$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft File: F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft (raw, json) Hash identifier: 4v1emStVFW3RlGJsXbMlWg/4xJCn0yKmlhJgECw+DIA= Subject key identifier: C6:36:99:C8:99:7B:6E:9E:F3:7A:C5:E0:B6:7D:22:2D:4A:76:0F:EE Authority key identifier: F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE Certificate issuer: /CN=f1d0572fe72991bd32854bac716676ebdad22ace Certificate serial: 231FB1A726F491A1B8092757D6B5501128971C10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft Manifest number: 0338 Signing time: Mon 16 Mar 2026 08:37:10 +0000 Manifest this update: Mon 16 Mar 2026 08:32:10 +0000 Manifest next update: Tue 17 Mar 2026 10:05:10 +0000 Files and hashes: 1: 326131333a393634343a323232303a3a2f34342d3438203d3e20323134393932.roa (hash: 894RTKAEh4ciZZOdefpuTBSaNDM2TQpQSdGle6pgy08=) 2: 326131333a393634343a31303a3a2f34362d3438203d3e203438313934.roa (hash: WOAaZY65k+/GoeKbXXymPrZVu7CfbDlQvCXqyS0ZjLA=) 3: 326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa (hash: e3gM8xBShVESXc8MaKIMDq1iDa8wjJWbHPjdOfhPuFQ=) 4: 326131333a393634313a3a2f34382d3438203d3e203532313132.roa (hash: 5o2ZOradY5DoOPidcJ775vbaNLbxYZsPfZS6MPweSnY=) 5: 5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC.cer (hash: DDBKGLOay0ETlRkkd+ZGuz8/q4wtGaLppxLYYnPMDTM=) 6: 326131333a393634343a34303a3a2f34342d3438203d3e20323131343331.roa (hash: UQpEpactphMaN3i4tpyR5s9Tmz685dUuNs8hSuG0cJQ=) 7: 39312e3230372e31332e302f32342d3234203d3e203532313132.roa (hash: YRttKbBVKmVFJCLqXVNyqXBZwi5ZooomBxSDP4Gl2m4=) 8: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer (hash: nYcdq/fifitjvFyPoNBEJvUP1WGfqAJvzv/Dj2Iivv0=) 9: 326131333a393634343a343030303a3a2f34302d3438203d3e203133333335.roa (hash: 3m2Z/mjozERlCSY+vSBpPSC7mc1wNvFz/UzxCrw2jy0=) 10: 326131333a393634343a343030303a3a2f34302d3438203d3e20323034323931.roa (hash: OXH7kpuguUKmKnwoouN0IGAOMj3E/W/ffH2kJO7vbOY=) 11: 326131333a393634303a3a2f34342d3434203d3e203532313132.roa (hash: DOR1Pt3ct68s+ey18ZghPrs5rAUoZlIbwxjvP68BE+k=) 12: 326131333a393634343a34303a3a2f34342d3438203d3e20323136333336.roa (hash: lNHaIlVxi/lYCx53I3+MfwePjUfRoiP0WtejKnMjprU=) 13: F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl (hash: 1T7Tqv0R/9o7Hi6l2czNvi8XL49OEtRq0sXPKZ6Y1ck=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 17 Mar 2026 10:05:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:1f:b1:a7:26:f4:91:a1:b8:09:27:57:d6:b5:50:11:28:97:1c:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f1d0572fe72991bd32854bac716676ebdad22ace Validity Not Before: Mar 16 08:32:10 2026 GMT Not After : Mar 17 10:05:10 2026 GMT Subject: CN=C63699C8997B6E9EF37AC5E0B67D222D4A760FEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7f:37:9b:80:34:c6:4f:46:f0:4d:d1:7c:8d: ec:b1:d3:72:e7:5c:e0:84:a3:24:c1:53:2b:8f:77: 60:c7:bc:2d:f2:52:b1:d3:f3:6d:ba:0f:ef:50:a1: 7e:6c:5a:c1:de:f4:d4:5d:65:87:19:96:27:4b:0f: be:f3:63:50:3e:4b:d3:3c:5c:19:61:e1:7e:64:72: 45:60:65:62:2b:0b:74:19:5a:36:75:08:d4:9e:c0: c3:61:83:11:3d:bf:9c:8c:3d:79:f3:bf:6c:37:e5: af:fe:85:9c:e8:f6:de:44:4f:e3:60:72:d0:3a:fc: 55:2c:6a:a2:e5:9b:20:56:8e:74:58:8f:d9:65:a9: 10:18:31:64:12:2f:19:55:1a:ab:1e:1f:61:45:a6: a0:9f:04:09:d9:bb:9a:f8:1e:29:48:21:ec:ad:9d: 65:0a:7e:63:b2:fa:b4:ee:2e:09:d4:6b:d4:91:8c: 35:27:c5:8e:45:b0:3f:4c:26:79:e8:7e:d5:82:89: 3e:aa:73:3a:e9:28:7a:55:e4:6f:bc:26:1d:9e:18: 54:a4:0b:ab:4e:f0:ce:6c:0b:e2:87:25:74:83:49: 09:48:5d:c5:df:3a:ef:68:be:cd:b3:36:25:0b:f6: f6:5e:84:c8:84:48:32:fc:c3:83:fc:92:90:09:39: 86:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:36:99:C8:99:7B:6E:9E:F3:7A:C5:E0:B6:7D:22:2D:4A:76:0F:EE X509v3 Authority Key Identifier: keyid:F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:41:87:7c:88:ba:5a:1d:b1:3c:e6:17:90:d8:d0:77:1b:8b: 06:6e:85:dd:18:57:05:c5:f8:f2:96:bd:ed:64:3e:e1:84:f3: eb:e2:e2:a4:91:1c:69:61:e7:11:60:ca:16:f6:4c:1b:5e:cb: f1:4d:e1:44:60:bf:8d:ad:00:bf:f6:05:eb:47:2c:cb:ac:83: ac:a6:2e:4b:7c:16:c8:fa:31:d4:78:2b:2c:ce:b9:0e:35:eb: d7:a0:31:41:55:85:23:78:59:e3:b9:0b:25:6f:62:a4:a0:8a: f1:84:55:5b:2b:35:b2:be:2c:27:ac:5c:c0:dd:b2:4e:d7:65: 52:d4:d7:fa:01:4d:c6:ae:99:21:be:00:b1:ce:f0:a6:a9:6b: ed:9e:5d:7c:db:f3:13:9b:bf:5e:cc:7e:29:8c:22:f4:1d:65: ea:a6:de:59:40:a5:84:b4:15:2b:9a:2b:76:54:e0:6b:46:85: 83:0c:b5:80:61:58:40:4a:f3:82:3e:29:b7:36:2f:eb:09:e0: 29:a3:60:7c:c2:ee:c8:f6:ea:6d:7a:2b:51:bc:05:55:c1:ac: dc:e6:c0:e9:9d:35:2a:87:38:f9:62:78:6c:97:a4:c9:b7:6a: 3a:04:c3:88:b7:fd:74:fe:40:da:75:42:4e:ec:b8:57:a6:fe: df:4e:9f:88 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUIx+xpyb0kaG4CSdX1rVQESiXHBAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjFkMDU3MmZlNzI5OTFiZDMyODU0YmFjNzE2Njc2ZWJk YWQyMmFjZTAeFw0yNjAzMTYwODMyMTBaFw0yNjAzMTcxMDA1MTBaMDMxMTAvBgNV BAMTKEM2MzY5OUM4OTk3QjZFOUVGMzdBQzVFMEI2N0QyMjJENEE3NjBGRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+fzebgDTGT0bwTdF8jeyx03Ln XOCEoyTBUyuPd2DHvC3yUrHT8226D+9QoX5sWsHe9NRdZYcZlidLD77zY1A+S9M8 XBlh4X5kckVgZWIrC3QZWjZ1CNSewMNhgxE9v5yMPXnzv2w35a/+hZzo9t5ET+Ng ctA6/FUsaqLlmyBWjnRYj9llqRAYMWQSLxlVGqseH2FFpqCfBAnZu5r4HilIIeyt nWUKfmOy+rTuLgnUa9SRjDUnxY5FsD9MJnnoftWCiT6qczrpKHpV5G+8Jh2eGFSk C6tO8M5sC+KHJXSDSQlIXcXfOu9ovs2zNiUL9vZehMiESDL8w4P8kpAJOYZ9AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUxjaZyJl7bp7zesXgtn0iLUp2D+4wHwYDVR0j BBgwFoAU8dBXL+cpkb0yhUuscWZ269rSKs4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZTMwZGU4NGItNDAwYS00ZmQxLWFiOGEtZTc2MTZlMjQ1 YjQ5LzAvRjFEMDU3MkZFNzI5OTFCRDMyODU0QkFDNzE2Njc2RUJEQUQyMkFDRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhkQlhMLWNwa2IweWhVdXNjV1oyNjly U0tzNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9lMzBkZTg0Yi00 MDBhLTRmZDEtYWI4YS1lNzYxNmUyNDViNDkvMC9GMUQwNTcyRkU3Mjk5MUJEMzI4 NTRCQUM3MTY2NzZFQkRBRDIyQUNFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqUGHfIi6Wh2xPOYXkNjQ dxuLBm6F3RhXBcX48pa97WQ+4YTz6+LipJEcaWHnEWDKFvZMG17L8U3hRGC/ja0A v/YF60csy6yDrKYuS3wWyPox1HgrLM65DjXr16AxQVWFI3hZ47kLJW9ipKCK8YRV Wys1sr4sJ6xcwN2yTtdlUtTX+gFNxq6ZIb4Asc7wpqlr7Z5dfNvzE5u/Xsx+KYwi 9B1l6qbeWUClhLQVK5ordlTga0aFgwy1gGFYQErzgj4ptzYv6wngKaNgfMLuyPbq bXorUbwFVcGs3ObA6Z01Koc4+WJ4bJekybdqOgTDiLf9dP5A2nVCTuy4V6b+306f iA== -----END CERTIFICATE-----Generated at Mon Mar 16 21:59:19 2026 by rpki-client