$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft File: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft (raw, json) Hash identifier: RKcr6PdSTGk4ZM9DBxBp7BzHtKEHUeep6R4yltPPMkw= Subject key identifier: 41:B8:EA:91:E6:EB:B9:D5:D2:22:26:39:E2:0F:C8:88:60:DB:5C:30 Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Certificate serial: 319AE6E4B1458C3915780960B011AF03920BEBB0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft Manifest number: 05C5 Signing time: Thu 30 Apr 2026 20:16:47 +0000 Manifest this update: Thu 30 Apr 2026 20:11:47 +0000 Manifest next update: Fri 01 May 2026 22:05:47 +0000 Files and hashes: 1: 34362e3138332e33302e302f32342d3234203d3e203239383032.roa (hash: 72nHdO4b4bTlOVAl3qEYnqrejyz7ta1anmrlcAXdAWw=) 2: 34362e3138332e33302e302f32342d3234203d3e203631333137.roa (hash: pxnqedD3kuwz1m+9x0q4e9R46P3xXGAP6tM7JZr4zqQ=) 3: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl (hash: 1gK/xtP1i/Euv2usBquWtvRK9ivzDB5aRRYoUr4eoE0=) 4: 34362e3138332e32372e302f32342d3234203d3e20323132323338.roa (hash: hl0LwIkWgXiEYZpFaX3uPN7EPrDq4mPps9alNUssHF4=) 5: 34362e3138332e32352e302f32342d3234203d3e20323132323338.roa (hash: P1+0nsQvOjxz4uhyz/dzfXbHlZHNA/BWK3bhubdLlKg=) 6: 34362e3138332e32352e302f32342d3234203d3e203633303233.roa (hash: xQUOQgb0PWc+/72PSNuNhyH/1WTrTU3f/QF4HqRWRbI=) 7: 34362e3138332e32382e302f32342d3234203d3e203631333137.roa (hash: EQc8ZSWRYu3w3yABE1KT+uLZnchUtUDhUBMKc9gsz8U=) 8: 34362e3138332e32362e302f32342d3234203d3e2039303039.roa (hash: ckwThy9Ftd6Jb/nTbj53dd12b3F3RSR9Etp8JSW5svM=) 9: 34362e3138332e32382e302f32342d3234203d3e203239383032.roa (hash: kUcJYnZDGTlKIzzpmv1f5LvT/3qyw3JDmGespkIKDl8=) 10: 34362e3138332e32342e302f32342d3234203d3e20313432313436.roa (hash: 3mHdqoYOlm/9t7fBBGZ6MyRWfPgkHCq5iWxroEvrW6w=) 11: 34362e3138332e32392e302f32342d3234203d3e20383334.roa (hash: cCNMl/j8O4+QWokqGu7uLfEk807f860f4W6iD80yDww=) 12: 34362e3138332e33312e302f32342d3234203d3e203433333530.roa (hash: xgztmir76zbcn1TSqgELAY0RZNOYsv6tbCBjd0ajcKA=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 01 May 2026 22:05:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:9a:e6:e4:b1:45:8c:39:15:78:09:60:b0:11:af:03:92:0b:eb:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Validity Not Before: Apr 30 20:11:47 2026 GMT Not After : May 1 22:05:47 2026 GMT Subject: CN=41B8EA91E6EBB9D5D2222639E20FC88860DB5C30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:af:cc:17:9a:94:2a:2b:c1:cf:c8:42:d8:f4: d7:f5:38:19:c0:b2:c4:63:d5:f4:18:b0:79:52:5b: b6:2e:6d:ba:87:92:79:5e:4a:32:1f:33:31:75:a6: b0:8b:c0:7a:47:2c:18:ea:f6:b3:e3:6d:2f:88:97: 20:61:7d:30:0e:cf:dd:b3:41:1e:1d:53:0b:de:e7: 6a:5a:82:44:65:40:37:a4:84:94:c8:fd:53:a1:9e: 9d:b5:bd:07:44:fe:64:e1:ae:21:7a:da:73:7a:af: 49:95:d5:9f:0d:6c:62:ab:af:3e:26:f6:92:82:c6: f0:db:a1:c6:74:df:b2:99:4e:72:82:29:b4:72:ad: ae:cf:cf:d1:eb:41:9c:11:ae:7a:f2:a4:78:b2:f0: 11:bd:e2:58:fa:36:86:d8:56:e2:57:86:a7:be:db: 71:6e:4e:1d:61:64:29:c1:c2:89:7f:aa:9a:1c:10: 62:8f:11:e0:b6:49:bf:37:08:7e:ab:af:6e:61:61: e1:5d:5d:63:09:43:32:37:fa:83:e3:da:95:21:bb: 4e:65:07:84:2a:f8:3b:3c:61:f6:0c:1a:98:f1:b8: 0f:eb:0c:10:92:c6:41:15:eb:f3:f7:dc:f4:e0:62: a9:ec:e6:e6:2a:6e:1b:3e:4e:e0:82:c1:8a:a9:47: ec:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:B8:EA:91:E6:EB:B9:D5:D2:22:26:39:E2:0F:C8:88:60:DB:5C:30 X509v3 Authority Key Identifier: keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:46:9e:e6:26:c6:1a:ab:a7:84:d2:ad:d5:aa:03:1b:6b:87: 43:fa:41:40:3e:05:11:89:10:87:a4:90:f0:53:2e:c9:e5:40: 3f:a5:7e:66:95:6d:3a:df:15:6b:7f:77:20:b6:2a:31:41:b5: ae:f4:51:0e:1e:fb:1a:47:d9:6e:49:e2:bb:d1:2a:a1:d8:4f: 50:e4:3e:2b:fe:b8:7c:9c:b0:06:38:e4:20:44:93:21:b3:7f: 83:89:25:2d:cf:68:83:ca:6a:ba:de:af:e1:fd:19:d3:d1:a3: a5:2d:56:4c:39:34:e9:0a:54:2a:ab:7d:95:7d:d3:08:32:68: 94:ac:76:12:39:08:97:58:c9:fb:a8:fe:f6:cb:06:3b:8f:c0: 55:e7:a0:78:c0:10:21:6f:50:dd:28:ed:20:38:0e:84:2f:09: fe:70:e8:41:ae:2b:c8:59:75:4f:d8:82:15:e5:b9:d8:84:3c: 9c:87:cf:07:9c:14:f0:f0:b8:4a:3f:37:fb:26:0b:92:6e:7c: eb:e7:f8:a8:d3:21:fb:75:18:df:ff:31:48:00:de:22:9c:b7: 36:6f:e9:cc:22:fe:14:0a:e3:42:55:ea:09:5b:0d:4d:50:72: d0:48:8b:c3:86:f5:e3:77:fe:d9:4f:35:d0:0b:5b:b5:0c:ac: 7d:d6:c9:db -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUMZrm5LFFjDkVeAlgsBGvA5IL67AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjRlNTM3ODhiZDRlZmEyM2IxYTgyMDdiN2U3NGE4ZTFj YzY3N2IwMDAeFw0yNjA0MzAyMDExNDdaFw0yNjA1MDEyMjA1NDdaMDMxMTAvBgNV BAMTKDQxQjhFQTkxRTZFQkI5RDVEMjIyMjYzOUUyMEZDODg4NjBEQjVDMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqr8wXmpQqK8HPyELY9Nf1OBnA ssRj1fQYsHlSW7YubbqHknleSjIfMzF1prCLwHpHLBjq9rPjbS+IlyBhfTAOz92z QR4dUwve52pagkRlQDekhJTI/VOhnp21vQdE/mThriF62nN6r0mV1Z8NbGKrrz4m 9pKCxvDbocZ037KZTnKCKbRyra7Pz9HrQZwRrnrypHiy8BG94lj6NobYVuJXhqe+ 23FuTh1hZCnBwol/qpocEGKPEeC2Sb83CH6rr25hYeFdXWMJQzI3+oPj2pUhu05l B4Qq+Ds8YfYMGpjxuA/rDBCSxkEV6/P33PTgYqns5uYqbhs+TuCCwYqpR+wpAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUQbjqkebrudXSIiY54g/IiGDbXDAwHwYDVR0j BBgwFoAUJOU3iL1O+iOxqCB7fnSo4cxnewAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTZhY2I5YTAtNmQxZS00YWU0LTkxNzctZDkzOGU5ODA0 Mzk1LzAvMjRFNTM3ODhCRDRFRkEyM0IxQTgyMDdCN0U3NEE4RTFDQzY3N0IwMC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0pPVTNpTDFPLWlPeHFDQjdmblNvNGN4 bmV3QS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xNmFjYjlhMC02 ZDFlLTRhZTQtOTE3Ny1kOTM4ZTk4MDQzOTUvMC8yNEU1Mzc4OEJENEVGQTIzQjFB ODIwN0I3RTc0QThFMUNDNjc3QjAwLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXEae5ibGGqunhNKt1aoD G2uHQ/pBQD4FEYkQh6SQ8FMuyeVAP6V+ZpVtOt8Va393ILYqMUG1rvRRDh77GkfZ bkniu9EqodhPUOQ+K/64fJywBjjkIESTIbN/g4klLc9og8pqut6v4f0Z09GjpS1W TDk06QpUKqt9lX3TCDJolKx2EjkIl1jJ+6j+9ssGO4/AVeegeMAQIW9Q3SjtIDgO hC8J/nDoQa4ryFl1T9iCFeW52IQ8nIfPB5wU8PC4Sj83+yYLkm586+f4qNMh+3UY 3/8xSADeIpy3Nm/pzCL+FArjQlXqCVsNTVBy0EiLw4b143f+2U810AtbtQysfdbJ 2w== -----END CERTIFICATE-----Generated at Fri May 1 10:22:44 2026 by rpki-client