$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft File: 9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft (raw, json) Hash identifier: IVI3XnzLOenpMnr75c3NdYC9nSsY/FXr+h+QqBKsb18= Subject key identifier: B6:8F:67:37:4C:CB:67:51:E7:22:58:A1:37:7D:CC:CE:B9:F0:2E:49 Authority key identifier: 9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE Certificate issuer: /CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae Certificate serial: 7CAC7E30AE41DFB5A111B0DDCB06958948E6E43B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft Manifest number: 0550 Signing time: Sun 19 Apr 2026 17:10:15 +0000 Manifest this update: Sun 19 Apr 2026 17:05:15 +0000 Manifest next update: Mon 20 Apr 2026 18:28:15 +0000 Files and hashes: 1: 38322e3134302e3137382e302f32342d3234203d3e203135343139.roa (hash: 9ZXjSWAp+j58GwfDtQ/mqL8ScvPvc/83HCdFvbTQt+M=) 2: 38392e3131362e34322e302f32332d3233203d3e203135343139.roa (hash: y6p5UjBQPUduUonTPaO5F0JtSCE/pxPOj2iYT5kNMsc=) 3: 326130323a323633303a3a2f32392d3239203d3e203135343139.roa (hash: 57eeXg7j+oXHRFh1XtK1fw7OXcY8daCIezixmAfkJcw=) 4: 38392e3131362e31352e302f32342d3234203d3e203135343139.roa (hash: BfjOFS0GoZTfjo/xHJvef2THjZzuBY75ujhpTamWG84=) 5: 326130323a323633303a3a2f33322d3332203d3e203135343139.roa (hash: jli84J8TPjOOdHhktkVlx+DNU1JzPO7pUh03TSavr40=) 6: 38362e33382e332e302f32342d3234203d3e203135343139.roa (hash: kfugqwL5a8rKpk8fwdFIn7pS0iv55PmKrmdtLvO9AmM=) 7: 38392e3131362e3131362e302f32322d3232203d3e203135343139.roa (hash: vuC6A6enLxPTXBOwLw9tBCemQGy3gdCRudl05Im1bw0=) 8: 38392e3131362e31392e302f32342d3234203d3e203135343139.roa (hash: IYPeBc0njFQqxrAGs2OJRowmjEd1rlfv9Au+QQE5POo=) 9: 38392e3131362e31322e302f32332d3233203d3e203135343139.roa (hash: UzAk6y5i6qWN9IVFlhmoZTRjcqrtlajGQzrPjOGpriU=) 10: 9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl (hash: RpknWjD9NxJjzdw1kZIb/xTo6LG9+Oa/tiB9sCPVJ7A=) 11: 38392e3131362e342e302f32322d3232203d3e203135343139.roa (hash: T273PKOaqPzw+ef1HYHPIsAsFc8LZnkPiPIyWBRhHPE=) 12: 3138352e3134392e3135332e302f32342d3234203d3e203434373731.roa (hash: 8yuN3MCh3uYcW+DbtvxPqGplTmthXGYCL3Ax7r80myw=) 13: 38392e3131362e34312e302f32342d3234203d3e203135343139.roa (hash: kGai0vt9wA/86vZjdukxOGnISfChmqA46SxZbgRXmkY=) 14: 3231372e392e3234312e302f32342d3234203d3e203135343139.roa (hash: EJG2SDzWzIGWns6pT4kVSDqRPMJTJNXkz97kFGgjHCI=) 15: 38392e3131362e31362e302f32332d3233203d3e203135343139.roa (hash: 0ETOHqFxfMol2LhEQMME+DAkxTkGy4ojRF4+9fieTEQ=) 16: 3138352e3134392e3135342e302f32342d3234203d3e203434373731.roa (hash: m3qyMw/oJQApcKE+tTHmQHJByXjG/Fh99MnZmfiTNq8=) 17: 38322e3134302e3138392e302f32342d3234203d3e203135343139.roa (hash: zH/62I+GFjmbLT58TFoHTt4seVQwFkHzMOITLzNLWwM=) 18: 3138352e3134392e3135332e302f32342d3234203d3e203135343430.roa (hash: 6vwMaK76XK6X/pz6kTht3dh5BVylEQSRFW6TtRdFjeM=) 19: D34606949D385DB42714FE71274FAC9948EF279C.cer (hash: TQCZQkzK1CqgemnKR/erluvTKMYq58W//DcXZ16FiAE=) 20: 38392e3131362e322e302f32332d3233203d3e203135343139.roa (hash: aSFnF5KE0HZKqtoTzaJ7DbcDwDtYbFqkJ83NVi96KOw=) 21: 38322e3134302e3133312e302f32342d3234203d3e203135343139.roa (hash: tf013dx+p23kvdhs/rrgl7jF0HCw4nuCcwBzDL5I7qE=) 22: 3138352e3134392e3135352e302f32342d3234203d3e203434373731.roa (hash: W19aTL73kDmq4VpxFcM/5jWE3HfVKXSDK7YuTWHNOTU=) 23: 3138352e3134392e3135322e302f32322d3232203d3e203135343139.roa (hash: euJ5l1svQV4yeF07rYfON9i9pW05MgdKcVAsQcZCZgs=) 24: 38392e3131362e312e302f32342d3234203d3e203135343139.roa (hash: rx28ukAYIi7QdbkrNWf+57kJyDhNeE212LGEgmkq0Dk=) 25: 3231372e392e3234322e302f32342d3234203d3e203135343139.roa (hash: mgaSFuH9dwlQC9LQOF1dVYEFek9VIOTVBqz/2FqpDg4=) 26: 3231372e392e3235342e302f32332d3233203d3e203135343139.roa (hash: DU5pynjNIEEP2cTa3qAwphhWauxpRZzQL0RoFoNuEKY=) 27: 3138352e3134392e3135332e302f32342d3234203d3e203133313934.roa (hash: QbwoBEnpKwFJwsOgE5BSkaanZZexGA6c5rVJbKDREKo=) 28: 38362e33382e382e302f32312d3231203d3e203135343139.roa (hash: RBjXMLj20ozhJFLy1WSIfc7wq7Cyuu+KQRQSUNSEpNg=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Apr 2026 18:28:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:ac:7e:30:ae:41:df:b5:a1:11:b0:dd:cb:06:95:89:48:e6:e4:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae Validity Not Before: Apr 19 17:05:15 2026 GMT Not After : Apr 20 18:28:15 2026 GMT Subject: CN=B68F67374CCB6751E72258A1377DCCCEB9F02E49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:54:9c:a9:43:89:e2:ba:95:b6:7d:48:3a:28: 8c:df:29:ef:a7:7e:d0:73:65:6e:c2:5a:d4:82:16: f7:63:2e:4f:6d:14:dc:77:0b:db:78:2a:d7:1b:a2: bc:e5:92:92:f1:81:48:d0:a9:c7:1f:d7:48:21:f3: 94:35:05:f5:ad:ba:e0:51:4c:9b:ee:6c:d4:db:90: e4:44:de:1c:8a:20:e3:93:57:4e:b7:6f:ce:17:60: c8:7f:05:73:3d:4d:d6:91:66:cd:c2:8b:c8:ff:31: f9:c4:c0:52:99:98:df:63:ec:f3:4b:1f:8d:82:e0: 5f:14:41:c5:4e:e0:b6:02:d3:de:25:6a:dd:e5:7d: 9f:1b:92:b3:8e:99:42:94:98:de:45:73:e3:ef:27: 7f:da:47:19:cc:4d:54:a0:55:14:d3:51:08:20:2f: 2b:98:34:27:84:fb:35:39:dd:be:55:24:a2:65:1a: 03:e0:2a:cd:2e:2f:e2:bc:0f:d6:c8:f8:6a:e1:66: 9c:a3:87:17:f0:58:44:89:8d:e5:da:3c:41:8f:7f: 85:e4:b5:2a:d9:ca:d7:04:40:d8:03:16:c8:5d:e9: 7e:6c:2b:0d:fe:1f:61:d9:e6:b3:10:75:5d:a9:c4: aa:64:10:78:38:4a:17:c4:af:08:5c:9e:43:94:36: d8:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:8F:67:37:4C:CB:67:51:E7:22:58:A1:37:7D:CC:CE:B9:F0:2E:49 X509v3 Authority Key Identifier: keyid:9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:e4:db:4a:c8:70:82:06:e7:9a:29:97:db:1c:1f:97:8f:38: 7e:8a:53:7f:f3:bd:fd:0b:03:99:43:1e:06:c1:7d:e2:90:ad: 5d:52:9d:57:bf:7b:8c:8c:99:fd:ab:fc:c4:d0:c4:50:f3:7c: 77:12:96:64:91:12:61:b9:29:5f:1e:d0:9b:ab:01:69:ff:bc: ce:1e:b1:a3:af:0b:a1:e7:11:ad:89:8e:5a:8b:4d:64:ce:6f: 71:93:ed:af:9a:fe:da:30:4e:3d:ad:8e:e4:ff:75:89:36:0d: a9:43:90:84:dd:6f:89:61:42:bb:d9:f4:8d:2f:c0:76:81:43: 39:c7:e3:ee:e3:b0:f3:b5:2e:fa:05:d6:e9:20:34:ed:97:a0: d3:f4:34:79:f4:4a:09:0d:38:fb:5d:cc:5d:90:07:9e:3f:48: 9d:59:b7:3b:0d:22:6d:98:6b:a6:b2:b4:86:dc:9f:51:74:90: 52:2f:15:63:e5:0e:6e:78:10:3a:9e:1d:ab:ea:cf:93:1e:c1: f5:82:ce:fd:6b:5f:ee:3e:80:a4:f6:7a:f7:91:0d:1f:8a:ed: 39:84:39:9b:8a:8e:30:9e:39:d2:7c:04:5c:e9:df:f4:8c:25: ea:da:c5:c0:a3:ae:a2:e1:d4:a8:a4:fc:30:5e:c5:b5:3e:53: 9e:d4:e4:b2 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUfKx+MK5B37WhEbDdywaViUjm5DswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWRmODU5OTdiMWI5YjM1OGUxYzQzZjM2NzY1YWEwYTRh MDIxNDRhZTAeFw0yNjA0MTkxNzA1MTVaFw0yNjA0MjAxODI4MTVaMDMxMTAvBgNV BAMTKEI2OEY2NzM3NENDQjY3NTFFNzIyNThBMTM3N0RDQ0NFQjlGMDJFNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtVJypQ4niupW2fUg6KIzfKe+n ftBzZW7CWtSCFvdjLk9tFNx3C9t4KtcborzlkpLxgUjQqccf10gh85Q1BfWtuuBR TJvubNTbkORE3hyKIOOTV063b84XYMh/BXM9TdaRZs3Ci8j/MfnEwFKZmN9j7PNL H42C4F8UQcVO4LYC094lat3lfZ8bkrOOmUKUmN5Fc+PvJ3/aRxnMTVSgVRTTUQgg LyuYNCeE+zU53b5VJKJlGgPgKs0uL+K8D9bI+GrhZpyjhxfwWESJjeXaPEGPf4Xk tSrZytcEQNgDFshd6X5sKw3+H2HZ5rMQdV2pxKpkEHg4ShfErwhcnkOUNth1AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUto9nN0zLZ1HnIlihN33MzrnwLkkwHwYDVR0j BBgwFoAUnfhZl7G5s1jhxD82dlqgpKAhRK4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDAyZTBiYTMtZmU2MC00NWIxLTkxNjAtODY4YTJmOGE0 M2IxLzMvOURGODU5OTdCMUI5QjM1OEUxQzQzRjM2NzY1QUEwQTRBMDIxNDRBRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25maFpsN0c1czFqaHhEODJkbHFncEtB aFJLNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8wMDJlMGJhMy1m ZTYwLTQ1YjEtOTE2MC04NjhhMmY4YTQzYjEvMy85REY4NTk5N0IxQjlCMzU4RTFD NDNGMzY3NjVBQTBBNEEwMjE0NEFFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjeTbSshwggbnmimX2xwf l484fopTf/O9/QsDmUMeBsF94pCtXVKdV797jIyZ/av8xNDEUPN8dxKWZJESYbkp Xx7Qm6sBaf+8zh6xo68LoecRrYmOWotNZM5vcZPtr5r+2jBOPa2O5P91iTYNqUOQ hN1viWFCu9n0jS/AdoFDOcfj7uOw87Uu+gXW6SA07Zeg0/Q0efRKCQ04+13MXZAH nj9InVm3Ow0ibZhrprK0htyfUXSQUi8VY+UObngQOp4dq+rPkx7B9YLO/Wtf7j6A pPZ695ENH4rtOYQ5m4qOMJ450nwEXOnf9Iwl6trFwKOuouHUqKT8MF7FtT5TntTk sg== -----END CERTIFICATE-----Generated at Mon Apr 20 03:26:55 2026 by rpki-client