$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft File: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft (raw, json) Hash identifier: RhYKbAB2yb9kjww03JspV85CzQt7VfzGSIvDRar+64U= Subject key identifier: EE:93:80:3D:28:21:5D:A5:C7:12:A2:3B:3B:9B:62:E3:07:54:6F:A2 Authority key identifier: 5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 Certificate issuer: /CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Certificate serial: 62FB314FADF28C561EEEF8E8C5AA092F66B74AFC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft Manifest number: 038C Signing time: Thu 24 Jul 2025 00:42:05 +0000 Manifest this update: Thu 24 Jul 2025 00:37:05 +0000 Manifest next update: Fri 25 Jul 2025 03:30:05 +0000 Files and hashes: 1: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl (hash: QazYwAle1W56CjowsvOgHcBH+lX7v0HuL4+RXIsMQhQ=) 2: 34352e3134362e3136322e302f32342d3234203d3e203138363331.roa (hash: C/6HJC1mRnTjt5un9I/ly/ex3eg1Ngny62cwbLuyXag=) 3: 34352e3134362e3136302e302f32332d3233203d3e203437343437.roa (hash: RhIjHNXayp0tS4DN32atD6aHafLrHUAz0HkdV618CRY=) 4: 34352e3134362e3136332e302f32342d3234203d3e20323136313833.roa (hash: VqRU0PsdkYcQlfLEqZmAkEPw8yvo7sqFgCP45AzG5Gs=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 24 Jul 2025 23:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:fb:31:4f:ad:f2:8c:56:1e:ee:f8:e8:c5:aa:09:2f:66:b7:4a:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Validity Not Before: Jul 24 00:37:05 2025 GMT Not After : Jul 25 03:30:05 2025 GMT Subject: CN=EE93803D28215DA5C712A23B3B9B62E307546FA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:c5:6b:5a:26:3b:69:b2:ee:80:6c:6f:8b:14: 7a:e7:77:4e:22:0c:21:20:07:c3:b6:6f:26:13:54: 6e:78:8b:a1:01:f4:72:ae:c7:ef:d4:b1:5e:a2:76: c7:7d:34:e5:d6:6f:1d:c2:2a:44:e6:45:22:28:66: 52:fa:81:16:f7:d6:23:a3:4d:c0:e0:1e:ee:6e:b3: 83:9c:41:9e:ce:de:6e:7d:20:3b:86:19:ef:01:55: 0e:20:8e:a6:dc:65:41:66:55:b1:aa:de:01:9f:60: ec:ef:11:4c:6c:bf:6a:38:45:9b:15:54:d5:4b:28: 77:3d:9f:70:43:93:73:d4:ac:a7:07:64:16:5f:15: 03:03:34:41:ea:8b:99:8b:c7:ce:7e:72:0b:b6:40: 51:e9:1e:ee:f9:66:b2:fa:ed:ce:75:93:04:f7:6e: 9d:46:c0:4f:56:f1:fe:fc:cd:f3:59:31:3c:54:00: 0f:ad:44:23:fb:12:c0:22:4d:b5:e4:4a:5b:50:44: 79:8f:a6:ef:ec:46:1d:c9:f9:66:df:14:b4:8d:22: ec:08:59:ee:56:d7:e2:02:a0:d3:4d:08:45:be:e3: f1:84:c0:d4:d3:f9:8c:24:e9:93:6e:94:b2:99:ee: a7:48:62:d2:55:c5:f6:05:9f:82:e1:ee:62:fe:90: 77:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:93:80:3D:28:21:5D:A5:C7:12:A2:3B:3B:9B:62:E3:07:54:6F:A2 X509v3 Authority Key Identifier: keyid:5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:19:6c:ea:83:3c:17:26:f3:30:56:fe:4d:1b:79:c1:4c:02: 01:6d:ee:f3:39:69:17:17:1d:29:92:82:eb:26:dc:cd:20:c3: 99:3e:1d:26:33:3d:31:7b:1f:24:25:ec:65:21:65:9b:a6:ff: b5:37:99:5f:9d:95:a5:52:0e:b7:ba:ee:98:a6:92:d3:cb:e7: 42:23:2a:2d:62:43:34:44:d6:19:35:2e:46:6a:b4:97:8e:cd: 28:7c:4f:23:0b:df:8f:98:a0:3d:af:30:1d:14:d9:a4:a8:31: f3:8c:29:d5:30:32:f0:54:8f:f0:20:ab:48:43:bc:49:1b:85: 39:eb:b8:b8:94:d0:7b:48:ff:be:7c:5f:48:4e:a3:24:2e:53: 54:61:fb:31:82:52:9c:9a:21:a9:8b:41:f9:4a:38:f4:8e:0b: ec:67:67:aa:4f:90:3e:db:a6:3c:cf:6f:e9:1d:44:97:5a:88: ef:61:cf:bc:4a:fb:01:2e:fc:81:4a:fb:6d:ca:7e:53:5d:fa: e6:f9:b3:0e:c9:ef:95:c5:55:3a:07:00:52:c1:12:ee:ec:10: ad:d6:7f:b1:a5:aa:25:f6:04:41:5b:aa:8d:43:38:2a:96:c1: 96:e7:46:57:04:50:f5:d3:91:d6:b6:0a:c5:74:b4:38:5e:be: 12:fa:b8:78 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUYvsxT63yjFYe7vjoxaoJL2a3SvwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRlZmUwOTIyZjRmNTUyNzBkY2Q1YzA4ZjA0ZjFjN2Jm MjYwNzNjMzAeFw0yNTA3MjQwMDM3MDVaFw0yNTA3MjUwMzMwMDVaMDMxMTAvBgNV BAMTKEVFOTM4MDNEMjgyMTVEQTVDNzEyQTIzQjNCOUI2MkUzMDc1NDZGQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDixWtaJjtpsu6AbG+LFHrnd04i DCEgB8O2byYTVG54i6EB9HKux+/UsV6idsd9NOXWbx3CKkTmRSIoZlL6gRb31iOj TcDgHu5us4OcQZ7O3m59IDuGGe8BVQ4gjqbcZUFmVbGq3gGfYOzvEUxsv2o4RZsV VNVLKHc9n3BDk3PUrKcHZBZfFQMDNEHqi5mLx85+cgu2QFHpHu75ZrL67c51kwT3 bp1GwE9W8f78zfNZMTxUAA+tRCP7EsAiTbXkSltQRHmPpu/sRh3J+WbfFLSNIuwI We5W1+ICoNNNCEW+4/GEwNTT+Ywk6ZNulLKZ7qdIYtJVxfYFn4Lh7mL+kHczAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU7pOAPSghXaXHEqI7O5ti4wdUb6IwHwYDVR0j BBgwFoAUXe/gki9PVScNzVwI8E8ce/Jgc8MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmZlMmIyN2EtMWVjNS00YWI3LTk3OGUtNmRhOWNmOWYz NzkwLzAvNURFRkUwOTIyRjRGNTUyNzBEQ0Q1QzA4RjA0RjFDN0JGMjYwNzNDMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hlX2draTlQVlNjTnpWd0k4RThjZV9K Z2M4TS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZmUyYjI3YS0x ZWM1LTRhYjctOTc4ZS02ZGE5Y2Y5ZjM3OTAvMC81REVGRTA5MjJGNEY1NTI3MERD RDVDMDhGMDRGMUM3QkYyNjA3M0MzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAERls6oM8FybzMFb+TRt5 wUwCAW3u8zlpFxcdKZKC6ybczSDDmT4dJjM9MXsfJCXsZSFlm6b/tTeZX52VpVIO t7rumKaS08vnQiMqLWJDNETWGTUuRmq0l47NKHxPIwvfj5igPa8wHRTZpKgx84wp 1TAy8FSP8CCrSEO8SRuFOeu4uJTQe0j/vnxfSE6jJC5TVGH7MYJSnJohqYtB+Uo4 9I4L7Gdnqk+QPtumPM9v6R1El1qI72HPvEr7AS78gUr7bcp+U1365vmzDsnvlcVV OgcAUsES7uwQrdZ/saWqJfYEQVuqjUM4KpbBludGVwRQ9dOR1rYKxXS0OF6+Evq4 eA== -----END CERTIFICATE-----Generated at Thu Jul 24 04:51:09 2025 by rpki-client