$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft File: C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft (raw, json) Hash identifier: qBG4UrNcmPDRvMXe+cIRuZ1Ak/2y6Fb1utj82Ffg83k= Subject key identifier: 5A:62:3C:D6:33:EE:77:F1:AE:FB:57:0D:FB:89:49:B6:3D:C4:8E:D1 Authority key identifier: C4:E6:C3:DA:EB:74:BE:45:20:7E:B8:0D:ED:F1:FF:D5:4B:C0:01:9E Certificate issuer: /CN=A91443440000/serialNumber=C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E Certificate serial: 5B512A51512BFF5EED35A964E7B14A063703ED43 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xObD2ut0vkUgfrgN7fH_1UvAAZ4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft Manifest number: 02F0 Signing time: Tue 02 Jun 2026 04:08:42 +0000 Manifest this update: Tue 02 Jun 2026 04:03:42 +0000 Manifest next update: Wed 03 Jun 2026 05:47:42 +0000 Files and hashes: 1: C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.crl (hash: /e4rYRYxfo/+WeFETrwjZ+JgqG1dl7c0da1SI7Cnm18=) 2: 3136302e33302e32352e302f32342d3234203d3e20313533313736.roa (hash: /kUIE99bCsbCmIiQPzpAlxDF+o+xvCZcWPfm8GnkM3k=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.crl rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xObD2ut0vkUgfrgN7fH_1UvAAZ4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 05:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:51:2a:51:51:2b:ff:5e:ed:35:a9:64:e7:b1:4a:06:37:03:ed:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91443440000, serialNumber=C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E Validity Not Before: Jun 2 04:03:42 2026 GMT Not After : Jun 3 05:47:42 2026 GMT Subject: CN=5A623CD633EE77F1AEFB570DFB8949B63DC48ED1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c7:c5:85:ca:bf:68:dc:9f:9c:c9:db:fb:77: d0:b7:ea:cb:dd:af:95:7f:b8:72:37:28:51:57:8f: 83:26:96:c6:51:05:be:68:a6:de:9c:d8:b3:09:6a: 8d:fc:f7:83:af:ed:cb:f7:75:57:14:ef:cf:18:b0: 7f:bf:0a:05:d2:d9:06:c8:7b:2d:2d:da:67:db:7f: d9:da:42:59:40:2b:04:45:1a:c6:26:a6:65:02:dc: cb:99:e9:ba:a6:94:02:01:e1:28:c2:ba:72:d5:15: ac:1a:27:58:2b:14:f1:a2:ae:d2:89:03:a5:52:c7: 30:82:49:7b:04:4c:33:a4:9b:28:fb:1a:bb:b9:39: e5:73:2f:9b:4b:34:b5:51:c5:2e:c9:63:52:db:81: ed:22:3f:8d:cf:a7:0f:49:13:5e:dd:08:d4:98:3c: 22:a9:b8:96:88:a9:b8:42:16:53:4c:67:68:92:8a: 1c:b5:10:80:bb:a1:fe:8d:4e:a7:00:fe:97:3b:a9: 93:75:29:06:39:fd:c0:08:66:c1:7c:74:5c:db:5d: f9:18:c3:78:33:e4:54:57:a3:a1:33:0c:05:72:02: c0:50:46:7b:38:80:8a:71:b0:20:2d:0f:ea:f6:dc: 42:8e:06:73:a3:a9:3a:a4:44:4d:22:64:fb:a6:18: 1b:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:62:3C:D6:33:EE:77:F1:AE:FB:57:0D:FB:89:49:B6:3D:C4:8E:D1 X509v3 Authority Key Identifier: keyid:C4:E6:C3:DA:EB:74:BE:45:20:7E:B8:0D:ED:F1:FF:D5:4B:C0:01:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xObD2ut0vkUgfrgN7fH_1UvAAZ4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:8d:84:93:b1:e7:e1:a3:c5:36:b9:99:8c:08:70:0a:7a:3f: 83:aa:52:d1:58:0a:54:94:0c:be:80:5e:87:6f:eb:20:f7:4f: ad:a9:f8:d0:a7:05:5f:63:57:8b:2a:18:ed:96:e2:5a:36:51: bb:06:60:e3:01:2b:76:e0:e2:19:fd:fc:56:f0:d3:3f:88:cf: 72:62:c5:a8:ba:9d:71:0a:dc:49:40:57:16:3e:84:eb:4b:1d: 23:bd:a8:94:41:8a:90:b1:e0:62:fd:23:7f:b3:b9:b4:28:9c: e3:04:6b:4c:18:7d:b1:42:92:99:42:83:2f:76:9c:db:f4:46: 16:88:49:f8:bc:35:96:81:31:f1:fd:a4:1f:9c:e3:b4:51:92: f2:23:79:ff:c5:31:42:69:0b:43:47:9c:c9:a6:c7:c3:f0:b6: 56:8c:47:29:95:67:cd:78:22:3b:5d:4f:ad:a4:d3:3b:52:da: 0a:7c:ad:85:66:6b:e5:f1:23:f8:10:78:3d:47:72:cb:85:2f: 25:21:77:12:ce:9e:a0:f5:7b:08:f6:8d:c9:c1:74:23:45:32: 89:bd:a3:61:23:70:f5:c4:5f:07:94:ac:91:2c:c4:fd:39:cf: c8:d9:0b:1f:45:25:8e:fb:65:32:40:59:03:60:a3:10:5e:55: 84:59:61:54 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUW1EqUVEr/17tNalk57FKBjcD7UMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDQzNDQwMDAwMTEwLwYDVQQFEyhDNEU2QzNEQUVC NzRCRTQ1MjA3RUI4MERFREYxRkZENTRCQzAwMTlFMB4XDTI2MDYwMjA0MDM0MloX DTI2MDYwMzA1NDc0MlowMzExMC8GA1UEAxMoNUE2MjNDRDYzM0VFNzdGMUFFRkI1 NzBERkI4OTQ5QjYzREM0OEVEMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMvHxYXKv2jcn5zJ2/t30Lfqy92vlX+4cjcoUVePgyaWxlEFvmim3pzYswlq jfz3g6/ty/d1VxTvzxiwf78KBdLZBsh7LS3aZ9t/2dpCWUArBEUaxiamZQLcy5np uqaUAgHhKMK6ctUVrBonWCsU8aKu0okDpVLHMIJJewRMM6SbKPsau7k55XMvm0s0 tVHFLsljUtuB7SI/jc+nD0kTXt0I1Jg8Iqm4loipuEIWU0xnaJKKHLUQgLuh/o1O pwD+lzupk3UpBjn9wAhmwXx0XNtd+RjDeDPkVFejoTMMBXICwFBGeziAinGwIC0P 6vbcQo4Gc6OpOqRETSJk+6YYG5cCAwEAAaOCAmEwggJdMB0GA1UdDgQWBBRaYjzW M+538a77Vw37iUm2PcSO0TAfBgNVHSMEGDAWgBTE5sPa63S+RSB+uA3t8f/VS8AB njAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84ZDVjZDE0ZS01 ZjYzLTRmMWMtOTRlMy0yNzA1MGMyNjY0ODAvMi9DNEU2QzNEQUVCNzRCRTQ1MjA3 RUI4MERFREYxRkZENTRCQzAwMTlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0EyNEYy MDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi94T2JEMnV0MHZrVWdmcmdON2ZIXzFV dkFBWjQuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGQ1Y2QxNGUt NWY2My00ZjFjLTk0ZTMtMjcwNTBjMjY2NDgwLzIvQzRFNkMzREFFQjc0QkU0NTIw N0VCODBERURGMUZGRDU0QkMwMDE5RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAJCNhJOx5+GjxTa5mYwI cAp6P4OqUtFYClSUDL6AXodv6yD3T62p+NCnBV9jV4sqGO2W4lo2UbsGYOMBK3bg 4hn9/Fbw0z+Iz3Jixai6nXEK3ElAVxY+hOtLHSO9qJRBipCx4GL9I3+zubQonOME a0wYfbFCkplCgy92nNv0RhaISfi8NZaBMfH9pB+c47RRkvIjef/FMUJpC0NHnMmm x8PwtlaMRymVZ814IjtdT62k0ztS2gp8rYVma+XxI/gQeD1HcsuFLyUhdxLOnqD1 ewj2jcnBdCNFMom9o2EjcPXEXweUrJEsxP05z8jZCx9FJY77ZTJAWQNgoxBeVYRZ YVQ= -----END CERTIFICATE-----Generated at Tue Jun 2 21:18:58 2026 by rpki-client