$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft File: 9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft (raw, json) Hash identifier: b51zy7zk27SWKAGjT6WPuxf43B4QqhKOTZf9zDp6uz4= Subject key identifier: 12:EE:12:E2:64:F4:70:03:2B:1D:C5:96:CA:91:FF:8D:C5:67:E9:F4 Authority key identifier: 9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE Certificate issuer: /CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae Certificate serial: 79368E36F97F870D453AEEFA568257FE22CA5384 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft Manifest number: 0423 Signing time: Sat 06 Sep 2025 03:15:54 +0000 Manifest this update: Sat 06 Sep 2025 03:10:54 +0000 Manifest next update: Sun 07 Sep 2025 05:42:54 +0000 Files and hashes: 1: D34606949D385DB42714FE71274FAC9948EF279C.cer (hash: mr8O2GLITID87EQbUR0mW/IyDelg6k8ezJcKyZbdo9E=) 2: 326130323a323633303a3a2f33322d3332203d3e203135343139.roa (hash: qWp9paAJXWyG6T4NlWTD/O+mrcUKf+wb2OOSJ/RUTQM=) 3: 3138352e3134392e3135342e302f32342d3234203d3e203434373731.roa (hash: Pgs5ueHQXHOzRUAnFpUKAel9Ig4WE+HMpXX4wHeR3SY=) 4: 3138352e3134392e3135332e302f32342d3234203d3e203133313934.roa (hash: DudKC7EbN/x1z3E3UcohZZDxNJCJJwujdDPss+8DrkI=) 5: 3231372e392e3234322e302f32342d3234203d3e203135343139.roa (hash: mOAttZBNx/CTeO/Z3xtwFj9TNAzOHD7wWSzttDopHBY=) 6: 38392e3131362e31352e302f32342d3234203d3e203135343139.roa (hash: /LejqbWiFUxs1DgkjzVItnmcQXCtVjOkQxj/fIk9rAQ=) 7: 38392e3131362e342e302f32322d3232203d3e203135343139.roa (hash: S7PYQmgyaS+nUukOrNi+7gU0SVsm2vupfOTXwPtPOXM=) 8: 3138352e3134392e3135332e302f32342d3234203d3e203434373731.roa (hash: 3LQCLtbZ2cAzmsqD8inTKmHS0+b4RIJVefCUUonuvB0=) 9: 38392e3131362e31392e302f32342d3234203d3e203135343139.roa (hash: 4JL3Gtu7UsX3IaHs3LaQwmdxUfCfFV6YWJerzJoc+wE=) 10: 326130323a323633303a3a2f32392d3239203d3e203135343139.roa (hash: 8htEN27nXC1XFUYvScmaKLGazPRUUosEipnSlN6XgBk=) 11: 38322e3134302e3133312e302f32342d3234203d3e203135343139.roa (hash: YcmyLeFBQ+WK9MxW4qT13yT/CsdMqFWcCNcHges7cNY=) 12: 38362e33382e332e302f32342d3234203d3e203135343139.roa (hash: 1jWpw+W9zeIRwNdxwEeWvA1uKZ5XVqeLW/yed0hU+d4=) 13: 38362e33382e382e302f32312d3231203d3e203135343139.roa (hash: uWYPVYjRnhouz2kB1gip220mm9ixJ1+yxtSXIITlxEw=) 14: 38392e3131362e34312e302f32342d3234203d3e203135343139.roa (hash: nrTdofG3QiyT59ifvXqBtX8pF4lYbmqFJc6mO1yyOW0=) 15: 3138352e3134392e3135332e302f32342d3234203d3e203135343430.roa (hash: ld9bmw/lU5ViE7fFfnUAARe92vzpSXeZ47xTrIGHE2Y=) 16: 38392e3131362e3131362e302f32322d3232203d3e203135343139.roa (hash: +6pKiWIr1xfpXpXCXiVMVMi0tFetJIO1JWmpuLH4c10=) 17: 38392e3131362e322e302f32332d3233203d3e203135343139.roa (hash: twheygdBU9M/hWK8PwEKS7vel1IBGYLsGKuF6NDPdmA=) 18: 38322e3134302e3138392e302f32342d3234203d3e203135343139.roa (hash: q/tmnbq1kdd2hUMwbcuSKcZt7pux1EaGGpLbn7IfofI=) 19: 38322e3134302e3137382e302f32342d3234203d3e203135343139.roa (hash: kVZlSJSrWOIFgbVyyqSUiD6jECTpvfhx5mx8hRL1cGE=) 20: 3138352e3134392e3135352e302f32342d3234203d3e203434373731.roa (hash: W9T8aPnkMAlNbGOA+isd3U8U+YdKRxlDW0/+vHw4iGg=) 21: 38392e3131362e312e302f32342d3234203d3e203135343139.roa (hash: QlNtxapPtCDVmKsd/rR7Y2Bq1QIkmg64gwg6mpWc9ZY=) 22: 38392e3131362e31322e302f32332d3233203d3e203135343139.roa (hash: vCrLMX0eSFK/WsSjH4NPI6BnYmwIN7ZEFJbozFxO6uE=) 23: 38392e3131362e34322e302f32332d3233203d3e203135343139.roa (hash: dqiC7sfkexEdY4bNAfWo7TkIe5GTWHX5uIAGfupS9Ro=) 24: 3231372e392e3234312e302f32342d3234203d3e203135343139.roa (hash: hFAW06mmhAPSV/HJ4B8aC2PvIR5CrcKx3FcqsTikSiM=) 25: 38392e3131362e31362e302f32332d3233203d3e203135343139.roa (hash: 7gdiZpTYF4VKwdmEsTHKuwi6oAiZC6mVLx4cpcdl/GE=) 26: 9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl (hash: ivJwtHXH+j6qEAaOaR2dmzk2SLbyg1bhT1SXvnvH11Q=) 27: 3138352e3134392e3135322e302f32322d3232203d3e203135343139.roa (hash: yiPh36TU1+o+jLX45pyYr1yhJEOI86BPrMUwrS94mMI=) 28: 3231372e392e3235342e302f32332d3233203d3e203135343139.roa (hash: iksl6QO5bGAwqBp6Vth9mckUoVZxpFnDxq6gmgw5QDs=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Sep 2025 02:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:36:8e:36:f9:7f:87:0d:45:3a:ee:fa:56:82:57:fe:22:ca:53:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae Validity Not Before: Sep 6 03:10:54 2025 GMT Not After : Sep 7 05:42:54 2025 GMT Subject: CN=12EE12E264F470032B1DC596CA91FF8DC567E9F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:96:94:fd:43:2f:6c:cf:35:56:d1:0a:d3:d0: 4b:6b:18:6a:ed:1f:dc:bf:60:36:75:66:51:5e:ce: 22:40:9e:11:94:d6:fb:e2:54:e5:c1:88:66:7d:fc: 1c:fe:ff:0d:1e:c3:85:f4:60:c2:27:0b:81:01:fb: 1f:f7:43:eb:cf:68:55:2a:44:d0:82:cd:0f:91:2a: 18:57:64:54:2a:27:cb:a2:18:fc:34:16:61:f0:4c: 65:1e:a9:94:a5:6d:a6:f5:96:19:9a:41:e5:0b:ab: de:37:47:33:c4:b3:6d:ca:87:90:22:ca:97:cc:b8: 22:dc:ed:1a:95:f2:7f:23:a1:cc:35:df:46:70:45: 6f:20:cd:7e:61:6f:0b:2c:a1:fc:43:36:75:bc:ab: e8:ed:ca:e3:1a:f2:e4:02:65:a8:87:31:38:5f:5a: eb:41:0a:26:b6:41:88:d6:02:0a:fa:9d:ba:b6:11: 09:95:9e:ab:37:23:81:cb:78:98:bd:b3:13:2b:36: 04:55:c1:6a:77:48:b8:2b:1b:99:15:c9:41:48:dc: 2e:0e:29:c1:a4:45:25:52:c9:a9:bb:34:8a:00:0e: 7b:30:f9:b1:7f:7b:2c:e4:0a:7e:1f:63:8b:e1:5f: 24:2e:d9:02:41:3b:28:8b:98:b0:db:5b:a7:2f:65: ab:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:EE:12:E2:64:F4:70:03:2B:1D:C5:96:CA:91:FF:8D:C5:67:E9:F4 X509v3 Authority Key Identifier: keyid:9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:11:d2:e1:d5:5f:d2:00:d9:53:86:61:0d:27:f5:84:b8:cf: 70:03:8b:05:f8:fd:fd:c1:06:b1:d3:c3:b6:8d:0c:67:41:c1: b2:4b:25:4a:ba:f7:36:40:f2:35:1b:a3:74:10:f2:5c:20:40: cd:82:ea:e1:83:41:fe:45:0b:25:cd:78:6c:a6:41:e7:4d:ed: 48:b3:98:e2:42:17:64:4a:9c:38:10:11:63:2c:10:7a:b1:d9: 43:ff:64:f4:7e:81:1f:bf:a6:85:bc:6e:e1:f8:3f:38:0c:c5: 25:f3:79:3c:b0:ef:7a:13:1f:a6:08:b4:23:97:b1:39:c2:b1: 8f:3a:ae:5c:ec:88:d9:18:a6:bf:1d:e1:f8:ac:a5:b6:29:aa: 2e:f8:3d:bf:da:57:d6:03:f7:17:69:e8:61:73:2c:e6:c7:0f: 07:5e:ff:5c:14:43:0b:29:ae:05:6a:84:39:89:0d:cd:92:4e: 76:cd:24:66:5f:c3:9b:48:8f:85:81:5f:bb:45:ae:6f:e9:76: 05:ff:43:1c:9e:27:72:25:e6:9b:ef:87:e4:a6:76:3d:fa:5a: 3b:85:55:7e:0f:9f:00:76:c3:58:53:a5:65:9b:42:a9:fc:ab: 6a:9b:1c:da:03:fd:8c:0e:d2:0b:e8:4c:4c:99:1c:53:0b:7d: 01:85:40:80 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUeTaONvl/hw1FOu76VoJX/iLKU4QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWRmODU5OTdiMWI5YjM1OGUxYzQzZjM2NzY1YWEwYTRh MDIxNDRhZTAeFw0yNTA5MDYwMzEwNTRaFw0yNTA5MDcwNTQyNTRaMDMxMTAvBgNV BAMTKDEyRUUxMkUyNjRGNDcwMDMyQjFEQzU5NkNBOTFGRjhEQzU2N0U5RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwlpT9Qy9szzVW0QrT0EtrGGrt H9y/YDZ1ZlFeziJAnhGU1vviVOXBiGZ9/Bz+/w0ew4X0YMInC4EB+x/3Q+vPaFUq RNCCzQ+RKhhXZFQqJ8uiGPw0FmHwTGUeqZSlbab1lhmaQeULq943RzPEs23Kh5Ai ypfMuCLc7RqV8n8jocw130ZwRW8gzX5hbwssofxDNnW8q+jtyuMa8uQCZaiHMThf WutBCia2QYjWAgr6nbq2EQmVnqs3I4HLeJi9sxMrNgRVwWp3SLgrG5kVyUFI3C4O KcGkRSVSyam7NIoADnsw+bF/eyzkCn4fY4vhXyQu2QJBOyiLmLDbW6cvZavzAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUEu4S4mT0cAMrHcWWypH/jcVn6fQwHwYDVR0j BBgwFoAUnfhZl7G5s1jhxD82dlqgpKAhRK4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDAyZTBiYTMtZmU2MC00NWIxLTkxNjAtODY4YTJmOGE0 M2IxLzMvOURGODU5OTdCMUI5QjM1OEUxQzQzRjM2NzY1QUEwQTRBMDIxNDRBRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25maFpsN0c1czFqaHhEODJkbHFncEtB aFJLNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8wMDJlMGJhMy1m ZTYwLTQ1YjEtOTE2MC04NjhhMmY4YTQzYjEvMy85REY4NTk5N0IxQjlCMzU4RTFD NDNGMzY3NjVBQTBBNEEwMjE0NEFFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlxHS4dVf0gDZU4ZhDSf1 hLjPcAOLBfj9/cEGsdPDto0MZ0HBskslSrr3NkDyNRujdBDyXCBAzYLq4YNB/kUL Jc14bKZB503tSLOY4kIXZEqcOBARYywQerHZQ/9k9H6BH7+mhbxu4fg/OAzFJfN5 PLDvehMfpgi0I5exOcKxjzquXOyI2Rimvx3h+KyltimqLvg9v9pX1gP3F2noYXMs 5scPB17/XBRDCymuBWqEOYkNzZJOds0kZl/Dm0iPhYFfu0Wub+l2Bf9DHJ4nciXm m++H5KZ2PfpaO4VVfg+fAHbDWFOlZZtCqfyrapsc2gP9jA7SC+hMTJkcUwt9AYVA gA== -----END CERTIFICATE-----Generated at Sat Sep 6 06:02:17 2025 by rpki-client