$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft File: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft (raw, json) Hash identifier: NUJ6MaalbDNnx5y6IpGT+j8pOBhfBy6l1hK3wYP2aZY= Subject key identifier: 52:56:06:83:67:AF:84:05:B3:4D:7E:C9:D1:87:3E:71:2D:67:36:2A Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Certificate serial: 5A32EB2229A693EE35563C32028345721138A157 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft Manifest number: 0607 Signing time: Fri 19 Jun 2026 10:48:28 +0000 Manifest this update: Fri 19 Jun 2026 10:43:28 +0000 Manifest next update: Sat 20 Jun 2026 13:17:28 +0000 Files and hashes: 1: 34362e3138332e32352e302f32342d3234203d3e203633303233.roa (hash: xQUOQgb0PWc+/72PSNuNhyH/1WTrTU3f/QF4HqRWRbI=) 2: 34362e3138332e33312e302f32342d3234203d3e203433333530.roa (hash: xgztmir76zbcn1TSqgELAY0RZNOYsv6tbCBjd0ajcKA=) 3: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl (hash: bZ+ImK1IylZCluEvHrNg7Xne+v2mmzSsf31ukWhcXQE=) 4: 34362e3138332e32342e302f32342d3234203d3e20313432313436.roa (hash: 3mHdqoYOlm/9t7fBBGZ6MyRWfPgkHCq5iWxroEvrW6w=) 5: 34362e3138332e32362e302f32342d3234203d3e2039303039.roa (hash: ckwThy9Ftd6Jb/nTbj53dd12b3F3RSR9Etp8JSW5svM=) 6: 34362e3138332e32392e302f32342d3234203d3e20383334.roa (hash: cCNMl/j8O4+QWokqGu7uLfEk807f860f4W6iD80yDww=) 7: 34362e3138332e33302e302f32342d3234203d3e203631333137.roa (hash: Ss/HYpCtXLgsgjLt2I87OIMAV3Zt1zbXev+rVN4ldH4=) 8: 34362e3138332e32372e302f32342d3234203d3e20323132323338.roa (hash: hl0LwIkWgXiEYZpFaX3uPN7EPrDq4mPps9alNUssHF4=) 9: 34362e3138332e32352e302f32342d3234203d3e20323132323338.roa (hash: P1+0nsQvOjxz4uhyz/dzfXbHlZHNA/BWK3bhubdLlKg=) 10: 34362e3138332e33302e302f32342d3234203d3e203239383032.roa (hash: 72nHdO4b4bTlOVAl3qEYnqrejyz7ta1anmrlcAXdAWw=) 11: 34362e3138332e32382e302f32342d3234203d3e203239383032.roa (hash: kUcJYnZDGTlKIzzpmv1f5LvT/3qyw3JDmGespkIKDl8=) 12: 34362e3138332e32382e302f32342d3234203d3e203631333137.roa (hash: fvI4RQQ01xEAqUe6KVlJ1GGLeZTmhK5W4DnyDfr2VQg=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Jun 2026 13:17:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:32:eb:22:29:a6:93:ee:35:56:3c:32:02:83:45:72:11:38:a1:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Validity Not Before: Jun 19 10:43:28 2026 GMT Not After : Jun 20 13:17:28 2026 GMT Subject: CN=5256068367AF8405B34D7EC9D1873E712D67362A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:58:11:a5:8a:82:88:06:e0:0b:73:ae:4f:50: 9a:78:1f:64:51:92:37:33:f1:e9:45:0c:8f:78:e9: 33:e6:45:fe:9e:3d:54:7e:dd:2e:4f:56:dd:02:2d: be:3e:24:11:c1:bb:07:14:94:d3:0a:b4:7b:97:50: 89:38:22:ce:2e:7e:ca:1f:87:cf:da:a9:a9:a0:5b: d7:1b:8f:b2:3c:63:fe:6a:75:89:64:9b:27:ee:dd: d2:37:a9:ac:6d:87:b0:44:83:35:4b:02:ff:3e:c3: f2:43:5c:f2:98:72:03:6e:49:c1:ab:1f:19:0e:ed: c7:87:e0:4b:08:46:a0:d0:19:cc:a2:66:4a:e9:b7: ae:7f:13:c8:e2:9e:66:f3:e3:7b:42:a8:8b:24:c6: 11:97:7a:4a:07:b8:01:fe:79:12:d1:28:84:90:64: a2:fb:7f:1e:56:c2:eb:0c:b3:b9:8c:e2:37:61:9e: 3e:d9:ef:f3:5e:11:1e:7e:c4:97:6b:fc:ff:4f:27: f3:45:61:00:90:8f:8b:f8:bd:5a:95:2d:f2:62:a3: ff:d4:29:87:2a:b9:55:2e:4e:09:61:98:69:a6:a3: e0:14:ca:df:85:a5:cc:da:6f:8d:51:0d:14:02:89: c8:77:a6:ab:63:e3:6b:1f:20:82:a0:51:d9:3a:23: f9:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:56:06:83:67:AF:84:05:B3:4D:7E:C9:D1:87:3E:71:2D:67:36:2A X509v3 Authority Key Identifier: keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:38:4a:7b:8b:6f:82:01:11:11:3b:3d:c2:b6:8b:3d:f1:f4: cd:79:7b:b4:a2:3f:29:6e:d6:6d:51:be:af:23:df:3d:38:8b: 58:ae:cd:e5:f7:6c:3d:3d:be:e2:cc:85:2e:13:33:19:08:ad: b2:b9:20:4a:b7:32:4e:cf:92:4b:0b:dd:51:2c:3d:68:e3:1a: 3d:e5:84:b3:89:45:88:b2:88:33:e9:73:89:07:07:ce:c8:b9: f3:96:3a:5c:3c:ab:0d:57:d5:a8:16:7c:31:ba:bf:8b:de:50: ae:80:55:c2:13:d0:f8:cb:2b:ec:5c:32:d7:3c:ff:96:0e:4b: 00:89:35:9a:f1:c7:28:ed:9d:37:1c:d3:cc:dd:15:33:f6:72: 48:c5:45:52:14:43:89:4d:1c:97:15:2b:05:f8:c8:69:f3:78: 5b:02:f3:b9:a4:6b:1d:ba:e6:fd:06:6f:86:4f:83:09:cf:dc: 77:70:a9:db:43:84:30:25:ff:65:b5:e7:fd:43:82:33:55:97: 1d:be:6f:f6:e6:03:ce:46:38:6c:70:5c:ce:90:28:24:f0:39: 4d:ce:69:fd:60:5d:fb:8d:75:44:df:3b:78:e6:09:9a:de:21: d5:69:d8:63:56:3d:5c:dd:aa:31:0c:66:14:98:81:ba:d6:65: 6b:64:78:2f -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUWjLrIimmk+41VjwyAoNFchE4oVcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjRlNTM3ODhiZDRlZmEyM2IxYTgyMDdiN2U3NGE4ZTFj YzY3N2IwMDAeFw0yNjA2MTkxMDQzMjhaFw0yNjA2MjAxMzE3MjhaMDMxMTAvBgNV BAMTKDUyNTYwNjgzNjdBRjg0MDVCMzREN0VDOUQxODczRTcxMkQ2NzM2MkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdWBGlioKIBuALc65PUJp4H2RR kjcz8elFDI946TPmRf6ePVR+3S5PVt0CLb4+JBHBuwcUlNMKtHuXUIk4Is4ufsof h8/aqamgW9cbj7I8Y/5qdYlkmyfu3dI3qaxth7BEgzVLAv8+w/JDXPKYcgNuScGr HxkO7ceH4EsIRqDQGcyiZkrpt65/E8jinmbz43tCqIskxhGXekoHuAH+eRLRKISQ ZKL7fx5WwusMs7mM4jdhnj7Z7/NeER5+xJdr/P9PJ/NFYQCQj4v4vVqVLfJio//U KYcquVUuTglhmGmmo+AUyt+Fpczab41RDRQCich3pqtj42sfIIKgUdk6I/lbAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUUlYGg2evhAWzTX7J0Yc+cS1nNiowHwYDVR0j BBgwFoAUJOU3iL1O+iOxqCB7fnSo4cxnewAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTZhY2I5YTAtNmQxZS00YWU0LTkxNzctZDkzOGU5ODA0 Mzk1LzAvMjRFNTM3ODhCRDRFRkEyM0IxQTgyMDdCN0U3NEE4RTFDQzY3N0IwMC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0pPVTNpTDFPLWlPeHFDQjdmblNvNGN4 bmV3QS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xNmFjYjlhMC02 ZDFlLTRhZTQtOTE3Ny1kOTM4ZTk4MDQzOTUvMC8yNEU1Mzc4OEJENEVGQTIzQjFB ODIwN0I3RTc0QThFMUNDNjc3QjAwLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAszhKe4tvggERETs9wraL PfH0zXl7tKI/KW7WbVG+ryPfPTiLWK7N5fdsPT2+4syFLhMzGQitsrkgSrcyTs+S SwvdUSw9aOMaPeWEs4lFiLKIM+lziQcHzsi585Y6XDyrDVfVqBZ8Mbq/i95QroBV whPQ+Msr7Fwy1zz/lg5LAIk1mvHHKO2dNxzTzN0VM/ZySMVFUhRDiU0clxUrBfjI afN4WwLzuaRrHbrm/QZvhk+DCc/cd3Cp20OEMCX/ZbXn/UOCM1WXHb5v9uYDzkY4 bHBczpAoJPA5Tc5p/WBd+411RN87eOYJmt4h1WnYY1Y9XN2qMQxmFJiButZla2R4 Lw== -----END CERTIFICATE-----Generated at Sat Jun 20 03:15:33 2026 by rpki-client