$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft File: 7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft (raw, json) Hash identifier: d/7Tk1jCeFIu88HFmBXXlfMYg7NlqPNsVwOi/leE+O0= Subject key identifier: 02:BC:9E:69:9F:07:BA:4C:43:74:F8:1A:92:9C:C3:BB:1A:DC:D6:FB Authority key identifier: 7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85 Certificate issuer: /CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985 Certificate serial: 1B5F33E5B976C4DB32D2BBB93DAC93B4679748CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft Manifest number: 024E Signing time: Fri 15 May 2026 04:37:42 +0000 Manifest this update: Fri 15 May 2026 04:32:42 +0000 Manifest next update: Sat 16 May 2026 06:16:42 +0000 Files and hashes: 1: 7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl (hash: GoMUH+Y/7LjvY8sjYq5FX/TkuN6HnUDB3HpkUQe+Y2Y=) 2: 326130653a666434353a353030303a3a2f34302d3438203d3e20323034383330.roa (hash: 9ztDCaU6aAMVKVrLFNLTSsl1A84X7CinJDw99b10Wgk=) 3: 326130653a666434353a326633303a3a2f34382d3438203d3e20323039333130.roa (hash: Ah9wB6P+J6/u6bq6IHZMWUCN9kLwcy3+ovMQjaM+Mjs=) 4: 326130653a666434353a326634303a3a2f34342d3438203d3e20323132353931.roa (hash: m8ac/OmE29DqLuwrvKPJFKpYCamTHx1fmPvpHqRkArI=) 5: 34352e3134362e372e302f32342d3332203d3e203439393831.roa (hash: ohztvwe2w66eHUWp00RbU/8ScLc2/rEvRDbabjcZgPU=) 6: 326130653a666434353a326636303a3a2f34382d3438203d3e203532303431.roa (hash: IZkqFVYEgPyyB/+rGAFH6ZTxV7F8e0iFJgsbGpJjRuQ=) 7: 326130393a626534303a323830303a3a2f34302d3438203d3e20323133313730.roa (hash: 5klqSoppwsu6NOWd6DdkFO/NkJ4F93qo8ByoAVMNmBw=) 8: 326130653a666434353a326630303a3a2f34382d3438203d3e20323132393636.roa (hash: 4rV6D1GFz/bjY4t177ru5i22axDSZLmceosAGjuU6GE=) 9: 326130653a666434353a326130303a3a2f34302d3438203d3e20323133323533.roa (hash: qDmc/WjuJm2+K6V+qH0YTGIzUkgJV2kWMCYDVdR94ng=) 10: 326130653a666434353a326636303a3a2f34382d3438203d3e20323037313038.roa (hash: fin/tsFszyHjwEDVRVOEznFkN6ILbbdEP80VJIaXRto=) 11: 326130393a626534303a323830303a3a2f34302d3438203d3e20313939393530.roa (hash: E/KKQIBIvXrHxntg1Xf36BIIDrbcHQG7BGnX7lqe1ts=) 12: 326130653a666434353a326635303a3a2f34382d3634203d3e203439393831.roa (hash: zpE8O6QFgOcjidzEd8zc2djpSlwttC8o8DmDYuakobQ=) 13: 326130653a666434353a326366303a3a2f34382d3438203d3e20323032383535.roa (hash: b4dSzH5oz/8kg+iOLc3kROxlkMvwGXgL0aSDALtRaeY=) 14: 326130653a666434353a326538303a3a2f34382d3438203d3e20323134373233.roa (hash: OBdYMpDCrnydUqYR/9aR6OWDxV3xrASuK04QdHbbnp4=) 15: 326130653a666434353a326535303a3a2f34382d3438203d3e20323135333730.roa (hash: S2x/glwBFQqLmSWyNwtm4qEtJyulbbnFBue99o2JPS8=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 16 May 2026 02:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:5f:33:e5:b9:76:c4:db:32:d2:bb:b9:3d:ac:93:b4:67:97:48:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985 Validity Not Before: May 15 04:32:42 2026 GMT Not After : May 16 06:16:42 2026 GMT Subject: CN=02BC9E699F07BA4C4374F81A929CC3BB1ADCD6FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:94:04:ed:62:d2:e7:7b:57:ea:70:54:e4:5d: b9:5d:d1:17:9c:31:33:05:87:2f:76:90:a5:6a:5f: bc:0e:83:a3:7c:21:71:87:b2:d6:49:7b:07:7c:ec: e7:50:6c:60:91:32:f7:2b:da:91:85:74:13:81:eb: 54:31:71:7e:cf:59:c8:6d:9c:43:28:61:b1:56:7c: 4e:df:c7:34:3b:57:dc:69:71:8a:72:2b:3f:41:00: d4:70:20:b0:58:9a:ad:0e:f3:fe:0d:65:fc:ec:f5: a4:d8:6b:75:f0:bb:b9:3f:42:cb:79:c7:f5:e4:08: 3f:93:02:34:19:58:48:30:91:5b:3c:41:76:2c:b7: aa:10:c4:10:9b:ea:f9:26:54:8c:14:4b:6c:24:31: 71:96:2e:9c:d0:1f:35:d5:51:c8:b1:6c:d7:17:d4: 9d:2b:59:1a:5d:18:84:fa:a8:0c:33:34:cd:62:c4: 70:4e:10:0d:9f:12:17:3c:78:8c:31:9f:5f:d2:63: 16:59:c0:a9:94:62:fd:1d:bd:94:30:34:c9:c4:3b: 0b:b8:dc:a0:5c:ff:60:de:a4:e8:ab:6f:c9:42:64: 35:b6:d0:af:3d:ce:e3:06:b9:93:8e:33:10:ae:0e: 36:54:62:ab:1d:93:c1:23:88:23:62:63:99:b7:e4: 69:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:BC:9E:69:9F:07:BA:4C:43:74:F8:1A:92:9C:C3:BB:1A:DC:D6:FB X509v3 Authority Key Identifier: keyid:7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d7:3c:4d:d3:53:db:58:5b:eb:9d:c5:f2:01:48:c2:39:3b:0f: 16:37:4b:eb:29:87:7b:20:9c:a8:a5:dd:c1:92:15:12:5d:7b: 57:8a:41:b2:a1:43:38:83:ea:0e:ef:2f:ca:39:06:ba:5d:32: b1:46:c4:74:87:32:9b:d7:0a:38:8f:c8:19:da:91:36:75:28: 14:ae:db:d3:29:b3:f6:b1:69:72:09:86:4f:25:c4:b6:e5:1a: d8:45:f7:64:0c:4b:b8:34:93:e3:a2:eb:62:66:cf:b2:d4:5b: 54:1a:61:ac:5c:63:6b:37:33:cd:ec:46:3f:e1:2b:b5:7d:67: c8:96:a2:3b:bc:4b:13:21:26:39:ad:31:2a:bc:1b:c5:95:73: 36:a8:aa:72:09:72:c8:4b:8b:35:74:bf:f5:17:ec:64:5c:92: 6e:26:7f:86:8d:92:39:98:58:97:06:0d:0c:e3:23:68:da:30: e6:d7:6f:2b:d2:34:e6:a5:60:84:3e:e9:f3:6d:de:e3:43:d8: 66:3e:1b:d1:3f:e0:63:9c:96:bf:f4:f3:eb:71:9b:11:0a:29: 72:78:1a:27:18:98:98:ee:aa:d6:e8:07:8f:9c:89:cd:d8:3a: 7f:2a:df:89:34:04:57:a7:f6:5f:a7:b5:a2:f3:5f:7b:3b:58: ae:ab:9b:7f -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUG18z5bl2xNsy0ru5PayTtGeXSM0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN2YyMTZmNDlhM2I5YTg0YTBlODVlODBhMmM0Mjg3NGYw OWVhMzk4NTAeFw0yNjA1MTUwNDMyNDJaFw0yNjA1MTYwNjE2NDJaMDMxMTAvBgNV BAMTKDAyQkM5RTY5OUYwN0JBNEM0Mzc0RjgxQTkyOUNDM0JCMUFEQ0Q2RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1lATtYtLne1fqcFTkXbld0Rec MTMFhy92kKVqX7wOg6N8IXGHstZJewd87OdQbGCRMvcr2pGFdBOB61QxcX7PWcht nEMoYbFWfE7fxzQ7V9xpcYpyKz9BANRwILBYmq0O8/4NZfzs9aTYa3Xwu7k/Qst5 x/XkCD+TAjQZWEgwkVs8QXYst6oQxBCb6vkmVIwUS2wkMXGWLpzQHzXVUcixbNcX 1J0rWRpdGIT6qAwzNM1ixHBOEA2fEhc8eIwxn1/SYxZZwKmUYv0dvZQwNMnEOwu4 3KBc/2DepOirb8lCZDW20K89zuMGuZOOMxCuDjZUYqsdk8EjiCNiY5m35GlrAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUAryeaZ8HukxDdPgakpzDuxrc1vswHwYDVR0j BBgwFoAUfyFvSaO5qEoOhegKLEKHTwnqOYUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmRmYjMwY2EtZTFjMi00OTIxLWIwNTQtZDRhZjA5MTY1 YWYxLzAvN0YyMTZGNDlBM0I5QTg0QTBFODVFODBBMkM0Mjg3NEYwOUVBMzk4NS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Z5RnZTYU81cUVvT2hlZ0tMRUtIVHdu cU9ZVS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZGZiMzBjYS1l MWMyLTQ5MjEtYjA1NC1kNGFmMDkxNjVhZjEvMC83RjIxNkY0OUEzQjlBODRBMEU4 NUU4MEEyQzQyODc0RjA5RUEzOTg1Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1zxN01PbWFvrncXyAUjC OTsPFjdL6ymHeyCcqKXdwZIVEl17V4pBsqFDOIPqDu8vyjkGul0ysUbEdIcym9cK OI/IGdqRNnUoFK7b0ymz9rFpcgmGTyXEtuUa2EX3ZAxLuDST46LrYmbPstRbVBph rFxjazczzexGP+ErtX1nyJaiO7xLEyEmOa0xKrwbxZVzNqiqcglyyEuLNXS/9Rfs ZFySbiZ/ho2SOZhYlwYNDOMjaNow5tdvK9I05qVghD7p823e40PYZj4b0T/gY5yW v/Tz63GbEQopcngaJxiYmO6q1ugHj5yJzdg6fyrfiTQEV6f2X6e1ovNfeztYrqub fw== -----END CERTIFICATE-----Generated at Fri May 15 06:58:30 2026 by rpki-client