$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft File: F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft (raw, json) Hash identifier: /a26XWnxiRgyVPgUekK10kJcho1q33mrjHy57v37ssY= Subject key identifier: 61:7B:6F:D6:36:3E:DB:F6:82:31:0C:70:33:A5:68:29:D7:B6:B4:BA Authority key identifier: F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE Certificate issuer: /CN=f1d0572fe72991bd32854bac716676ebdad22ace Certificate serial: 3EE5BA5E4E9E8A314FDF13094A39BF868596FF7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft Manifest number: 027C Signing time: Mon 27 Oct 2025 02:34:41 +0000 Manifest this update: Mon 27 Oct 2025 02:29:41 +0000 Manifest next update: Tue 28 Oct 2025 05:09:41 +0000 Files and hashes: 1: 5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC.cer (hash: Nz2k0o2IS41o55idTp4HvK3uNxIMYgMNKvrr57G+kIE=) 2: 326131333a393634323a3130303a3a2f34382d3438203d3e203438323830.roa (hash: j84/Fm1nc/JJrf9h3dAaKkat+XV/si7APTv6iSnl64I=) 3: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer (hash: nYcdq/fifitjvFyPoNBEJvUP1WGfqAJvzv/Dj2Iivv0=) 4: 326131333a393634343a323232303a3a2f34342d3438203d3e20323134393932.roa (hash: 894RTKAEh4ciZZOdefpuTBSaNDM2TQpQSdGle6pgy08=) 5: 326131333a393634343a343030303a3a2f34302d3438203d3e20323034323931.roa (hash: OXH7kpuguUKmKnwoouN0IGAOMj3E/W/ffH2kJO7vbOY=) 6: 326131333a393634303a3a2f34342d3434203d3e203532313132.roa (hash: DOR1Pt3ct68s+ey18ZghPrs5rAUoZlIbwxjvP68BE+k=) 7: 326131333a393634343a343030303a3a2f34302d3438203d3e203133333335.roa (hash: 8/2mbGbaC4ennlzI7y1e8hUNr9fsr7Pr+/K69/OYKQg=) 8: 326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa (hash: e3gM8xBShVESXc8MaKIMDq1iDa8wjJWbHPjdOfhPuFQ=) 9: 326131333a393634343a34303a3a2f34342d3438203d3e20323131343331.roa (hash: UQpEpactphMaN3i4tpyR5s9Tmz685dUuNs8hSuG0cJQ=) 10: F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl (hash: C6dpQLkQ8hSMLI8/Ex8EOs8h4QX/gH7dc7Mwq00CiXg=) 11: 326131333a393634343a34303a3a2f34342d3438203d3e20323136333336.roa (hash: lNHaIlVxi/lYCx53I3+MfwePjUfRoiP0WtejKnMjprU=) 12: 39312e3230372e31332e302f32342d3234203d3e203532313132.roa (hash: +JU+ydXmMjIBHlt1kVXfkJBGqdmH1ATfk8PRfe8t4Rc=) 13: 326131333a393634343a31303a3a2f34362d3438203d3e203438313934.roa (hash: WOAaZY65k+/GoeKbXXymPrZVu7CfbDlQvCXqyS0ZjLA=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 28 Oct 2025 05:09:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:e5:ba:5e:4e:9e:8a:31:4f:df:13:09:4a:39:bf:86:85:96:ff:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f1d0572fe72991bd32854bac716676ebdad22ace Validity Not Before: Oct 27 02:29:41 2025 GMT Not After : Oct 28 05:09:41 2025 GMT Subject: CN=617B6FD6363EDBF682310C7033A56829D7B6B4BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:17:c4:3c:ff:68:9c:0e:5a:15:f7:57:9d:43: 19:69:e9:31:83:ce:b1:0d:ff:35:df:d0:5c:88:03: 90:32:d9:c9:9b:87:39:fb:af:57:7c:d4:2f:0a:08: 02:53:c2:66:36:5d:fb:67:80:44:ed:51:3f:f8:03: 13:c9:fe:fb:a4:92:e9:72:38:0d:1d:3e:f6:02:ba: a1:af:26:fc:e3:46:58:82:1f:6d:c0:3b:2f:53:a4: 1a:5a:35:35:c3:eb:f0:a6:cf:c6:6f:b3:66:20:4d: 75:4a:13:8a:71:b9:45:7e:e1:a2:1e:a8:c6:2c:d2: 9f:e8:d9:d3:18:8c:b7:f2:d8:ac:2a:bb:3d:5c:c5: 4e:4c:aa:0a:f2:c4:d4:3f:6b:a4:f3:e9:bc:11:08: 20:c4:2d:62:26:9f:71:44:b8:4a:26:4a:c9:77:de: f4:43:8b:e0:92:e6:49:80:3d:8e:82:71:33:24:ff: 89:24:41:9c:f8:1c:cf:26:f6:77:c3:58:7c:c9:98: 74:c3:e3:02:46:16:64:61:46:b8:6d:3e:75:e9:83: 9c:3d:57:ac:a7:a7:7e:ca:f4:fb:b4:0b:25:83:8e: 6b:a4:6f:40:68:48:4c:01:98:45:cb:1a:a8:a0:53: 8e:31:79:63:f5:94:37:c0:9f:00:15:9b:fb:c1:d5: 18:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:7B:6F:D6:36:3E:DB:F6:82:31:0C:70:33:A5:68:29:D7:B6:B4:BA X509v3 Authority Key Identifier: keyid:F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d2:cb:b5:d2:36:58:49:45:e5:28:2d:8c:a3:3c:fe:70:51:b6: 56:3e:75:3e:b9:da:77:a9:b4:4f:da:eb:5a:f7:73:74:fa:f1: 40:e6:ca:90:b9:c7:54:71:7c:d4:c3:4b:35:8b:b4:61:39:f0: e0:32:2e:92:1e:ca:de:a6:bc:9b:49:1a:20:d7:93:fb:96:bf: 13:8e:6e:5a:c8:f2:79:40:fa:89:2b:5f:e0:e5:0a:bb:5b:53: 32:96:5b:56:b5:6c:20:5b:40:48:88:35:25:f7:14:c2:58:8a: 67:ef:e4:ba:cc:89:32:59:d7:98:da:db:64:71:d5:01:57:6f: 39:7e:df:a0:19:32:30:5c:a2:e1:21:2d:69:f5:4a:6d:71:c2: ad:2b:42:25:52:fe:72:fe:e9:ec:46:0f:1f:76:0a:01:b9:d5: a2:14:7f:74:e6:f1:96:5a:3c:77:df:8c:21:c3:cb:a5:5c:48: c3:12:16:55:4d:10:41:1c:af:a6:ed:c2:a9:a0:8c:f0:08:5e: b1:0e:2d:e3:d6:d8:d2:4c:fa:2f:bc:92:1e:78:3b:84:31:df: f6:87:18:8d:b1:29:c1:2b:e3:f7:e2:6f:45:26:9d:85:99:53: ac:27:c1:2d:f1:fa:91:a9:2d:1c:ff:ad:84:c4:38:2b:a8:94: 3f:f1:e2:ba -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUPuW6Xk6eijFP3xMJSjm/hoWW/34wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjFkMDU3MmZlNzI5OTFiZDMyODU0YmFjNzE2Njc2ZWJk YWQyMmFjZTAeFw0yNTEwMjcwMjI5NDFaFw0yNTEwMjgwNTA5NDFaMDMxMTAvBgNV BAMTKDYxN0I2RkQ2MzYzRURCRjY4MjMxMEM3MDMzQTU2ODI5RDdCNkI0QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCF8Q8/2icDloV91edQxlp6TGD zrEN/zXf0FyIA5Ay2cmbhzn7r1d81C8KCAJTwmY2XftngETtUT/4AxPJ/vukkuly OA0dPvYCuqGvJvzjRliCH23AOy9TpBpaNTXD6/Cmz8Zvs2YgTXVKE4pxuUV+4aIe qMYs0p/o2dMYjLfy2Kwquz1cxU5MqgryxNQ/a6Tz6bwRCCDELWImn3FEuEomSsl3 3vRDi+CS5kmAPY6CcTMk/4kkQZz4HM8m9nfDWHzJmHTD4wJGFmRhRrhtPnXpg5w9 V6ynp37K9Pu0CyWDjmukb0BoSEwBmEXLGqigU44xeWP1lDfAnwAVm/vB1RjzAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUYXtv1jY+2/aCMQxwM6VoKde2tLowHwYDVR0j BBgwFoAU8dBXL+cpkb0yhUuscWZ269rSKs4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZTMwZGU4NGItNDAwYS00ZmQxLWFiOGEtZTc2MTZlMjQ1 YjQ5LzAvRjFEMDU3MkZFNzI5OTFCRDMyODU0QkFDNzE2Njc2RUJEQUQyMkFDRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhkQlhMLWNwa2IweWhVdXNjV1oyNjly U0tzNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9lMzBkZTg0Yi00 MDBhLTRmZDEtYWI4YS1lNzYxNmUyNDViNDkvMC9GMUQwNTcyRkU3Mjk5MUJEMzI4 NTRCQUM3MTY2NzZFQkRBRDIyQUNFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0su10jZYSUXlKC2Mozz+ cFG2Vj51Prnad6m0T9rrWvdzdPrxQObKkLnHVHF81MNLNYu0YTnw4DIukh7K3qa8 m0kaINeT+5a/E45uWsjyeUD6iStf4OUKu1tTMpZbVrVsIFtASIg1JfcUwliKZ+/k usyJMlnXmNrbZHHVAVdvOX7foBkyMFyi4SEtafVKbXHCrStCJVL+cv7p7EYPH3YK AbnVohR/dObxllo8d9+MIcPLpVxIwxIWVU0QQRyvpu3CqaCM8AhesQ4t49bY0kz6 L7ySHng7hDHf9ocYjbEpwSvj9+JvRSadhZlTrCfBLfH6kaktHP+thMQ4K6iUP/Hi ug== -----END CERTIFICATE-----Generated at Mon Oct 27 21:04:21 2025 by rpki-client