$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft File: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft (raw, json) Hash identifier: Pkp3FU0q+tNXAWb3KO3dQuUxY+MtJmUwXn5Saxyy9N8= Subject key identifier: 78:C6:A5:9C:85:70:45:6B:40:8F:07:00:6E:8D:32:C9:86:3F:9B:5D Authority key identifier: 5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 Certificate issuer: /CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Certificate serial: 5818FBB18EC5FC68C0173B27E69331316612BBED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft Manifest number: 038A Signing time: Tue 22 Jul 2025 09:31:55 +0000 Manifest this update: Tue 22 Jul 2025 09:26:55 +0000 Manifest next update: Wed 23 Jul 2025 13:03:55 +0000 Files and hashes: 1: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl (hash: yk7pLeo/QbI1K3CKaVSqC6dSiFolCyLR7X0T4Dp2mNc=) 2: 34352e3134362e3136332e302f32342d3234203d3e20323136313833.roa (hash: VqRU0PsdkYcQlfLEqZmAkEPw8yvo7sqFgCP45AzG5Gs=) 3: 34352e3134362e3136302e302f32332d3233203d3e203437343437.roa (hash: RhIjHNXayp0tS4DN32atD6aHafLrHUAz0HkdV618CRY=) 4: 34352e3134362e3136322e302f32342d3234203d3e203138363331.roa (hash: C/6HJC1mRnTjt5un9I/ly/ex3eg1Ngny62cwbLuyXag=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 23 Jul 2025 08:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:18:fb:b1:8e:c5:fc:68:c0:17:3b:27:e6:93:31:31:66:12:bb:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Validity Not Before: Jul 22 09:26:55 2025 GMT Not After : Jul 23 13:03:55 2025 GMT Subject: CN=78C6A59C8570456B408F07006E8D32C9863F9B5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e6:fa:8c:1a:2c:af:56:b1:b6:1b:32:35:98: ea:18:fb:88:52:f0:52:cf:75:c2:2e:c3:33:bf:a4: ff:fe:b3:75:58:bc:07:a2:7d:09:55:e5:19:0d:d1: 37:7b:a1:70:db:50:9f:8f:43:bb:5f:06:75:17:92: 56:29:29:e4:81:e8:7f:f6:62:d5:4e:ac:19:cb:9e: 9c:c9:b9:fa:15:ca:59:ca:8a:81:39:65:24:2f:26: 8a:1a:20:51:d1:2a:14:e3:93:74:1c:a3:41:ce:43: 29:e1:b5:08:9d:0f:07:c5:4c:61:6a:c8:f2:12:96: f3:c3:13:6f:89:19:73:0a:3c:47:f9:ad:14:f6:9a: c9:ac:d5:db:2f:68:49:a0:53:87:31:d4:28:c5:39: 69:7b:66:f6:05:a2:ec:e8:7d:0c:34:76:0c:bd:b5: d7:0b:2d:8f:ce:b7:3f:40:d1:11:97:df:40:c1:e4: a7:76:5f:b6:fe:b1:eb:ef:d7:80:12:07:2b:c6:3a: a1:37:ac:58:dc:b4:46:34:2b:b9:85:a3:9a:f2:4d: 1f:df:1a:fb:7b:da:23:bf:c6:60:5c:6d:ac:2c:f6: 2a:1d:6b:57:b2:68:06:f5:07:b6:f8:1e:ae:85:73: fb:63:c4:1f:25:5b:f6:01:41:44:86:49:fc:d3:38: 2d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C6:A5:9C:85:70:45:6B:40:8F:07:00:6E:8D:32:C9:86:3F:9B:5D X509v3 Authority Key Identifier: keyid:5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:a4:7c:1a:f6:b7:e2:91:66:87:d0:f6:5b:1d:3e:97:9c:af: 61:7e:b9:01:6a:9c:81:2e:07:38:3e:2c:28:2b:50:51:b4:b2: 68:63:4f:6b:a5:ae:c6:bc:ff:75:35:3d:de:c0:c2:bc:8c:a7: 13:5b:ac:c1:d2:0c:92:fe:7e:89:0c:76:6d:49:dc:b5:9e:d1: e2:09:cb:02:09:09:f0:6e:6d:ce:c5:55:a6:1b:16:d3:67:b7: da:03:01:ef:c9:fc:8c:0c:47:18:75:fb:9b:c0:e2:15:22:2a: 83:fb:64:8d:0b:33:fa:ff:4e:d9:e2:16:91:12:93:02:ae:96: e0:26:be:98:40:ed:37:90:0e:66:8d:33:fe:8f:22:0b:ee:a1: 36:ca:a1:98:0b:83:aa:ed:85:c3:3f:af:03:58:c6:2c:b3:c3: 30:1d:dd:3d:bf:c2:30:6a:8b:a9:25:45:dd:1c:e8:fc:4d:5d: c3:2b:82:de:a4:41:fb:c8:20:a9:34:e1:1e:4c:a3:9f:64:18: 7b:fc:e5:9c:98:e0:c6:97:07:60:d0:ff:22:94:8b:ca:dc:ee: f3:4c:e6:fc:d7:90:19:f3:f3:98:6d:1c:09:9a:16:c3:b0:ad: e7:8d:89:c1:df:8f:2e:15:57:3a:98:31:e0:7f:59:0e:63:25: df:93:43:f2 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUWBj7sY7F/GjAFzsn5pMxMWYSu+0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRlZmUwOTIyZjRmNTUyNzBkY2Q1YzA4ZjA0ZjFjN2Jm MjYwNzNjMzAeFw0yNTA3MjIwOTI2NTVaFw0yNTA3MjMxMzAzNTVaMDMxMTAvBgNV BAMTKDc4QzZBNTlDODU3MDQ1NkI0MDhGMDcwMDZFOEQzMkM5ODYzRjlCNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD5vqMGiyvVrG2GzI1mOoY+4hS 8FLPdcIuwzO/pP/+s3VYvAeifQlV5RkN0Td7oXDbUJ+PQ7tfBnUXklYpKeSB6H/2 YtVOrBnLnpzJufoVylnKioE5ZSQvJooaIFHRKhTjk3Qco0HOQynhtQidDwfFTGFq yPISlvPDE2+JGXMKPEf5rRT2msms1dsvaEmgU4cx1CjFOWl7ZvYFouzofQw0dgy9 tdcLLY/Otz9A0RGX30DB5Kd2X7b+sevv14ASByvGOqE3rFjctEY0K7mFo5ryTR/f Gvt72iO/xmBcbaws9ioda1eyaAb1B7b4Hq6Fc/tjxB8lW/YBQUSGSfzTOC3bAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUeMalnIVwRWtAjwcAbo0yyYY/m10wHwYDVR0j BBgwFoAUXe/gki9PVScNzVwI8E8ce/Jgc8MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmZlMmIyN2EtMWVjNS00YWI3LTk3OGUtNmRhOWNmOWYz NzkwLzAvNURFRkUwOTIyRjRGNTUyNzBEQ0Q1QzA4RjA0RjFDN0JGMjYwNzNDMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hlX2draTlQVlNjTnpWd0k4RThjZV9K Z2M4TS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZmUyYjI3YS0x ZWM1LTRhYjctOTc4ZS02ZGE5Y2Y5ZjM3OTAvMC81REVGRTA5MjJGNEY1NTI3MERD RDVDMDhGMDRGMUM3QkYyNjA3M0MzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPqR8Gva34pFmh9D2Wx0+ l5yvYX65AWqcgS4HOD4sKCtQUbSyaGNPa6Wuxrz/dTU93sDCvIynE1uswdIMkv5+ iQx2bUnctZ7R4gnLAgkJ8G5tzsVVphsW02e32gMB78n8jAxHGHX7m8DiFSIqg/tk jQsz+v9O2eIWkRKTAq6W4Ca+mEDtN5AOZo0z/o8iC+6hNsqhmAuDqu2Fwz+vA1jG LLPDMB3dPb/CMGqLqSVF3Rzo/E1dwyuC3qRB+8ggqTThHkyjn2QYe/zlnJjgxpcH YND/IpSLytzu80zm/NeQGfPzmG0cCZoWw7Ct542Jwd+PLhVXOpgx4H9ZDmMl35ND 8g== -----END CERTIFICATE-----Generated at Tue Jul 22 11:45:04 2025 by rpki-client