$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft File: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft (raw, json) Hash identifier: ETgy37I6YTWUL4Y14zVbJlri4+u+gqc5MXEmI31l2+M= Subject key identifier: 5E:EE:99:9F:40:FF:46:BF:A6:25:29:0C:1C:AE:84:A3:02:2D:74:90 Authority key identifier: 5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 Certificate issuer: /CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Certificate serial: 0542B21D2976405FF6B53ABF4454D9E6A58753FE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft Manifest number: 0406 Signing time: Fri 24 Oct 2025 01:03:11 +0000 Manifest this update: Fri 24 Oct 2025 00:58:11 +0000 Manifest next update: Sat 25 Oct 2025 03:08:11 +0000 Files and hashes: 1: 34352e3134362e3136302e302f32332d3233203d3e203437343437.roa (hash: RhIjHNXayp0tS4DN32atD6aHafLrHUAz0HkdV618CRY=) 2: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl (hash: vlhWnXIuL22OwsqWNvodoZ+0xviT8qHXDw3ZsZSc3N0=) 3: 34352e3134362e3136322e302f32342d3234203d3e203138363331.roa (hash: C/6HJC1mRnTjt5un9I/ly/ex3eg1Ngny62cwbLuyXag=) 4: 34352e3134362e3136332e302f32342d3234203d3e20323136313833.roa (hash: dEyrefnnKSg66lfx459XJ2SroTggGi4go9Zp+DRZdvU=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 25 Oct 2025 03:08:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:42:b2:1d:29:76:40:5f:f6:b5:3a:bf:44:54:d9:e6:a5:87:53:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Validity Not Before: Oct 24 00:58:11 2025 GMT Not After : Oct 25 03:08:11 2025 GMT Subject: CN=5EEE999F40FF46BFA625290C1CAE84A3022D7490 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f5:9f:d5:30:b8:f5:39:bf:d5:22:c1:9b:24: a1:86:3b:19:dc:6e:e4:d5:e7:67:cb:98:60:7b:ed: 51:5b:27:de:21:94:06:57:e0:c5:94:85:8d:5a:51: 3d:87:b6:b1:f1:f8:e0:1d:bb:0b:06:48:a2:77:f3: 7d:1a:1f:88:c3:c3:c3:ce:d7:9b:e0:6f:d3:a8:a8: 9e:7a:68:c9:04:cd:e5:c9:1d:ba:d1:14:8d:94:d9: 06:1b:45:1b:7f:8b:f5:36:3f:12:14:dd:f0:ba:3f: f5:40:c8:80:bc:d2:13:d6:df:f6:2a:9f:ab:a1:f2: b4:ea:ca:e0:5e:98:de:fd:ca:30:e5:dc:1a:07:55: fa:5b:a4:c2:c7:41:d6:66:90:42:db:e8:75:a7:6a: d5:8f:b0:80:3d:76:3a:2e:83:90:f6:b5:49:d9:04: eb:7a:d7:9c:a2:b6:96:02:10:78:96:bd:b6:f1:55: 2f:8c:8f:a8:36:4b:6a:2f:a8:56:ee:1e:05:69:27: 42:aa:d6:d6:46:f3:ed:a6:80:2a:16:d1:17:36:63: e5:db:02:af:e6:fc:f7:c5:a9:b0:eb:9e:c8:f8:df: b4:5f:a7:c4:e0:4a:5c:98:9c:c8:59:b0:77:03:40: 27:8a:ea:0b:d6:36:62:19:d5:2c:70:46:d1:f1:fb: b4:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:EE:99:9F:40:FF:46:BF:A6:25:29:0C:1C:AE:84:A3:02:2D:74:90 X509v3 Authority Key Identifier: keyid:5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:26:0e:57:80:b8:fa:81:f5:5c:dd:5b:e1:86:33:9d:70:c7: f4:fa:cf:74:84:96:06:f9:fd:e0:fb:b9:17:86:37:97:6c:04: 5d:e1:19:52:ef:cc:c8:4d:67:c5:bd:a8:70:58:be:77:94:50: b1:75:64:9e:52:4f:87:ca:b7:46:f7:c7:39:34:97:53:3e:0a: f2:37:80:15:3a:55:51:ef:75:c1:c5:cf:04:c7:68:72:61:6c: 75:09:69:d0:87:0a:87:66:1c:23:f2:8e:c9:e2:bf:6c:a6:88: 7a:d6:7c:fc:f7:66:7e:d7:ea:66:94:9d:16:04:27:2c:fa:62: 65:18:b3:ec:ee:41:24:98:18:12:d4:62:c8:d3:a6:70:8f:be: 7f:75:b2:50:ad:08:7c:e0:4e:e1:e4:46:cf:90:45:a7:1b:25: 52:90:f3:d3:ab:b6:de:0d:d3:37:ee:8c:11:f0:1c:3a:62:92: 7c:4c:6f:53:55:e8:49:ad:b9:f8:2d:b8:75:68:de:60:ec:df: 44:0b:ba:a6:ef:d4:02:e1:bb:3a:a1:7a:b1:b5:f5:29:9a:d1: 08:cf:e7:92:95:97:d5:82:c3:4b:82:36:b2:b1:0c:9b:69:36: fa:a0:11:17:a8:bb:c7:f6:43:cf:ab:f2:f2:b1:dc:25:b9:c1: 1c:ee:44:12 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUBUKyHSl2QF/2tTq/RFTZ5qWHU/4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRlZmUwOTIyZjRmNTUyNzBkY2Q1YzA4ZjA0ZjFjN2Jm MjYwNzNjMzAeFw0yNTEwMjQwMDU4MTFaFw0yNTEwMjUwMzA4MTFaMDMxMTAvBgNV BAMTKDVFRUU5OTlGNDBGRjQ2QkZBNjI1MjkwQzFDQUU4NEEzMDIyRDc0OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz9Z/VMLj1Ob/VIsGbJKGGOxnc buTV52fLmGB77VFbJ94hlAZX4MWUhY1aUT2HtrHx+OAduwsGSKJ3830aH4jDw8PO 15vgb9OoqJ56aMkEzeXJHbrRFI2U2QYbRRt/i/U2PxIU3fC6P/VAyIC80hPW3/Yq n6uh8rTqyuBemN79yjDl3BoHVfpbpMLHQdZmkELb6HWnatWPsIA9djoug5D2tUnZ BOt615yitpYCEHiWvbbxVS+Mj6g2S2ovqFbuHgVpJ0Kq1tZG8+2mgCoW0Rc2Y+Xb Aq/m/PfFqbDrnsj437Rfp8TgSlyYnMhZsHcDQCeK6gvWNmIZ1SxwRtHx+7TLAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUXu6Zn0D/Rr+mJSkMHK6EowItdJAwHwYDVR0j BBgwFoAUXe/gki9PVScNzVwI8E8ce/Jgc8MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmZlMmIyN2EtMWVjNS00YWI3LTk3OGUtNmRhOWNmOWYz NzkwLzAvNURFRkUwOTIyRjRGNTUyNzBEQ0Q1QzA4RjA0RjFDN0JGMjYwNzNDMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hlX2draTlQVlNjTnpWd0k4RThjZV9K Z2M4TS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZmUyYjI3YS0x ZWM1LTRhYjctOTc4ZS02ZGE5Y2Y5ZjM3OTAvMC81REVGRTA5MjJGNEY1NTI3MERD RDVDMDhGMDRGMUM3QkYyNjA3M0MzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfiYOV4C4+oH1XN1b4YYz nXDH9PrPdISWBvn94Pu5F4Y3l2wEXeEZUu/MyE1nxb2ocFi+d5RQsXVknlJPh8q3 RvfHOTSXUz4K8jeAFTpVUe91wcXPBMdocmFsdQlp0IcKh2YcI/KOyeK/bKaIetZ8 /PdmftfqZpSdFgQnLPpiZRiz7O5BJJgYEtRiyNOmcI++f3WyUK0IfOBO4eRGz5BF pxslUpDz06u23g3TN+6MEfAcOmKSfExvU1XoSa25+C24dWjeYOzfRAu6pu/UAuG7 OqF6sbX1KZrRCM/nkpWX1YLDS4I2srEMm2k2+qARF6i7x/ZDz6vy8rHcJbnBHO5E Eg== -----END CERTIFICATE-----Generated at Fri Oct 24 19:18:35 2025 by rpki-client