$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft File: D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft (raw, json) Hash identifier: 27ch/mKpJIs/NWToBgTkFAT9oKcH6CmSe+afD+AcM7Y= Subject key identifier: 52:79:AD:7D:39:53:6D:AB:7F:3B:D5:D3:2E:35:47:C3:99:2C:B0:3C Authority key identifier: D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44 Certificate issuer: /CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444 Certificate serial: 2C80809726BE0D6DB467517BE398014759F04841 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft Manifest number: 0434 Signing time: Wed 04 Jun 2025 10:47:22 +0000 Manifest this update: Wed 04 Jun 2025 10:42:22 +0000 Manifest next update: Thu 05 Jun 2025 13:54:22 +0000 Files and hashes: 1: 37382e32342e3132322e302f32342d3234203d3e2037303138.roa (hash: RiGLyTpjx/lhYnZMR/g3INSwpo5JHGzbqqOnRRhQZa8=) 2: 37382e32342e3132312e302f32342d3234203d3e203631333137.roa (hash: PNy4BBOReJ4B4LRwKHBjnzscIyK0n1F3JT7zrSI8uHw=) 3: 39332e39322e31392e302f32342d3234203d3e203631333137.roa (hash: bCly8plczaq5qd0H9MlQ1Z8xZKSunOI/jFWKgR1UqBg=) 4: 39332e39322e32322e302f32332d3234203d3e203534333339.roa (hash: MlVhq9YMUDch69apYFS1riPDRY/vCEBSVcnZ0AXUbzA=) 5: 34352e38362e39352e302f32342d3234203d3e2031323939.roa (hash: yQKHHpn8wCUHU+dOg286104MyMwPlf9k9qfBkCNGEsg=) 6: 34352e38362e39332e302f32342d3234203d3e203631333137.roa (hash: 1x2zpcTAYyd8XetSB0JjPvLUa4clQe7hwjPf8ExgQOI=) 7: 39332e39322e32312e302f32342d3234203d3e203631333137.roa (hash: fW+zXQmtdqPL01ivRHM0ry5dwDotUJmdzQHE3ZemyUE=) 8: 39332e39322e32302e302f32342d3234203d3e2035353131.roa (hash: Anw+Ot0jzMET4Sk6hQNdmMLNf7QzBxX2vhTMbwb0Hp4=) 9: D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl (hash: hBg50j4vJkkRb8nXHF/62lSOLApbocj1ZkJUhSyvJc4=) 10: 34352e38362e39342e302f32342d3234203d3e2039303039.roa (hash: gq03q2PZTenb5MfLZJOhv7nheUzD9xSGdvhncjMBFfc=) 11: 39332e39322e31382e302f32342d3234203d3e203534333339.roa (hash: WMxtcl2Ju6TLrgTtLUBAyAfGF8Gn9pZV9umXAbbzoJo=) 12: 37382e32342e3132342e302f32332d3234203d3e20383334.roa (hash: aR9bXXTYwrcEpOUA5zP1Au4UdLHmUATKygkKxMy2Hyo=) 13: 37382e32342e3132362e302f32332d3234203d3e203131343236.roa (hash: QHhKDdx7KbEi2pWBI66gL/yJWrRkXWlW9Ll3iu5yUnk=) 14: 34352e38362e39322e302f32342d3234203d3e20323039313831.roa (hash: gFPXsCrn7VghMZpPQmlNius+Qe9koRj6iqpgIDQpOY8=) 15: 37382e32342e3132342e302f32342d3234203d3e203534333339.roa (hash: KBQWp2YW6b35tXBZxmWFRr/DTme9e2nhX14tjQgVgwA=) 16: 37382e32342e3132352e302f32342d3234203d3e203534333339.roa (hash: 7W/JQiIhBxvV9lPwlVaE2K95jNPOksJaHe90LVwGv1I=) 17: 37382e32342e3132332e302f32342d3234203d3e2037303138.roa (hash: /Sw/kTcH9aO7bMcRnVprTh49TII5UJ49lP8PepQkn1Y=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Jun 2025 13:54:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:80:80:97:26:be:0d:6d:b4:67:51:7b:e3:98:01:47:59:f0:48:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444 Validity Not Before: Jun 4 10:42:22 2025 GMT Not After : Jun 5 13:54:22 2025 GMT Subject: CN=5279AD7D39536DAB7F3BD5D32E3547C3992CB03C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1f:12:c3:06:64:86:29:31:e7:b0:40:26:00: b4:cc:05:2a:8f:80:86:8f:d1:67:c2:7a:bb:c5:da: 1d:04:48:e6:4f:bd:3e:b6:61:11:ea:8b:40:db:cb: 41:bf:47:30:5a:76:99:e1:36:84:95:f3:12:f7:0b: f8:df:30:a3:7d:05:29:d6:87:4f:4a:96:51:13:d1: e6:8f:69:82:13:f4:02:b5:1d:52:0f:4d:c9:79:0a: ef:50:32:16:ca:51:77:b0:d8:58:bc:25:74:6f:f8: ce:cd:30:09:a9:77:7d:c7:ac:89:81:75:64:21:26: 76:9a:14:80:52:b1:4e:38:c2:d8:f2:f6:03:2f:93: 2a:ae:2c:c1:c6:14:29:4e:e6:db:c3:fa:88:e0:57: 87:17:e4:90:b1:12:0c:97:15:73:87:fe:83:49:4d: d4:3e:78:72:6a:16:10:5c:9e:09:93:90:f7:80:f3: 00:6d:0b:15:55:21:e6:87:54:09:3f:f4:27:d2:9b: 9d:70:10:ed:92:bf:80:74:4f:cb:f8:7a:8e:a9:4e: 5b:ad:e3:cd:d9:f5:85:ef:17:16:c5:05:7e:7b:b4: b6:7e:75:2e:6c:dd:10:99:ce:96:a1:41:89:b0:34: 6c:c2:79:d3:cf:fd:b1:ac:cd:ec:70:62:1b:f9:30: 4f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:79:AD:7D:39:53:6D:AB:7F:3B:D5:D3:2E:35:47:C3:99:2C:B0:3C X509v3 Authority Key Identifier: keyid:D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:29:19:29:6a:23:15:0a:8d:87:ef:22:e0:85:51:bd:15:aa: 6c:6a:0e:e7:d7:a1:6a:00:30:1f:26:e0:60:fb:49:04:78:6d: eb:9a:5d:d0:ca:99:ea:bf:81:db:dc:33:5e:b5:30:8b:47:78: 5b:67:28:7f:dd:e0:16:b1:c6:1a:ad:ea:9a:db:1a:37:60:e5: 8f:0a:f9:02:c9:63:c2:92:22:49:3f:69:01:b2:06:ce:67:a4: 46:a8:f6:fe:d6:30:db:39:bc:91:34:82:f3:12:94:b7:b1:b1: 37:39:0f:13:12:91:1e:bb:57:53:e5:d4:29:63:cd:9a:b0:24: 59:98:79:e2:57:8e:87:3b:30:ee:d7:aa:5a:b6:bd:89:a7:32: 99:56:95:51:47:52:53:2e:61:e4:6b:73:11:21:1c:55:d7:65: c2:40:6e:5a:e3:49:7c:3d:60:eb:f8:bc:f2:e3:21:0c:03:a8: 03:79:ce:37:a0:4b:81:92:7e:07:59:58:1f:6b:69:a1:9b:8d: c2:5f:eb:4c:4e:74:a6:32:b1:5e:0d:59:00:5f:55:a4:94:ec: 18:f4:25:e4:bf:46:0c:3f:50:18:bb:63:4b:ec:4a:56:27:9f: 31:ac:e0:e4:19:22:b5:4a:0b:0e:91:56:51:94:30:f4:79:b8: ba:39:c3:c2 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIULICAlya+DW20Z1F745gBR1nwSEEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZDAxYmEwMTNiYzFlNmQ4NmYwZDZkNThlYWZhNTRlMjdm YWRhMzQ0NDAeFw0yNTA2MDQxMDQyMjJaFw0yNTA2MDUxMzU0MjJaMDMxMTAvBgNV BAMTKDUyNzlBRDdEMzk1MzZEQUI3RjNCRDVEMzJFMzU0N0MzOTkyQ0IwM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8HxLDBmSGKTHnsEAmALTMBSqP gIaP0WfCervF2h0ESOZPvT62YRHqi0Dby0G/RzBadpnhNoSV8xL3C/jfMKN9BSnW h09KllET0eaPaYIT9AK1HVIPTcl5Cu9QMhbKUXew2Fi8JXRv+M7NMAmpd33HrImB dWQhJnaaFIBSsU44wtjy9gMvkyquLMHGFClO5tvD+ojgV4cX5JCxEgyXFXOH/oNJ TdQ+eHJqFhBcngmTkPeA8wBtCxVVIeaHVAk/9CfSm51wEO2Sv4B0T8v4eo6pTlut 483Z9YXvFxbFBX57tLZ+dS5s3RCZzpahQYmwNGzCedPP/bGszexwYhv5ME9DAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUUnmtfTlTbat/O9XTLjVHw5kssDwwHwYDVR0j BBgwFoAU0BugE7webYbw1tWOr6VOJ/raNEQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTUyMmE1MmYtNjUzNC00MTY1LWE2YTctZWY5Zjc0ZWY5 NDMxLzEvRDAxQkEwMTNCQzFFNkQ4NkYwRDZENThFQUZBNTRFMjdGQURBMzQ0NC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBCdWdFN3dlYllidzF0V09yNlZPSl9y YU5FUS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hNTIyYTUyZi02 NTM0LTQxNjUtYTZhNy1lZjlmNzRlZjk0MzEvMS9EMDFCQTAxM0JDMUU2RDg2RjBE NkQ1OEVBRkE1NEUyN0ZBREEzNDQ0Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZykZKWojFQqNh+8i4IVR vRWqbGoO59ehagAwHybgYPtJBHht65pd0MqZ6r+B29wzXrUwi0d4W2cof93gFrHG Gq3qmtsaN2Dljwr5AsljwpIiST9pAbIGzmekRqj2/tYw2zm8kTSC8xKUt7GxNzkP ExKRHrtXU+XUKWPNmrAkWZh54leOhzsw7teqWra9iacymVaVUUdSUy5h5GtzESEc VddlwkBuWuNJfD1g6/i88uMhDAOoA3nON6BLgZJ+B1lYH2tpoZuNwl/rTE50pjKx Xg1ZAF9VpJTsGPQl5L9GDD9QGLtjS+xKViefMazg5BkitUoLDpFWUZQw9Hm4ujnD wg== -----END CERTIFICATE-----Generated at Thu Jun 5 05:25:31 2025 by rpki-client