$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.mft File: 0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.mft (raw, json) Hash identifier: XAceYDEI/HFKmcH/Bzwa/0Oz/kfvZbZ2XcCkpSA8RGE= Subject key identifier: CF:F1:DA:EF:5D:5D:40:14:23:20:ED:CA:E6:1D:85:0E:DC:B5:0C:73 Authority key identifier: 0D:7F:FA:E3:00:DE:F0:87:6B:F8:48:90:FB:6E:A1:7B:E8:41:A4:D3 Certificate issuer: /CN=0d7ffae300def0876bf84890fb6ea17be841a4d3 Certificate serial: 285EB3CEC5AA03DA10D921F6CFB954755F0D8E6E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DX_64wDe8Idr-EiQ-26he-hBpNM.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.mft Manifest number: 018D Signing time: Mon 15 Sep 2025 20:29:57 +0000 Manifest this update: Mon 15 Sep 2025 20:24:57 +0000 Manifest next update: Tue 16 Sep 2025 21:57:57 +0000 Files and hashes: 1: 3138352e3231332e3235312e302f32342d3234203d3e20313338383838.roa (hash: u9k1CEDVyAGe8je2Y99pF+EO5LdgGSTfU7yFr7GEyGA=) 2: 0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.crl (hash: pgdqGc+E5Qzt7SeNQ+A6Z8Jai6sdSOpI+54LC2CEeO0=) 3: 3139342e33342e3235352e302f32342d3234203d3e20383334.roa (hash: 9Nay8jCVOB7MKBbd6t/oX++dJQIYhzLuqo54ZgkMc3E=) 4: 3139342e33342e3235322e302f32342d3234203d3e20313335343032.roa (hash: PzY2ZjUPUkaqIDtZu9fHD0rPK6Exx+TMbdxcEJS1upA=) 5: 3138352e3231332e3234382e302f32342d3234203d3e20383334.roa (hash: NeIyH9xxsoqFV+3yb/Ns2oP7cbsMBtN42kO76jjN4p0=) 6: 38352e3131372e3232392e302f32342d3234203d3e20323132323338.roa (hash: qWG9h0hKE/+rc67V6b0QtNqJKNBV/dmrN+3owun/5GY=) 7: 3138352e3231332e3235302e302f32342d3234203d3e20323132323338.roa (hash: ygSJr7gJnzCgddZdASy6lFYbTZobnImgktqUZvda03k=) 8: 38352e3131372e3232382e302f32342d3234203d3e20323134343538.roa (hash: rcAG2FX2+ZD0Qb1+KeZK9os832Q7CwzkoxVHQi9yY7k=) 9: 3138352e3231332e3235312e302f32342d3234203d3e20393834.roa (hash: +mGpTck72lzkh7Ood/3OgnV6lEE5Ty61FGiwl0p4XrE=) 10: 3139342e33342e3235342e302f32342d3234203d3e20313532363732.roa (hash: hKPfS0qlA4vPTLhw9nwXVGJzFe2/vcx6+01rQ/Eesqo=) 11: 38352e3131372e3233312e302f32342d3234203d3e20323133373234.roa (hash: ohyXGo6Fwg3029u2hdROae+jQf4VI2skgvLUXH3jI8w=) 12: 3139342e33342e3235332e302f32342d3234203d3e2035303635.roa (hash: tD+eYvXQsGkCcpnz6s7EBRYpOf8Iu4vdb3Qy27wUI6g=) 13: 38352e3131372e3233302e302f32342d3234203d3e2035303635.roa (hash: 8/mMTd8OI6hx+rEazKaA5i9flVTt9So8wwSfFF6xpVo=) 14: 3138352e3231332e3235312e302f32342d3234203d3e20313337353537.roa (hash: eYILiT2JPXpEDLdM1mRS7Zrw3uThCrbSVHgyCN3lFo4=) 15: 3138352e3231332e3234392e302f32342d3234203d3e20343030393039.roa (hash: 4O3foUV7f18NUYJQaeBYgK+aW1lr+7o+ea8CcQjVzCw=) 16: 3138352e3231332e3235312e302f32342d3234203d3e20313338313630.roa (hash: fygAQSb+QwiyUnesqK4IcvvWfRduHnIesYUaMnTC6go=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.crl rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.mft rsync://rpki.ripe.net/repository/DEFAULT/DX_64wDe8Idr-EiQ-26he-hBpNM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Sep 2025 21:57:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:5e:b3:ce:c5:aa:03:da:10:d9:21:f6:cf:b9:54:75:5f:0d:8e:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d7ffae300def0876bf84890fb6ea17be841a4d3 Validity Not Before: Sep 15 20:24:57 2025 GMT Not After : Sep 16 21:57:57 2025 GMT Subject: CN=CFF1DAEF5D5D40142320EDCAE61D850EDCB50C73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:b3:3d:35:02:84:07:00:8e:d6:81:46:f2:6e: 3d:f3:22:0f:41:5a:f8:c2:55:4a:93:76:1b:af:e9: d0:ea:47:90:75:be:58:7b:a7:dc:63:c1:c4:27:52: c4:db:41:d3:5f:74:44:bb:8f:59:f8:1a:37:2d:4a: 53:b8:33:84:3d:ce:a3:bb:39:dd:de:0d:b2:b9:4a: ed:0d:a5:a4:1d:2d:0b:51:40:b6:43:c5:54:04:50: bb:45:41:6c:04:62:c9:df:25:e0:48:24:74:32:dc: ce:4f:c2:ce:96:d4:50:3f:e2:e6:ea:38:fa:7b:82: d2:91:b0:31:f8:a0:3d:99:b6:fd:89:15:f2:a6:2c: db:b9:63:56:54:cc:c3:ac:84:b4:04:ea:9b:67:94: 6e:e8:66:e6:ba:91:6c:be:fc:68:e6:00:c1:7a:fe: 62:58:31:2c:3e:ea:11:94:3d:eb:d0:3f:d6:27:4b: 8d:df:f5:84:59:74:45:cb:a6:16:cb:72:20:f2:ed: 5c:04:3d:eb:dc:b3:f5:72:80:c7:7c:b3:fb:f7:9b: 7e:15:9d:8e:f2:b0:9f:12:7d:64:1c:6a:b5:dd:da: cf:67:cb:b7:6a:24:36:74:74:a6:fd:4d:77:ab:66: 8e:bd:13:f6:f0:15:3e:d9:5b:58:b9:26:a5:1c:b7: 70:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:F1:DA:EF:5D:5D:40:14:23:20:ED:CA:E6:1D:85:0E:DC:B5:0C:73 X509v3 Authority Key Identifier: keyid:0D:7F:FA:E3:00:DE:F0:87:6B:F8:48:90:FB:6E:A1:7B:E8:41:A4:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DX_64wDe8Idr-EiQ-26he-hBpNM.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:af:7d:e3:75:ff:68:ac:1f:24:03:df:80:9b:78:79:84:9e: e3:6a:36:fe:69:e0:2d:8b:6e:6c:bd:7e:76:c9:41:b7:3e:3b: 05:74:62:80:9b:86:30:d1:b4:51:c3:e9:65:3d:a8:81:ed:62: 34:12:1f:40:f8:9e:12:49:2f:8a:73:8c:33:18:b0:8f:90:c1: 9b:65:92:63:ab:33:23:84:c0:06:0b:fc:c0:34:9a:76:b4:f4: 88:01:b2:3f:5a:20:be:df:10:89:38:dd:f8:da:c7:57:68:6e: 9b:04:90:e3:7d:7b:a8:85:c3:9d:6d:14:b4:18:56:3b:50:8d: d5:9e:45:8b:8f:03:32:dd:d0:ab:d0:0f:dc:be:bb:ae:64:94: 48:ed:c4:9b:e0:48:fa:c3:a4:89:ff:72:7b:f2:3c:d9:33:29: c7:53:b1:85:17:4e:c2:c5:84:92:29:be:b3:da:8a:07:e5:fc: 05:d3:0b:d9:f7:7c:cd:b8:06:ae:6b:59:a9:80:bc:4e:76:a1: 75:8a:b7:b0:7d:dd:a1:25:b6:1d:50:fe:e3:03:92:5d:42:a2: 28:15:cc:76:c7:d5:f6:01:6b:91:23:a1:0d:4e:44:96:df:da: 1f:4f:e3:4f:1d:bd:2b:ea:e8:9e:19:c8:33:85:ae:76:cf:7a: 59:d0:fa:63 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUKF6zzsWqA9oQ2SH2z7lUdV8Njm4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMGQ3ZmZhZTMwMGRlZjA4NzZiZjg0ODkwZmI2ZWExN2Jl ODQxYTRkMzAeFw0yNTA5MTUyMDI0NTdaFw0yNTA5MTYyMTU3NTdaMDMxMTAvBgNV BAMTKENGRjFEQUVGNUQ1RDQwMTQyMzIwRURDQUU2MUQ4NTBFRENCNTBDNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdsz01AoQHAI7WgUbybj3zIg9B WvjCVUqTdhuv6dDqR5B1vlh7p9xjwcQnUsTbQdNfdES7j1n4GjctSlO4M4Q9zqO7 Od3eDbK5Su0NpaQdLQtRQLZDxVQEULtFQWwEYsnfJeBIJHQy3M5Pws6W1FA/4ubq OPp7gtKRsDH4oD2Ztv2JFfKmLNu5Y1ZUzMOshLQE6ptnlG7oZua6kWy+/GjmAMF6 /mJYMSw+6hGUPevQP9YnS43f9YRZdEXLphbLciDy7VwEPevcs/VygMd8s/v3m34V nY7ysJ8SfWQcarXd2s9ny7dqJDZ0dKb9TXerZo69E/bwFT7ZW1i5JqUct3DpAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUz/Ha711dQBQjIO3K5h2FDty1DHMwHwYDVR0j BBgwFoAUDX/64wDe8Idr+EiQ+26he+hBpNMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODExM2RkYTYtN2FkZS00NDVkLThjNmUtNDQ4YTc4ZTQ4 Y2ExLzEvMEQ3RkZBRTMwMERFRjA4NzZCRjg0ODkwRkI2RUExN0JFODQxQTREMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0RYXzY0d0RlOElkci1FaVEtMjZoZS1o QnBOTS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84MTEzZGRhNi03 YWRlLTQ0NWQtOGM2ZS00NDhhNzhlNDhjYTEvMS8wRDdGRkFFMzAwREVGMDg3NkJG ODQ4OTBGQjZFQTE3QkU4NDFBNEQzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR69943X/aKwfJAPfgJt4 eYSe42o2/mngLYtubL1+dslBtz47BXRigJuGMNG0UcPpZT2oge1iNBIfQPieEkkv inOMMxiwj5DBm2WSY6szI4TABgv8wDSadrT0iAGyP1ogvt8QiTjd+NrHV2humwSQ 4317qIXDnW0UtBhWO1CN1Z5Fi48DMt3Qq9AP3L67rmSUSO3Em+BI+sOkif9ye/I8 2TMpx1OxhRdOwsWEkim+s9qKB+X8BdML2fd8zbgGrmtZqYC8TnahdYq3sH3doSW2 HVD+4wOSXUKiKBXMdsfV9gFrkSOhDU5Elt/aH0/jTx29K+ronhnIM4Wuds96WdD6 Yw== -----END CERTIFICATE-----Generated at Tue Sep 16 09:24:33 2025 by rpki-client