$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft File: 72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft (raw, json) Hash identifier: 4PKa5972wLa+49tXYAQ+dU8wJ/E7D5GK4ePS3/X0lKk= Subject key identifier: 8B:C7:F5:E7:7A:C8:A4:F3:85:75:5E:4D:34:44:4B:5F:B1:2B:C8:F0 Authority key identifier: 72:F3:EE:16:9F:9B:D7:1F:78:A4:2D:1A:72:FE:0F:2A:82:48:22:D1 Certificate issuer: /CN=72f3ee169f9bd71f78a42d1a72fe0f2a824822d1 Certificate serial: 223845DC959736A463BCF1C0519F675C01F3F75D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cvPuFp-b1x94pC0acv4PKoJIItE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft Manifest number: 01FC Signing time: Thu 14 May 2026 16:52:09 +0000 Manifest this update: Thu 14 May 2026 16:47:09 +0000 Manifest next update: Fri 15 May 2026 18:28:09 +0000 Files and hashes: 1: 72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.crl (hash: sr1joToYw51CPOZ92j6icPwUjuMYrrBEgsNYa4cuWr4=) 2: AS31184.asa (hash: lpmkTsOkQWRjH6hPbivRUCUrNBqi+kTnEwLPqRlRwbs=) 3: 3139332e32322e3235332e302f32342d3234203d3e203331313834.roa (hash: dle7TOY5qR1v+dBegXLBchLz5ktliGdr7QiAJ0BFI6Y=) 4: 326131333a363134303a3a2f32392d3332203d3e203331313834.roa (hash: aQqyppfq1G0dtgfce5qUTiEgqU4ipo9uY/suA4axV58=) 5: 3139352e37342e34302e302f32322d3234203d3e203331313834.roa (hash: kBwEK18YCfMx0ouzbMGql3wfMadnMbnDgpYbNfw03+g=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.crl rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft rsync://rpki.ripe.net/repository/DEFAULT/cvPuFp-b1x94pC0acv4PKoJIItE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 15 May 2026 18:28:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:38:45:dc:95:97:36:a4:63:bc:f1:c0:51:9f:67:5c:01:f3:f7:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72f3ee169f9bd71f78a42d1a72fe0f2a824822d1 Validity Not Before: May 14 16:47:09 2026 GMT Not After : May 15 18:28:09 2026 GMT Subject: CN=8BC7F5E77AC8A4F385755E4D34444B5FB12BC8F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:69:10:88:f5:61:ff:86:67:75:b3:50:7e:36: 17:ef:ab:27:91:21:00:6d:fa:5d:f0:4a:29:62:07: 36:a7:28:85:51:48:d7:1f:73:6f:ea:32:f0:e3:ae: ec:80:f1:d2:f4:14:71:66:7c:21:f8:d7:b0:69:25: d3:33:3e:2c:57:39:3c:0e:79:97:1a:5c:a4:02:0e: 84:30:06:f2:aa:fc:af:c9:b4:07:0c:fe:73:fa:f0: c8:8d:17:f4:7c:f8:1b:49:72:b2:c7:e2:dd:ef:f8: de:c1:29:47:8c:69:bc:04:8a:35:c6:bd:f9:9b:bb: a3:14:01:a7:48:c0:b5:2f:1d:1b:4e:d6:09:88:d4: c5:d8:07:f0:50:48:b1:7a:4f:ff:13:e7:c2:7e:e1: 47:d6:49:22:56:d9:67:fe:11:ac:1e:fe:3f:3e:70: a3:19:43:f3:31:bc:80:1a:cd:ef:11:d6:f5:12:07: 50:05:ec:a3:24:67:3d:8e:d6:cd:40:d7:2f:30:40: 28:bd:35:e1:a2:01:4e:58:c4:85:4e:c4:15:c4:51: d7:4f:6e:c6:36:89:00:83:c3:37:2a:71:76:67:48: b6:d6:ca:74:c5:02:68:91:2c:61:2f:5f:19:56:c3: dd:07:20:6f:8a:d4:b5:41:e9:4e:65:58:1f:c0:70: 90:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C7:F5:E7:7A:C8:A4:F3:85:75:5E:4D:34:44:4B:5F:B1:2B:C8:F0 X509v3 Authority Key Identifier: keyid:72:F3:EE:16:9F:9B:D7:1F:78:A4:2D:1A:72:FE:0F:2A:82:48:22:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cvPuFp-b1x94pC0acv4PKoJIItE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:93:4c:63:9b:41:21:01:2c:3e:11:bc:1c:78:2d:65:f1:45: fc:a6:75:ee:3d:28:42:ed:d0:01:84:6e:84:8c:bc:b5:df:d2: 41:42:50:4c:ce:81:19:3d:99:84:4d:c2:45:70:c2:ca:4c:3b: 76:40:1c:0f:0b:e3:92:dd:38:55:50:df:ad:c5:c9:b2:98:98: c8:b9:ff:22:5c:05:fb:ce:2e:74:18:83:5f:7e:12:31:26:f1: 6a:71:86:ca:de:cf:5d:df:1d:a3:b5:8f:fd:c8:4f:f5:d2:fb: 7c:49:c0:38:74:aa:c6:dd:00:d7:5b:2d:e4:df:f9:1c:4c:8f: ce:2e:63:d8:c8:9d:bd:5d:ed:8a:87:7c:25:f1:af:73:41:8b: 3c:71:dd:79:4d:4c:91:e7:13:73:bb:38:8a:cc:bc:02:17:52: 1d:a2:0b:c7:ba:e6:e5:84:86:a7:a8:38:f5:35:57:ea:0d:e6: 73:83:47:67:b0:cf:c3:ad:8c:df:77:fc:26:60:f6:d5:d6:4d: 68:dc:39:7a:e3:26:d9:00:ad:f0:82:31:4b:88:eb:89:87:56: a1:34:32:1b:75:b6:74:53:66:83:85:d6:0e:df:30:3a:1f:59: 27:94:f1:bd:50:e2:c0:a8:c5:44:c5:3f:c0:3b:b8:3a:6b:b1: ab:0a:38:94 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUIjhF3JWXNqRjvPHAUZ9nXAHz910wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzJmM2VlMTY5ZjliZDcxZjc4YTQyZDFhNzJmZTBmMmE4 MjQ4MjJkMTAeFw0yNjA1MTQxNjQ3MDlaFw0yNjA1MTUxODI4MDlaMDMxMTAvBgNV BAMTKDhCQzdGNUU3N0FDOEE0RjM4NTc1NUU0RDM0NDQ0QjVGQjEyQkM4RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBaRCI9WH/hmd1s1B+NhfvqyeR IQBt+l3wSiliBzanKIVRSNcfc2/qMvDjruyA8dL0FHFmfCH417BpJdMzPixXOTwO eZcaXKQCDoQwBvKq/K/JtAcM/nP68MiNF/R8+BtJcrLH4t3v+N7BKUeMabwEijXG vfmbu6MUAadIwLUvHRtO1gmI1MXYB/BQSLF6T/8T58J+4UfWSSJW2Wf+Eawe/j8+ cKMZQ/MxvIAaze8R1vUSB1AF7KMkZz2O1s1A1y8wQCi9NeGiAU5YxIVOxBXEUddP bsY2iQCDwzcqcXZnSLbWynTFAmiRLGEvXxlWw90HIG+K1LVB6U5lWB/AcJB3AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUi8f153rIpPOFdV5NNERLX7EryPAwHwYDVR0j BBgwFoAUcvPuFp+b1x94pC0acv4PKoJIItEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjgyYjVlMDAtMmFjMy00OWYxLWEyOWItMjZhNWZkZjBm YTQxLzAvNzJGM0VFMTY5RjlCRDcxRjc4QTQyRDFBNzJGRTBGMkE4MjQ4MjJEMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2N2UHVGcC1iMXg5NHBDMGFjdjRQS29K SUl0RS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yODJiNWUwMC0y YWMzLTQ5ZjEtYTI5Yi0yNmE1ZmRmMGZhNDEvMC83MkYzRUUxNjlGOUJENzFGNzhB NDJEMUE3MkZFMEYyQTgyNDgyMkQxLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASJNMY5tBIQEsPhG8HHgt ZfFF/KZ17j0oQu3QAYRuhIy8td/SQUJQTM6BGT2ZhE3CRXDCykw7dkAcDwvjkt04 VVDfrcXJspiYyLn/IlwF+84udBiDX34SMSbxanGGyt7PXd8do7WP/chP9dL7fEnA OHSqxt0A11st5N/5HEyPzi5j2MidvV3tiod8JfGvc0GLPHHdeU1MkecTc7s4isy8 AhdSHaILx7rm5YSGp6g49TVX6g3mc4NHZ7DPw62M33f8JmD21dZNaNw5euMm2QCt 8IIxS4jriYdWoTQyG3W2dFNmg4XWDt8wOh9ZJ5TxvVDiwKjFRMU/wDu4Omuxqwo4 lA== -----END CERTIFICATE-----Generated at Fri May 15 07:01:47 2026 by rpki-client