$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft File: C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft (raw, json) Hash identifier: Nlv1yuaYQKPm0OMVA1Damcg+zzedxCVbwdmBfIuFVaA= Subject key identifier: F5:E9:43:07:6D:72:AD:FD:EB:BD:0A:F4:77:A8:77:E2:DC:47:E5:E6 Authority key identifier: C4:E6:C3:DA:EB:74:BE:45:20:7E:B8:0D:ED:F1:FF:D5:4B:C0:01:9E Certificate issuer: /CN=A91443440000/serialNumber=C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E Certificate serial: 6290AB80588E07C04739FB3CC77FA3DE79DEFFB5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xObD2ut0vkUgfrgN7fH_1UvAAZ4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft Manifest number: 02B3 Signing time: Sat 18 Apr 2026 14:52:10 +0000 Manifest this update: Sat 18 Apr 2026 14:47:10 +0000 Manifest next update: Sun 19 Apr 2026 15:52:10 +0000 Files and hashes: 1: C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.crl (hash: 1i1JFjKy09NHOps9jJn1R6ub0P/tjYCLFEOCDeqno6E=) 2: 3136302e33302e32352e302f32342d3234203d3e20313533313736.roa (hash: sWQMzSPI6Bg4G4IKisjp9DHougwIrJ9n/xHdiIfWjWY=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.crl rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xObD2ut0vkUgfrgN7fH_1UvAAZ4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 15:52:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:90:ab:80:58:8e:07:c0:47:39:fb:3c:c7:7f:a3:de:79:de:ff:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91443440000, serialNumber=C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E Validity Not Before: Apr 18 14:47:10 2026 GMT Not After : Apr 19 15:52:10 2026 GMT Subject: CN=F5E943076D72ADFDEBBD0AF477A877E2DC47E5E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:43:91:5b:51:20:2e:21:71:43:c5:92:17:f0: d0:27:7f:1b:9e:22:cd:da:be:0e:59:6d:b1:e3:88: 11:1d:15:50:ce:a5:c9:af:5e:c1:28:f0:be:a2:cc: ca:1b:2a:71:45:fd:47:00:2b:95:6c:5d:de:57:89: 83:7e:ae:8d:b4:95:87:83:83:d8:50:7e:60:4e:73: cb:b2:22:41:ad:f6:87:76:7a:80:ac:91:f3:e1:f8: 36:fc:11:55:94:f2:8c:7b:26:74:5c:e7:9d:8c:4c: 97:d0:aa:36:1e:8b:8c:28:ec:a2:3b:66:ea:d9:dd: 1f:4d:94:ce:2a:63:33:ae:bc:3e:a4:21:c2:3e:e1: b2:21:e5:16:73:f4:d0:8d:7a:56:e2:58:c9:9a:74: 22:cb:a2:2f:82:3e:0e:c5:1a:2b:9f:30:50:93:94: d5:9f:b0:f3:19:5a:97:7d:91:23:b8:da:39:ad:07: df:b7:a8:78:b5:70:e8:d7:f6:79:f4:48:2d:c4:f8: 72:a0:ec:e6:10:08:1d:cc:1a:4a:c5:1e:22:59:09: c4:c1:76:f5:0d:22:0d:3c:0e:54:60:56:5e:5a:d9: e9:5e:90:87:75:cc:f5:0d:34:52:91:2c:16:a8:c9: 9c:8d:a2:34:99:50:4e:f7:5d:d9:19:72:50:8c:fa: 61:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:E9:43:07:6D:72:AD:FD:EB:BD:0A:F4:77:A8:77:E2:DC:47:E5:E6 X509v3 Authority Key Identifier: keyid:C4:E6:C3:DA:EB:74:BE:45:20:7E:B8:0D:ED:F1:FF:D5:4B:C0:01:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xObD2ut0vkUgfrgN7fH_1UvAAZ4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:c5:ba:54:8a:aa:55:51:3a:e1:0f:2e:d8:99:65:12:94:f7: 6d:ab:d7:4f:08:58:a4:76:2b:a5:8d:ff:53:24:40:85:3e:12: 53:c3:e1:81:64:b0:24:bb:57:8f:c9:b8:14:b5:cf:33:e0:42: d6:3e:d3:d8:77:ab:0f:9c:eb:1e:98:dc:e3:30:b9:21:dd:b8: 47:fe:0b:12:b2:42:ba:0b:95:24:15:31:2d:c3:7e:3c:c3:43: 99:73:8f:93:37:8e:7a:90:69:f7:fa:83:22:aa:94:f1:2d:5a: 3f:9b:0e:03:a2:98:58:5c:11:4c:77:f7:f8:e3:29:e1:22:05: 74:c4:38:5d:22:06:da:19:ce:a7:04:4c:43:5d:e8:8b:89:36: b8:16:33:73:a4:0b:3f:f0:b9:a7:36:ae:6b:47:cb:97:1a:0d: ff:0d:e3:a1:be:ce:ac:5d:a0:c1:b4:c5:7c:09:2f:88:06:9b: 93:1a:5e:a3:c0:eb:cc:fe:15:49:9e:41:5d:29:b9:46:f0:e3: 96:23:b2:2a:4c:15:ba:f6:46:de:2c:c4:29:35:b3:89:eb:42: cc:b6:e7:86:8f:bc:a6:77:54:07:72:79:e1:d7:ee:3e:4f:18: 64:4e:f4:e2:4f:06:bd:3b:fb:37:a0:d3:37:07:83:e4:31:ce: 1c:1b:d0:40 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUYpCrgFiOB8BHOfs8x3+j3nne/7UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDQzNDQwMDAwMTEwLwYDVQQFEyhDNEU2QzNEQUVC NzRCRTQ1MjA3RUI4MERFREYxRkZENTRCQzAwMTlFMB4XDTI2MDQxODE0NDcxMFoX DTI2MDQxOTE1NTIxMFowMzExMC8GA1UEAxMoRjVFOTQzMDc2RDcyQURGREVCQkQw QUY0NzdBODc3RTJEQzQ3RTVFNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALhDkVtRIC4hcUPFkhfw0Cd/G54izdq+DlltseOIER0VUM6lya9ewSjwvqLM yhsqcUX9RwArlWxd3leJg36ujbSVh4OD2FB+YE5zy7IiQa32h3Z6gKyR8+H4NvwR VZTyjHsmdFznnYxMl9CqNh6LjCjsojtm6tndH02UzipjM668PqQhwj7hsiHlFnP0 0I16VuJYyZp0IsuiL4I+DsUaK58wUJOU1Z+w8xlal32RI7jaOa0H37eoeLVw6Nf2 efRILcT4cqDs5hAIHcwaSsUeIlkJxMF29Q0iDTwOVGBWXlrZ6V6Qh3XM9Q00UpEs FqjJnI2iNJlQTvdd2RlyUIz6YW0CAwEAAaOCAmEwggJdMB0GA1UdDgQWBBT16UMH bXKt/eu9CvR3qHfi3Efl5jAfBgNVHSMEGDAWgBTE5sPa63S+RSB+uA3t8f/VS8AB njAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84ZDVjZDE0ZS01 ZjYzLTRmMWMtOTRlMy0yNzA1MGMyNjY0ODAvMi9DNEU2QzNEQUVCNzRCRTQ1MjA3 RUI4MERFREYxRkZENTRCQzAwMTlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0EyNEYy MDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi94T2JEMnV0MHZrVWdmcmdON2ZIXzFV dkFBWjQuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGQ1Y2QxNGUt NWY2My00ZjFjLTk0ZTMtMjcwNTBjMjY2NDgwLzIvQzRFNkMzREFFQjc0QkU0NTIw N0VCODBERURGMUZGRDU0QkMwMDE5RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAAzFulSKqlVROuEPLtiZ ZRKU922r108IWKR2K6WN/1MkQIU+ElPD4YFksCS7V4/JuBS1zzPgQtY+09h3qw+c 6x6Y3OMwuSHduEf+CxKyQroLlSQVMS3DfjzDQ5lzj5M3jnqQaff6gyKqlPEtWj+b DgOimFhcEUx39/jjKeEiBXTEOF0iBtoZzqcETENd6IuJNrgWM3OkCz/wuac2rmtH y5caDf8N46G+zqxdoMG0xXwJL4gGm5MaXqPA68z+FUmeQV0puUbw45YjsipMFbr2 Rt4sxCk1s4nrQsy254aPvKZ3VAdyeeHX7j5PGGRO9OJPBr07+zeg0zcHg+Qxzhwb 0EA= -----END CERTIFICATE-----Generated at Sat Apr 18 21:04:19 2026 by rpki-client