$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft File: 72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft (raw, json) Hash identifier: Y7PJsQ+C1B3m/JxHQBQygHPKGtN37QQX4DLefr5BtoQ= Subject key identifier: 65:85:F9:CB:FC:AA:CA:E9:0B:9B:76:F6:A1:16:E1:D5:7B:AB:7E:AE Authority key identifier: 72:F3:EE:16:9F:9B:D7:1F:78:A4:2D:1A:72:FE:0F:2A:82:48:22:D1 Certificate issuer: /CN=72f3ee169f9bd71f78a42d1a72fe0f2a824822d1 Certificate serial: 0768F0B78E5BA40465741227670A7E673288950B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cvPuFp-b1x94pC0acv4PKoJIItE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft Manifest number: 01BF Signing time: Sun 29 Mar 2026 09:24:11 +0000 Manifest this update: Sun 29 Mar 2026 09:19:11 +0000 Manifest next update: Mon 30 Mar 2026 09:55:11 +0000 Files and hashes: 1: 3139332e32322e3235332e302f32342d3234203d3e203331313834.roa (hash: WrMYNrMKiwcHb7Layep1L0ANnPM7z3AEErZKMOJmYxg=) 2: 3139352e37342e34302e302f32322d3234203d3e203331313834.roa (hash: OWTrG12il6+R+m95Ctsd+LQNgEyVIDW3AMDlydaSO3g=) 3: 326131333a363134303a3a2f32392d3332203d3e203331313834.roa (hash: HEAzsbwZSQMPtZWHDUG9J3+dKm/03SetBs7lrO1nkwI=) 4: 72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.crl (hash: 8c3mc3vkVxC0RLYgjf80W4xPQbw3aCc46i/CneQI5to=) 5: AS31184.asa (hash: lpmkTsOkQWRjH6hPbivRUCUrNBqi+kTnEwLPqRlRwbs=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.crl rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft rsync://rpki.ripe.net/repository/DEFAULT/cvPuFp-b1x94pC0acv4PKoJIItE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Mar 2026 07:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:68:f0:b7:8e:5b:a4:04:65:74:12:27:67:0a:7e:67:32:88:95:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72f3ee169f9bd71f78a42d1a72fe0f2a824822d1 Validity Not Before: Mar 29 09:19:11 2026 GMT Not After : Mar 30 09:55:11 2026 GMT Subject: CN=6585F9CBFCAACAE90B9B76F6A116E1D57BAB7EAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:02:06:84:e0:dc:ba:e9:a8:4f:ea:01:f3:e1: 17:d4:a5:40:4d:bd:97:df:a9:45:19:98:36:b8:e1: a4:a4:9c:6c:13:0f:85:39:f7:7f:a5:8e:3f:fd:33: 92:08:9a:ad:c3:db:84:6a:f7:91:eb:0c:1a:a3:48: 22:bd:ab:78:ac:fc:45:da:fd:86:de:8e:bb:e5:2f: fc:2d:be:00:eb:15:97:48:f5:ec:b8:76:3b:0c:4a: 9c:08:90:00:6c:ae:ea:75:4c:bc:5c:53:86:00:c7: b1:1c:28:1e:05:10:ff:73:bc:ba:db:a4:2b:a3:26: d9:7d:82:e9:0c:1c:99:10:fc:71:41:da:d9:01:ef: 5f:cb:7f:fb:06:7e:c2:37:bd:e2:e7:d1:57:18:86: 8f:4e:f4:d6:39:82:13:f2:54:d1:51:ca:2b:29:cb: 65:6f:4c:1b:8c:67:74:35:37:b9:6b:5e:85:52:81: 41:c1:5b:61:ba:ad:c9:f3:f2:a4:01:59:0b:ab:59: 02:e0:d8:ae:aa:bc:e9:97:3a:e5:54:b0:37:5c:ff: f7:59:cc:35:9b:d3:22:62:04:d9:b6:c9:68:1d:89: 53:0e:1e:f7:15:28:69:93:a2:27:e2:39:3c:2c:87: 52:48:f8:eb:54:1e:46:9a:d4:ae:11:f2:0e:a8:95: 97:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:85:F9:CB:FC:AA:CA:E9:0B:9B:76:F6:A1:16:E1:D5:7B:AB:7E:AE X509v3 Authority Key Identifier: keyid:72:F3:EE:16:9F:9B:D7:1F:78:A4:2D:1A:72:FE:0F:2A:82:48:22:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cvPuFp-b1x94pC0acv4PKoJIItE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:9c:67:07:a3:df:24:7e:ad:fe:96:6b:87:9a:12:11:b0:d7: b6:7f:50:9b:30:4f:72:ab:e5:be:ac:86:b4:0d:36:f4:69:17: df:8c:e5:64:ee:5e:9e:0a:10:f6:91:6d:04:fe:bb:db:a1:25: 72:11:84:ab:45:0f:84:85:0c:4c:71:7b:62:77:60:02:ee:37: d9:5d:62:73:a5:85:9b:f6:d1:c2:de:b6:ae:4a:a0:eb:4a:a8: fa:e9:b5:4a:55:5e:6b:f3:0e:2a:b6:ec:70:3c:97:07:b2:ff: ac:1d:e1:a1:28:c2:3f:79:9a:31:e5:82:ca:42:53:d3:c0:fd: 5b:86:c0:5c:10:30:78:24:32:08:39:d6:f3:c9:11:60:70:29: 73:03:c1:3b:82:c5:4a:ed:54:8a:2a:16:db:aa:5d:36:a3:b2: b9:cd:b3:6a:07:9a:77:aa:f4:01:2c:9b:bb:fc:d2:96:fe:41: da:b5:f1:98:61:33:4c:f4:2b:5f:d6:d1:7a:8f:a1:ce:30:76: a4:d8:f6:c3:f4:78:78:73:59:cb:32:fb:de:5d:a4:91:fa:87: 71:a2:88:0c:d9:9c:56:e6:e8:4f:69:98:ec:b7:64:d6:6e:22: b6:be:6d:cc:5c:09:3a:66:12:58:dd:8f:57:ee:5f:7d:02:30: ec:e9:df:ef -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUB2jwt45bpARldBInZwp+ZzKIlQswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzJmM2VlMTY5ZjliZDcxZjc4YTQyZDFhNzJmZTBmMmE4 MjQ4MjJkMTAeFw0yNjAzMjkwOTE5MTFaFw0yNjAzMzAwOTU1MTFaMDMxMTAvBgNV BAMTKDY1ODVGOUNCRkNBQUNBRTkwQjlCNzZGNkExMTZFMUQ1N0JBQjdFQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOAgaE4Ny66ahP6gHz4RfUpUBN vZffqUUZmDa44aSknGwTD4U593+ljj/9M5IImq3D24Rq95HrDBqjSCK9q3is/EXa /YbejrvlL/wtvgDrFZdI9ey4djsMSpwIkABsrup1TLxcU4YAx7EcKB4FEP9zvLrb pCujJtl9gukMHJkQ/HFB2tkB71/Lf/sGfsI3veLn0VcYho9O9NY5ghPyVNFRyisp y2VvTBuMZ3Q1N7lrXoVSgUHBW2G6rcnz8qQBWQurWQLg2K6qvOmXOuVUsDdc//dZ zDWb0yJiBNm2yWgdiVMOHvcVKGmToifiOTwsh1JI+OtUHkaa1K4R8g6olZdHAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUZYX5y/yqyukLm3b2oRbh1Xurfq4wHwYDVR0j BBgwFoAUcvPuFp+b1x94pC0acv4PKoJIItEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjgyYjVlMDAtMmFjMy00OWYxLWEyOWItMjZhNWZkZjBm YTQxLzAvNzJGM0VFMTY5RjlCRDcxRjc4QTQyRDFBNzJGRTBGMkE4MjQ4MjJEMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2N2UHVGcC1iMXg5NHBDMGFjdjRQS29K SUl0RS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yODJiNWUwMC0y YWMzLTQ5ZjEtYTI5Yi0yNmE1ZmRmMGZhNDEvMC83MkYzRUUxNjlGOUJENzFGNzhB NDJEMUE3MkZFMEYyQTgyNDgyMkQxLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeJxnB6PfJH6t/pZrh5oS EbDXtn9QmzBPcqvlvqyGtA029GkX34zlZO5engoQ9pFtBP6726ElchGEq0UPhIUM THF7YndgAu432V1ic6WFm/bRwt62rkqg60qo+um1SlVea/MOKrbscDyXB7L/rB3h oSjCP3maMeWCykJT08D9W4bAXBAweCQyCDnW88kRYHApcwPBO4LFSu1UiioW26pd NqOyuc2zagead6r0ASybu/zSlv5B2rXxmGEzTPQrX9bReo+hzjB2pNj2w/R4eHNZ yzL73l2kkfqHcaKIDNmcVuboT2mY7Ldk1m4itr5tzFwJOmYSWN2PV+5ffQIw7Onf 7w== -----END CERTIFICATE-----Generated at Sun Mar 29 12:31:43 2026 by rpki-client