$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.mft File: D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.mft (raw, json) Hash identifier: 4Zf+m/jm1P0ThjZsmAjpwuOrFtdSDM+ij6cJZ89lppk= Subject key identifier: 16:B1:7F:B7:62:25:82:67:4C:11:AE:DF:13:8E:6B:90:03:2F:F4:B2 Authority key identifier: D1:8F:31:B9:8E:D3:5E:C2:3B:E8:1C:3F:FF:EF:D1:A3:54:DA:D9:6A Certificate issuer: /CN=d18f31b98ed35ec23be81c3fffefd1a354dad96a Certificate serial: 56AB86AF5EBE676566013EC64868C38204D8385B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Y8xuY7TXsI76Bw__-_Ro1Ta2Wo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.mft Manifest number: B4 Signing time: Sat 28 Mar 2026 18:48:34 +0000 Manifest this update: Sat 28 Mar 2026 18:43:34 +0000 Manifest next update: Sun 29 Mar 2026 21:17:34 +0000 Files and hashes: 1: 3139332e3130362e36342e302f32342d3234203d3e203630383630.roa (hash: G3H4jbMqiw5DQSMLQn1fJ6uJtDMGKpTXzheKy4E+Q/Y=) 2: 3139332e3130362e36352e302f32342d3234203d3e203630383630.roa (hash: fqNRaoLtdl8BsIrfiu4PvyRr6AhuFheEHGA8K066NQ0=) 3: D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.crl (hash: S+GGP5axfJsvvbPmGZTL/L+aThKV+I9umrZogExGU+0=) 4: 3139332e3130362e36372e302f32342d3234203d3e203630383630.roa (hash: AR/qw0HziLw8HHdQriZPc+gMCtTCe+FKN/BuvJjupJg=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.mft rsync://rpki.ripe.net/repository/DEFAULT/0Y8xuY7TXsI76Bw__-_Ro1Ta2Wo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Mar 2026 21:17:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:ab:86:af:5e:be:67:65:66:01:3e:c6:48:68:c3:82:04:d8:38:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d18f31b98ed35ec23be81c3fffefd1a354dad96a Validity Not Before: Mar 28 18:43:34 2026 GMT Not After : Mar 29 21:17:34 2026 GMT Subject: CN=16B17FB7622582674C11AEDF138E6B90032FF4B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:85:53:7a:90:ae:b9:b4:d4:54:07:b7:ca:97: 9f:0f:a8:89:33:e3:04:0b:53:04:d0:64:b8:e9:30: e7:1c:c4:f7:b4:42:40:f9:bb:1d:62:fc:34:de:07: f9:22:e2:22:08:4b:31:60:f6:a4:c7:be:3e:54:a5: 44:71:f1:51:a7:a0:5c:d0:10:4f:44:f9:ad:d2:47: b9:2e:01:14:d4:5e:cb:06:f8:7f:e8:30:a9:3a:0e: 54:a9:5a:47:0b:b0:9a:c9:3b:8d:42:72:2a:a8:2e: 55:c2:a1:3c:a7:07:c8:78:34:d2:7a:e2:7d:47:46: 6e:d7:a0:0e:12:1b:68:51:5e:ad:48:35:77:72:e8: 7e:32:95:5c:1d:eb:b5:df:10:81:d5:07:81:31:07: b1:4c:d2:e4:55:b1:89:49:32:8c:21:75:67:9e:9e: b3:d6:5f:68:69:67:b2:8f:92:56:ae:6a:62:6c:b4: be:13:35:44:6d:a7:a7:76:2f:38:d0:e9:85:6a:25: ae:45:1a:ac:af:a5:71:21:2c:10:9c:2c:4e:a5:ce: 1a:68:e3:32:7c:65:d1:5d:68:60:2d:56:07:b2:9d: 8d:dd:09:9f:9a:97:07:f7:56:8a:19:7f:34:34:0e: 16:b8:51:b1:5d:33:2a:21:9c:d7:96:b1:bb:47:b2: e9:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:B1:7F:B7:62:25:82:67:4C:11:AE:DF:13:8E:6B:90:03:2F:F4:B2 X509v3 Authority Key Identifier: keyid:D1:8F:31:B9:8E:D3:5E:C2:3B:E8:1C:3F:FF:EF:D1:A3:54:DA:D9:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Y8xuY7TXsI76Bw__-_Ro1Ta2Wo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:b7:3c:90:0f:7e:96:fa:38:7b:d4:4a:53:2b:a4:08:af:92: 5a:e0:2c:76:52:78:b6:49:17:eb:79:f8:27:e1:4d:29:3c:53: e7:bb:fb:3c:bf:41:66:7f:a1:38:0b:b3:32:16:ec:3a:0c:c2: ca:5e:55:3b:76:4e:9c:d6:92:6a:61:e5:b8:08:76:e1:55:d3: 4b:b2:f3:4b:c6:29:b8:68:62:f0:09:d6:2a:ed:b3:5b:b9:30: 2b:97:c7:d4:00:d7:f2:0d:26:a0:48:ba:88:4b:76:8d:14:a0: 17:45:f9:93:7a:87:b6:f0:68:ea:c1:da:6b:92:fa:aa:81:88: d6:ff:ca:44:41:ef:3f:fd:de:26:e8:10:ce:71:31:09:d9:21: 98:99:da:10:11:b9:2b:df:07:b2:55:b1:0c:22:26:04:c5:87: 34:f0:b0:77:1e:95:03:ce:87:3c:77:79:87:55:17:a5:eb:7d: ce:ae:dc:d0:a0:df:2e:06:45:e7:aa:85:10:ff:06:b0:7e:2b: 31:ac:6e:5c:44:f6:c2:95:46:be:57:29:27:38:35:77:89:10: 18:f7:76:f3:a3:6d:04:3d:4d:1b:6a:a3:70:81:b2:54:37:22: f4:d2:75:d9:1e:c3:b9:09:81:73:d9:99:55:00:36:27:1e:4c: 9a:06:58:51 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUVquGr16+Z2VmAT7GSGjDggTYOFswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZDE4ZjMxYjk4ZWQzNWVjMjNiZTgxYzNmZmZlZmQxYTM1 NGRhZDk2YTAeFw0yNjAzMjgxODQzMzRaFw0yNjAzMjkyMTE3MzRaMDMxMTAvBgNV BAMTKDE2QjE3RkI3NjIyNTgyNjc0QzExQUVERjEzOEU2QjkwMDMyRkY0QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDehVN6kK65tNRUB7fKl58PqIkz 4wQLUwTQZLjpMOccxPe0QkD5ux1i/DTeB/ki4iIISzFg9qTHvj5UpURx8VGnoFzQ EE9E+a3SR7kuARTUXssG+H/oMKk6DlSpWkcLsJrJO41CciqoLlXCoTynB8h4NNJ6 4n1HRm7XoA4SG2hRXq1INXdy6H4ylVwd67XfEIHVB4ExB7FM0uRVsYlJMowhdWee nrPWX2hpZ7KPklauamJstL4TNURtp6d2LzjQ6YVqJa5FGqyvpXEhLBCcLE6lzhpo 4zJ8ZdFdaGAtVgeynY3dCZ+alwf3VooZfzQ0Dha4UbFdMyohnNeWsbtHsukfAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUFrF/t2IlgmdMEa7fE45rkAMv9LIwHwYDVR0j BBgwFoAU0Y8xuY7TXsI76Bw//+/Ro1Ta2WowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjE3MDhhNmItNmMzYS00MGEwLWEzMDItNTk1ZWNjMTc4 NDhjLzQvRDE4RjMxQjk4RUQzNUVDMjNCRTgxQzNGRkZFRkQxQTM1NERBRDk2QS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBZOHh1WTdUWHNJNzZCd19fLV9SbzFU YTJXby5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS82MTcwOGE2Yi02 YzNhLTQwYTAtYTMwMi01OTVlY2MxNzg0OGMvNC9EMThGMzFCOThFRDM1RUMyM0JF ODFDM0ZGRkVGRDFBMzU0REFEOTZBLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh7c8kA9+lvo4e9RKUyuk CK+SWuAsdlJ4tkkX63n4J+FNKTxT57v7PL9BZn+hOAuzMhbsOgzCyl5VO3ZOnNaS amHluAh24VXTS7LzS8YpuGhi8AnWKu2zW7kwK5fH1ADX8g0moEi6iEt2jRSgF0X5 k3qHtvBo6sHaa5L6qoGI1v/KREHvP/3eJugQznExCdkhmJnaEBG5K98HslWxDCIm BMWHNPCwdx6VA86HPHd5h1UXpet9zq7c0KDfLgZF56qFEP8GsH4rMaxuXET2wpVG vlcpJzg1d4kQGPd286NtBD1NG2qjcIGyVDci9NJ12R7DuQmBc9mZVQA2Jx5MmgZY UQ== -----END CERTIFICATE-----Generated at Sun Mar 29 13:39:13 2026 by rpki-client