$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft File: D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft (raw, json) Hash identifier: 7zNJpMbJGGuobvpU6FuYMXcX3NEDLrFd2jwGyfrGIas= Subject key identifier: D4:5F:AD:1A:88:2C:82:2E:44:05:18:50:C7:92:5C:EB:F1:F1:75:BB Authority key identifier: D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44 Certificate issuer: /CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444 Certificate serial: 59AD9DC885932624EDD8D5D343D4AD47DE35194B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft Manifest number: 0475 Signing time: Sun 20 Jul 2025 21:46:52 +0000 Manifest this update: Sun 20 Jul 2025 21:41:52 +0000 Manifest next update: Mon 21 Jul 2025 23:44:52 +0000 Files and hashes: 1: 37382e32342e3132332e302f32342d3234203d3e2037303138.roa (hash: yLm71OTqDFRdyl2jt+hmsZQmui0MjgACYd0QbV3wZ9U=) 2: 37382e32342e3132312e302f32342d3234203d3e203631333137.roa (hash: PNy4BBOReJ4B4LRwKHBjnzscIyK0n1F3JT7zrSI8uHw=) 3: 39332e39322e31392e302f32342d3234203d3e203631333137.roa (hash: bCly8plczaq5qd0H9MlQ1Z8xZKSunOI/jFWKgR1UqBg=) 4: 37382e32342e3132322e302f32342d3234203d3e2037303138.roa (hash: RiGLyTpjx/lhYnZMR/g3INSwpo5JHGzbqqOnRRhQZa8=) 5: D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl (hash: JEKI5QI3RbBd5Sh+fSePk8+1WfASwEnnFoqGAkiOp9Q=) 6: 34352e38362e39322e302f32342d3234203d3e20323039313831.roa (hash: gFPXsCrn7VghMZpPQmlNius+Qe9koRj6iqpgIDQpOY8=) 7: 34352e38362e39342e302f32342d3234203d3e2039303039.roa (hash: gq03q2PZTenb5MfLZJOhv7nheUzD9xSGdvhncjMBFfc=) 8: 39332e39322e31382e302f32342d3234203d3e203534333339.roa (hash: WMxtcl2Ju6TLrgTtLUBAyAfGF8Gn9pZV9umXAbbzoJo=) 9: 39332e39322e32322e302f32332d3234203d3e203534333339.roa (hash: MlVhq9YMUDch69apYFS1riPDRY/vCEBSVcnZ0AXUbzA=) 10: 39332e39322e32302e302f32342d3234203d3e2035353131.roa (hash: Anw+Ot0jzMET4Sk6hQNdmMLNf7QzBxX2vhTMbwb0Hp4=) 11: 37382e32342e3132342e302f32342d3234203d3e203534333339.roa (hash: KBQWp2YW6b35tXBZxmWFRr/DTme9e2nhX14tjQgVgwA=) 12: 37382e32342e3132352e302f32342d3234203d3e203534333339.roa (hash: 7W/JQiIhBxvV9lPwlVaE2K95jNPOksJaHe90LVwGv1I=) 13: 37382e32342e3132342e302f32332d3234203d3e20383334.roa (hash: NsnuSxYl6unNGzK/UX953Nm8V+PIcPCCM5lN4meDmN4=) 14: 37382e32342e3132362e302f32332d3234203d3e203131343236.roa (hash: daBRkHJPjnP4DyHn4IivnK1qaHgtIwZJtESS0iOn6Xk=) 15: 39332e39322e32312e302f32342d3234203d3e203631333137.roa (hash: fW+zXQmtdqPL01ivRHM0ry5dwDotUJmdzQHE3ZemyUE=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Jul 2025 22:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:ad:9d:c8:85:93:26:24:ed:d8:d5:d3:43:d4:ad:47:de:35:19:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444 Validity Not Before: Jul 20 21:41:52 2025 GMT Not After : Jul 21 23:44:52 2025 GMT Subject: CN=D45FAD1A882C822E44051850C7925CEBF1F175BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:8f:c0:15:33:98:68:18:03:8e:c0:bf:5a:e9: c4:0b:87:f6:42:63:94:11:c6:98:e0:66:d5:9c:6a: d8:62:50:b8:67:4b:f8:5a:46:98:94:4b:43:50:fe: cd:f7:a9:f5:ac:54:2d:9f:a8:c5:46:3c:99:a9:0d: d2:d4:da:e9:10:0e:4c:9a:d8:0a:b5:a0:b3:4f:f4: aa:bd:a5:e0:99:bf:b7:6f:a1:10:33:a6:e0:77:9f: 6d:41:26:b0:9e:cc:dc:37:64:3a:74:b6:7d:f9:19: c9:94:a1:8f:fc:9e:f4:45:85:7d:f7:1a:b0:fe:4c: 48:b6:ec:b0:a0:15:2f:2b:58:25:09:08:d0:80:fe: b2:2b:94:32:f7:55:23:cf:51:65:a3:e1:97:72:08: 98:2d:4f:d6:7f:3b:73:e0:0d:e7:bc:3f:c0:1a:25: 38:26:b5:b5:ae:7d:01:47:b0:65:e4:3e:66:d6:43: f6:6d:10:70:f9:2f:6f:6e:5a:9f:8f:3a:2e:3a:6a: ee:14:ec:14:6f:1b:55:44:1c:95:a3:2c:57:f5:e7: 55:ee:13:de:86:5e:46:9c:3e:ce:cd:15:c9:61:6a: af:b6:e7:59:2a:82:bf:1d:9c:a1:b5:41:0c:c1:27: a4:cd:f1:ef:7a:0d:11:6a:65:f2:5b:20:74:16:27: 50:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:5F:AD:1A:88:2C:82:2E:44:05:18:50:C7:92:5C:EB:F1:F1:75:BB X509v3 Authority Key Identifier: keyid:D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:3c:a0:a5:85:13:bf:72:ab:cc:a6:66:59:21:2e:cb:a9:0b: 01:89:e3:2f:f0:fc:b2:43:2e:91:c8:27:2f:d2:1c:19:4c:ee: bc:22:8d:1c:12:cf:cc:e2:57:83:a2:46:b2:58:d5:fa:47:e3: 2f:44:6e:81:98:35:9b:31:5b:6c:3a:c8:3a:d4:5f:a5:29:be: b7:3e:ff:1b:5b:24:a7:b3:c9:45:97:21:14:fe:2c:86:5a:d8: 36:21:db:e4:43:d5:33:cd:8d:82:93:2e:f0:82:66:61:b6:5b: 0a:f0:6f:38:fb:07:d8:9a:b3:aa:d7:4b:32:5b:14:e2:c8:07: 6a:0d:45:d5:37:38:67:75:7d:73:db:3f:8f:80:22:1e:4b:42: 59:b3:39:b3:71:30:95:3e:80:80:87:ee:07:44:e5:8a:2d:51: 69:44:df:17:44:e7:fb:e9:1a:c5:0e:32:1a:79:10:58:27:c7: 85:83:b4:e9:f5:4a:f6:08:7f:69:aa:ad:ae:63:4e:94:0e:c1: ec:56:fa:e3:c5:c5:ae:d8:98:a4:e1:04:06:3f:23:15:fe:82: 27:7e:fb:6f:9a:a2:bf:82:72:b3:81:4c:45:17:dc:f3:07:0e: f6:4c:f9:7e:2b:1f:bb:c3:14:0b:c5:b8:47:a8:75:9b:c7:e6: dc:e7:ef:e9 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUWa2dyIWTJiTt2NXTQ9StR941GUswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZDAxYmEwMTNiYzFlNmQ4NmYwZDZkNThlYWZhNTRlMjdm YWRhMzQ0NDAeFw0yNTA3MjAyMTQxNTJaFw0yNTA3MjEyMzQ0NTJaMDMxMTAvBgNV BAMTKEQ0NUZBRDFBODgyQzgyMkU0NDA1MTg1MEM3OTI1Q0VCRjFGMTc1QkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSj8AVM5hoGAOOwL9a6cQLh/ZC Y5QRxpjgZtWcathiULhnS/haRpiUS0NQ/s33qfWsVC2fqMVGPJmpDdLU2ukQDkya 2Aq1oLNP9Kq9peCZv7dvoRAzpuB3n21BJrCezNw3ZDp0tn35GcmUoY/8nvRFhX33 GrD+TEi27LCgFS8rWCUJCNCA/rIrlDL3VSPPUWWj4ZdyCJgtT9Z/O3PgDee8P8Aa JTgmtbWufQFHsGXkPmbWQ/ZtEHD5L29uWp+POi46au4U7BRvG1VEHJWjLFf151Xu E96GXkacPs7NFclhaq+251kqgr8dnKG1QQzBJ6TN8e96DRFqZfJbIHQWJ1BdAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU1F+tGogsgi5EBRhQx5Jc6/HxdbswHwYDVR0j BBgwFoAU0BugE7webYbw1tWOr6VOJ/raNEQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTUyMmE1MmYtNjUzNC00MTY1LWE2YTctZWY5Zjc0ZWY5 NDMxLzEvRDAxQkEwMTNCQzFFNkQ4NkYwRDZENThFQUZBNTRFMjdGQURBMzQ0NC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBCdWdFN3dlYllidzF0V09yNlZPSl9y YU5FUS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hNTIyYTUyZi02 NTM0LTQxNjUtYTZhNy1lZjlmNzRlZjk0MzEvMS9EMDFCQTAxM0JDMUU2RDg2RjBE NkQ1OEVBRkE1NEUyN0ZBREEzNDQ0Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAczygpYUTv3KrzKZmWSEu y6kLAYnjL/D8skMukcgnL9IcGUzuvCKNHBLPzOJXg6JGsljV+kfjL0RugZg1mzFb bDrIOtRfpSm+tz7/G1skp7PJRZchFP4shlrYNiHb5EPVM82NgpMu8IJmYbZbCvBv OPsH2JqzqtdLMlsU4sgHag1F1Tc4Z3V9c9s/j4AiHktCWbM5s3EwlT6AgIfuB0Tl ii1RaUTfF0Tn++kaxQ4yGnkQWCfHhYO06fVK9gh/aaqtrmNOlA7B7Fb648XFrtiY pOEEBj8jFf6CJ377b5qiv4Jys4FMRRfc8wcO9kz5fisfu8MUC8W4R6h1m8fm3Ofv 6Q== -----END CERTIFICATE-----Generated at Mon Jul 21 07:31:49 2025 by rpki-client