$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft File: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft (raw, json) Hash identifier: j86WbF8+Pz/SADBKOOHIxzp3isUEPrGXFrnalmR5iIQ= Subject key identifier: C9:84:53:C6:7A:86:E9:22:C2:81:27:64:6E:33:3A:FD:39:76:72:B0 Authority key identifier: 5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 Certificate issuer: /CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Certificate serial: 0F9D281986E2A5E141FBAACF27F27609F4ABA665 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft Manifest number: 034D Signing time: Fri 06 Jun 2025 16:17:30 +0000 Manifest this update: Fri 06 Jun 2025 16:12:30 +0000 Manifest next update: Sat 07 Jun 2025 16:54:30 +0000 Files and hashes: 1: 34352e3134362e3136302e302f32332d3233203d3e203437343437.roa (hash: RhIjHNXayp0tS4DN32atD6aHafLrHUAz0HkdV618CRY=) 2: 34352e3134362e3136322e302f32342d3234203d3e203138363331.roa (hash: C/6HJC1mRnTjt5un9I/ly/ex3eg1Ngny62cwbLuyXag=) 3: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl (hash: QVGWIfranqTgw8wLkIJZ8bU+qxe/P8Z0bPR6RfxANPc=) 4: 34352e3134362e3136332e302f32342d3234203d3e20323136313833.roa (hash: VqRU0PsdkYcQlfLEqZmAkEPw8yvo7sqFgCP45AzG5Gs=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 15:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:9d:28:19:86:e2:a5:e1:41:fb:aa:cf:27:f2:76:09:f4:ab:a6:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Validity Not Before: Jun 6 16:12:30 2025 GMT Not After : Jun 7 16:54:30 2025 GMT Subject: CN=C98453C67A86E922C28127646E333AFD397672B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:84:16:de:05:34:57:37:aa:ef:9b:02:24:01: 2a:2c:96:62:53:bd:01:e4:11:df:c0:6d:73:e7:24: cf:ee:bd:6c:89:f2:2c:29:18:14:44:20:00:0a:8a: eb:f5:44:e0:96:9f:ca:60:9e:fa:54:26:44:73:b3: c7:80:91:64:c4:89:22:03:49:e0:7f:a7:cb:99:be: da:49:4d:d2:99:74:2f:a7:b1:12:5a:8e:3b:02:2d: 15:44:29:ea:bd:7f:58:2d:42:54:cc:7c:24:d2:d3: aa:eb:8f:69:12:e8:98:57:79:ed:e6:a6:69:5b:d3: 4b:03:af:67:e3:cb:b6:7d:8d:21:10:f0:c2:cb:81: 25:60:7a:07:6d:b7:f8:8b:9c:20:11:97:14:2c:14: f0:13:2e:39:7c:0e:b8:d8:44:9a:40:25:2f:19:c1: bd:5f:8f:ac:a8:01:e1:1c:7c:65:43:86:35:da:9b: 01:3f:b9:71:e5:e8:31:c2:86:e4:5a:05:35:2a:06: 75:a6:de:95:38:e7:d5:64:09:08:fd:0f:e1:b2:51: 75:ef:e9:0e:97:10:0a:cd:f5:ab:20:4a:1b:2f:90: a6:ba:03:de:d1:9b:a4:fb:94:82:11:47:a7:57:98: 54:3f:cc:09:14:43:53:df:1d:12:37:43:59:66:71: a8:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:84:53:C6:7A:86:E9:22:C2:81:27:64:6E:33:3A:FD:39:76:72:B0 X509v3 Authority Key Identifier: keyid:5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:a3:98:93:d7:a9:92:2e:2a:d4:66:fe:90:d6:69:dd:a8:5e: 58:72:7a:90:a9:b7:dc:c7:4c:78:18:d4:27:72:a6:36:03:c9: 26:1a:bd:bd:c1:fe:a2:6e:85:7c:51:e7:e6:70:1f:76:5c:4a: e5:7e:80:29:a9:c5:65:21:e5:c2:a6:96:ca:c7:aa:a5:dc:22: 27:d3:15:b5:67:01:8f:fb:af:8f:ae:d4:c0:d2:c8:d3:65:e3: 7b:b1:be:d7:20:77:2b:a9:74:ae:77:69:c3:b7:22:cb:b5:65: 3b:fd:51:e3:fd:d0:21:a0:3a:3f:41:30:e5:77:79:ca:b6:e0: 02:fc:c5:da:0e:85:5f:6d:c9:70:61:53:ad:7d:47:db:b2:8f: bb:fa:39:20:22:92:08:43:1c:1a:d4:3d:71:9e:69:e3:89:8e: a6:bf:c0:24:20:c6:b1:13:84:97:29:65:f4:23:c8:5a:1b:aa: 00:06:44:39:be:12:ef:ce:dc:78:30:af:74:4a:70:e9:f0:f7: 2d:21:a5:c6:a3:5f:56:77:b0:d2:05:6c:24:11:d6:10:d5:a7: 74:8d:c9:35:9b:f5:b0:87:65:e7:40:14:64:47:f5:78:eb:c7: 8a:fc:96:f7:3d:1a:87:39:a0:52:ef:a9:01:19:26:f3:54:48: 52:5c:7b:65 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUD50oGYbipeFB+6rPJ/J2CfSrpmUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRlZmUwOTIyZjRmNTUyNzBkY2Q1YzA4ZjA0ZjFjN2Jm MjYwNzNjMzAeFw0yNTA2MDYxNjEyMzBaFw0yNTA2MDcxNjU0MzBaMDMxMTAvBgNV BAMTKEM5ODQ1M0M2N0E4NkU5MjJDMjgxMjc2NDZFMzMzQUZEMzk3NjcyQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbhBbeBTRXN6rvmwIkASoslmJT vQHkEd/AbXPnJM/uvWyJ8iwpGBREIAAKiuv1ROCWn8pgnvpUJkRzs8eAkWTEiSID SeB/p8uZvtpJTdKZdC+nsRJajjsCLRVEKeq9f1gtQlTMfCTS06rrj2kS6JhXee3m pmlb00sDr2fjy7Z9jSEQ8MLLgSVgegdtt/iLnCARlxQsFPATLjl8DrjYRJpAJS8Z wb1fj6yoAeEcfGVDhjXamwE/uXHl6DHChuRaBTUqBnWm3pU459VkCQj9D+GyUXXv 6Q6XEArN9asgShsvkKa6A97Rm6T7lIIRR6dXmFQ/zAkUQ1PfHRI3Q1lmcag5AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUyYRTxnqG6SLCgSdkbjM6/Tl2crAwHwYDVR0j BBgwFoAUXe/gki9PVScNzVwI8E8ce/Jgc8MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmZlMmIyN2EtMWVjNS00YWI3LTk3OGUtNmRhOWNmOWYz NzkwLzAvNURFRkUwOTIyRjRGNTUyNzBEQ0Q1QzA4RjA0RjFDN0JGMjYwNzNDMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hlX2draTlQVlNjTnpWd0k4RThjZV9K Z2M4TS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZmUyYjI3YS0x ZWM1LTRhYjctOTc4ZS02ZGE5Y2Y5ZjM3OTAvMC81REVGRTA5MjJGNEY1NTI3MERD RDVDMDhGMDRGMUM3QkYyNjA3M0MzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYKOYk9epki4q1Gb+kNZp 3aheWHJ6kKm33MdMeBjUJ3KmNgPJJhq9vcH+om6FfFHn5nAfdlxK5X6AKanFZSHl wqaWyseqpdwiJ9MVtWcBj/uvj67UwNLI02Xje7G+1yB3K6l0rndpw7ciy7VlO/1R 4/3QIaA6P0Ew5Xd5yrbgAvzF2g6FX23JcGFTrX1H27KPu/o5ICKSCEMcGtQ9cZ5p 44mOpr/AJCDGsROElyll9CPIWhuqAAZEOb4S787ceDCvdEpw6fD3LSGlxqNfVnew 0gVsJBHWENWndI3JNZv1sIdl50AUZEf1eOvHivyW9z0ahzmgUu+pARkm81RIUlx7 ZQ== -----END CERTIFICATE-----Generated at Fri Jun 6 22:13:53 2025 by rpki-client