$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.mft File: 0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.mft (raw, json) Hash identifier: 18b6lmUZgsuefALTym13wUzYTVxxlqUMXl5QJOWGtmc= Subject key identifier: 81:A2:FE:D0:04:C3:DE:01:DE:E3:5B:A7:F7:CA:4D:73:E7:58:99:E2 Authority key identifier: 0D:7F:FA:E3:00:DE:F0:87:6B:F8:48:90:FB:6E:A1:7B:E8:41:A4:D3 Certificate issuer: /CN=0d7ffae300def0876bf84890fb6ea17be841a4d3 Certificate serial: 279DF7895616148F7588CD21B307CF3FA112BFEC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DX_64wDe8Idr-EiQ-26he-hBpNM.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.mft Manifest number: 01D2 Signing time: Sat 01 Nov 2025 04:50:59 +0000 Manifest this update: Sat 01 Nov 2025 04:45:59 +0000 Manifest next update: Sun 02 Nov 2025 07:54:59 +0000 Files and hashes: 1: 3138352e3231332e3234392e302f32342d3234203d3e203235313938.roa (hash: RAmqdtOqt2GXnv4T7A8gAKdg4H2+TG5CqjE3/MvQxnU=) 2: 0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.crl (hash: vuC7RDpjSvX0NkoMQxLmOYrnd2VZN44nC2L57fgZ2Gg=) 3: 3138352e3231332e3235302e302f32342d3234203d3e20323132323338.roa (hash: ygSJr7gJnzCgddZdASy6lFYbTZobnImgktqUZvda03k=) 4: 38352e3131372e3233302e302f32342d3234203d3e2035303635.roa (hash: 8/mMTd8OI6hx+rEazKaA5i9flVTt9So8wwSfFF6xpVo=) 5: 3138352e3231332e3234382e302f32342d3234203d3e20323035383836.roa (hash: ODfn5/rpX0/qAWjZsS/cv+gVh3kFgfI7CdBECTg9zww=) 6: 3139342e33342e3235352e302f32342d3234203d3e20313431393638.roa (hash: iQ9RYSqOmsvIqARX4nqI9wEFn//drkKsHCDo7XaSdTU=) 7: 38352e3131372e3232392e302f32342d3234203d3e20323132323338.roa (hash: qWG9h0hKE/+rc67V6b0QtNqJKNBV/dmrN+3owun/5GY=) 8: 3138352e3231332e3235312e302f32342d3234203d3e20313338383838.roa (hash: u9k1CEDVyAGe8je2Y99pF+EO5LdgGSTfU7yFr7GEyGA=) 9: 3138352e3231332e3235312e302f32342d3234203d3e20313337353537.roa (hash: eYILiT2JPXpEDLdM1mRS7Zrw3uThCrbSVHgyCN3lFo4=) 10: 3138352e3231332e3235312e302f32342d3234203d3e20313338313630.roa (hash: fygAQSb+QwiyUnesqK4IcvvWfRduHnIesYUaMnTC6go=) 11: 3138352e3231332e3234392e302f32342d3234203d3e20343030393039.roa (hash: 4O3foUV7f18NUYJQaeBYgK+aW1lr+7o+ea8CcQjVzCw=) 12: 38352e3131372e3233312e302f32342d3234203d3e20323133373234.roa (hash: ohyXGo6Fwg3029u2hdROae+jQf4VI2skgvLUXH3jI8w=) 13: 38352e3131372e3232382e302f32342d3234203d3e20323134343538.roa (hash: rcAG2FX2+ZD0Qb1+KeZK9os832Q7CwzkoxVHQi9yY7k=) 14: 3139342e33342e3235322e302f32342d3234203d3e20313335343032.roa (hash: PzY2ZjUPUkaqIDtZu9fHD0rPK6Exx+TMbdxcEJS1upA=) 15: 3139342e33342e3235332e302f32342d3234203d3e2035303635.roa (hash: tD+eYvXQsGkCcpnz6s7EBRYpOf8Iu4vdb3Qy27wUI6g=) 16: 3139342e33342e3235342e302f32342d3234203d3e203339353231.roa (hash: NlXPjFULkcx7gkn+N7DXp0UvA+RAqFzlxOrFX93rGv4=) 17: 3138352e3231332e3235312e302f32342d3234203d3e20393834.roa (hash: +mGpTck72lzkh7Ood/3OgnV6lEE5Ty61FGiwl0p4XrE=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.crl rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.mft rsync://rpki.ripe.net/repository/DEFAULT/DX_64wDe8Idr-EiQ-26he-hBpNM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 02 Nov 2025 03:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:9d:f7:89:56:16:14:8f:75:88:cd:21:b3:07:cf:3f:a1:12:bf:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d7ffae300def0876bf84890fb6ea17be841a4d3 Validity Not Before: Nov 1 04:45:59 2025 GMT Not After : Nov 2 07:54:59 2025 GMT Subject: CN=81A2FED004C3DE01DEE35BA7F7CA4D73E75899E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ee:b7:af:fa:a5:49:80:c7:97:63:0f:ef:5f: 85:81:81:d4:70:87:da:17:b1:b4:d6:c4:e1:e9:0a: 19:15:59:a3:ae:91:e1:42:a6:a4:ba:69:7d:51:21: d8:ab:20:f0:f8:97:7c:c6:4d:f0:10:66:bb:e1:5c: 79:9b:00:fb:fc:2b:73:33:c2:84:bc:e2:19:a6:9e: 0a:29:63:bf:fb:d7:a7:da:81:8f:3a:ff:61:c3:27: 87:54:62:72:21:4c:3d:59:d3:9d:39:ab:fa:a9:15: 05:95:a2:a4:37:cf:7f:3d:34:b8:c8:9f:49:cd:0d: b3:c0:49:ad:7d:73:15:65:e6:a0:73:d1:2a:99:e0: e8:c3:59:ac:e8:d4:10:e3:09:f7:45:9f:34:26:51: 55:7a:4e:d1:e7:e5:41:78:39:1d:ac:e1:b4:93:18: 55:a4:2d:15:20:cc:51:2b:60:eb:e6:60:b6:b0:30: 3b:4f:97:a1:cc:bb:bc:cf:83:d0:1e:38:e0:cb:17: eb:34:3e:12:c1:d8:00:99:46:a7:1c:51:31:94:b7: f7:a2:19:4d:8d:f1:8b:ea:ac:e5:cf:78:19:9b:5a: 25:43:28:05:7b:31:de:82:29:3b:06:88:8a:e3:35: f6:3f:9d:38:bf:85:be:b0:41:10:5d:cc:a4:63:1b: e2:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:A2:FE:D0:04:C3:DE:01:DE:E3:5B:A7:F7:CA:4D:73:E7:58:99:E2 X509v3 Authority Key Identifier: keyid:0D:7F:FA:E3:00:DE:F0:87:6B:F8:48:90:FB:6E:A1:7B:E8:41:A4:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DX_64wDe8Idr-EiQ-26he-hBpNM.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:71:89:4b:c6:c4:4c:82:76:77:e0:82:54:52:24:35:62:14: cc:16:f7:ca:0a:ba:da:2f:dc:83:11:7f:26:5c:6d:0e:c8:8c: 0a:40:02:e0:f7:fc:30:14:4f:2b:03:06:0f:08:72:cd:d5:19: e4:a6:dc:a8:58:97:19:ed:3b:db:93:dc:e5:03:a8:74:17:a2: 77:24:ba:72:53:e2:d8:4d:5e:95:0a:0e:bf:59:4a:80:8e:a7: d2:b9:e2:80:3c:0b:da:4b:8c:c4:b1:4a:e6:cc:7e:ee:32:8d: 23:73:c0:22:dd:89:a6:15:0c:2c:ab:21:48:dd:dc:d5:ce:3d: 5a:55:ce:e3:95:a2:69:f4:3e:6f:d7:46:f3:a6:83:3c:8e:67: e1:66:db:27:4c:94:39:fd:d6:3d:78:12:99:85:07:40:77:0e: 6d:3c:b7:64:91:22:10:01:20:42:a7:2d:e2:23:fb:19:0a:c3: 9d:0d:cb:f4:13:e4:6c:e3:c5:dc:a1:18:fa:40:ab:92:77:26: ab:98:1a:c8:67:d2:4f:b8:fc:61:c9:b3:8b:c1:51:76:80:8e: 0b:9c:ca:8c:47:f7:72:02:04:75:82:cd:75:d1:23:48:ae:00: bb:b7:62:fc:66:35:02:18:7e:1d:c7:78:7f:19:f2:66:f2:38: 5b:73:8f:9f -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUJ533iVYWFI91iM0hswfPP6ESv+wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMGQ3ZmZhZTMwMGRlZjA4NzZiZjg0ODkwZmI2ZWExN2Jl ODQxYTRkMzAeFw0yNTExMDEwNDQ1NTlaFw0yNTExMDIwNzU0NTlaMDMxMTAvBgNV BAMTKDgxQTJGRUQwMDRDM0RFMDFERUUzNUJBN0Y3Q0E0RDczRTc1ODk5RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg7rev+qVJgMeXYw/vX4WBgdRw h9oXsbTWxOHpChkVWaOukeFCpqS6aX1RIdirIPD4l3zGTfAQZrvhXHmbAPv8K3Mz woS84hmmngopY7/716fagY86/2HDJ4dUYnIhTD1Z0505q/qpFQWVoqQ3z389NLjI n0nNDbPASa19cxVl5qBz0SqZ4OjDWazo1BDjCfdFnzQmUVV6TtHn5UF4OR2s4bST GFWkLRUgzFErYOvmYLawMDtPl6HMu7zPg9AeOODLF+s0PhLB2ACZRqccUTGUt/ei GU2N8YvqrOXPeBmbWiVDKAV7Md6CKTsGiIrjNfY/nTi/hb6wQRBdzKRjG+LDAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUgaL+0ATD3gHe41un98pNc+dYmeIwHwYDVR0j BBgwFoAUDX/64wDe8Idr+EiQ+26he+hBpNMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODExM2RkYTYtN2FkZS00NDVkLThjNmUtNDQ4YTc4ZTQ4 Y2ExLzEvMEQ3RkZBRTMwMERFRjA4NzZCRjg0ODkwRkI2RUExN0JFODQxQTREMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0RYXzY0d0RlOElkci1FaVEtMjZoZS1o QnBOTS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84MTEzZGRhNi03 YWRlLTQ0NWQtOGM2ZS00NDhhNzhlNDhjYTEvMS8wRDdGRkFFMzAwREVGMDg3NkJG ODQ4OTBGQjZFQTE3QkU4NDFBNEQzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbXGJS8bETIJ2d+CCVFIk NWIUzBb3ygq62i/cgxF/JlxtDsiMCkAC4Pf8MBRPKwMGDwhyzdUZ5KbcqFiXGe07 25Pc5QOodBeidyS6clPi2E1elQoOv1lKgI6n0rnigDwL2kuMxLFK5sx+7jKNI3PA It2JphUMLKshSN3c1c49WlXO45WiafQ+b9dG86aDPI5n4WbbJ0yUOf3WPXgSmYUH QHcObTy3ZJEiEAEgQqct4iP7GQrDnQ3L9BPkbOPF3KEY+kCrkncmq5gayGfST7j8 Ycmzi8FRdoCOC5zKjEf3cgIEdYLNddEjSK4Au7di/GY1Ahh+Hcd4fxnyZvI4W3OP nw== -----END CERTIFICATE-----Generated at Sat Nov 1 11:23:21 2025 by rpki-client