$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d697160c-acc5-4b51-bf55-10c7a6e66980/3/D642975F535F45FD9F6D8FEA626BC6D24BC9D8D8.mft File: D642975F535F45FD9F6D8FEA626BC6D24BC9D8D8.mft (raw, json) Hash identifier: SgPsiljABd1VYT7JCCxTzdt4EWb4oZQWeuOLU9zS+Fc= Subject key identifier: 3F:C0:45:CA:64:17:76:D4:9D:F5:2C:FE:A7:77:BB:0D:74:04:87:C3 Authority key identifier: D6:42:97:5F:53:5F:45:FD:9F:6D:8F:EA:62:6B:C6:D2:4B:C9:D8:D8 Certificate issuer: /CN=d642975f535f45fd9f6d8fea626bc6d24bc9d8d8 Certificate serial: 5A071249758B1F7ED6D4A32AD8657B25A0010A29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1kKXX1NfRf2fbY_qYmvG0kvJ2Ng.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d697160c-acc5-4b51-bf55-10c7a6e66980/3/D642975F535F45FD9F6D8FEA626BC6D24BC9D8D8.mft Manifest number: 0375 Signing time: Wed 30 Jul 2025 09:39:21 +0000 Manifest this update: Wed 30 Jul 2025 09:34:21 +0000 Manifest next update: Thu 31 Jul 2025 12:35:21 +0000 Files and hashes: 1: D642975F535F45FD9F6D8FEA626BC6D24BC9D8D8.crl (hash: EGiPkrxmby+oMUPwmsHApvKO17mhyoMAyVd5IJ3oZ84=) 2: AS202881.asa (hash: n7g3r7+FlCCQyP417H6Uudw0ZEIUQH6oYUZ2fSNBDRU=) 3: 323030313a3637633a326265383a3a2f34382d3438203d3e20323032383831.roa (hash: tHiNPLeborN3MzxDKSTEAgj3ZJMcJjV9OqmGVy4ABhE=) 4: 323030313a3637633a326265383a3a2f34382d3438203d3e20323035333239.roa (hash: 3wDhadYEfX0Hhy3fPxID0nH+bbX55tStnGOk9S2bMKU=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d697160c-acc5-4b51-bf55-10c7a6e66980/3/D642975F535F45FD9F6D8FEA626BC6D24BC9D8D8.crl rsync://rsync.paas.rpki.ripe.net/repository/d697160c-acc5-4b51-bf55-10c7a6e66980/3/D642975F535F45FD9F6D8FEA626BC6D24BC9D8D8.mft rsync://rpki.ripe.net/repository/DEFAULT/1kKXX1NfRf2fbY_qYmvG0kvJ2Ng.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 31 Jul 2025 12:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:07:12:49:75:8b:1f:7e:d6:d4:a3:2a:d8:65:7b:25:a0:01:0a:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d642975f535f45fd9f6d8fea626bc6d24bc9d8d8 Validity Not Before: Jul 30 09:34:21 2025 GMT Not After : Jul 31 12:35:21 2025 GMT Subject: CN=3FC045CA641776D49DF52CFEA777BB0D740487C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:61:e6:f8:59:01:f6:de:ce:7a:c8:f2:06:82: 99:b7:0e:8e:32:6b:37:08:13:74:de:e1:ee:d6:79: 60:1d:dd:22:d1:89:ff:dd:40:c7:0a:65:43:7d:da: 27:47:b3:c8:b3:44:44:95:63:5d:05:ed:b9:3a:d0: cb:ad:e6:b4:71:09:0e:99:58:81:78:16:18:f8:ba: b8:b1:18:77:9d:61:ad:7f:36:88:43:f9:fb:8e:90: 9c:ae:8b:c8:6c:c3:59:67:e6:e3:7c:70:eb:31:eb: cf:a3:e5:4d:fa:bd:94:9d:a7:5a:fb:d3:5b:2e:26: 6f:92:9f:84:0d:80:47:34:a9:c2:1c:f5:b9:2b:d0: 78:29:b8:84:c5:3f:12:f3:cd:6c:57:18:62:b7:12: 3b:7d:c6:bf:52:fc:df:35:46:99:62:57:17:7e:cf: 14:f5:38:a3:b0:3e:8b:c1:07:f0:49:75:cc:7a:39: ac:db:9b:65:0e:f5:99:b1:b9:c4:8f:c6:5e:ae:34: 14:f6:1d:f4:f8:72:ed:ef:9a:49:79:b9:1c:b0:84: b2:d2:48:1b:00:e0:b2:3a:a3:a4:2e:7f:a5:0d:70: c4:ce:59:06:13:f8:fd:5c:66:57:ac:f4:cc:27:86: e2:af:6c:ed:6c:d6:a6:29:24:53:e7:12:ca:74:1f: 51:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:C0:45:CA:64:17:76:D4:9D:F5:2C:FE:A7:77:BB:0D:74:04:87:C3 X509v3 Authority Key Identifier: keyid:D6:42:97:5F:53:5F:45:FD:9F:6D:8F:EA:62:6B:C6:D2:4B:C9:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d697160c-acc5-4b51-bf55-10c7a6e66980/3/D642975F535F45FD9F6D8FEA626BC6D24BC9D8D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1kKXX1NfRf2fbY_qYmvG0kvJ2Ng.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d697160c-acc5-4b51-bf55-10c7a6e66980/3/D642975F535F45FD9F6D8FEA626BC6D24BC9D8D8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:1c:3b:5a:31:0a:e5:bf:83:b7:0e:8a:44:5b:fb:ea:96:23: 23:a4:70:a8:97:57:d2:64:c4:f0:a4:af:30:a0:68:8b:d3:da: b9:ca:d5:36:07:ba:74:58:1c:56:4e:a9:d3:51:9f:79:31:a7: c7:0c:fb:40:4d:36:78:02:40:b2:ed:55:eb:6b:c5:0e:2d:14: ab:5c:88:83:37:09:8d:03:9c:26:bb:e1:22:ae:e9:68:a9:0c: 39:d9:bd:95:27:6b:d0:72:13:69:57:bb:52:d4:64:54:85:22: 24:55:29:53:a8:52:b7:8c:c7:df:62:de:82:e8:b4:8a:b2:6f: d1:dd:c0:70:1a:0a:e1:bd:6c:91:42:b4:15:50:f9:9b:11:af: 1b:33:6d:e0:8c:23:68:ab:1d:40:92:a2:8b:11:de:7a:50:d6: d3:a8:d0:4d:38:9a:c7:4e:dc:9d:9e:4f:3c:af:17:9c:7d:f1: 9f:8f:07:17:9d:60:67:4d:d0:63:52:ae:f6:ae:9c:14:c7:f2: e8:52:ea:b5:95:cf:99:39:10:33:ad:9d:e7:02:6a:e2:04:b0: cc:4e:32:88:52:96:d5:52:65:82:e9:5b:9c:b1:fa:c3:75:e9: 76:c0:22:9b:a5:53:a7:e0:c8:52:60:52:e5:e8:88:f0:fe:64: 95:65:86:e2 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUWgcSSXWLH37W1KMq2GV7JaABCikwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZDY0Mjk3NWY1MzVmNDVmZDlmNmQ4ZmVhNjI2YmM2ZDI0 YmM5ZDhkODAeFw0yNTA3MzAwOTM0MjFaFw0yNTA3MzExMjM1MjFaMDMxMTAvBgNV BAMTKDNGQzA0NUNBNjQxNzc2RDQ5REY1MkNGRUE3NzdCQjBENzQwNDg3QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsYeb4WQH23s56yPIGgpm3Do4y azcIE3Te4e7WeWAd3SLRif/dQMcKZUN92idHs8izRESVY10F7bk60Mut5rRxCQ6Z WIF4Fhj4urixGHedYa1/NohD+fuOkJyui8hsw1ln5uN8cOsx68+j5U36vZSdp1r7 01suJm+Sn4QNgEc0qcIc9bkr0HgpuITFPxLzzWxXGGK3Ejt9xr9S/N81RpliVxd+ zxT1OKOwPovBB/BJdcx6Oazbm2UO9ZmxucSPxl6uNBT2HfT4cu3vmkl5uRywhLLS SBsA4LI6o6Quf6UNcMTOWQYT+P1cZles9MwnhuKvbO1s1qYpJFPnEsp0H1GxAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUP8BFymQXdtSd9Sz+p3e7DXQEh8MwHwYDVR0j BBgwFoAU1kKXX1NfRf2fbY/qYmvG0kvJ2NgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDY5NzE2MGMtYWNjNS00YjUxLWJmNTUtMTBjN2E2ZTY2 OTgwLzMvRDY0Mjk3NUY1MzVGNDVGRDlGNkQ4RkVBNjI2QkM2RDI0QkM5RDhEOC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFrS1hYMU5mUmYyZmJZX3FZbXZHMGt2 SjJOZy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kNjk3MTYwYy1h Y2M1LTRiNTEtYmY1NS0xMGM3YTZlNjY5ODAvMy9ENjQyOTc1RjUzNUY0NUZEOUY2 RDhGRUE2MjZCQzZEMjRCQzlEOEQ4Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQhw7WjEK5b+Dtw6KRFv7 6pYjI6RwqJdX0mTE8KSvMKBoi9PaucrVNge6dFgcVk6p01GfeTGnxwz7QE02eAJA su1V62vFDi0Uq1yIgzcJjQOcJrvhIq7paKkMOdm9lSdr0HITaVe7UtRkVIUiJFUp U6hSt4zH32Legui0irJv0d3AcBoK4b1skUK0FVD5mxGvGzNt4IwjaKsdQJKiixHe elDW06jQTTiax07cnZ5PPK8XnH3xn48HF51gZ03QY1Ku9q6cFMfy6FLqtZXPmTkQ M62d5wJq4gSwzE4yiFKW1VJlgulbnLH6w3XpdsAim6VTp+DIUmBS5eiI8P5klWWG 4g== -----END CERTIFICATE-----Generated at Wed Jul 30 19:41:13 2025 by rpki-client