$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft File: rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft (raw, json) Hash identifier: Vo/Xe+lFefncDInAxGNBtGu1PegKkvOR2BccY3yJFiQ= Subject key identifier: BF:F7:7F:F5:8A:5A:D3:27:26:73:62:BE:1A:BA:00:9B:83:30:42:4C Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Certificate serial: 019E1DFE5748017A8C908C8B06F68FDD0FCA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft Manifest number: 195B Signing time: Tue 12 May 2026 21:01:08 +0000 Manifest this update: Tue 12 May 2026 21:01:08 +0000 Manifest next update: Wed 13 May 2026 21:01:08 +0000 Files and hashes: 1: 1-Dw7363-gcZT5BcZS3h3DULOLy8.roa (hash: ycAjWS2LKG3rf+AnuA7L1QjlHbaxU1ClqDSIOlIjNCE=) 2: 5IhZSBiDvsOSeVhRVnHGfrZ9l5M.roa (hash: 07LF7iOUP4kz2UtFtdj1J7VVMfVv3ZHccZXokZwfZtg=) 3: BiYRVVML9NNTA_8LHQsEIyn-udM.roa (hash: MQi6PP1rzRM1KN1VV4mGhoaMI5G3SPq1bp7SEkx+KmA=) 4: Nc3Qv6HWCUL0coHdhzehCvqorjQ.roa (hash: 1cr7/XMm8bJJ1VGTZJBo+emXZtefD8zXujejZu9BwnE=) 5: RiJbycN_HnEaFdxBy-0QqogHp9w.roa (hash: HrWeheuaH2PNBF70Yz5xTkWSf+oor2QnLluzhSuwnU8=) 6: cd86fuGEpcvGitdJ6j4qmONtrs4.roa (hash: OyWo2jddiuk9oXVabZhwBWcG9HobQGDOXj6VfpvDkjo=) 7: deTEkBZi5H7AIejV16ysjHwAbxY.roa (hash: l0JbGg+HLxrf5Ag/2z2pTojVken0ajBmDjhItX+Hm3I=) 8: hPDJ7bwWMVeeA66R-Nm66UMAI3I.roa (hash: S6FoRCGZ+2A7ou0QqZgDgmiPo527/Z9rU6I1qlBMQXY=) 9: oKVovXTv2aNAyZu9y-AHgX6RbJ8.roa (hash: UsgdfjEOvyD+5ioDpDRHljoPckkLzWdsqZQnU51Gug0=) 10: ocHryKy0JCZoZXuWFydbiaPAXvA.roa (hash: VJkfS4R1R0/kVOkQFygl/eqzEOXMlTWCdbkGDaHwbCQ=) 11: pGPZirCKZzbNWc11cAMZui5y53g.roa (hash: x16id1SP+uWE4b9i/PFLiuYNReYseV++lthZDwFfk5U=) 12: pKSlP4qI-iIWoFFAgY7hZYUI5lE.roa (hash: fJiLeKrrQ0jkNTOG3gU1SfB8kCZt5PRpsv9OHklxoM8=) 13: qltZRt6yv2xmd-YFzKK4-T95t70.roa (hash: ouYg4rusjDVFIksWY2y+Jv/jtKdXu+HEE/CHgFLthz4=) 14: rGIovrXr2PenpqE83Nj9eWB1x8s.roa (hash: 34LCqWqcnvgQ4rKtRytxb38DA5KqQIpYL78rOxx5xLc=) 15: rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl (hash: +4jb/K7EhbF6+74ZeANwDBIkWTEmizjxDhCxnPx7jtw=) 16: sQ8qQg5RChJp9JsfMBZ7VZwT8WE.roa (hash: obNWII8S7VxaHifOdhDpl8/q/V3M1i4VuliV8Z+MBow=) 17: z4qbPsOP-xo2NMp3HqpekMdf7sA.roa (hash: CIa0hH24rP2xgaENBe4fdRe+EVe1YceIYbMEnicxUf8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 20:10:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:1d:fe:57:48:01:7a:8c:90:8c:8b:06:f6:8f:dd:0f:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Validity Not Before: May 12 21:01:08 2026 GMT Not After : May 13 21:01:08 2026 GMT Subject: CN=bff77ff58a5ad327267362be1aba009b8330424c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d5:a8:a5:f9:38:09:d0:b5:c1:3f:6d:68:e5: f1:92:7c:74:b9:de:1c:5b:eb:16:ff:83:cb:ab:80: 8c:6b:ee:be:82:31:04:7c:df:ba:85:6f:17:f4:07: fe:55:34:24:3d:19:de:0b:57:b9:62:dd:9f:ad:cb: 45:52:40:54:82:6d:dc:00:e0:9d:28:0a:a4:69:33: b6:4a:d5:ce:47:1b:14:fa:80:8a:2e:65:87:0e:3c: d2:26:1b:e2:7b:d8:90:51:ac:e8:fc:7c:b4:76:f4: c1:8d:f7:3b:5e:24:0e:50:7e:84:1d:0b:96:24:9e: f7:21:ff:3c:95:7c:3e:f0:c4:16:27:2e:cf:23:db: dd:8e:29:72:84:d0:82:ee:d5:aa:02:cc:77:d6:cf: c2:dd:ec:2c:98:67:c0:8e:20:fd:fc:32:8c:ce:87: 28:0b:b4:e0:41:fe:d6:4a:a3:05:b9:72:00:f0:ba: 24:e4:5b:3e:65:03:19:20:eb:63:9a:99:e7:00:50: b1:19:16:2b:eb:ea:cb:2a:a7:d6:19:01:d5:a5:61: a2:10:2d:41:3b:eb:78:53:e1:2c:62:7f:a9:cd:09: d5:8f:c0:db:99:b2:8a:21:93:02:b8:4f:44:3e:2f: cb:aa:0c:0e:c7:0f:2b:da:0a:06:7c:24:a4:dd:85: bd:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:F7:7F:F5:8A:5A:D3:27:26:73:62:BE:1A:BA:00:9B:83:30:42:4C X509v3 Authority Key Identifier: keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:28:4e:24:8f:3c:2f:ab:7f:cc:e4:2d:6b:92:61:38:c7:25: 85:98:ed:5d:54:46:72:88:54:6d:9c:88:77:4b:b1:82:01:70: 7e:ad:8f:30:d4:32:38:2e:a5:12:ed:5a:8f:3e:ce:fd:4e:01: ca:a4:ce:64:c5:db:4c:09:1d:b5:ef:19:9f:bf:b4:e3:06:b6: 20:73:53:1d:1e:f0:40:ba:df:f5:87:44:72:fa:59:1a:9f:fb: 86:6d:30:64:46:c9:fe:f5:51:08:f8:0a:dc:6b:8a:56:b3:84: 8b:95:77:66:25:d0:d3:9f:6f:9c:6a:f8:c6:87:ca:2a:87:90: 05:16:2b:13:88:7d:90:67:d6:71:36:ff:0b:93:11:34:31:7f: fc:7e:64:31:a0:8f:d0:34:04:c1:27:d6:2a:fc:15:e4:8e:8d: ea:d0:99:90:c0:2a:af:80:02:7d:26:b4:e2:26:82:56:ff:53: 45:3e:3d:b2:7f:1c:42:b9:44:24:3f:47:78:09:60:4b:ac:82: a9:d6:ba:2d:a2:90:1c:05:e3:c2:bb:0e:1e:cf:2c:24:db:9a: cb:10:f0:77:b8:9a:7b:6f:57:92:90:38:fe:70:e3:28:b5:75: 4e:6d:32:dd:94:08:5d:fd:f7:f0:0d:fb:bc:54:74:cc:f1:32: 48:4e:8c:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4d/ldIAXqMkIyLBvaP3Q/KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMGRhNDNiNGE1ZDNkYjc4YmEzZjc3NGU1YjMxYjc3MDM3 MjAyZDUwHhcNMjYwNTEyMjEwMTA4WhcNMjYwNTEzMjEwMTA4WjAzMTEwLwYDVQQD EyhiZmY3N2ZmNThhNWFkMzI3MjY3MzYyYmUxYWJhMDA5YjgzMzA0MjRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs9Wopfk4CdC1wT9taOXxknx0ud4c W+sW/4PLq4CMa+6+gjEEfN+6hW8X9Af+VTQkPRneC1e5Yt2frctFUkBUgm3cAOCd KAqkaTO2StXORxsU+oCKLmWHDjzSJhvie9iQUazo/Hy0dvTBjfc7XiQOUH6EHQuW JJ73If88lXw+8MQWJy7PI9vdjilyhNCC7tWqAsx31s/C3ewsmGfAjiD9/DKMzoco C7TgQf7WSqMFuXIA8Lok5Fs+ZQMZIOtjmpnnAFCxGRYr6+rLKqfWGQHVpWGiEC1B O+t4U+EsYn+pzQnVj8DbmbKKIZMCuE9EPi/LqgwOxw8r2goGfCSk3YW90QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL/3f/WKWtMnJnNivhq6AJuDMEJMMB8GA1UdIwQY MBaAFK0NpDtKXT23i6P3dOWzG3cDcgLVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTct YzUxNWYzNTRjYzVhLzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTctYzUxNWYzNTRjYzVh LzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaihOJI88 L6t/zOQta5JhOMclhZjtXVRGcohUbZyId0uxggFwfq2PMNQyOC6lEu1ajz7O/U4B yqTOZMXbTAkdte8Zn7+04wa2IHNTHR7wQLrf9YdEcvpZGp/7hm0wZEbJ/vVRCPgK 3GuKVrOEi5V3ZiXQ059vnGr4xofKKoeQBRYrE4h9kGfWcTb/C5MRNDF//H5kMaCP 0DQEwSfWKvwV5I6N6tCZkMAqr4ACfSa04iaCVv9TRT49sn8cQrlEJD9HeAlgS6yC qda6LaKQHAXjwrsOHs8sJNuayxDwd7iae29XkpA4/nDjKLV1Tm0y3ZQIXf338A37 vFR0zPEySE6MkA== -----END CERTIFICATE-----Generated at Wed May 13 03:12:47 2026 by rpki-client