$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft File: D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft (raw, json) Hash identifier: lDUVRB4TgltqkRfhUAf2NCQnqV8vtO8uZuqkR1j3GmQ= Subject key identifier: 63:32:07:D6:23:63:25:52:A2:F5:36:2C:12:1F:A2:FE:02:87:3E:C7 Authority key identifier: D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44 Certificate issuer: /CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444 Certificate serial: 70F8AAFBE1CA982F0F1ADA128225A5349BE7F8C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft Manifest number: 04BB Signing time: Fri 05 Sep 2025 18:13:53 +0000 Manifest this update: Fri 05 Sep 2025 18:08:53 +0000 Manifest next update: Sat 06 Sep 2025 18:14:53 +0000 Files and hashes: 1: 39332e39322e31382e302f32342d3234203d3e203534333339.roa (hash: WMxtcl2Ju6TLrgTtLUBAyAfGF8Gn9pZV9umXAbbzoJo=) 2: 37382e32342e3132352e302f32342d3234203d3e20343031383338.roa (hash: qgaqtIbvWlmZK0f99yeifoHSkIPhxGYhski+5gJ4Rv4=) 3: 39332e39322e32302e302f32342d3234203d3e2035353131.roa (hash: Anw+Ot0jzMET4Sk6hQNdmMLNf7QzBxX2vhTMbwb0Hp4=) 4: 37382e32342e3132312e302f32342d3234203d3e203631333137.roa (hash: PNy4BBOReJ4B4LRwKHBjnzscIyK0n1F3JT7zrSI8uHw=) 5: 37382e32342e3132352e302f32342d3234203d3e203534333339.roa (hash: 8J7vWDZA6CwD0N0heCZfxarZkaHc987rZNDTEoRqJuw=) 6: 37382e32342e3132362e302f32332d3234203d3e203131343236.roa (hash: daBRkHJPjnP4DyHn4IivnK1qaHgtIwZJtESS0iOn6Xk=) 7: 34352e38362e39322e302f32342d3234203d3e20323039313831.roa (hash: gFPXsCrn7VghMZpPQmlNius+Qe9koRj6iqpgIDQpOY8=) 8: 37382e32342e3132322e302f32342d3234203d3e2037303138.roa (hash: RiGLyTpjx/lhYnZMR/g3INSwpo5JHGzbqqOnRRhQZa8=) 9: 34352e38362e39342e302f32342d3234203d3e2039303039.roa (hash: gq03q2PZTenb5MfLZJOhv7nheUzD9xSGdvhncjMBFfc=) 10: 39332e39322e32312e302f32342d3234203d3e203631333137.roa (hash: fW+zXQmtdqPL01ivRHM0ry5dwDotUJmdzQHE3ZemyUE=) 11: 37382e32342e3132332e302f32342d3234203d3e2037303138.roa (hash: yLm71OTqDFRdyl2jt+hmsZQmui0MjgACYd0QbV3wZ9U=) 12: 39332e39322e32322e302f32332d3234203d3e203534333339.roa (hash: MlVhq9YMUDch69apYFS1riPDRY/vCEBSVcnZ0AXUbzA=) 13: D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl (hash: QWh/6f+vp9ioyhpl3+eBUNTNTDDlc/jZphzFZocyeAk=) 14: 39332e39322e31392e302f32342d3234203d3e203631333137.roa (hash: bCly8plczaq5qd0H9MlQ1Z8xZKSunOI/jFWKgR1UqBg=) 15: 37382e32342e3132342e302f32342d3234203d3e20343031383338.roa (hash: VrnH5tIT+SOLQ0xUmgz8lDea4v1K04gWY5bP4L4H/fY=) 16: 37382e32342e3132342e302f32342d3234203d3e203534333339.roa (hash: Jmas5KP8U8YtPnq0n93kzfbv6wwue5du0IC/hUNUQy4=) 17: 37382e32342e3132332e302f32342d3234203d3e20343031383338.roa (hash: XbX1Gid500oTFj6vAef29FZUEz5FTkMATGNQOQiD6pY=) 18: 39332e39322e31382e302f32342d3234203d3e20343031383338.roa (hash: UH0UP25o3U70TKOGCO5ZzwtVViIjPRoBTmf/0ZejDTc=) 19: 37382e32342e3132322e302f32342d3234203d3e20343031383338.roa (hash: QSDJ1+8SgpwSggscxtnEW0fE8nG/Mt5ZyXJ/C5BJhqQ=) 20: 39332e39322e32322e302f32332d3234203d3e20343031383338.roa (hash: ZR3NimLfDuSVrHX3TIHZtfUL9Oft/y6YDT0lI8Ay4iU=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Sep 2025 17:17:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:f8:aa:fb:e1:ca:98:2f:0f:1a:da:12:82:25:a5:34:9b:e7:f8:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444 Validity Not Before: Sep 5 18:08:53 2025 GMT Not After : Sep 6 18:14:53 2025 GMT Subject: CN=633207D623632552A2F5362C121FA2FE02873EC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a0:cf:15:40:3a:f0:06:6f:80:60:cd:7f:44: 62:5b:94:80:ec:1f:71:06:94:99:34:02:bf:08:40: bf:34:4e:e6:1d:2b:b6:88:9c:49:e0:65:5d:fe:05: ab:67:b0:33:38:ed:e4:8b:c4:5e:e2:9d:1b:e6:92: 23:d3:ac:cb:55:09:8b:ec:7b:97:20:ba:36:27:d1: 27:44:bb:69:2f:08:05:7b:26:d2:85:18:11:b0:6d: 15:bc:50:17:52:04:28:40:06:be:1b:7b:aa:fa:18: 24:85:1c:0f:d0:5f:a4:da:45:79:6b:3e:46:66:6f: 0f:e3:f6:78:20:d9:07:10:6f:e3:bf:a1:37:97:64: 45:88:c6:34:e8:7d:4a:5a:40:45:58:ba:9d:58:a8: be:2f:53:35:17:b6:50:d1:7c:64:18:1d:2c:d0:71: 20:fd:dd:28:5b:c7:7c:2c:a3:d3:b2:c8:97:82:3c: a2:b6:11:b2:f8:56:1b:9a:92:4f:df:ac:56:34:09: 17:6e:d3:f4:8e:22:30:3e:56:39:54:59:ae:f6:70: 10:70:75:1e:3a:be:73:79:d3:11:4d:9f:c0:ef:f9: 34:0b:2f:48:df:4d:10:43:dd:c8:53:91:0a:05:e6: 29:c6:32:9f:14:15:aa:4b:12:51:c2:1f:65:01:34: b3:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:32:07:D6:23:63:25:52:A2:F5:36:2C:12:1F:A2:FE:02:87:3E:C7 X509v3 Authority Key Identifier: keyid:D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:46:34:58:c2:97:fa:24:24:f3:7d:c2:b4:1d:58:dc:17:f6: 94:93:9b:e5:77:98:a6:78:58:25:ac:03:af:16:ea:ae:43:83: db:51:d8:39:cd:a6:e0:00:c2:6b:ae:f5:65:2b:a8:8f:20:3c: bc:c0:c8:43:2f:4f:d9:2d:98:69:64:36:75:77:aa:08:77:2c: b8:2e:b9:12:b3:02:1c:c5:a0:4b:62:2c:17:f2:ca:ee:22:fe: f2:aa:ab:4e:32:bc:33:db:9b:38:ab:34:9c:0f:ab:18:b4:de: bb:e7:56:01:8f:3e:ed:d1:9f:28:4d:6a:95:06:1d:91:82:a5: 17:e8:b1:07:88:c1:61:b9:89:68:3e:29:5f:98:0f:40:42:fa: 19:81:f8:e9:f9:99:74:cc:12:d3:cb:72:dc:ef:a6:c9:b5:3b: b4:f1:40:4c:8c:b8:38:98:d8:8e:63:7d:69:c0:13:3c:fa:c0: cd:5e:de:f7:af:25:a5:33:c9:ca:72:6e:60:32:62:ec:d6:f2: 6a:38:d6:bb:02:99:ed:8b:ca:ad:0f:77:4b:41:10:87:fb:56: 45:da:f0:53:87:7e:ea:94:a1:67:42:49:ca:89:95:9e:63:56: e6:ce:b7:17:ae:01:34:bf:0b:70:5f:8f:c2:d4:25:95:96:c4: 93:f7:fe:46 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUcPiq++HKmC8PGtoSgiWlNJvn+MIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZDAxYmEwMTNiYzFlNmQ4NmYwZDZkNThlYWZhNTRlMjdm YWRhMzQ0NDAeFw0yNTA5MDUxODA4NTNaFw0yNTA5MDYxODE0NTNaMDMxMTAvBgNV BAMTKDYzMzIwN0Q2MjM2MzI1NTJBMkY1MzYyQzEyMUZBMkZFMDI4NzNFQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3oM8VQDrwBm+AYM1/RGJblIDs H3EGlJk0Ar8IQL80TuYdK7aInEngZV3+BatnsDM47eSLxF7inRvmkiPTrMtVCYvs e5cgujYn0SdEu2kvCAV7JtKFGBGwbRW8UBdSBChABr4be6r6GCSFHA/QX6TaRXlr PkZmbw/j9ngg2QcQb+O/oTeXZEWIxjTofUpaQEVYup1YqL4vUzUXtlDRfGQYHSzQ cSD93Shbx3wso9OyyJeCPKK2EbL4Vhuakk/frFY0CRdu0/SOIjA+VjlUWa72cBBw dR46vnN50xFNn8Dv+TQLL0jfTRBD3chTkQoF5inGMp8UFapLElHCH2UBNLPbAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUYzIH1iNjJVKi9TYsEh+i/gKHPscwHwYDVR0j BBgwFoAU0BugE7webYbw1tWOr6VOJ/raNEQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTUyMmE1MmYtNjUzNC00MTY1LWE2YTctZWY5Zjc0ZWY5 NDMxLzEvRDAxQkEwMTNCQzFFNkQ4NkYwRDZENThFQUZBNTRFMjdGQURBMzQ0NC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBCdWdFN3dlYllidzF0V09yNlZPSl9y YU5FUS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hNTIyYTUyZi02 NTM0LTQxNjUtYTZhNy1lZjlmNzRlZjk0MzEvMS9EMDFCQTAxM0JDMUU2RDg2RjBE NkQ1OEVBRkE1NEUyN0ZBREEzNDQ0Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO0Y0WMKX+iQk833CtB1Y 3Bf2lJOb5XeYpnhYJawDrxbqrkOD21HYOc2m4ADCa671ZSuojyA8vMDIQy9P2S2Y aWQ2dXeqCHcsuC65ErMCHMWgS2IsF/LK7iL+8qqrTjK8M9ubOKs0nA+rGLTeu+dW AY8+7dGfKE1qlQYdkYKlF+ixB4jBYbmJaD4pX5gPQEL6GYH46fmZdMwS08ty3O+m ybU7tPFATIy4OJjYjmN9acATPPrAzV7e968lpTPJynJuYDJi7NbyajjWuwKZ7YvK rQ93S0EQh/tWRdrwU4d+6pShZ0JJyomVnmNW5s63F64BNL8LcF+PwtQllZbEk/f+ Rg== -----END CERTIFICATE-----Generated at Sat Sep 6 01:43:34 2025 by rpki-client