$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft File: 72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft (raw, json) Hash identifier: EQjkl21PtJwniBn4e3pFBzOCnEAxrMBJsqSoVUrzWzc= Subject key identifier: 24:25:71:81:7A:95:E2:34:96:52:71:EB:9B:26:BD:1C:37:4F:C6:D8 Authority key identifier: 72:F3:EE:16:9F:9B:D7:1F:78:A4:2D:1A:72:FE:0F:2A:82:48:22:D1 Certificate issuer: /CN=72f3ee169f9bd71f78a42d1a72fe0f2a824822d1 Certificate serial: 047CC291D8446826DCA3B231EBF9564C38553817 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cvPuFp-b1x94pC0acv4PKoJIItE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft Manifest number: 36 Signing time: Fri 06 Jun 2025 17:36:24 +0000 Manifest this update: Fri 06 Jun 2025 17:31:24 +0000 Manifest next update: Sat 07 Jun 2025 20:27:24 +0000 Files and hashes: 1: 3139332e32322e3235332e302f32342d3234203d3e203331313834.roa (hash: WrMYNrMKiwcHb7Layep1L0ANnPM7z3AEErZKMOJmYxg=) 2: 3139352e37342e34302e302f32322d3234203d3e203331313834.roa (hash: OWTrG12il6+R+m95Ctsd+LQNgEyVIDW3AMDlydaSO3g=) 3: 326131333a363134303a3a2f32392d3332203d3e203331313834.roa (hash: HEAzsbwZSQMPtZWHDUG9J3+dKm/03SetBs7lrO1nkwI=) 4: 72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.crl (hash: GxssodJ/Hc+Ng+SrwcGaQFuOyJ2RD/UIpFmV5tICNhY=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.crl rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft rsync://rpki.ripe.net/repository/DEFAULT/cvPuFp-b1x94pC0acv4PKoJIItE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 20:27:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:7c:c2:91:d8:44:68:26:dc:a3:b2:31:eb:f9:56:4c:38:55:38:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72f3ee169f9bd71f78a42d1a72fe0f2a824822d1 Validity Not Before: Jun 6 17:31:24 2025 GMT Not After : Jun 7 20:27:24 2025 GMT Subject: CN=242571817A95E234965271EB9B26BD1C374FC6D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:30:65:c0:c1:93:f3:22:2f:1c:2b:41:63:40: 15:5d:4c:90:17:a4:9f:6c:cb:49:ac:6a:55:bc:49: f7:fc:9e:f6:0a:f2:ef:70:ba:c6:86:ce:41:47:11: d0:08:4e:c0:b6:0f:5f:b6:7f:21:38:ce:02:e5:af: 12:82:20:2c:46:1b:0d:a3:05:e0:24:f2:47:ab:67: 3f:f5:b1:ff:eb:f1:4a:90:96:9f:91:2c:9a:10:c6: 16:e1:9a:77:7d:9e:fa:32:51:22:ca:7a:1b:5e:11: 68:9e:9c:cb:5f:3a:90:57:71:6d:76:7a:51:bb:0f: 15:0f:6c:c6:2f:54:7c:c5:c8:32:84:cd:72:6b:f8: bd:43:89:93:7a:74:b8:76:60:a8:b0:71:e9:68:34: 25:a4:96:a3:03:11:14:0d:44:70:f8:d2:62:95:72: de:04:4a:17:b2:d6:c4:ac:24:30:ec:85:54:43:26: 14:1d:44:05:18:26:1f:af:20:53:86:e5:cc:34:cb: b8:30:27:0a:65:3e:2c:7f:52:f4:1e:3f:30:37:31: dd:20:cd:25:0e:a6:94:b8:2d:a4:36:6c:7c:cf:8c: f4:60:d9:4e:0a:0c:ed:35:da:59:31:50:40:2a:77: 90:3a:3a:ee:96:19:f7:98:8e:6c:ce:ba:cf:70:7f: 4d:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:25:71:81:7A:95:E2:34:96:52:71:EB:9B:26:BD:1C:37:4F:C6:D8 X509v3 Authority Key Identifier: keyid:72:F3:EE:16:9F:9B:D7:1F:78:A4:2D:1A:72:FE:0F:2A:82:48:22:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cvPuFp-b1x94pC0acv4PKoJIItE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/282b5e00-2ac3-49f1-a29b-26a5fdf0fa41/0/72F3EE169F9BD71F78A42D1A72FE0F2A824822D1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:9d:b6:43:df:c6:7b:a3:61:52:f2:94:27:84:ee:d1:8a:19: f7:ce:5d:55:88:3e:e6:67:19:ca:a5:1b:39:8a:25:a7:05:df: 1b:b2:b8:26:d6:c1:f8:7e:46:0a:d7:81:8a:57:3c:a1:54:bc: 61:8a:f4:ad:87:31:13:02:36:0c:f8:20:bd:af:ce:c3:15:88: 12:e0:8a:33:96:46:5c:da:76:a1:0a:a5:a7:14:02:31:96:8f: 8d:c3:19:7d:cd:ee:68:01:ed:97:2c:d1:82:c3:c9:5a:03:3a: 53:a0:07:0f:92:33:1f:55:89:eb:83:22:ec:3d:e4:58:f8:7a: e6:64:40:58:80:b9:dc:f9:2e:29:ef:36:6b:f5:6f:87:78:75: 19:e0:c0:c3:d5:21:8a:1e:ba:72:66:58:bd:08:de:5e:91:aa: b1:bd:09:fd:5d:21:1a:14:65:f7:39:b9:76:32:f0:ab:7e:d7: 4f:e3:fe:9d:31:16:49:5c:42:82:d9:fe:12:b2:9f:fc:ed:01: e4:00:4d:23:52:81:46:40:11:9d:1e:63:4a:4f:d2:f5:b1:79: 89:99:c5:eb:16:be:60:19:1b:15:bb:69:67:ca:77:36:e6:e2: b7:8c:86:b4:db:12:c0:9e:af:ac:3d:b2:c2:59:93:14:10:b9: 2f:c9:3e:cf -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUBHzCkdhEaCbco7Ix6/lWTDhVOBcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzJmM2VlMTY5ZjliZDcxZjc4YTQyZDFhNzJmZTBmMmE4 MjQ4MjJkMTAeFw0yNTA2MDYxNzMxMjRaFw0yNTA2MDcyMDI3MjRaMDMxMTAvBgNV BAMTKDI0MjU3MTgxN0E5NUUyMzQ5NjUyNzFFQjlCMjZCRDFDMzc0RkM2RDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBMGXAwZPzIi8cK0FjQBVdTJAX pJ9sy0msalW8Sff8nvYK8u9wusaGzkFHEdAITsC2D1+2fyE4zgLlrxKCICxGGw2j BeAk8kerZz/1sf/r8UqQlp+RLJoQxhbhmnd9nvoyUSLKehteEWienMtfOpBXcW12 elG7DxUPbMYvVHzFyDKEzXJr+L1DiZN6dLh2YKiwceloNCWklqMDERQNRHD40mKV ct4EShey1sSsJDDshVRDJhQdRAUYJh+vIFOG5cw0y7gwJwplPix/UvQePzA3Md0g zSUOppS4LaQ2bHzPjPRg2U4KDO012lkxUEAqd5A6Ou6WGfeYjmzOus9wf027AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUJCVxgXqV4jSWUnHrmya9HDdPxtgwHwYDVR0j BBgwFoAUcvPuFp+b1x94pC0acv4PKoJIItEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjgyYjVlMDAtMmFjMy00OWYxLWEyOWItMjZhNWZkZjBm YTQxLzAvNzJGM0VFMTY5RjlCRDcxRjc4QTQyRDFBNzJGRTBGMkE4MjQ4MjJEMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2N2UHVGcC1iMXg5NHBDMGFjdjRQS29K SUl0RS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yODJiNWUwMC0y YWMzLTQ5ZjEtYTI5Yi0yNmE1ZmRmMGZhNDEvMC83MkYzRUUxNjlGOUJENzFGNzhB NDJEMUE3MkZFMEYyQTgyNDgyMkQxLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHp22Q9/Ge6NhUvKUJ4Tu 0YoZ985dVYg+5mcZyqUbOYolpwXfG7K4JtbB+H5GCteBilc8oVS8YYr0rYcxEwI2 DPggva/OwxWIEuCKM5ZGXNp2oQqlpxQCMZaPjcMZfc3uaAHtlyzRgsPJWgM6U6AH D5IzH1WJ64Mi7D3kWPh65mRAWIC53PkuKe82a/Vvh3h1GeDAw9Uhih66cmZYvQje XpGqsb0J/V0hGhRl9zm5djLwq37XT+P+nTEWSVxCgtn+ErKf/O0B5ABNI1KBRkAR nR5jSk/S9bF5iZnF6xa+YBkbFbtpZ8p3Nubit4yGtNsSwJ6vrD2ywlmTFBC5L8k+ zw== -----END CERTIFICATE-----Generated at Sat Jun 7 07:36:51 2025 by rpki-client