$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft File: 9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft (raw, json) Hash identifier: br8mDjXdaXogDaxcqK1IGmmWFwDQIAsQA0JnNZA5MWA= Subject key identifier: F7:7B:38:82:51:93:EB:80:75:5D:24:2C:28:ED:12:F4:A5:EF:E1:17 Authority key identifier: 9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE Certificate issuer: /CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae Certificate serial: 11120193CA531E5DE95789526565FBB5D09E6D64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft Manifest number: 03A9 Signing time: Wed 04 Jun 2025 05:07:45 +0000 Manifest this update: Wed 04 Jun 2025 05:02:45 +0000 Manifest next update: Thu 05 Jun 2025 05:49:45 +0000 Files and hashes: 1: 3138352e3134392e3135342e302f32342d3234203d3e203434373731.roa (hash: Pgs5ueHQXHOzRUAnFpUKAel9Ig4WE+HMpXX4wHeR3SY=) 2: 3138352e3134392e3135332e302f32342d3234203d3e203434373731.roa (hash: 3LQCLtbZ2cAzmsqD8inTKmHS0+b4RIJVefCUUonuvB0=) 3: D34606949D385DB42714FE71274FAC9948EF279C.cer (hash: mr8O2GLITID87EQbUR0mW/IyDelg6k8ezJcKyZbdo9E=) 4: 38322e3134302e3137382e302f32342d3234203d3e203135343139.roa (hash: kVZlSJSrWOIFgbVyyqSUiD6jECTpvfhx5mx8hRL1cGE=) 5: 38322e3134302e3138392e302f32342d3234203d3e203135343139.roa (hash: q/tmnbq1kdd2hUMwbcuSKcZt7pux1EaGGpLbn7IfofI=) 6: 3138352e3134392e3135332e302f32342d3234203d3e203135343430.roa (hash: ld9bmw/lU5ViE7fFfnUAARe92vzpSXeZ47xTrIGHE2Y=) 7: 9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl (hash: J0JKVxL0SJsUZmjy3DYm8TGRD9dHdDB9++MeV0S/KMU=) 8: 326130323a323633303a3a2f32392d3239203d3e203135343139.roa (hash: 8htEN27nXC1XFUYvScmaKLGazPRUUosEipnSlN6XgBk=) 9: 326130323a323633303a3a2f33322d3332203d3e203135343139.roa (hash: qWp9paAJXWyG6T4NlWTD/O+mrcUKf+wb2OOSJ/RUTQM=) 10: 38392e3131362e34322e302f32332d3233203d3e203135343139.roa (hash: dqiC7sfkexEdY4bNAfWo7TkIe5GTWHX5uIAGfupS9Ro=) 11: 3231372e392e3234312e302f32342d3234203d3e203135343139.roa (hash: hFAW06mmhAPSV/HJ4B8aC2PvIR5CrcKx3FcqsTikSiM=) 12: 3138352e3134392e3135322e302f32322d3232203d3e203135343139.roa (hash: yiPh36TU1+o+jLX45pyYr1yhJEOI86BPrMUwrS94mMI=) 13: 38392e3131362e322e302f32332d3233203d3e203135343139.roa (hash: twheygdBU9M/hWK8PwEKS7vel1IBGYLsGKuF6NDPdmA=) 14: 38322e3134302e3133312e302f32342d3234203d3e203135343139.roa (hash: YcmyLeFBQ+WK9MxW4qT13yT/CsdMqFWcCNcHges7cNY=) 15: 3231372e392e3234322e302f32342d3234203d3e203135343139.roa (hash: mOAttZBNx/CTeO/Z3xtwFj9TNAzOHD7wWSzttDopHBY=) 16: 38392e3131362e342e302f32322d3232203d3e203135343139.roa (hash: S7PYQmgyaS+nUukOrNi+7gU0SVsm2vupfOTXwPtPOXM=) 17: 38392e3131362e31322e302f32332d3233203d3e203135343139.roa (hash: vCrLMX0eSFK/WsSjH4NPI6BnYmwIN7ZEFJbozFxO6uE=) 18: 3231372e392e3235342e302f32332d3233203d3e203135343139.roa (hash: iksl6QO5bGAwqBp6Vth9mckUoVZxpFnDxq6gmgw5QDs=) 19: 38392e3131362e31392e302f32342d3234203d3e203135343139.roa (hash: 4JL3Gtu7UsX3IaHs3LaQwmdxUfCfFV6YWJerzJoc+wE=) 20: 3138352e3134392e3135332e302f32342d3234203d3e203133313934.roa (hash: DudKC7EbN/x1z3E3UcohZZDxNJCJJwujdDPss+8DrkI=) 21: 38392e3131362e3131362e302f32322d3232203d3e203135343139.roa (hash: +6pKiWIr1xfpXpXCXiVMVMi0tFetJIO1JWmpuLH4c10=) 22: 38362e33382e382e302f32312d3231203d3e203135343139.roa (hash: uWYPVYjRnhouz2kB1gip220mm9ixJ1+yxtSXIITlxEw=) 23: 38392e3131362e312e302f32342d3234203d3e203135343139.roa (hash: QlNtxapPtCDVmKsd/rR7Y2Bq1QIkmg64gwg6mpWc9ZY=) 24: 38392e3131362e34312e302f32342d3234203d3e203135343139.roa (hash: nrTdofG3QiyT59ifvXqBtX8pF4lYbmqFJc6mO1yyOW0=) 25: 38392e3131362e31352e302f32342d3234203d3e203135343139.roa (hash: /LejqbWiFUxs1DgkjzVItnmcQXCtVjOkQxj/fIk9rAQ=) 26: 38362e33382e332e302f32342d3234203d3e203135343139.roa (hash: 1jWpw+W9zeIRwNdxwEeWvA1uKZ5XVqeLW/yed0hU+d4=) 27: 38392e3131362e31362e302f32332d3233203d3e203135343139.roa (hash: 7gdiZpTYF4VKwdmEsTHKuwi6oAiZC6mVLx4cpcdl/GE=) 28: 3138352e3134392e3135352e302f32342d3234203d3e203434373731.roa (hash: W9T8aPnkMAlNbGOA+isd3U8U+YdKRxlDW0/+vHw4iGg=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Jun 2025 05:49:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:12:01:93:ca:53:1e:5d:e9:57:89:52:65:65:fb:b5:d0:9e:6d:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae Validity Not Before: Jun 4 05:02:45 2025 GMT Not After : Jun 5 05:49:45 2025 GMT Subject: CN=F77B38825193EB80755D242C28ED12F4A5EFE117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:48:0c:80:22:5e:37:e4:cd:6d:e1:59:a4:a8: 2e:43:ee:37:7a:26:2e:fb:46:4b:3c:bb:9d:21:f6: 01:3e:41:51:fc:7e:c5:9a:8d:5f:d3:f9:94:e3:14: 15:f7:86:fb:1d:b9:3c:1a:04:00:81:d2:6b:89:37: 18:8b:b5:e6:4d:83:ca:8d:86:80:83:12:44:38:a2: 39:3f:52:fd:de:80:67:a7:a9:c5:7b:69:c5:12:66: 40:1f:38:de:50:a5:3e:87:79:b2:d7:42:0d:26:de: 57:16:eb:21:2d:19:e1:fa:b4:6f:a1:2e:92:1a:85: f4:7c:55:a5:ba:4c:84:73:a8:f3:7f:cb:d6:c7:36: 61:fe:1a:34:4e:11:85:2e:5f:91:95:3c:07:a7:d6: 9c:d4:a8:f9:f1:74:75:f0:c1:f5:fd:99:a8:27:9a: be:22:67:1e:d7:e4:61:29:b1:d0:74:c2:3d:68:db: 3e:6c:db:47:30:ae:00:f9:e8:0f:fd:dd:f5:85:bf: 2c:e0:11:36:a0:bc:78:35:43:37:a7:50:2e:99:54: 03:a8:fb:bc:73:f8:6a:be:d3:77:c0:0e:6f:5d:9b: 34:61:e6:df:7a:09:a8:08:ad:7f:b4:ed:09:fa:a6: 59:7e:e2:bc:df:66:d0:20:73:f3:ab:19:ac:73:f6: bc:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:7B:38:82:51:93:EB:80:75:5D:24:2C:28:ED:12:F4:A5:EF:E1:17 X509v3 Authority Key Identifier: keyid:9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:6a:f2:64:24:d3:34:db:e6:14:06:21:8b:b6:04:d7:ba:0c: 21:73:db:db:d7:a2:8f:b3:0d:76:b0:f0:a6:f9:fa:bf:0d:e1: fa:92:ad:b9:bc:c5:dd:bb:0d:40:04:fb:98:1e:95:61:24:db: 86:eb:08:4e:47:d1:3a:17:0b:79:f1:ef:4c:bf:35:e2:6c:d0: 80:67:42:fb:c2:2b:24:35:fb:cc:46:67:f0:94:e5:30:68:16: 3c:57:05:ba:46:88:97:5a:8e:74:7f:13:bd:f7:f1:dd:89:31: 0e:ed:47:c4:ca:2c:68:19:8e:0a:71:37:22:ae:23:ce:4f:a9: 1e:4a:fe:cc:d8:db:30:80:b8:b6:8e:93:5f:3f:a6:e8:2a:d7: fd:84:c9:04:aa:a1:75:58:f6:f1:f0:40:82:2b:ed:f1:b6:6d: 68:f3:32:28:b2:e4:01:8e:2a:0f:ac:8e:1d:fb:88:0f:ce:79: 47:02:7e:7d:36:da:1b:c5:6d:c0:d8:55:58:66:e8:2f:df:6b: ef:a9:74:59:90:be:be:2f:7b:60:42:f2:d2:89:dc:c6:1b:df: 4f:1c:cb:fa:9c:eb:05:c5:cd:b5:72:af:e2:f3:30:ad:5d:d7: 8f:67:eb:d5:53:49:67:88:19:b5:26:d1:90:c8:4f:66:f3:9b: 6f:6b:05:72 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUERIBk8pTHl3pV4lSZWX7tdCebWQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWRmODU5OTdiMWI5YjM1OGUxYzQzZjM2NzY1YWEwYTRh MDIxNDRhZTAeFw0yNTA2MDQwNTAyNDVaFw0yNTA2MDUwNTQ5NDVaMDMxMTAvBgNV BAMTKEY3N0IzODgyNTE5M0VCODA3NTVEMjQyQzI4RUQxMkY0QTVFRkUxMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiSAyAIl435M1t4VmkqC5D7jd6 Ji77Rks8u50h9gE+QVH8fsWajV/T+ZTjFBX3hvsduTwaBACB0muJNxiLteZNg8qN hoCDEkQ4ojk/Uv3egGenqcV7acUSZkAfON5QpT6HebLXQg0m3lcW6yEtGeH6tG+h LpIahfR8VaW6TIRzqPN/y9bHNmH+GjROEYUuX5GVPAen1pzUqPnxdHXwwfX9magn mr4iZx7X5GEpsdB0wj1o2z5s20cwrgD56A/93fWFvyzgETagvHg1QzenUC6ZVAOo +7xz+Gq+03fADm9dmzRh5t96CagIrX+07Qn6pll+4rzfZtAgc/OrGaxz9rzbAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU93s4glGT64B1XSQsKO0S9KXv4RcwHwYDVR0j BBgwFoAUnfhZl7G5s1jhxD82dlqgpKAhRK4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDAyZTBiYTMtZmU2MC00NWIxLTkxNjAtODY4YTJmOGE0 M2IxLzMvOURGODU5OTdCMUI5QjM1OEUxQzQzRjM2NzY1QUEwQTRBMDIxNDRBRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25maFpsN0c1czFqaHhEODJkbHFncEtB aFJLNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8wMDJlMGJhMy1m ZTYwLTQ1YjEtOTE2MC04NjhhMmY4YTQzYjEvMy85REY4NTk5N0IxQjlCMzU4RTFD NDNGMzY3NjVBQTBBNEEwMjE0NEFFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHGryZCTTNNvmFAYhi7YE 17oMIXPb29eij7MNdrDwpvn6vw3h+pKtubzF3bsNQAT7mB6VYSTbhusITkfROhcL efHvTL814mzQgGdC+8IrJDX7zEZn8JTlMGgWPFcFukaIl1qOdH8Tvffx3YkxDu1H xMosaBmOCnE3Iq4jzk+pHkr+zNjbMIC4to6TXz+m6CrX/YTJBKqhdVj28fBAgivt 8bZtaPMyKLLkAY4qD6yOHfuID855RwJ+fTbaG8VtwNhVWGboL99r76l0WZC+vi97 YELy0oncxhvfTxzL+pzrBcXNtXKv4vMwrV3Xj2fr1VNJZ4gZtSbRkMhPZvObb2sF cg== -----END CERTIFICATE-----Generated at Wed Jun 4 12:08:19 2025 by rpki-client