F0LuV9I35K+Wc+NbwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjFkMDU3MmZlNzI5OTFiZDMyODU0YmFjNzE2Njc2ZWJk YWQyMmFjZTAeFw0yNTEwMjAwNTMzMDZaFw0yNTEwMjEwNTQzMDZaMDMxMTAvBgNV BAMTKDA0MTYwRTJCNUE0QzY5QjMxMDEwMkI4QzZCRENBNjY0N0U4OTMxNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGTR5wkF2OHlPqAPJnoBKa5V5s mx9iW8s/xtqk1rOQDvVcmJ9IsFQB5siDNomJOGsyk27Wu50gVlFFRcDY8fLBgWTM Q9sJQGO7fmEaVZ0wOn/YLl9WGKCTIKKb+oVbeHkrJbVP8V/WuCicmaOX8ML5u/YG oU67JvbFmDG3CDC4cL1UsMHqpAd/v/iPUUoIwWFU0telAOdJ3UDOw8PyDbUuyUSI P6DQ8GXRBGmpocEGICIVjoewotyiaGSWfSWK0USzNzDx5lonXukdjOkoVsbyT2sV JDYVpqKAxmcu+J5I2b8vzKLLGJN4a8XjgMdbnsB/VOSGt2nWjghdJUy7xXIjAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUBBYOK1pMabMQECuMa9ymZH6JMUEwHwYDVR0j BBgwFoAU8dBXL+cpkb0yhUuscWZ269rSKs4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZTMwZGU4NGItNDAwYS00ZmQxLWFiOGEtZTc2MTZlMjQ1 YjQ5LzAvRjFEMDU3MkZFNzI5OTFCRDMyODU0QkFDNzE2Njc2RUJEQUQyMkFDRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhkQlhMLWNwa2IweWhVdXNjV1oyNjly U0tzNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9lMzBkZTg0Yi00 MDBhLTRmZDEtYWI4YS1lNzYxNmUyNDViNDkvMC9GMUQwNTcyRkU3Mjk5MUJEMzI4 NTRCQUM3MTY2NzZFQkRBRDIyQUNFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk4GiVxZaFEl5qrkj5xgv I2JERv2msMemOQAKe0pdIosXSjeZgndG5p2/n/fRqLkOCfGsqiAWj9rjWnswxUet UDAdovcAZRQl7odShmOCdPHqCE7VJiRS6I/u/kW/5f580DSn+4qFqqldKSXOsyyv zV23UIee02zAtiyeGWUvtdGSpSPoAx5wiWD1Z+GujcAj8hZcqUw/XE2LVVMaWHM0 JCTadvysHJcgDSG9br7nOTwpzuT6vq6k6r2Af7XbjWaFWJY8kOvoJuaZb568VL3U 2b6rLndV+FGtuiisQupGGhLxACFiUwM5qoqRTZzEqn4yAh+AAHWZQHbRoqTmXQpT Zw== -----END CERTIFICATE-----Generated at Mon Oct 20 08:44:46 2025 by rpki-client