$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft File: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft (raw, json) Hash identifier: CldJp1csVAh27yHqBUCjEClST7hC6RSsFLVBpUG42kE= Subject key identifier: BD:31:30:78:D0:B8:FA:8D:BE:82:63:2C:8D:1B:63:5C:A7:6D:C2:94 Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Certificate serial: 5C8C40BC3D3C8819C13B0E484455FA4108322C66 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft Manifest number: 047C Signing time: Sat 06 Sep 2025 12:08:55 +0000 Manifest this update: Sat 06 Sep 2025 12:03:55 +0000 Manifest next update: Sun 07 Sep 2025 12:32:55 +0000 Files and hashes: 1: 34362e3138332e32352e302f32342d3234203d3e203633303233.roa (hash: 4jq0qwMJqWtfRUuzz3vPyKHtua4FM5/8Y3cvVGfTKBM=) 2: 34362e3138332e32382e302f32342d3234203d3e203631333137.roa (hash: EQc8ZSWRYu3w3yABE1KT+uLZnchUtUDhUBMKc9gsz8U=) 3: 34362e3138332e33312e302f32342d3234203d3e20383334.roa (hash: xUsUi3YtopFm9VP8hMqKJ5OknqKCy1oSAbxFuFcm2oA=) 4: 34362e3138332e32362e302f32342d3234203d3e2039303039.roa (hash: ii72WRjo+pDoTtYybgLKaFsOG8JUV0CPdunTnf7/tAg=) 5: 34362e3138332e32392e302f32342d3234203d3e20313734.roa (hash: +2zC2IoOcCso/mftEuke8EnaYM8a1UxQtmNUmYAEM7o=) 6: 34362e3138332e32372e302f32342d3234203d3e20323132323338.roa (hash: MBTQi0HOcbTwY/4fQl+vTOHLOQ2FmR/EhBIZ6Dj3u14=) 7: 34362e3138332e32352e302f32342d3234203d3e20323132323338.roa (hash: lxi2m0tJ4IwcIv1Qu/mxuwgzf8BGdtHdxfKNM9mKZEQ=) 8: 34362e3138332e32342e302f32342d3234203d3e20313432313436.roa (hash: U6sIE1tc5XNg8Vw7jnbxLLCNANnB9wH3voxb1FhuZwc=) 9: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl (hash: vjO+APK+PJ9xSNmTSz1orIX+IncQHJtyR8Nuje50DCM=) 10: 34362e3138332e33302e302f32342d3234203d3e203631333137.roa (hash: pxnqedD3kuwz1m+9x0q4e9R46P3xXGAP6tM7JZr4zqQ=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Sep 2025 12:32:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:8c:40:bc:3d:3c:88:19:c1:3b:0e:48:44:55:fa:41:08:32:2c:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Validity Not Before: Sep 6 12:03:55 2025 GMT Not After : Sep 7 12:32:55 2025 GMT Subject: CN=BD313078D0B8FA8DBE82632C8D1B635CA76DC294 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1f:e9:c6:3c:45:9d:9f:ba:62:89:21:ab:65: 1d:bd:e4:f6:6f:6c:71:6e:4c:4f:8f:b6:3a:97:ff: 89:84:7f:12:ed:23:f5:e2:c5:4d:bd:6c:41:cd:cb: a5:99:5f:ab:48:fe:f7:de:bc:29:fe:be:f5:64:cb: 95:92:b5:dc:8f:94:ee:ff:a4:ef:9e:0b:36:75:55: 2b:89:24:a2:6d:ba:0f:8a:64:6b:34:c1:a9:d6:6d: c5:35:52:6e:73:69:e9:72:95:25:b6:ff:d3:71:cc: 44:0a:48:62:35:e4:74:68:26:0c:c1:aa:55:49:84: 75:71:1a:5a:33:52:17:1f:a5:8b:04:c8:e4:67:a6: 9a:a3:3a:a9:59:b7:ed:5c:e0:3a:17:4e:f7:30:1e: b0:ab:ec:05:52:91:46:21:26:24:c3:d6:79:21:7c: c0:ed:aa:f5:17:f5:35:31:f2:ca:5d:1d:ec:04:2c: 47:52:0c:31:a0:78:aa:0e:b3:87:ed:33:e4:b4:d9: fb:cc:15:cd:dd:92:54:52:bb:4f:7d:db:00:36:fb: 3d:43:fe:0a:86:b5:8c:60:5b:10:3d:44:2d:bd:f2: f3:a1:55:f5:0b:bd:36:42:34:38:cf:57:e4:97:c0: 48:f7:73:f4:c0:38:f5:13:ad:c2:70:57:fe:53:e2: 4c:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:31:30:78:D0:B8:FA:8D:BE:82:63:2C:8D:1B:63:5C:A7:6D:C2:94 X509v3 Authority Key Identifier: keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:39:15:4d:9d:63:d2:7b:c1:9f:fe:cc:36:15:68:00:a4:ef: 1d:5e:61:d0:2d:00:f2:c2:5d:43:7f:07:51:c6:16:82:e0:fd: 47:27:18:46:e5:a5:8d:f0:0f:d3:3f:4e:d8:9c:0c:c8:8a:1d: 4b:45:b6:82:fc:f5:ba:58:4a:13:a4:c6:a5:49:22:5b:85:67: db:71:89:2e:bf:fc:39:11:98:76:f4:83:0f:df:a4:08:aa:71: a2:18:4d:18:80:7b:3f:a8:6b:d2:e3:5d:88:08:95:a3:37:3a: 2b:46:c6:db:87:14:f7:21:06:d0:e8:55:c5:12:2d:18:bb:7e: 31:43:50:06:34:04:18:08:1e:02:52:56:b5:10:1b:f8:69:43: 4f:3c:29:c4:99:39:d0:75:b2:ab:c4:d1:56:86:f0:91:41:61: ba:d3:33:08:df:71:f6:0a:8c:14:99:5f:0f:8b:2c:d3:36:d0: fb:25:9b:03:b2:6e:a6:1c:b6:81:35:0e:f7:15:e3:79:03:af: 02:19:8a:9a:59:92:e9:a1:c2:6a:8c:ad:94:6a:f6:18:75:b8: fc:f0:22:ee:9e:aa:03:bc:a9:80:f9:32:a6:12:b7:53:8b:45: ba:a5:8b:3e:ab:0d:4f:7b:7b:a9:d0:3b:71:c3:7d:ff:95:ff: 33:d5:15:98 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUXIxAvD08iBnBOw5IRFX6QQgyLGYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjRlNTM3ODhiZDRlZmEyM2IxYTgyMDdiN2U3NGE4ZTFj YzY3N2IwMDAeFw0yNTA5MDYxMjAzNTVaFw0yNTA5MDcxMjMyNTVaMDMxMTAvBgNV BAMTKEJEMzEzMDc4RDBCOEZBOERCRTgyNjMyQzhEMUI2MzVDQTc2REMyOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwH+nGPEWdn7piiSGrZR295PZv bHFuTE+PtjqX/4mEfxLtI/XixU29bEHNy6WZX6tI/vfevCn+vvVky5WStdyPlO7/ pO+eCzZ1VSuJJKJtug+KZGs0wanWbcU1Um5zaelylSW2/9NxzEQKSGI15HRoJgzB qlVJhHVxGlozUhcfpYsEyORnppqjOqlZt+1c4DoXTvcwHrCr7AVSkUYhJiTD1nkh fMDtqvUX9TUx8spdHewELEdSDDGgeKoOs4ftM+S02fvMFc3dklRSu0992wA2+z1D /gqGtYxgWxA9RC298vOhVfULvTZCNDjPV+SXwEj3c/TAOPUTrcJwV/5T4kw7AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUvTEweNC4+o2+gmMsjRtjXKdtwpQwHwYDVR0j BBgwFoAUJOU3iL1O+iOxqCB7fnSo4cxnewAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTZhY2I5YTAtNmQxZS00YWU0LTkxNzctZDkzOGU5ODA0 Mzk1LzAvMjRFNTM3ODhCRDRFRkEyM0IxQTgyMDdCN0U3NEE4RTFDQzY3N0IwMC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0pPVTNpTDFPLWlPeHFDQjdmblNvNGN4 bmV3QS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xNmFjYjlhMC02 ZDFlLTRhZTQtOTE3Ny1kOTM4ZTk4MDQzOTUvMC8yNEU1Mzc4OEJENEVGQTIzQjFB ODIwN0I3RTc0QThFMUNDNjc3QjAwLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbTkVTZ1j0nvBn/7MNhVo AKTvHV5h0C0A8sJdQ38HUcYWguD9RycYRuWljfAP0z9O2JwMyIodS0W2gvz1ulhK E6TGpUkiW4Vn23GJLr/8ORGYdvSDD9+kCKpxohhNGIB7P6hr0uNdiAiVozc6K0bG 24cU9yEG0OhVxRItGLt+MUNQBjQEGAgeAlJWtRAb+GlDTzwpxJk50HWyq8TRVobw kUFhutMzCN9x9gqMFJlfD4ss0zbQ+yWbA7Juphy2gTUO9xXjeQOvAhmKmlmS6aHC aoytlGr2GHW4/PAi7p6qA7ypgPkyphK3U4tFuqWLPqsNT3t7qdA7ccN9/5X/M9UV mA== -----END CERTIFICATE-----Generated at Sun Sep 7 03:53:04 2025 by rpki-client