$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.mft File: D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.mft (raw, json) Hash identifier: x45hHaJtK756vGVZ/fCgeaplHinmTSYpI5KvvTjyYgA= Subject key identifier: C7:62:72:96:27:1A:2C:13:6B:3B:03:71:EA:4D:00:C7:C0:29:73:A1 Authority key identifier: D1:8F:31:B9:8E:D3:5E:C2:3B:E8:1C:3F:FF:EF:D1:A3:54:DA:D9:6A Certificate issuer: /CN=d18f31b98ed35ec23be81c3fffefd1a354dad96a Certificate serial: 0486EA5AA526E917FCFC15040F8A3596FB94B067 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Y8xuY7TXsI76Bw__-_Ro1Ta2Wo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.mft Manifest number: 0104 Signing time: Mon 25 May 2026 23:32:54 +0000 Manifest this update: Mon 25 May 2026 23:27:54 +0000 Manifest next update: Wed 27 May 2026 02:57:54 +0000 Files and hashes: 1: 3139332e3130362e36352e302f32342d3234203d3e203630383630.roa (hash: fqNRaoLtdl8BsIrfiu4PvyRr6AhuFheEHGA8K066NQ0=) 2: D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.crl (hash: 8546P9oOJt0F+XR+bFEXRB7acaea/ScSJSJubiCQ47I=) 3: 3139332e3130362e36342e302f32342d3234203d3e203630383630.roa (hash: G3H4jbMqiw5DQSMLQn1fJ6uJtDMGKpTXzheKy4E+Q/Y=) 4: 3139332e3130362e36372e302f32342d3234203d3e203630383630.roa (hash: AR/qw0HziLw8HHdQriZPc+gMCtTCe+FKN/BuvJjupJg=) 5: 3139332e3130362e36362e302f32342d3234203d3e203630383630.roa (hash: 6C7y+fYBD1VfGU5aOUC6YEoLG1qQiLffBU7c4ztP4Ek=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.crl rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.mft rsync://rpki.ripe.net/repository/DEFAULT/0Y8xuY7TXsI76Bw__-_Ro1Ta2Wo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 27 May 2026 02:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:86:ea:5a:a5:26:e9:17:fc:fc:15:04:0f:8a:35:96:fb:94:b0:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d18f31b98ed35ec23be81c3fffefd1a354dad96a Validity Not Before: May 25 23:27:54 2026 GMT Not After : May 27 02:57:54 2026 GMT Subject: CN=C7627296271A2C136B3B0371EA4D00C7C02973A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:23:00:44:49:c2:32:a7:94:3e:41:1d:c2:63: 25:71:46:0a:da:af:17:1c:22:99:93:35:6d:42:06: d5:43:11:da:be:58:af:0c:c6:ac:17:22:5a:8a:50: e0:e9:1d:3c:56:3c:7c:a2:c3:fb:3b:80:a7:81:eb: 37:b5:fe:6c:a5:b7:f7:f2:c9:40:ea:b3:38:80:23: f6:98:e1:20:3e:d5:92:46:b0:96:37:06:25:67:7d: 94:4b:77:f6:98:79:32:6a:60:7e:d4:3b:18:28:82: ef:35:8b:47:93:46:ed:96:37:89:bc:cb:46:04:7c: 2c:d4:d8:1a:7d:3e:6e:84:0a:84:83:9b:29:5f:fa: ed:d0:d2:a8:11:6c:13:ea:18:2e:6b:d8:ae:ac:21: 5d:31:32:b4:8e:de:e9:01:ce:2f:37:52:c0:36:5a: 6f:de:47:ad:e7:55:e2:3d:5f:a2:8d:fb:e1:3c:61: 60:cb:f4:48:fe:0c:60:0b:73:6e:c7:c9:8a:89:6c: c0:3a:23:08:e7:0a:c9:e3:50:38:ae:c8:e4:61:c3: 47:48:b9:6c:98:e9:67:dc:83:bc:f6:99:e1:f2:42: 44:56:f7:a2:86:69:07:dd:80:2e:b6:84:6f:00:ed: 67:90:b7:f8:92:a1:1e:fd:29:93:69:85:45:84:b4: 95:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:62:72:96:27:1A:2C:13:6B:3B:03:71:EA:4D:00:C7:C0:29:73:A1 X509v3 Authority Key Identifier: keyid:D1:8F:31:B9:8E:D3:5E:C2:3B:E8:1C:3F:FF:EF:D1:A3:54:DA:D9:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Y8xuY7TXsI76Bw__-_Ro1Ta2Wo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/61708a6b-6c3a-40a0-a302-595ecc17848c/4/D18F31B98ED35EC23BE81C3FFFEFD1A354DAD96A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:a9:b7:c0:8b:9d:75:17:c9:d0:43:00:b9:1a:34:e9:70:b4: 0f:11:d3:80:17:58:95:66:59:ed:cd:ad:50:71:82:06:94:de: 1d:e8:17:99:b9:ef:13:0a:79:e7:bf:e8:07:35:14:cb:2a:b0: 59:50:08:b9:1d:2b:e1:e9:48:4c:57:9e:49:9d:c8:5a:6a:ee: a4:81:97:2f:e1:11:45:25:ea:30:1d:10:e8:79:59:56:2c:fc: 7d:58:5c:50:fd:a2:59:3f:d2:dd:ca:a2:1a:29:79:a8:bd:3c: b5:01:9b:95:5e:fe:ca:39:ee:ac:88:cf:47:9d:88:e9:8a:a8: 3a:05:d5:f5:c7:4c:eb:ce:26:eb:1f:13:72:07:ad:20:d8:90: 29:05:55:77:a1:e8:6a:59:3e:63:ae:4b:6d:8a:d6:fe:ec:67: c6:20:56:94:53:89:7a:3b:dd:0f:4c:ac:32:b7:1e:57:4a:a7: b6:38:51:7a:73:90:1f:df:95:0f:0d:04:eb:9a:cd:61:73:c5: 72:34:40:da:9e:fa:05:db:00:55:d2:cc:37:90:a5:1c:8f:2d: ba:44:87:0f:ba:5a:48:69:6a:eb:02:b1:7d:30:de:a5:a4:53: 08:12:2f:88:40:64:38:12:fe:0c:85:20:ec:45:8b:aa:39:76: 11:29:9e:1c -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUBIbqWqUm6Rf8/BUED4o1lvuUsGcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZDE4ZjMxYjk4ZWQzNWVjMjNiZTgxYzNmZmZlZmQxYTM1 NGRhZDk2YTAeFw0yNjA1MjUyMzI3NTRaFw0yNjA1MjcwMjU3NTRaMDMxMTAvBgNV BAMTKEM3NjI3Mjk2MjcxQTJDMTM2QjNCMDM3MUVBNEQwMEM3QzAyOTczQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfIwBEScIyp5Q+QR3CYyVxRgra rxccIpmTNW1CBtVDEdq+WK8MxqwXIlqKUODpHTxWPHyiw/s7gKeB6ze1/mylt/fy yUDqsziAI/aY4SA+1ZJGsJY3BiVnfZRLd/aYeTJqYH7UOxgogu81i0eTRu2WN4m8 y0YEfCzU2Bp9Pm6ECoSDmylf+u3Q0qgRbBPqGC5r2K6sIV0xMrSO3ukBzi83UsA2 Wm/eR63nVeI9X6KN++E8YWDL9Ej+DGALc27HyYqJbMA6IwjnCsnjUDiuyORhw0dI uWyY6Wfcg7z2meHyQkRW96KGaQfdgC62hG8A7WeQt/iSoR79KZNphUWEtJUtAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUx2JylicaLBNrOwNx6k0Ax8Apc6EwHwYDVR0j BBgwFoAU0Y8xuY7TXsI76Bw//+/Ro1Ta2WowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjE3MDhhNmItNmMzYS00MGEwLWEzMDItNTk1ZWNjMTc4 NDhjLzQvRDE4RjMxQjk4RUQzNUVDMjNCRTgxQzNGRkZFRkQxQTM1NERBRDk2QS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBZOHh1WTdUWHNJNzZCd19fLV9SbzFU YTJXby5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS82MTcwOGE2Yi02 YzNhLTQwYTAtYTMwMi01OTVlY2MxNzg0OGMvNC9EMThGMzFCOThFRDM1RUMyM0JF ODFDM0ZGRkVGRDFBMzU0REFEOTZBLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUKm3wIuddRfJ0EMAuRo0 6XC0DxHTgBdYlWZZ7c2tUHGCBpTeHegXmbnvEwp557/oBzUUyyqwWVAIuR0r4elI TFeeSZ3IWmrupIGXL+ERRSXqMB0Q6HlZViz8fVhcUP2iWT/S3cqiGil5qL08tQGb lV7+yjnurIjPR52I6YqoOgXV9cdM684m6x8TcgetINiQKQVVd6Hoalk+Y65LbYrW /uxnxiBWlFOJejvdD0ysMrceV0qntjhRenOQH9+VDw0E65rNYXPFcjRA2p76BdsA VdLMN5ClHI8tukSHD7paSGlq6wKxfTDepaRTCBIviEBkOBL+DIUg7EWLqjl2ESme HA== -----END CERTIFICATE-----Generated at Tue May 26 07:46:06 2026 by rpki-client