$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft File: 7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft (raw, json) Hash identifier: VF7T+DVlc7LchDIKzREjhXjS2sdlVqqBqXigHY6yQJU= Subject key identifier: 93:DF:05:23:84:42:5A:D3:9C:A6:02:51:69:30:C8:65:EB:CF:14:0D Authority key identifier: 7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85 Certificate issuer: /CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985 Certificate serial: 0BE2CD6F5916F4CFAFE456128E600A5F3EC1D243 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft Manifest number: 020F Signing time: Sun 29 Mar 2026 16:18:56 +0000 Manifest this update: Sun 29 Mar 2026 16:13:56 +0000 Manifest next update: Mon 30 Mar 2026 19:49:56 +0000 Files and hashes: 1: 7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl (hash: o7yz5X+UuYTF8H3RZOB6kY7UaYqyja/MRz5SiwdKl8k=) 2: 326130653a666434353a326538303a3a2f34382d3438203d3e20323134373233.roa (hash: OBdYMpDCrnydUqYR/9aR6OWDxV3xrASuK04QdHbbnp4=) 3: 326130653a666434353a326366303a3a2f34382d3438203d3e20323032383535.roa (hash: lpEMU1X1JLSHAOWUFG4frUPhBZsu7LhlBnijuGC43xs=) 4: 326130653a666434353a326633303a3a2f34382d3438203d3e20323039333130.roa (hash: Ah9wB6P+J6/u6bq6IHZMWUCN9kLwcy3+ovMQjaM+Mjs=) 5: 326130393a626534303a323830303a3a2f34302d3438203d3e20313939393530.roa (hash: E/KKQIBIvXrHxntg1Xf36BIIDrbcHQG7BGnX7lqe1ts=) 6: 326130393a626534303a323830303a3a2f34302d3438203d3e20323133313730.roa (hash: 5klqSoppwsu6NOWd6DdkFO/NkJ4F93qo8ByoAVMNmBw=) 7: 326130653a666434353a353030303a3a2f34302d3438203d3e20323034383330.roa (hash: 9ztDCaU6aAMVKVrLFNLTSsl1A84X7CinJDw99b10Wgk=) 8: 326130653a666434353a326630303a3a2f34382d3438203d3e20323132393636.roa (hash: 4rV6D1GFz/bjY4t177ru5i22axDSZLmceosAGjuU6GE=) 9: 326130653a666434353a326636303a3a2f34382d3438203d3e203532303431.roa (hash: IZkqFVYEgPyyB/+rGAFH6ZTxV7F8e0iFJgsbGpJjRuQ=) 10: 326130653a666434353a326636303a3a2f34382d3438203d3e20323037313038.roa (hash: fin/tsFszyHjwEDVRVOEznFkN6ILbbdEP80VJIaXRto=) 11: 34352e3134362e372e302f32342d3332203d3e203439393831.roa (hash: ohztvwe2w66eHUWp00RbU/8ScLc2/rEvRDbabjcZgPU=) 12: 326130653a666434353a326535303a3a2f34382d3438203d3e20323135333730.roa (hash: S2x/glwBFQqLmSWyNwtm4qEtJyulbbnFBue99o2JPS8=) 13: 326130653a666434353a326634303a3a2f34342d3438203d3e20323132353931.roa (hash: m8ac/OmE29DqLuwrvKPJFKpYCamTHx1fmPvpHqRkArI=) 14: 326130653a666434353a326635303a3a2f34382d3634203d3e203439393831.roa (hash: zpE8O6QFgOcjidzEd8zc2djpSlwttC8o8DmDYuakobQ=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Mar 2026 16:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:e2:cd:6f:59:16:f4:cf:af:e4:56:12:8e:60:0a:5f:3e:c1:d2:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985 Validity Not Before: Mar 29 16:13:56 2026 GMT Not After : Mar 30 19:49:56 2026 GMT Subject: CN=93DF052384425AD39CA602516930C865EBCF140D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:dd:28:15:5b:aa:70:31:91:be:d9:ef:47:f2: 7e:4e:93:88:fd:2a:c3:5e:3e:78:f8:b6:94:6f:c4: e7:67:d3:f1:8c:f7:b7:29:c5:b0:53:b8:3b:88:da: 6e:6e:37:8b:b3:c9:00:5b:a4:16:82:81:80:13:a2: 61:8e:00:78:26:45:62:60:ef:5d:98:39:d2:c0:e4: 0b:25:a4:ea:f5:0c:4c:02:65:d0:7d:6b:1c:f1:b1: e8:4e:8f:c9:e3:2d:5d:bd:58:e2:8e:a1:6e:cc:d8: 85:d8:7d:bf:3d:b3:20:20:c7:05:c6:70:95:20:c4: aa:43:d3:22:0d:c7:f3:26:dd:fc:2a:11:bd:2c:dc: de:f3:14:bc:dc:22:a9:e6:d2:79:9f:b8:0a:e5:58: 3d:33:fa:48:1a:f7:93:d5:bc:7b:71:ba:3d:6e:53: 42:09:4a:0d:a7:de:15:92:4d:05:7f:21:4e:68:2e: b8:03:1b:0b:ff:41:4a:ab:84:ec:3a:f5:5f:c0:90: 0a:06:b0:b3:ce:b6:79:22:04:b6:c2:95:48:93:39: f1:76:27:54:1b:df:d6:06:ff:aa:68:b2:72:4b:f1: 8e:9e:3e:2e:62:47:a8:7f:d1:de:33:c8:85:fa:4e: 4d:4b:75:1f:dd:c4:c7:4b:f1:e9:ab:25:4d:ca:05: 76:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:DF:05:23:84:42:5A:D3:9C:A6:02:51:69:30:C8:65:EB:CF:14:0D X509v3 Authority Key Identifier: keyid:7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:44:7d:f4:02:0b:a1:d6:c4:b1:3d:b8:32:19:3f:c3:77:9e: 90:17:0f:ea:c5:cf:8a:f7:15:45:6d:34:fc:8c:56:bb:7e:46: 44:8d:23:70:88:32:d3:5f:26:02:24:61:7b:8a:d1:51:8c:09: 01:47:ae:d2:e5:ad:2b:d6:47:1c:65:68:aa:6c:3f:95:6b:db: 43:91:58:16:e2:c1:d1:03:68:46:34:78:6e:30:63:dd:2d:4c: 7a:7e:ae:17:b4:cf:8d:91:0e:b5:4d:56:c6:e3:4d:cc:f1:74: fe:c9:90:9a:fd:fc:97:2a:a5:63:29:ae:5c:74:f6:f4:d7:c4: 35:c0:e6:64:b9:52:66:c6:51:ba:33:65:b3:5b:ea:a5:54:c6: d1:a4:2b:7d:8b:34:ca:c7:dc:58:eb:f6:97:0d:b5:ff:e4:e0: 83:da:03:e1:e7:db:ed:1c:eb:cc:a0:10:e6:ef:40:5a:47:d9: 4c:c2:28:6f:46:05:ac:5a:f1:38:84:78:c1:00:ac:0b:70:cf: 8a:57:e2:34:3f:1e:72:d7:c9:3f:10:7d:e6:04:66:ae:b8:49: b9:10:71:cd:1b:88:48:77:24:74:96:0d:3d:16:a7:a9:85:5a: cb:81:6a:9c:57:d5:79:c0:29:80:9f:c5:39:b6:c7:3e:c9:d5: bf:b6:0a:15 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUC+LNb1kW9M+v5FYSjmAKXz7B0kMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN2YyMTZmNDlhM2I5YTg0YTBlODVlODBhMmM0Mjg3NGYw OWVhMzk4NTAeFw0yNjAzMjkxNjEzNTZaFw0yNjAzMzAxOTQ5NTZaMDMxMTAvBgNV BAMTKDkzREYwNTIzODQ0MjVBRDM5Q0E2MDI1MTY5MzBDODY1RUJDRjE0MEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC93SgVW6pwMZG+2e9H8n5Ok4j9 KsNePnj4tpRvxOdn0/GM97cpxbBTuDuI2m5uN4uzyQBbpBaCgYATomGOAHgmRWJg 712YOdLA5AslpOr1DEwCZdB9axzxsehOj8njLV29WOKOoW7M2IXYfb89syAgxwXG cJUgxKpD0yINx/Mm3fwqEb0s3N7zFLzcIqnm0nmfuArlWD0z+kga95PVvHtxuj1u U0IJSg2n3hWSTQV/IU5oLrgDGwv/QUqrhOw69V/AkAoGsLPOtnkiBLbClUiTOfF2 J1Qb39YG/6posnJL8Y6ePi5iR6h/0d4zyIX6Tk1LdR/dxMdL8emrJU3KBXazAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUk98FI4RCWtOcpgJRaTDIZevPFA0wHwYDVR0j BBgwFoAUfyFvSaO5qEoOhegKLEKHTwnqOYUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmRmYjMwY2EtZTFjMi00OTIxLWIwNTQtZDRhZjA5MTY1 YWYxLzAvN0YyMTZGNDlBM0I5QTg0QTBFODVFODBBMkM0Mjg3NEYwOUVBMzk4NS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Z5RnZTYU81cUVvT2hlZ0tMRUtIVHdu cU9ZVS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZGZiMzBjYS1l MWMyLTQ5MjEtYjA1NC1kNGFmMDkxNjVhZjEvMC83RjIxNkY0OUEzQjlBODRBMEU4 NUU4MEEyQzQyODc0RjA5RUEzOTg1Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU0R99AILodbEsT24Mhk/ w3eekBcP6sXPivcVRW00/IxWu35GRI0jcIgy018mAiRhe4rRUYwJAUeu0uWtK9ZH HGVoqmw/lWvbQ5FYFuLB0QNoRjR4bjBj3S1Men6uF7TPjZEOtU1WxuNNzPF0/smQ mv38lyqlYymuXHT29NfENcDmZLlSZsZRujNls1vqpVTG0aQrfYs0ysfcWOv2lw21 /+Tgg9oD4efb7RzrzKAQ5u9AWkfZTMIob0YFrFrxOIR4wQCsC3DPilfiND8ectfJ PxB95gRmrrhJuRBxzRuISHckdJYNPRanqYVay4FqnFfVecApgJ/FObbHPsnVv7YK FQ== -----END CERTIFICATE-----Generated at Sun Mar 29 20:04:40 2026 by rpki-client