$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft File: 9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft (raw, json) Hash identifier: THPvikjDrKut4Ouz47rEaVn85ClMqEzIreC0towLsS4= Subject key identifier: 99:22:7B:AD:AE:5C:D4:98:5A:AE:12:CF:60:2E:67:63:BC:B3:97:90 Authority key identifier: 9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE Certificate issuer: /CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae Certificate serial: 492A773390A6D500D822C6416EB7A22B3EB432A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft Manifest number: 03E3 Signing time: Sun 20 Jul 2025 01:28:38 +0000 Manifest this update: Sun 20 Jul 2025 01:23:38 +0000 Manifest next update: Mon 21 Jul 2025 01:49:38 +0000 Files and hashes: 1: 326130323a323633303a3a2f33322d3332203d3e203135343139.roa (hash: qWp9paAJXWyG6T4NlWTD/O+mrcUKf+wb2OOSJ/RUTQM=) 2: 3138352e3134392e3135332e302f32342d3234203d3e203133313934.roa (hash: DudKC7EbN/x1z3E3UcohZZDxNJCJJwujdDPss+8DrkI=) 3: 38392e3131362e31352e302f32342d3234203d3e203135343139.roa (hash: /LejqbWiFUxs1DgkjzVItnmcQXCtVjOkQxj/fIk9rAQ=) 4: 38392e3131362e34312e302f32342d3234203d3e203135343139.roa (hash: nrTdofG3QiyT59ifvXqBtX8pF4lYbmqFJc6mO1yyOW0=) 5: 38392e3131362e31322e302f32332d3233203d3e203135343139.roa (hash: vCrLMX0eSFK/WsSjH4NPI6BnYmwIN7ZEFJbozFxO6uE=) 6: 3138352e3134392e3135322e302f32322d3232203d3e203135343139.roa (hash: yiPh36TU1+o+jLX45pyYr1yhJEOI86BPrMUwrS94mMI=) 7: 3138352e3134392e3135342e302f32342d3234203d3e203434373731.roa (hash: Pgs5ueHQXHOzRUAnFpUKAel9Ig4WE+HMpXX4wHeR3SY=) 8: 38392e3131362e31362e302f32332d3233203d3e203135343139.roa (hash: 7gdiZpTYF4VKwdmEsTHKuwi6oAiZC6mVLx4cpcdl/GE=) 9: 38362e33382e382e302f32312d3231203d3e203135343139.roa (hash: uWYPVYjRnhouz2kB1gip220mm9ixJ1+yxtSXIITlxEw=) 10: 38322e3134302e3133312e302f32342d3234203d3e203135343139.roa (hash: YcmyLeFBQ+WK9MxW4qT13yT/CsdMqFWcCNcHges7cNY=) 11: 3138352e3134392e3135352e302f32342d3234203d3e203434373731.roa (hash: W9T8aPnkMAlNbGOA+isd3U8U+YdKRxlDW0/+vHw4iGg=) 12: 38392e3131362e342e302f32322d3232203d3e203135343139.roa (hash: S7PYQmgyaS+nUukOrNi+7gU0SVsm2vupfOTXwPtPOXM=) 13: D34606949D385DB42714FE71274FAC9948EF279C.cer (hash: mr8O2GLITID87EQbUR0mW/IyDelg6k8ezJcKyZbdo9E=) 14: 38392e3131362e3131362e302f32322d3232203d3e203135343139.roa (hash: +6pKiWIr1xfpXpXCXiVMVMi0tFetJIO1JWmpuLH4c10=) 15: 3231372e392e3234312e302f32342d3234203d3e203135343139.roa (hash: hFAW06mmhAPSV/HJ4B8aC2PvIR5CrcKx3FcqsTikSiM=) 16: 38362e33382e332e302f32342d3234203d3e203135343139.roa (hash: 1jWpw+W9zeIRwNdxwEeWvA1uKZ5XVqeLW/yed0hU+d4=) 17: 38392e3131362e322e302f32332d3233203d3e203135343139.roa (hash: twheygdBU9M/hWK8PwEKS7vel1IBGYLsGKuF6NDPdmA=) 18: 3231372e392e3235342e302f32332d3233203d3e203135343139.roa (hash: iksl6QO5bGAwqBp6Vth9mckUoVZxpFnDxq6gmgw5QDs=) 19: 3138352e3134392e3135332e302f32342d3234203d3e203434373731.roa (hash: 3LQCLtbZ2cAzmsqD8inTKmHS0+b4RIJVefCUUonuvB0=) 20: 3231372e392e3234322e302f32342d3234203d3e203135343139.roa (hash: mOAttZBNx/CTeO/Z3xtwFj9TNAzOHD7wWSzttDopHBY=) 21: 38392e3131362e34322e302f32332d3233203d3e203135343139.roa (hash: dqiC7sfkexEdY4bNAfWo7TkIe5GTWHX5uIAGfupS9Ro=) 22: 3138352e3134392e3135332e302f32342d3234203d3e203135343430.roa (hash: ld9bmw/lU5ViE7fFfnUAARe92vzpSXeZ47xTrIGHE2Y=) 23: 38392e3131362e31392e302f32342d3234203d3e203135343139.roa (hash: 4JL3Gtu7UsX3IaHs3LaQwmdxUfCfFV6YWJerzJoc+wE=) 24: 38322e3134302e3137382e302f32342d3234203d3e203135343139.roa (hash: kVZlSJSrWOIFgbVyyqSUiD6jECTpvfhx5mx8hRL1cGE=) 25: 326130323a323633303a3a2f32392d3239203d3e203135343139.roa (hash: 8htEN27nXC1XFUYvScmaKLGazPRUUosEipnSlN6XgBk=) 26: 38392e3131362e312e302f32342d3234203d3e203135343139.roa (hash: QlNtxapPtCDVmKsd/rR7Y2Bq1QIkmg64gwg6mpWc9ZY=) 27: 38322e3134302e3138392e302f32342d3234203d3e203135343139.roa (hash: q/tmnbq1kdd2hUMwbcuSKcZt7pux1EaGGpLbn7IfofI=) 28: 9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl (hash: yqhwVNzKgsrR3bXfPueHJPTdesmbkpdoceMgy+iFoVc=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Jul 2025 01:49:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:2a:77:33:90:a6:d5:00:d8:22:c6:41:6e:b7:a2:2b:3e:b4:32:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae Validity Not Before: Jul 20 01:23:38 2025 GMT Not After : Jul 21 01:49:38 2025 GMT Subject: CN=99227BADAE5CD4985AAE12CF602E6763BCB39790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:f9:a7:70:e9:18:89:fd:0f:a4:30:d8:02:d2: 73:26:63:60:c3:f0:de:70:47:86:06:95:be:3d:03: 5c:6d:9a:c9:94:87:49:c7:5b:39:e4:15:7d:63:34: 91:c0:5b:a8:16:81:dd:8c:8c:2c:f0:8a:31:64:88: 35:f1:4c:2b:8e:d9:4f:51:68:98:0c:5c:74:81:a4: 81:48:83:2f:ce:fa:a4:6c:66:59:41:26:aa:c0:69: 94:4e:19:e4:1a:99:74:5a:58:c9:ce:fc:c1:76:29: e5:ab:3e:46:92:8a:6b:d3:20:b9:37:3f:27:7e:f7: 28:bd:46:fc:9a:7e:18:de:d1:20:44:a0:a0:13:1a: d9:d9:14:e7:85:5f:c7:27:5b:22:70:6d:56:23:5c: 79:d9:6a:da:fa:01:db:0d:4e:c6:31:5d:42:ef:4f: 62:b9:ac:8c:dc:97:3c:df:f3:b3:d3:b9:e9:58:16: 1b:e7:80:37:f2:f7:3f:93:78:22:ee:5c:47:72:3b: 58:22:75:14:c0:a1:71:65:0f:54:7a:77:a2:1f:64: 77:7c:e0:b4:ca:40:9d:5e:aa:1e:67:f4:01:46:88: 94:e3:33:c0:05:07:10:77:03:be:e5:62:c0:79:32: 29:21:c1:3c:f0:2d:e5:e6:cb:0a:ed:81:e5:aa:68: 03:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:22:7B:AD:AE:5C:D4:98:5A:AE:12:CF:60:2E:67:63:BC:B3:97:90 X509v3 Authority Key Identifier: keyid:9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:59:4a:6a:64:8a:59:4f:14:ee:23:0a:54:4e:ad:85:91:de: 48:46:3a:9b:6e:69:0a:b9:21:d8:d2:07:42:da:eb:f2:ff:dd: 84:c7:d2:44:4a:d5:d7:1c:c7:49:c2:c9:f5:02:b6:69:c0:66: 2e:e7:ac:dd:2b:a0:12:bc:14:d5:5c:ff:b4:27:14:22:df:52: af:7d:77:7f:e0:03:9a:7e:25:ac:b5:c7:41:f7:9c:36:ac:6a: 37:0a:6f:88:71:44:0c:4c:76:f1:67:a7:0e:22:be:df:7f:e1: 07:df:41:8b:14:f4:08:6f:f6:30:19:ed:c0:19:a3:2a:c6:91: 87:e1:c2:ab:df:76:ec:48:74:0b:55:5d:ff:0e:20:f1:2f:cb: 98:d5:b1:ef:b5:a8:be:dc:a9:c0:31:56:3f:0d:56:ed:f6:49: 9b:06:eb:e0:8e:4f:98:86:1b:f5:a1:bc:28:8a:ee:33:52:6d: 2a:b2:29:bd:69:79:0d:0a:38:a8:a9:ff:c7:40:d2:ae:54:85: e8:c0:e3:a0:40:f1:5e:65:9f:79:7a:7c:94:71:62:d8:9f:4f: a2:f0:66:08:98:34:e3:a2:2a:91:26:cb:32:c1:3d:d3:89:f1: 3e:86:9c:7e:6f:ff:88:b0:8f:81:e1:5c:2d:fd:d3:ce:ad:94: 81:e8:2f:d6 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUSSp3M5Cm1QDYIsZBbreiKz60MqEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWRmODU5OTdiMWI5YjM1OGUxYzQzZjM2NzY1YWEwYTRh MDIxNDRhZTAeFw0yNTA3MjAwMTIzMzhaFw0yNTA3MjEwMTQ5MzhaMDMxMTAvBgNV BAMTKDk5MjI3QkFEQUU1Q0Q0OTg1QUFFMTJDRjYwMkU2NzYzQkNCMzk3OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi+adw6RiJ/Q+kMNgC0nMmY2DD 8N5wR4YGlb49A1xtmsmUh0nHWznkFX1jNJHAW6gWgd2MjCzwijFkiDXxTCuO2U9R aJgMXHSBpIFIgy/O+qRsZllBJqrAaZROGeQamXRaWMnO/MF2KeWrPkaSimvTILk3 Pyd+9yi9Rvyafhje0SBEoKATGtnZFOeFX8cnWyJwbVYjXHnZatr6AdsNTsYxXULv T2K5rIzclzzf87PTuelYFhvngDfy9z+TeCLuXEdyO1gidRTAoXFlD1R6d6IfZHd8 4LTKQJ1eqh5n9AFGiJTjM8AFBxB3A77lYsB5MikhwTzwLeXmywrtgeWqaAMFAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUmSJ7ra5c1JharhLPYC5nY7yzl5AwHwYDVR0j BBgwFoAUnfhZl7G5s1jhxD82dlqgpKAhRK4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDAyZTBiYTMtZmU2MC00NWIxLTkxNjAtODY4YTJmOGE0 M2IxLzMvOURGODU5OTdCMUI5QjM1OEUxQzQzRjM2NzY1QUEwQTRBMDIxNDRBRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25maFpsN0c1czFqaHhEODJkbHFncEtB aFJLNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8wMDJlMGJhMy1m ZTYwLTQ1YjEtOTE2MC04NjhhMmY4YTQzYjEvMy85REY4NTk5N0IxQjlCMzU4RTFD NDNGMzY3NjVBQTBBNEEwMjE0NEFFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApVlKamSKWU8U7iMKVE6t hZHeSEY6m25pCrkh2NIHQtrr8v/dhMfSRErV1xzHScLJ9QK2acBmLues3SugErwU 1Vz/tCcUIt9Sr313f+ADmn4lrLXHQfecNqxqNwpviHFEDEx28WenDiK+33/hB99B ixT0CG/2MBntwBmjKsaRh+HCq9927Eh0C1Vd/w4g8S/LmNWx77WovtypwDFWPw1W 7fZJmwbr4I5PmIYb9aG8KIruM1JtKrIpvWl5DQo4qKn/x0DSrlSF6MDjoEDxXmWf eXp8lHFi2J9PovBmCJg046IqkSbLMsE904nxPoacfm//iLCPgeFcLf3Tzq2Ugegv 1g== -----END CERTIFICATE-----Generated at Sun Jul 20 14:25:59 2025 by rpki-client