$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft File: 72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft (raw, json) Hash identifier: TVqaTE8rG0faTQnjvZ8udf9g9N/SGSd27XsFhPvX5+o= Subject key identifier: 84:EA:66:B9:6F:5D:26:3A:81:C6:F4:96:07:3C:61:86:E1:5A:09:33 Authority key identifier: 72:F3:EE:16:9F:9B:D7:1F:78:A4:2D:1A:72:FE:0F:2A:82:48:22:D1 Certificate issuer: /CN=72f3ee169f9bd71f78a42d1a72fe0f2a824822d1 Certificate serial: 29A594FB2F2AB6A3CEF9803F81299AB92CD99B1D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cvPuFp-b1x94pC0acv4PKoJIItE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft Manifest number: 0239 Signing time: Mon 29 Jun 2026 06:23:05 +0000 Manifest this update: Mon 29 Jun 2026 06:18:05 +0000 Manifest next update: Tue 30 Jun 2026 08:52:05 +0000 Files and hashes: 1: 72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.crl (hash: Av+lxuTif/SoA6e8R9oaS/5nWxJ3Xpe08RpGRckueFg=) 2: AS31184.asa (hash: lpmkTsOkQWRjH6hPbivRUCUrNBqi+kTnEwLPqRlRwbs=) 3: 3139332e32322e3235332e302f32342d3234203d3e203331313834.roa (hash: dle7TOY5qR1v+dBegXLBchLz5ktliGdr7QiAJ0BFI6Y=) 4: 3139352e37342e34302e302f32322d3234203d3e203331313834.roa (hash: kBwEK18YCfMx0ouzbMGql3wfMadnMbnDgpYbNfw03+g=) 5: 326131333a363134303a3a2f32392d3332203d3e203331313834.roa (hash: aQqyppfq1G0dtgfce5qUTiEgqU4ipo9uY/suA4axV58=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.crl rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft rsync://rpki.ripe.net/repository/DEFAULT/cvPuFp-b1x94pC0acv4PKoJIItE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Jun 2026 02:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:a5:94:fb:2f:2a:b6:a3:ce:f9:80:3f:81:29:9a:b9:2c:d9:9b:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72f3ee169f9bd71f78a42d1a72fe0f2a824822d1 Validity Not Before: Jun 29 06:18:05 2026 GMT Not After : Jun 30 08:52:05 2026 GMT Subject: CN=84EA66B96F5D263A81C6F496073C6186E15A0933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7b:f3:82:24:9a:4c:f4:d3:3c:f7:d3:08:ac: 10:a5:10:2f:fa:7f:d1:22:40:ce:cb:25:93:07:87: f4:27:4a:37:52:67:ab:8c:a4:c6:6d:3a:07:0e:f3: 9f:e8:bd:15:11:32:5b:60:9d:36:f6:6a:92:c0:39: 39:45:b1:61:a0:e6:08:3f:1e:15:f7:74:d6:c5:2c: 99:00:7d:b2:4b:8f:4d:ab:e1:d2:a7:fd:d0:2d:26: 88:1b:f2:62:fe:56:08:75:55:05:c6:b5:a2:87:c7: e6:4b:23:ae:59:0b:66:f2:b4:c6:56:9e:37:5f:15: f1:6f:af:eb:4a:c5:73:fc:24:a4:60:72:04:64:1f: b7:d0:99:ae:fd:4a:e5:a9:23:13:dc:7e:30:21:73: 77:dd:51:54:6f:d2:95:ff:8b:53:c6:92:37:19:be: 89:f3:5e:f5:8d:ec:06:1c:a6:24:4c:85:10:fc:9a: 63:9c:cd:b2:09:7e:5b:60:ab:d8:22:f9:c2:0f:c0: df:9f:85:05:28:29:41:a3:2d:f9:10:e9:43:1d:84: 40:2c:3c:82:2f:58:f6:c7:46:21:b0:55:09:c3:80: 06:86:aa:f4:fb:68:82:78:92:61:1e:87:b5:b4:fa: 37:7c:5c:6e:80:0e:78:ad:ea:eb:53:05:25:cf:f3: 6b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:EA:66:B9:6F:5D:26:3A:81:C6:F4:96:07:3C:61:86:E1:5A:09:33 X509v3 Authority Key Identifier: keyid:72:F3:EE:16:9F:9B:D7:1F:78:A4:2D:1A:72:FE:0F:2A:82:48:22:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cvPuFp-b1x94pC0acv4PKoJIItE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:ad:70:a0:1c:c5:06:e1:bb:ea:79:67:32:74:9e:45:37:e7: 7c:57:99:d6:10:85:b1:08:ad:3a:43:df:e8:a2:83:bc:45:6b: 4d:4d:08:b8:8d:b3:7b:01:5c:37:d7:e9:bb:78:fb:a9:bc:e5: ba:54:c9:8d:14:fb:40:79:f0:89:02:d2:b9:12:26:60:eb:cb: d2:6f:1d:60:2e:45:40:65:a5:24:72:bd:7b:8b:99:5f:4b:cd: 58:8c:2a:63:c7:b6:63:ba:8f:39:31:85:3b:87:0c:15:4c:07: e1:16:8f:cc:c0:40:5c:e3:5f:6e:9b:61:b4:91:37:66:37:2e: 1b:16:f0:d4:14:7d:31:85:6a:61:95:72:38:b3:8c:b5:d0:c3: 23:9d:68:c6:d9:84:10:42:4d:26:65:fc:f0:c4:05:f8:1b:25: b7:fb:2e:26:2d:51:3a:07:4b:ad:79:3a:dc:f5:64:1d:01:b7: f9:f2:8d:7c:40:9d:eb:2c:22:9f:c5:df:33:c7:3f:a4:bf:f7: 72:c2:bd:30:86:5b:ce:0e:06:93:8a:82:4e:f9:be:11:8d:b4: 93:aa:5b:b7:5d:0d:16:81:07:89:41:25:9c:55:18:3c:7c:15: 36:8a:e8:74:24:af:1b:a9:5c:c0:b3:7e:8c:23:e1:19:d2:27: e9:be:d8:e6 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUKaWU+y8qtqPO+YA/gSmauSzZmx0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzJmM2VlMTY5ZjliZDcxZjc4YTQyZDFhNzJmZTBmMmE4 MjQ4MjJkMTAeFw0yNjA2MjkwNjE4MDVaFw0yNjA2MzAwODUyMDVaMDMxMTAvBgNV BAMTKDg0RUE2NkI5NkY1RDI2M0E4MUM2RjQ5NjA3M0M2MTg2RTE1QTA5MzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCme/OCJJpM9NM899MIrBClEC/6 f9EiQM7LJZMHh/QnSjdSZ6uMpMZtOgcO85/ovRURMltgnTb2apLAOTlFsWGg5gg/ HhX3dNbFLJkAfbJLj02r4dKn/dAtJogb8mL+Vgh1VQXGtaKHx+ZLI65ZC2bytMZW njdfFfFvr+tKxXP8JKRgcgRkH7fQma79SuWpIxPcfjAhc3fdUVRv0pX/i1PGkjcZ vonzXvWN7AYcpiRMhRD8mmOczbIJfltgq9gi+cIPwN+fhQUoKUGjLfkQ6UMdhEAs PIIvWPbHRiGwVQnDgAaGqvT7aIJ4kmEeh7W0+jd8XG6ADnit6utTBSXP82upAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUhOpmuW9dJjqBxvSWBzxhhuFaCTMwHwYDVR0j BBgwFoAUcvPuFp+b1x94pC0acv4PKoJIItEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjgyYjVlMDAtMmFjMy00OWYxLWEyOWItMjZhNWZkZjBm YTQxLzAvNzJGM0VFMTY5RjlCRDcxRjc4QTQyRDFBNzJGRTBGMkE4MjQ4MjJEMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2N2UHVGcC1iMXg5NHBDMGFjdjRQS29K SUl0RS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yODJiNWUwMC0y YWMzLTQ5ZjEtYTI5Yi0yNmE1ZmRmMGZhNDEvMC83MkYzRUUxNjlGOUJENzFGNzhB NDJEMUE3MkZFMEYyQTgyNDgyMkQxLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjq1woBzFBuG76nlnMnSe RTfnfFeZ1hCFsQitOkPf6KKDvEVrTU0IuI2zewFcN9fpu3j7qbzlulTJjRT7QHnw iQLSuRImYOvL0m8dYC5FQGWlJHK9e4uZX0vNWIwqY8e2Y7qPOTGFO4cMFUwH4RaP zMBAXONfbpthtJE3ZjcuGxbw1BR9MYVqYZVyOLOMtdDDI51oxtmEEEJNJmX88MQF +Bslt/suJi1ROgdLrXk63PVkHQG3+fKNfECd6ywin8XfM8c/pL/3csK9MIZbzg4G k4qCTvm+EY20k6pbt10NFoEHiUElnFUYPHwVNorodCSvG6lcwLN+jCPhGdIn6b7Y 5g== -----END CERTIFICATE-----Generated at Mon Jun 29 11:36:02 2026 by rpki-client