$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft File: 72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft (raw, json) Hash identifier: q7ZV8u0GioxReTi4q2NNa69QDN7jcjsgxEdJ+Ku8tAY= Subject key identifier: F8:6B:C1:9A:C2:B4:31:30:0B:D9:E3:9B:8B:12:AE:90:FE:40:D3:17 Authority key identifier: 72:F3:EE:16:9F:9B:D7:1F:78:A4:2D:1A:72:FE:0F:2A:82:48:22:D1 Certificate issuer: /CN=72f3ee169f9bd71f78a42d1a72fe0f2a824822d1 Certificate serial: 5882323D606193B2E2FDE8974E7204A87C57E9DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cvPuFp-b1x94pC0acv4PKoJIItE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft Manifest number: B1 Signing time: Sun 07 Sep 2025 02:27:46 +0000 Manifest this update: Sun 07 Sep 2025 02:22:46 +0000 Manifest next update: Mon 08 Sep 2025 04:27:46 +0000 Files and hashes: 1: 326131333a363134303a3a2f32392d3332203d3e203331313834.roa (hash: HEAzsbwZSQMPtZWHDUG9J3+dKm/03SetBs7lrO1nkwI=) 2: 3139352e37342e34302e302f32322d3234203d3e203331313834.roa (hash: OWTrG12il6+R+m95Ctsd+LQNgEyVIDW3AMDlydaSO3g=) 3: 3139332e32322e3235332e302f32342d3234203d3e203331313834.roa (hash: WrMYNrMKiwcHb7Layep1L0ANnPM7z3AEErZKMOJmYxg=) 4: 72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.crl (hash: mvTpUWpIZr6TDU8GJpYz4VrWtA4l3QzuKhSlF7Dh7j8=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.crl rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft rsync://rpki.ripe.net/repository/DEFAULT/cvPuFp-b1x94pC0acv4PKoJIItE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 08 Sep 2025 04:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:82:32:3d:60:61:93:b2:e2:fd:e8:97:4e:72:04:a8:7c:57:e9:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72f3ee169f9bd71f78a42d1a72fe0f2a824822d1 Validity Not Before: Sep 7 02:22:46 2025 GMT Not After : Sep 8 04:27:46 2025 GMT Subject: CN=F86BC19AC2B431300BD9E39B8B12AE90FE40D317 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:28:6a:2e:91:fc:f8:6e:14:02:59:5c:7f:45: 8d:ad:25:7b:eb:57:2b:53:c7:41:6d:f0:0b:48:54: 71:f0:ad:cd:f9:83:4d:81:73:f5:35:dc:77:38:54: 58:db:2e:4d:10:fc:fa:9d:6a:7e:d5:42:46:0a:cb: ca:d8:12:1f:74:23:2c:eb:97:bf:0a:d9:25:20:5f: b4:84:e7:da:0a:0f:30:0d:fd:92:16:f1:8f:bb:10: d5:dd:f6:6c:66:aa:df:a3:ef:b1:9e:43:6c:42:9d: 64:a6:f9:5a:f8:96:5d:ec:31:b9:8a:45:b8:4e:81: 84:30:95:42:f6:6c:c2:c8:3f:32:6d:01:86:d0:aa: fb:62:06:02:c7:6e:2d:20:7b:89:2c:22:f0:bd:56: 85:65:41:4b:cb:1b:6c:77:0f:78:61:a5:ae:a3:d0: 67:84:5c:6c:c9:0a:18:08:49:5e:8a:60:4e:f1:bc: 0a:be:9f:43:02:9a:ff:bd:4b:b3:a0:59:7b:25:fe: a1:1f:d0:35:2a:eb:6b:d9:3c:01:ab:96:12:37:5a: 94:79:89:2a:2b:63:45:e0:66:be:cf:39:c3:09:f0: 74:fc:7a:d2:92:f0:e2:0c:08:2a:16:fa:f3:ad:97: 6e:fe:2d:98:a4:61:7c:c6:fe:06:6a:66:d7:3d:39: b6:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:6B:C1:9A:C2:B4:31:30:0B:D9:E3:9B:8B:12:AE:90:FE:40:D3:17 X509v3 Authority Key Identifier: keyid:72:F3:EE:16:9F:9B:D7:1F:78:A4:2D:1A:72:FE:0F:2A:82:48:22:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cvPuFp-b1x94pC0acv4PKoJIItE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:1b:a2:77:9b:8c:ec:40:91:6e:00:35:a1:fc:f7:cd:d0:be: 0d:6e:9e:27:9b:2d:fd:74:0a:69:c8:47:1e:cf:2a:19:04:3e: ef:30:a3:b8:99:69:d1:69:98:93:46:b1:ec:0c:0c:14:2d:e7: 4b:d7:1e:e9:aa:6d:c1:39:da:ca:a5:0c:82:a1:9e:b8:0c:62: 76:23:07:fa:c8:00:15:d2:64:74:4e:dc:3f:6f:49:23:d1:33: 29:ce:6b:c6:70:ed:cd:d9:7d:02:f5:78:7c:f9:75:2b:e8:c4: e5:e9:4f:b4:ba:1c:ef:cd:16:4f:fe:4a:c7:b2:30:c6:0c:0b: 6d:6a:f0:86:96:e4:d7:35:2e:6b:54:75:80:d4:cc:06:ad:0d: c2:ff:9b:19:32:39:d9:2e:11:42:ce:e2:e8:32:00:50:7d:6c: 6f:cc:99:2b:9e:d0:0e:69:b4:7b:bf:49:8e:67:11:e4:ee:49: e1:6c:f0:cb:ec:85:c0:d4:34:8c:5b:21:0a:01:1a:e5:bc:2d: ff:dc:f6:61:27:12:bc:70:75:75:c7:a6:86:45:49:4a:74:4b: 73:a4:4f:42:d1:6b:63:e0:13:f8:e4:5b:e6:83:86:e8:48:bb: 45:d5:c4:24:75:76:61:d2:61:80:cd:79:cf:45:d7:75:90:5e: 5a:14:0a:2a -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUWIIyPWBhk7Li/eiXTnIEqHxX6d4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzJmM2VlMTY5ZjliZDcxZjc4YTQyZDFhNzJmZTBmMmE4 MjQ4MjJkMTAeFw0yNTA5MDcwMjIyNDZaFw0yNTA5MDgwNDI3NDZaMDMxMTAvBgNV BAMTKEY4NkJDMTlBQzJCNDMxMzAwQkQ5RTM5QjhCMTJBRTkwRkU0MEQzMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrKGoukfz4bhQCWVx/RY2tJXvr VytTx0Ft8AtIVHHwrc35g02Bc/U13Hc4VFjbLk0Q/Pqdan7VQkYKy8rYEh90Iyzr l78K2SUgX7SE59oKDzAN/ZIW8Y+7ENXd9mxmqt+j77GeQ2xCnWSm+Vr4ll3sMbmK RbhOgYQwlUL2bMLIPzJtAYbQqvtiBgLHbi0ge4ksIvC9VoVlQUvLG2x3D3hhpa6j 0GeEXGzJChgISV6KYE7xvAq+n0MCmv+9S7OgWXsl/qEf0DUq62vZPAGrlhI3WpR5 iSorY0XgZr7POcMJ8HT8etKS8OIMCCoW+vOtl27+LZikYXzG/gZqZtc9ObZLAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU+GvBmsK0MTAL2eObixKukP5A0xcwHwYDVR0j BBgwFoAUcvPuFp+b1x94pC0acv4PKoJIItEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjgyYjVlMDAtMmFjMy00OWYxLWEyOWItMjZhNWZkZjBm YTQxLzAvNzJGM0VFMTY5RjlCRDcxRjc4QTQyRDFBNzJGRTBGMkE4MjQ4MjJEMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2N2UHVGcC1iMXg5NHBDMGFjdjRQS29K SUl0RS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yODJiNWUwMC0y YWMzLTQ5ZjEtYTI5Yi0yNmE1ZmRmMGZhNDEvMC83MkYzRUUxNjlGOUJENzFGNzhB NDJEMUE3MkZFMEYyQTgyNDgyMkQxLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUBuid5uM7ECRbgA1ofz3 zdC+DW6eJ5st/XQKachHHs8qGQQ+7zCjuJlp0WmYk0ax7AwMFC3nS9ce6aptwTna yqUMgqGeuAxidiMH+sgAFdJkdE7cP29JI9EzKc5rxnDtzdl9AvV4fPl1K+jE5elP tLoc780WT/5Kx7IwxgwLbWrwhpbk1zUua1R1gNTMBq0Nwv+bGTI52S4RQs7i6DIA UH1sb8yZK57QDmm0e79JjmcR5O5J4Wzwy+yFwNQ0jFshCgEa5bwt/9z2YScSvHB1 dcemhkVJSnRLc6RPQtFrY+AT+ORb5oOG6Ei7RdXEJHV2YdJhgM15z0XXdZBeWhQK Kg== -----END CERTIFICATE-----Generated at Sun Sep 7 14:37:02 2025 by rpki-client