$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft File: 7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft (raw, json) Hash identifier: 0uMomVdzQ8+OO4IQUgHpkJI1mC3tkSJquWe6iE8jrGg= Subject key identifier: CA:EB:8B:BB:53:3B:3B:CB:7D:51:1D:24:17:B8:40:56:17:41:EB:13 Authority key identifier: 7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85 Certificate issuer: /CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985 Certificate serial: 5F78571BEEF34CF1351DD6C3CD3B218AD304E11C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft Manifest number: C0 Signing time: Sat 26 Jul 2025 10:40:10 +0000 Manifest this update: Sat 26 Jul 2025 10:35:10 +0000 Manifest next update: Sun 27 Jul 2025 12:10:10 +0000 Files and hashes: 1: 326130653a666434353a326366303a3a2f34382d3438203d3e20323032383535.roa (hash: lpEMU1X1JLSHAOWUFG4frUPhBZsu7LhlBnijuGC43xs=) 2: 326130653a666434353a326630303a3a2f34382d3438203d3e20323132393636.roa (hash: fCahoT0DASmE4L0CnNku4FHnUTfBEMsJKaoRBnEvKJY=) 3: 7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl (hash: H3s9ORfwDC52yI+SJFZxjcvj/gSroq862oBm/2UJXkQ=) 4: 326130393a626534303a323830303a3a2f34302d3438203d3e20323133313730.roa (hash: bGsR+5RlWB67shIeVpz1QNwpCAPKyIXgoOV7T0RQXx8=) 5: 326130393a626534303a323830303a3a2f34302d3438203d3e20313939393530.roa (hash: AiP13DNBwIkSFzdQdSir0FYGd4okcKOcyfxhs/nt0mM=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 27 Jul 2025 11:00:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:78:57:1b:ee:f3:4c:f1:35:1d:d6:c3:cd:3b:21:8a:d3:04:e1:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985 Validity Not Before: Jul 26 10:35:10 2025 GMT Not After : Jul 27 12:10:10 2025 GMT Subject: CN=CAEB8BBB533B3BCB7D511D2417B840561741EB13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:87:90:2f:48:cc:f5:41:cb:03:e5:9b:d7:d9: de:ad:58:0a:6f:e0:7d:88:33:ec:53:ec:80:c6:ae: 6b:91:e9:dd:2b:bc:6b:0e:52:cb:37:6b:e2:62:60: 5f:46:77:77:63:83:e4:2e:a4:6a:1b:15:5f:b5:51: 59:81:61:fb:19:c6:fd:7d:5c:bd:1e:6e:4f:2f:08: 44:dd:5b:64:05:5f:b2:66:5a:91:2b:8f:38:10:ea: cf:40:d1:21:d7:fe:fb:fd:27:a3:b0:b3:24:3d:cf: 63:02:09:1c:10:f6:fa:8a:3a:3f:f6:f6:2f:76:6d: f2:5a:67:7f:fd:46:61:0a:cd:7a:30:d6:a2:1a:e1: c6:e9:53:50:8d:ce:e9:1f:96:a5:f4:de:70:e4:22: db:57:d3:11:00:01:43:44:44:fd:14:90:e9:fc:e0: 4d:66:07:96:ac:73:98:8e:b3:59:54:c4:45:d4:c6: 87:82:eb:13:8f:13:3a:3c:0b:d2:95:80:32:2a:0c: 4b:51:cf:9e:9d:87:54:0e:fb:c3:f0:25:fa:cb:d1: 00:70:1a:f9:30:23:95:3f:cd:75:34:d3:cd:1c:3c: 11:49:6a:00:f8:b2:b2:a9:c3:8e:4c:60:e9:88:b0: a3:07:d6:85:b8:52:75:5b:95:6b:fa:a9:fd:39:f3: 08:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:EB:8B:BB:53:3B:3B:CB:7D:51:1D:24:17:B8:40:56:17:41:EB:13 X509v3 Authority Key Identifier: keyid:7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:c8:df:b7:97:39:f5:1f:58:03:a1:db:85:0d:9e:73:d8:85: 21:d7:4d:db:20:0b:0d:58:a2:32:ed:55:47:06:08:fb:9e:2e: 23:a4:ac:82:cc:73:49:bb:8d:ff:ea:b4:32:b2:a9:3c:6f:d4: 41:c2:65:59:c6:7f:f0:f7:f1:0d:f2:31:87:ed:a8:08:08:2d: a0:e9:da:c6:2d:dc:d6:c2:ae:a2:09:eb:44:ac:3c:a9:bb:f4: 2c:c1:b4:89:b6:32:23:cc:bb:55:61:9e:d4:15:bc:d0:b4:34: f7:bf:61:33:f3:be:94:ef:5d:02:01:91:56:59:1b:89:c9:6f: 4c:66:01:de:79:0b:ca:a6:69:15:b5:f4:7d:65:5c:b6:32:54: 0e:a4:29:d9:02:9a:51:81:e3:8f:fe:71:0f:0f:0c:69:e7:35: bc:2b:2b:aa:ed:aa:ca:2a:89:f8:3d:d2:e6:56:ab:bb:5e:21: 3a:d4:85:dd:8b:7b:bd:56:b6:b4:8b:3f:e4:06:fe:49:fe:da: d6:c6:4c:c9:0f:3e:32:7a:37:e6:d5:f4:9a:84:77:4a:38:62: b3:0e:b4:29:fb:eb:76:26:2f:6f:1c:f0:31:87:18:99:c1:50: f0:14:2b:17:fa:7c:fd:f8:bc:79:01:e6:75:3c:c3:6a:2c:ef: 43:b2:af:af -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUX3hXG+7zTPE1HdbDzTshitME4RwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN2YyMTZmNDlhM2I5YTg0YTBlODVlODBhMmM0Mjg3NGYw OWVhMzk4NTAeFw0yNTA3MjYxMDM1MTBaFw0yNTA3MjcxMjEwMTBaMDMxMTAvBgNV BAMTKENBRUI4QkJCNTMzQjNCQ0I3RDUxMUQyNDE3Qjg0MDU2MTc0MUVCMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWh5AvSMz1QcsD5ZvX2d6tWApv 4H2IM+xT7IDGrmuR6d0rvGsOUss3a+JiYF9Gd3djg+QupGobFV+1UVmBYfsZxv19 XL0ebk8vCETdW2QFX7JmWpErjzgQ6s9A0SHX/vv9J6OwsyQ9z2MCCRwQ9vqKOj/2 9i92bfJaZ3/9RmEKzXow1qIa4cbpU1CNzukflqX03nDkIttX0xEAAUNERP0UkOn8 4E1mB5asc5iOs1lUxEXUxoeC6xOPEzo8C9KVgDIqDEtRz56dh1QO+8PwJfrL0QBw GvkwI5U/zXU0080cPBFJagD4srKpw45MYOmIsKMH1oW4UnVblWv6qf058wjLAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUyuuLu1M7O8t9UR0kF7hAVhdB6xMwHwYDVR0j BBgwFoAUfyFvSaO5qEoOhegKLEKHTwnqOYUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmRmYjMwY2EtZTFjMi00OTIxLWIwNTQtZDRhZjA5MTY1 YWYxLzAvN0YyMTZGNDlBM0I5QTg0QTBFODVFODBBMkM0Mjg3NEYwOUVBMzk4NS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Z5RnZTYU81cUVvT2hlZ0tMRUtIVHdu cU9ZVS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZGZiMzBjYS1l MWMyLTQ5MjEtYjA1NC1kNGFmMDkxNjVhZjEvMC83RjIxNkY0OUEzQjlBODRBMEU4 NUU4MEEyQzQyODc0RjA5RUEzOTg1Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATcjft5c59R9YA6HbhQ2e c9iFIddN2yALDViiMu1VRwYI+54uI6SsgsxzSbuN/+q0MrKpPG/UQcJlWcZ/8Pfx DfIxh+2oCAgtoOnaxi3c1sKuognrRKw8qbv0LMG0ibYyI8y7VWGe1BW80LQ0979h M/O+lO9dAgGRVlkbiclvTGYB3nkLyqZpFbX0fWVctjJUDqQp2QKaUYHjj/5xDw8M aec1vCsrqu2qyiqJ+D3S5laru14hOtSF3Yt7vVa2tIs/5Ab+Sf7a1sZMyQ8+Mno3 5tX0moR3Sjhisw60KfvrdiYvbxzwMYcYmcFQ8BQrF/p8/fi8eQHmdTzDaizvQ7Kv rw== -----END CERTIFICATE-----Generated at Sat Jul 26 20:56:41 2025 by rpki-client