$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft File: 9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft (raw, json) Hash identifier: kMSxbNKKtGVnQSkyOahH3flKXcM/4nVU+qa/lGKfDIM= Subject key identifier: 23:EC:34:1C:B6:D4:4D:B6:5F:24:48:C3:35:63:D7:45:97:E7:3B:3F Authority key identifier: 9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE Certificate issuer: /CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae Certificate serial: 179458978258CF26628C7658258F4D4A86D27E9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft Manifest number: 0515 Signing time: Thu 05 Mar 2026 18:44:39 +0000 Manifest this update: Thu 05 Mar 2026 18:39:39 +0000 Manifest next update: Fri 06 Mar 2026 22:11:39 +0000 Files and hashes: 1: 326130323a323633303a3a2f33322d3332203d3e203135343139.roa (hash: qWp9paAJXWyG6T4NlWTD/O+mrcUKf+wb2OOSJ/RUTQM=) 2: 38392e3131362e312e302f32342d3234203d3e203135343139.roa (hash: QlNtxapPtCDVmKsd/rR7Y2Bq1QIkmg64gwg6mpWc9ZY=) 3: 38322e3134302e3133312e302f32342d3234203d3e203135343139.roa (hash: YcmyLeFBQ+WK9MxW4qT13yT/CsdMqFWcCNcHges7cNY=) 4: 38392e3131362e3131362e302f32322d3232203d3e203135343139.roa (hash: +6pKiWIr1xfpXpXCXiVMVMi0tFetJIO1JWmpuLH4c10=) 5: 3138352e3134392e3135322e302f32322d3232203d3e203135343139.roa (hash: yiPh36TU1+o+jLX45pyYr1yhJEOI86BPrMUwrS94mMI=) 6: D34606949D385DB42714FE71274FAC9948EF279C.cer (hash: TQCZQkzK1CqgemnKR/erluvTKMYq58W//DcXZ16FiAE=) 7: 3138352e3134392e3135332e302f32342d3234203d3e203135343430.roa (hash: ld9bmw/lU5ViE7fFfnUAARe92vzpSXeZ47xTrIGHE2Y=) 8: 326130323a323633303a3a2f32392d3239203d3e203135343139.roa (hash: 8htEN27nXC1XFUYvScmaKLGazPRUUosEipnSlN6XgBk=) 9: 38392e3131362e31352e302f32342d3234203d3e203135343139.roa (hash: /LejqbWiFUxs1DgkjzVItnmcQXCtVjOkQxj/fIk9rAQ=) 10: 38362e33382e332e302f32342d3234203d3e203135343139.roa (hash: 1jWpw+W9zeIRwNdxwEeWvA1uKZ5XVqeLW/yed0hU+d4=) 11: 3138352e3134392e3135332e302f32342d3234203d3e203434373731.roa (hash: 3LQCLtbZ2cAzmsqD8inTKmHS0+b4RIJVefCUUonuvB0=) 12: 38392e3131362e34312e302f32342d3234203d3e203135343139.roa (hash: nrTdofG3QiyT59ifvXqBtX8pF4lYbmqFJc6mO1yyOW0=) 13: 38362e33382e382e302f32312d3231203d3e203135343139.roa (hash: uWYPVYjRnhouz2kB1gip220mm9ixJ1+yxtSXIITlxEw=) 14: 38392e3131362e342e302f32322d3232203d3e203135343139.roa (hash: S7PYQmgyaS+nUukOrNi+7gU0SVsm2vupfOTXwPtPOXM=) 15: 38392e3131362e31362e302f32332d3233203d3e203135343139.roa (hash: 7gdiZpTYF4VKwdmEsTHKuwi6oAiZC6mVLx4cpcdl/GE=) 16: 3231372e392e3234312e302f32342d3234203d3e203135343139.roa (hash: hFAW06mmhAPSV/HJ4B8aC2PvIR5CrcKx3FcqsTikSiM=) 17: 38392e3131362e31322e302f32332d3233203d3e203135343139.roa (hash: vCrLMX0eSFK/WsSjH4NPI6BnYmwIN7ZEFJbozFxO6uE=) 18: 3231372e392e3235342e302f32332d3233203d3e203135343139.roa (hash: iksl6QO5bGAwqBp6Vth9mckUoVZxpFnDxq6gmgw5QDs=) 19: 3231372e392e3234322e302f32342d3234203d3e203135343139.roa (hash: mOAttZBNx/CTeO/Z3xtwFj9TNAzOHD7wWSzttDopHBY=) 20: 38322e3134302e3137382e302f32342d3234203d3e203135343139.roa (hash: kVZlSJSrWOIFgbVyyqSUiD6jECTpvfhx5mx8hRL1cGE=) 21: 38392e3131362e322e302f32332d3233203d3e203135343139.roa (hash: twheygdBU9M/hWK8PwEKS7vel1IBGYLsGKuF6NDPdmA=) 22: 38392e3131362e31392e302f32342d3234203d3e203135343139.roa (hash: 4JL3Gtu7UsX3IaHs3LaQwmdxUfCfFV6YWJerzJoc+wE=) 23: 3138352e3134392e3135342e302f32342d3234203d3e203434373731.roa (hash: Pgs5ueHQXHOzRUAnFpUKAel9Ig4WE+HMpXX4wHeR3SY=) 24: 3138352e3134392e3135332e302f32342d3234203d3e203133313934.roa (hash: DudKC7EbN/x1z3E3UcohZZDxNJCJJwujdDPss+8DrkI=) 25: 9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl (hash: OAmeWuYXGB4U5r9i59wFrOCVzIn2SU6M7jv9S9gYbOw=) 26: 3138352e3134392e3135352e302f32342d3234203d3e203434373731.roa (hash: W9T8aPnkMAlNbGOA+isd3U8U+YdKRxlDW0/+vHw4iGg=) 27: 38392e3131362e34322e302f32332d3233203d3e203135343139.roa (hash: dqiC7sfkexEdY4bNAfWo7TkIe5GTWHX5uIAGfupS9Ro=) 28: 38322e3134302e3138392e302f32342d3234203d3e203135343139.roa (hash: q/tmnbq1kdd2hUMwbcuSKcZt7pux1EaGGpLbn7IfofI=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Mar 2026 16:05:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:94:58:97:82:58:cf:26:62:8c:76:58:25:8f:4d:4a:86:d2:7e:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae Validity Not Before: Mar 5 18:39:39 2026 GMT Not After : Mar 6 22:11:39 2026 GMT Subject: CN=23EC341CB6D44DB65F2448C33563D74597E73B3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:41:a5:b0:83:a9:64:41:56:f2:01:2b:e3:05: e8:6d:b1:01:43:24:22:66:4f:83:4e:72:7f:4b:20: 07:95:91:55:4c:5b:d7:6d:ea:68:b9:d2:8d:7f:e4: 8a:b5:92:27:fc:7d:a1:3a:19:6e:78:0e:5e:eb:43: e9:e6:a5:38:c0:0f:ed:de:31:72:29:c5:90:95:9d: bb:37:69:2b:06:de:08:17:89:57:76:f4:90:31:81: 2d:0a:79:3e:09:86:96:eb:b4:20:a7:ca:b2:db:3e: 0b:83:8d:ce:b1:19:10:f6:4e:a1:a6:aa:3a:6e:fe: 64:69:d7:b3:00:09:8b:93:92:34:09:99:53:d6:55: 6e:8c:60:b3:92:c7:30:3e:4d:7e:b9:a0:1b:35:e5: 22:d0:73:37:7e:ad:b4:16:5f:e1:c9:cd:b8:17:d8: 1f:30:d3:d2:78:13:40:d0:0a:04:92:3b:37:62:73: 99:a3:c5:9e:ea:fe:ec:55:cd:10:cd:bf:79:e0:a3: f0:23:f5:c2:fa:a1:20:12:9c:5a:85:97:c8:58:48: b1:26:b3:2d:21:90:9a:f6:2e:4a:b0:a4:f6:c6:16: 2f:1e:7e:ed:7e:33:a6:87:03:c4:39:ea:f2:4f:3b: 3d:11:d8:a5:0b:00:fd:03:1a:6c:5d:c3:0d:03:71: 52:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:EC:34:1C:B6:D4:4D:B6:5F:24:48:C3:35:63:D7:45:97:E7:3B:3F X509v3 Authority Key Identifier: keyid:9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:67:00:6e:e7:27:06:5a:3a:25:ee:5e:76:29:10:88:49:1e: fd:e0:68:5f:bd:7f:05:a8:25:5b:e0:77:ae:15:67:75:31:e3: d1:b8:94:5b:ac:6f:5f:d2:1e:4f:0c:de:bf:91:2a:3a:1b:a3: b3:f1:0f:d5:b6:ff:da:f9:0f:1e:54:10:b7:ba:d6:54:24:fa: 05:6c:cd:9b:53:70:e1:55:f7:eb:ab:67:23:a4:66:50:eb:60: 4d:3d:6e:ca:33:0b:ea:b1:ea:d2:24:46:28:54:df:30:02:4c: ee:16:2a:e6:45:26:78:f0:80:83:21:ee:00:20:05:25:22:92: 8f:42:aa:dd:ce:72:bc:da:85:8c:12:6e:61:64:1e:99:78:a4: 7c:99:76:64:13:13:1e:27:9e:6c:27:22:d0:d3:b2:01:71:ce: 2a:20:7c:f3:5f:52:02:bb:6e:fb:91:fb:58:87:60:f8:16:54: 62:90:c6:9c:34:8b:ad:8c:84:e6:12:34:33:53:f6:e0:c5:20: a1:72:17:f7:3a:b0:89:bb:4c:d8:97:e7:b4:f2:da:bb:fb:3b: c7:05:ca:70:cc:68:4b:78:9a:7b:91:df:cb:50:1e:26:d6:93: 1d:e3:3b:72:93:ed:41:0d:a9:bc:e1:6f:d2:d3:20:cf:18:22: 63:e9:89:b9 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUF5RYl4JYzyZijHZYJY9NSobSfp8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWRmODU5OTdiMWI5YjM1OGUxYzQzZjM2NzY1YWEwYTRh MDIxNDRhZTAeFw0yNjAzMDUxODM5MzlaFw0yNjAzMDYyMjExMzlaMDMxMTAvBgNV BAMTKDIzRUMzNDFDQjZENDREQjY1RjI0NDhDMzM1NjNENzQ1OTdFNzNCM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfQaWwg6lkQVbyASvjBehtsQFD JCJmT4NOcn9LIAeVkVVMW9dt6mi50o1/5Iq1kif8faE6GW54Dl7rQ+nmpTjAD+3e MXIpxZCVnbs3aSsG3ggXiVd29JAxgS0KeT4JhpbrtCCnyrLbPguDjc6xGRD2TqGm qjpu/mRp17MACYuTkjQJmVPWVW6MYLOSxzA+TX65oBs15SLQczd+rbQWX+HJzbgX 2B8w09J4E0DQCgSSOzdic5mjxZ7q/uxVzRDNv3ngo/Aj9cL6oSASnFqFl8hYSLEm sy0hkJr2LkqwpPbGFi8efu1+M6aHA8Q56vJPOz0R2KULAP0DGmxdww0DcVKjAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUI+w0HLbUTbZfJEjDNWPXRZfnOz8wHwYDVR0j BBgwFoAUnfhZl7G5s1jhxD82dlqgpKAhRK4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDAyZTBiYTMtZmU2MC00NWIxLTkxNjAtODY4YTJmOGE0 M2IxLzMvOURGODU5OTdCMUI5QjM1OEUxQzQzRjM2NzY1QUEwQTRBMDIxNDRBRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25maFpsN0c1czFqaHhEODJkbHFncEtB aFJLNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8wMDJlMGJhMy1m ZTYwLTQ1YjEtOTE2MC04NjhhMmY4YTQzYjEvMy85REY4NTk5N0IxQjlCMzU4RTFD NDNGMzY3NjVBQTBBNEEwMjE0NEFFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfWcAbucnBlo6Je5edikQ iEke/eBoX71/BaglW+B3rhVndTHj0biUW6xvX9IeTwzev5EqOhujs/EP1bb/2vkP HlQQt7rWVCT6BWzNm1Nw4VX366tnI6RmUOtgTT1uyjML6rHq0iRGKFTfMAJM7hYq 5kUmePCAgyHuACAFJSKSj0Kq3c5yvNqFjBJuYWQemXikfJl2ZBMTHieebCci0NOy AXHOKiB8819SArtu+5H7WIdg+BZUYpDGnDSLrYyE5hI0M1P24MUgoXIX9zqwibtM 2JfntPLau/s7xwXKcMxoS3iae5Hfy1AeJtaTHeM7cpPtQQ2pvOFv0tMgzxgiY+mJ uQ== -----END CERTIFICATE-----Generated at Thu Mar 5 21:52:03 2026 by rpki-client