$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft File: 7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft (raw, json) Hash identifier: 1EObVP6jWZrBhLGCDDbIIBNPhIkm33zxrm9NLMDPtBQ= Subject key identifier: 84:FE:06:EC:93:DF:1D:9D:52:90:66:1D:E4:70:E1:A6:D0:38:3D:2A Authority key identifier: 7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85 Certificate issuer: /CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985 Certificate serial: 32EF8005525A38748BEC445EBA26CDFAC452E5FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft Manifest number: 028A Signing time: Mon 29 Jun 2026 05:08:02 +0000 Manifest this update: Mon 29 Jun 2026 05:03:02 +0000 Manifest next update: Tue 30 Jun 2026 05:28:02 +0000 Files and hashes: 1: 326130653a666434353a326634303a3a2f34342d3438203d3e20323132353931.roa (hash: m8ac/OmE29DqLuwrvKPJFKpYCamTHx1fmPvpHqRkArI=) 2: 326130653a666434353a326366303a3a2f34382d3438203d3e20323032383535.roa (hash: b4dSzH5oz/8kg+iOLc3kROxlkMvwGXgL0aSDALtRaeY=) 3: 326130653a666434353a326636303a3a2f34382d3438203d3e20323037313038.roa (hash: fin/tsFszyHjwEDVRVOEznFkN6ILbbdEP80VJIaXRto=) 4: 326130653a666434353a326130303a3a2f34302d3438203d3e20323133323533.roa (hash: qDmc/WjuJm2+K6V+qH0YTGIzUkgJV2kWMCYDVdR94ng=) 5: 7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl (hash: m0nalvHEnaRg7GnnwQTwNRPqttC+tXIFlLcGhmxeNew=) 6: 326130653a666434353a326633303a3a2f34382d3438203d3e20323039333130.roa (hash: Ah9wB6P+J6/u6bq6IHZMWUCN9kLwcy3+ovMQjaM+Mjs=) 7: 326130653a666434353a326538303a3a2f34382d3438203d3e20323134373233.roa (hash: OBdYMpDCrnydUqYR/9aR6OWDxV3xrASuK04QdHbbnp4=) 8: 34352e3134362e372e302f32342d3332203d3e203439393831.roa (hash: ohztvwe2w66eHUWp00RbU/8ScLc2/rEvRDbabjcZgPU=) 9: 326130393a626534303a323830303a3a2f34302d3438203d3e20323133313730.roa (hash: 5klqSoppwsu6NOWd6DdkFO/NkJ4F93qo8ByoAVMNmBw=) 10: 326130653a666434353a326535303a3a2f34382d3438203d3e20323135333730.roa (hash: S2x/glwBFQqLmSWyNwtm4qEtJyulbbnFBue99o2JPS8=) 11: 326130653a666434353a326636303a3a2f34382d3438203d3e203532303431.roa (hash: IZkqFVYEgPyyB/+rGAFH6ZTxV7F8e0iFJgsbGpJjRuQ=) 12: 326130653a666434353a326630303a3a2f34382d3438203d3e20323132393636.roa (hash: 4rV6D1GFz/bjY4t177ru5i22axDSZLmceosAGjuU6GE=) 13: 326130393a626534303a323830303a3a2f34302d3438203d3e20313939393530.roa (hash: E/KKQIBIvXrHxntg1Xf36BIIDrbcHQG7BGnX7lqe1ts=) 14: 326130653a666434353a353030303a3a2f34302d3438203d3e20323034383330.roa (hash: 9ztDCaU6aAMVKVrLFNLTSsl1A84X7CinJDw99b10Wgk=) 15: 326130653a666434353a326635303a3a2f34382d3634203d3e203439393831.roa (hash: zpE8O6QFgOcjidzEd8zc2djpSlwttC8o8DmDYuakobQ=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Jun 2026 02:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:ef:80:05:52:5a:38:74:8b:ec:44:5e:ba:26:cd:fa:c4:52:e5:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985 Validity Not Before: Jun 29 05:03:02 2026 GMT Not After : Jun 30 05:28:02 2026 GMT Subject: CN=84FE06EC93DF1D9D5290661DE470E1A6D0383D2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:29:bd:f4:c1:10:ce:d4:31:f8:58:22:dc:6a: a3:6b:41:f4:07:d5:23:36:0f:99:24:be:83:a9:fb: d8:eb:a5:ce:ee:fb:ee:5d:f9:94:4a:19:36:cb:af: 07:17:90:e2:3c:4e:c2:fa:c9:4f:44:17:b9:08:06: 91:af:15:a0:6e:2d:dd:4f:9a:b9:b5:57:bb:ce:dc: 27:e1:84:cb:65:3e:5e:12:a4:35:bc:3c:0e:d9:10: c2:8e:82:6c:30:0c:f8:e4:5e:2f:10:6f:4c:04:e2: 9c:b8:ab:c3:8b:95:6a:1d:b4:73:96:98:2b:3a:42: 36:5d:18:25:13:c3:3e:51:4c:64:28:7a:0b:b7:f2: ae:50:6b:c9:48:51:f1:ef:19:3e:e9:80:c8:45:8a: 86:a6:de:56:8c:6c:ef:d3:c4:e3:72:75:20:a3:56: 8b:40:44:d6:04:9a:7d:b3:a8:a3:56:d7:03:44:4a: 64:61:a9:b5:06:fb:84:2a:b6:e5:59:bb:65:7b:81: 87:e3:4c:47:1c:1c:76:d9:ac:fd:c5:52:90:01:2f: 0c:6d:1c:43:b5:02:70:e5:39:11:4f:1f:a5:fc:d5: c4:f1:88:db:c1:e1:e5:ac:a3:0f:db:87:a9:96:44: 73:93:58:e8:63:fd:42:f1:43:b4:29:e9:2d:05:7e: 6f:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:FE:06:EC:93:DF:1D:9D:52:90:66:1D:E4:70:E1:A6:D0:38:3D:2A X509v3 Authority Key Identifier: keyid:7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cd:e1:08:7e:72:5c:e3:81:0e:7d:84:ab:93:30:6e:61:66:4c: 64:a3:90:5f:c1:c9:85:1b:86:da:59:82:d7:59:ec:e3:a4:c4: 87:83:e5:b4:a0:38:56:56:04:7a:9e:59:06:bf:0f:85:c8:98: 0e:39:a8:f2:e0:bb:b9:f8:ab:fc:04:f0:e6:20:aa:bf:34:9c: e5:f9:9e:70:f7:b7:9e:7a:98:14:50:ba:14:35:a7:c7:2e:c7: 12:2b:e8:d6:37:6c:62:c6:18:04:21:e6:e4:bb:bd:42:41:f2: 71:44:ba:ad:34:fd:6f:5b:a9:14:db:f5:4b:a9:5f:8b:36:ba: 37:cb:48:54:67:ca:39:2c:05:2b:2d:41:fa:0e:f1:b2:ee:9a: be:50:cc:54:af:9c:00:fc:34:0b:35:16:37:c5:de:de:f1:32: b0:50:ce:00:ab:ca:85:de:9a:c4:88:f9:3c:d9:70:03:a5:c7: f5:db:4e:ce:1f:e1:3d:c7:c5:70:ba:e2:ec:54:45:ee:49:f8: 17:27:98:b9:c8:ec:56:2e:fb:bf:6c:cb:3d:b5:f1:0b:01:d9: 16:ce:7a:b8:be:b6:8c:4a:06:55:d0:3f:6b:7b:8e:9d:2c:ba: af:31:eb:f3:b0:71:8e:1c:59:12:98:31:f2:36:e4:9e:3b:9b: ce:f5:8b:e6 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUMu+ABVJaOHSL7EReuibN+sRS5fowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN2YyMTZmNDlhM2I5YTg0YTBlODVlODBhMmM0Mjg3NGYw OWVhMzk4NTAeFw0yNjA2MjkwNTAzMDJaFw0yNjA2MzAwNTI4MDJaMDMxMTAvBgNV BAMTKDg0RkUwNkVDOTNERjFEOUQ1MjkwNjYxREU0NzBFMUE2RDAzODNEMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNKb30wRDO1DH4WCLcaqNrQfQH 1SM2D5kkvoOp+9jrpc7u++5d+ZRKGTbLrwcXkOI8TsL6yU9EF7kIBpGvFaBuLd1P mrm1V7vO3CfhhMtlPl4SpDW8PA7ZEMKOgmwwDPjkXi8Qb0wE4py4q8OLlWodtHOW mCs6QjZdGCUTwz5RTGQoegu38q5Qa8lIUfHvGT7pgMhFioam3laMbO/TxONydSCj VotARNYEmn2zqKNW1wNESmRhqbUG+4QqtuVZu2V7gYfjTEccHHbZrP3FUpABLwxt HEO1AnDlORFPH6X81cTxiNvB4eWsow/bh6mWRHOTWOhj/ULxQ7Qp6S0Ffm9bAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUhP4G7JPfHZ1SkGYd5HDhptA4PSowHwYDVR0j BBgwFoAUfyFvSaO5qEoOhegKLEKHTwnqOYUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmRmYjMwY2EtZTFjMi00OTIxLWIwNTQtZDRhZjA5MTY1 YWYxLzAvN0YyMTZGNDlBM0I5QTg0QTBFODVFODBBMkM0Mjg3NEYwOUVBMzk4NS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Z5RnZTYU81cUVvT2hlZ0tMRUtIVHdu cU9ZVS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZGZiMzBjYS1l MWMyLTQ5MjEtYjA1NC1kNGFmMDkxNjVhZjEvMC83RjIxNkY0OUEzQjlBODRBMEU4 NUU4MEEyQzQyODc0RjA5RUEzOTg1Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzeEIfnJc44EOfYSrkzBu YWZMZKOQX8HJhRuG2lmC11ns46TEh4PltKA4VlYEep5ZBr8PhciYDjmo8uC7ufir /ATw5iCqvzSc5fmecPe3nnqYFFC6FDWnxy7HEivo1jdsYsYYBCHm5Lu9QkHycUS6 rTT9b1upFNv1S6lfiza6N8tIVGfKOSwFKy1B+g7xsu6avlDMVK+cAPw0CzUWN8Xe 3vEysFDOAKvKhd6axIj5PNlwA6XH9dtOzh/hPcfFcLri7FRF7kn4FyeYucjsVi77 v2zLPbXxCwHZFs56uL62jEoGVdA/a3uOnSy6rzHr87BxjhxZEpgx8jbknjubzvWL 5g== -----END CERTIFICATE-----Generated at Mon Jun 29 11:35:20 2026 by rpki-client