$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/B3D0280F500695A43204251C9830454CA8A2E7AC.mft File: B3D0280F500695A43204251C9830454CA8A2E7AC.mft (raw, json) Hash identifier: hSIsPL9rK1vQDYLVPc0I4aHhRkXoo+euG3Adv3uwza0= Subject key identifier: 30:3A:2F:F5:46:E0:1E:25:00:35:00:2F:12:1A:78:CA:08:71:63:08 Authority key identifier: B3:D0:28:0F:50:06:95:A4:32:04:25:1C:98:30:45:4C:A8:A2:E7:AC Certificate issuer: /CN=b3d0280f500695a43204251c9830454ca8a2e7ac Certificate serial: 46812827659759398C023C56F24B91C3FD40EE8B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s9AoD1AGlaQyBCUcmDBFTKii56w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/B3D0280F500695A43204251C9830454CA8A2E7AC.mft Manifest number: 0252 Signing time: Mon 28 Jul 2025 16:47:07 +0000 Manifest this update: Mon 28 Jul 2025 16:42:07 +0000 Manifest next update: Tue 29 Jul 2025 19:07:07 +0000 Files and hashes: 1: 3138352e3138362e32352e302f32342d3234203d3e203135343430.roa (hash: zbKaWYwmjPPC167P5YL6I94JcPZEWN0HKnmqpfcR9u4=) 2: 3138352e3138362e32372e302f32342d3234203d3e203631333137.roa (hash: jD3TEx8Q8JwdsmzwyDZ9zaukL1sMlGUp0uzFac23xJs=) 3: 3138352e3138362e32362e302f32342d3234203d3e20323135373033.roa (hash: FBdBmLEGxXhvarnPJcmElFlCgeLSIQ6GXw75K+usirs=) 4: B3D0280F500695A43204251C9830454CA8A2E7AC.crl (hash: Vo0VipDw40vfY6qr9ET7fySWLALF5Psy467Aickl1QQ=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/B3D0280F500695A43204251C9830454CA8A2E7AC.crl rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/B3D0280F500695A43204251C9830454CA8A2E7AC.mft rsync://rpki.ripe.net/repository/DEFAULT/s9AoD1AGlaQyBCUcmDBFTKii56w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 29 Jul 2025 19:07:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:81:28:27:65:97:59:39:8c:02:3c:56:f2:4b:91:c3:fd:40:ee:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3d0280f500695a43204251c9830454ca8a2e7ac Validity Not Before: Jul 28 16:42:07 2025 GMT Not After : Jul 29 19:07:07 2025 GMT Subject: CN=303A2FF546E01E250035002F121A78CA08716308 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:52:0e:64:f0:2d:e9:32:19:10:61:f1:60:70: ca:cb:7e:02:aa:87:25:6d:37:0f:d7:0f:1e:f9:14: 48:a3:1d:39:09:4d:51:80:3e:59:be:cd:f0:cf:57: ad:ec:be:fd:65:7b:b2:ef:93:56:53:7b:7e:b9:03: f6:d5:c6:23:b1:0d:b1:2c:0b:7c:fd:5c:7b:75:27: 13:6a:55:b9:5a:fc:4b:32:12:2f:be:94:50:f0:05: e8:04:b3:9c:e0:ce:6f:de:95:47:5b:44:ab:c1:3a: d4:51:04:57:cd:01:78:8a:a8:bc:ec:42:5d:8a:e9: 23:92:cf:ab:db:a8:00:50:f3:97:2e:b6:fb:39:0d: b8:91:82:24:4f:fb:d1:86:7d:a4:2f:4a:15:17:46: 02:4d:48:0c:28:6b:ad:f7:52:47:66:ec:39:94:86: 8f:0f:97:8b:25:0e:db:ad:38:78:8e:5b:6f:13:c1: 13:f0:8d:96:d0:4c:8b:33:d9:a6:56:d1:b7:f7:77: 93:dc:55:c9:35:e8:14:62:9e:7c:00:77:d5:c1:ab: 67:25:8c:63:59:98:6f:f3:30:cd:60:07:81:39:1f: cb:e7:05:b2:e4:33:0e:4e:20:85:76:2b:44:cf:db: 4b:27:6a:89:c8:9a:66:21:96:1c:37:a4:58:22:ec: 50:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:3A:2F:F5:46:E0:1E:25:00:35:00:2F:12:1A:78:CA:08:71:63:08 X509v3 Authority Key Identifier: keyid:B3:D0:28:0F:50:06:95:A4:32:04:25:1C:98:30:45:4C:A8:A2:E7:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/B3D0280F500695A43204251C9830454CA8A2E7AC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s9AoD1AGlaQyBCUcmDBFTKii56w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/87ae25f3-706b-47ed-bb74-46684ae0ef2b/0/B3D0280F500695A43204251C9830454CA8A2E7AC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:f6:23:bd:5c:a4:0b:32:3f:aa:f8:3f:d9:31:21:1c:11:3a: ed:53:c9:1b:4c:b3:a6:34:5b:18:19:f2:89:db:79:17:57:7e: 10:61:30:2a:5e:45:07:8e:7b:46:f8:5f:5f:a9:17:ff:04:b9: 80:3c:8c:6f:6d:43:2e:5c:38:2b:06:39:16:30:65:39:bf:6b: e8:26:91:91:53:6e:12:24:68:55:fc:59:fe:9f:83:d8:5d:e5: c3:b7:00:13:f9:14:82:4f:f0:c8:2b:93:8c:07:11:44:90:f0: 83:21:e6:47:b3:de:cc:00:7d:20:4a:2c:9c:b6:bc:fb:f5:96: 11:54:13:24:11:47:2c:33:cf:4d:32:85:13:fa:7b:d2:ec:e8: 92:9a:0f:42:b5:9c:14:49:e9:71:06:4c:b6:dd:d0:0e:7d:42: 3d:19:36:f7:1a:b9:ff:34:20:e5:3d:29:68:96:a6:c5:40:d3: 93:c3:a7:c6:f9:8c:10:34:2e:dd:b8:40:f8:ad:c6:d7:f0:3a: 41:7b:cb:3c:52:30:cf:40:07:f6:c2:2d:a3:d6:15:a1:28:77: b7:9d:01:a1:35:e5:da:b7:57:d2:cf:b8:95:fc:68:9e:aa:45: 08:68:1d:70:20:da:22:fa:bd:87:6f:da:69:b1:56:b0:11:b4: 23:01:75:37 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIURoEoJ2WXWTmMAjxW8kuRw/1A7oswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYjNkMDI4MGY1MDA2OTVhNDMyMDQyNTFjOTgzMDQ1NGNh OGEyZTdhYzAeFw0yNTA3MjgxNjQyMDdaFw0yNTA3MjkxOTA3MDdaMDMxMTAvBgNV BAMTKDMwM0EyRkY1NDZFMDFFMjUwMDM1MDAyRjEyMUE3OENBMDg3MTYzMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSUg5k8C3pMhkQYfFgcMrLfgKq hyVtNw/XDx75FEijHTkJTVGAPlm+zfDPV63svv1le7Lvk1ZTe365A/bVxiOxDbEs C3z9XHt1JxNqVbla/EsyEi++lFDwBegEs5zgzm/elUdbRKvBOtRRBFfNAXiKqLzs Ql2K6SOSz6vbqABQ85cutvs5DbiRgiRP+9GGfaQvShUXRgJNSAwoa633Ukdm7DmU ho8Pl4slDtutOHiOW28TwRPwjZbQTIsz2aZW0bf3d5PcVck16BRinnwAd9XBq2cl jGNZmG/zMM1gB4E5H8vnBbLkMw5OIIV2K0TP20snaonImmYhlhw3pFgi7FCNAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUMDov9UbgHiUANQAvEhp4yghxYwgwHwYDVR0j BBgwFoAUs9AoD1AGlaQyBCUcmDBFTKii56wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODdhZTI1ZjMtNzA2Yi00N2VkLWJiNzQtNDY2ODRhZTBl ZjJiLzAvQjNEMDI4MEY1MDA2OTVBNDMyMDQyNTFDOTgzMDQ1NENBOEEyRTdBQy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3M5QW9EMUFHbGFReUJDVWNtREJGVEtp aTU2dy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84N2FlMjVmMy03 MDZiLTQ3ZWQtYmI3NC00NjY4NGFlMGVmMmIvMC9CM0QwMjgwRjUwMDY5NUE0MzIw NDI1MUM5ODMwNDU0Q0E4QTJFN0FDLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhvYjvVykCzI/qvg/2TEh HBE67VPJG0yzpjRbGBnyidt5F1d+EGEwKl5FB457RvhfX6kX/wS5gDyMb21DLlw4 KwY5FjBlOb9r6CaRkVNuEiRoVfxZ/p+D2F3lw7cAE/kUgk/wyCuTjAcRRJDwgyHm R7PezAB9IEosnLa8+/WWEVQTJBFHLDPPTTKFE/p70uzokpoPQrWcFEnpcQZMtt3Q Dn1CPRk29xq5/zQg5T0paJamxUDTk8OnxvmMEDQu3bhA+K3G1/A6QXvLPFIwz0AH 9sIto9YVoSh3t50BoTXl2rdX0s+4lfxonqpFCGgdcCDaIvq9h2/aabFWsBG0IwF1 Nw== -----END CERTIFICATE-----Generated at Tue Jul 29 07:46:21 2025 by rpki-client