$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft File: 520NqzR6OOK4e1oiovfJ4hwYybw.mft (raw, json) Hash identifier: WsF7Tftg8tBQkM433dYahow7TDq3W6B/gRwrKL9npgs= Subject key identifier: D5:84:E5:34:D7:C8:94:4F:62:98:19:04:AF:87:1D:CD:CD:7E:78:FB Authority key identifier: E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC Certificate issuer: /CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Certificate serial: 019E1F112BCDACED66DD7DE62D1E0C769377 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft Manifest number: 13F4 Signing time: Wed 13 May 2026 02:01:19 +0000 Manifest this update: Wed 13 May 2026 02:01:19 +0000 Manifest next update: Thu 14 May 2026 02:01:19 +0000 Files and hashes: 1: 1dfOhFGT4Rz19mHWVabW0kWxTss.roa (hash: Rjg1gNguWYpEwGKvfk1H+hd0eMsqKT2A4N+C2/8Q+uQ=) 2: 520NqzR6OOK4e1oiovfJ4hwYybw.crl (hash: SFM48R12wmxo2CTdKHx3HaqFrLzOlV8QliypoOofWsk=) 3: 7EPxlfzuNdNfziGNw3Hj7EoZj1Q.roa (hash: fYUfx118C/cw672kHDWSH3DD1Ik9WuMEeaQ/qAV9tYE=) 4: 9EzrkfCb3685-QENXXhTIl2uZz4.roa (hash: 4o0MB77YQKRQiZHQrZxR1nkb/HsRFN1Kq0iR4K53WZA=) 5: DVIKLwP8b0UVJE_X0Zz4hLCMFmU.roa (hash: 2ROrixfhF0UtgJihhtThPaEztRX+VVHt8WTM1ZfZQ1o=) 6: Fn3txwFOnsHfJqp3dmOvAMcvgHc.roa (hash: 0tFPd6mFP89u9IcgrQmVyEuYoDxe9S4zwwRr4qndNks=) 7: RqZv9lI-beWajs98dICrEK2DwUM.roa (hash: z0DWSEDfb+oWc/lkT9R9ehjWWb2y0A0CPcHglnAYRf8=) 8: Ud0XI3ub85_CL2l55YZW3cXrctA.roa (hash: 2gMJyy7om8/uY1IqvCz0ubvDeUV63nAu6cUom48+3U0=) 9: ao5k8aMHz2Rr-UFohnKN0Vsy0ts.roa (hash: qeXz8tDdKItxGK8qtWsvUAbM0Ooz+MmMiDN8cvBIyTQ=) 10: bbXWGNkALy-ajnXnVwsq6VcslC8.roa (hash: lOmBCerqz+GglurufDI5e+15DQVwzjxcTvAfkACkLYE=) 11: jTMEUhkl6sKPDlW6gGgXZsH4VwQ.roa (hash: bLe2Zk8IquF+7aI/fXPQxZklmLIeFhH3W5DkdYCydQA=) 12: r-NoE_XHTABnwPRM9GdFHoEeHJo.roa (hash: qsD5Rt9CKRxXFQG5JSeN7cqv7sQvsG2HbFGsWmdhdi8=) 13: rIIpXZCn7E3HgJjpCaYYUR4k6ZI.roa (hash: Vvylnj2QqF4AFfq4GCTBxANmDk4TfXB5W5GNlTLI/Qw=) 14: rp3l1DRMo7bxNlcekPEumkx_Cu4.roa (hash: cvH000yVT30CU4NGwC5k2pFAaWGJcYLG4wfqKOyLWIU=) 15: s9E0mrs6RE5G3diI6qJ2dNaQlCY.roa (hash: ALHEFczsxrK3P9zm6czuHQOWsz9Vxib3j6fIwRLXdsA=) 16: smuPovOHBHHaIAv32qcc0ZyhNkQ.roa (hash: HcQ/8p3eoCWjnnKfMtVzm8focRBIq46dCnVV7vdjMxQ=) 17: v94LL-qGGgahldRNvzQc-ZVS3KI.roa (hash: a3YAXYAGQiNiI/eRCe9RKvTaP1hHvgR2d27wk4bq6Cw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 23:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:1f:11:2b:cd:ac:ed:66:dd:7d:e6:2d:1e:0c:76:93:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Validity Not Before: May 13 02:01:19 2026 GMT Not After : May 14 02:01:19 2026 GMT Subject: CN=d584e534d7c8944f62981904af871dcdcd7e78fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:b5:ba:a4:7b:61:d2:b3:75:d0:fc:73:28:de: b0:1b:d5:86:d5:ac:66:5e:e0:79:69:ec:33:b1:af: 6a:26:68:65:fe:ab:46:b6:aa:81:7b:f6:76:c6:1c: 2f:73:b5:82:c5:19:bc:8c:76:15:d8:81:a7:e8:cf: 29:f2:df:3a:0a:72:66:51:9c:16:aa:1e:b7:69:9b: e8:99:0c:f3:3b:e8:d8:41:be:2a:19:c1:d7:f6:e0: c5:ad:c9:71:60:10:65:72:c3:7c:89:86:20:e8:2c: dd:9f:5d:8c:e9:b7:12:a5:b3:73:5c:d6:f2:9d:2a: cb:5c:11:c8:6e:87:2b:6c:7d:7e:0e:bc:5f:67:15: 81:b5:a6:0f:de:34:e8:61:16:21:06:89:07:b7:20: 10:d0:0f:4f:53:d9:3a:aa:b0:67:e4:28:fa:cf:8c: 89:3a:f5:ae:6a:f7:91:b9:1f:fb:f3:33:a1:35:7d: 8c:cf:2f:48:8c:32:21:a4:aa:fe:f2:dd:24:0f:09: f5:de:89:0d:4b:18:40:a4:1b:4b:13:1c:39:bb:6a: 0c:9b:e3:8f:52:d8:d9:7f:0d:6d:cd:14:d8:20:45: fa:8c:99:8d:a8:c9:2b:e3:c2:dc:c2:71:a8:45:1b: 32:82:9a:3d:07:dd:9d:39:ca:80:ff:dc:d8:9f:fa: 63:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:84:E5:34:D7:C8:94:4F:62:98:19:04:AF:87:1D:CD:CD:7E:78:FB X509v3 Authority Key Identifier: keyid:E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:d5:e8:7f:59:ca:91:b4:b9:5d:2b:aa:37:4c:4b:47:ac:cd: 1c:c9:89:90:de:19:7f:28:eb:55:75:23:72:19:03:81:c3:3d: c0:59:b4:52:19:64:eb:44:74:20:94:44:f6:74:e3:7b:40:ee: 28:d6:08:15:b4:73:47:62:59:67:ce:1b:83:35:44:f1:cf:cf: a6:42:fb:e3:38:b8:7c:1e:13:d9:5c:ef:70:aa:0a:5f:4a:69: d0:9f:0b:b3:6d:2e:91:11:99:cf:4a:36:a3:16:1d:8f:80:87: f9:2e:29:55:a9:36:59:c7:b9:d3:c1:8d:1b:5c:6d:97:4b:a7: 24:6b:f9:1b:e8:c2:73:ae:cf:3d:1f:da:08:f0:9f:ad:40:66: ad:f0:07:a9:81:01:af:0b:26:3d:62:ad:48:e5:66:b0:35:fd: 9c:0f:a6:e1:0a:4d:0d:9a:2c:d6:c9:fd:b5:b2:96:62:71:04: ab:92:ac:c3:62:d8:db:38:2f:2b:80:be:09:ff:d0:c9:90:a4: d0:aa:40:d7:1f:ec:a9:7f:8e:fc:c2:b9:92:13:bc:2c:b6:d1: 0b:9f:00:36:6b:4d:f1:0e:ca:19:8a:2c:47:75:98:12:35:92: 50:38:e4:e7:d2:b8:09:6a:36:bf:95:1e:a2:23:04:21:f9:48: e7:c3:84:c9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4fESvNrO1m3X3mLR4MdpN3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3NmQwZGFiMzQ3YTM4ZTJiODdiNWEyMmEyZjdjOWUyMWMx OGM5YmMwHhcNMjYwNTEzMDIwMTE5WhcNMjYwNTE0MDIwMTE5WjAzMTEwLwYDVQQD EyhkNTg0ZTUzNGQ3Yzg5NDRmNjI5ODE5MDRhZjg3MWRjZGNkN2U3OGZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6LW6pHth0rN10PxzKN6wG9WG1axm XuB5aewzsa9qJmhl/qtGtqqBe/Z2xhwvc7WCxRm8jHYV2IGn6M8p8t86CnJmUZwW qh63aZvomQzzO+jYQb4qGcHX9uDFrclxYBBlcsN8iYYg6Czdn12M6bcSpbNzXNby nSrLXBHIbocrbH1+DrxfZxWBtaYP3jToYRYhBokHtyAQ0A9PU9k6qrBn5Cj6z4yJ OvWuaveRuR/78zOhNX2Mzy9IjDIhpKr+8t0kDwn13okNSxhApBtLExw5u2oMm+OP UtjZfw1tzRTYIEX6jJmNqMkr48LcwnGoRRsygpo9B92dOcqA/9zYn/pj7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNWE5TTXyJRPYpgZBK+HHc3Nfnj7MB8GA1UdIwQY MBaAFOdtDas0ejjiuHtaIqL3yeIcGMm8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDkt YmQzYmZjOTliZGE5LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDktYmQzYmZjOTliZGE5 LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgtXof1nK kbS5XSuqN0xLR6zNHMmJkN4ZfyjrVXUjchkDgcM9wFm0Uhlk60R0IJRE9nTje0Du KNYIFbRzR2JZZ84bgzVE8c/PpkL74zi4fB4T2VzvcKoKX0pp0J8Ls20ukRGZz0o2 oxYdj4CH+S4pVak2Wce508GNG1xtl0unJGv5G+jCc67PPR/aCPCfrUBmrfAHqYEB rwsmPWKtSOVmsDX9nA+m4QpNDZos1sn9tbKWYnEEq5Ksw2LY2zgvK4C+Cf/QyZCk 0KpA1x/sqX+O/MK5khO8LLbRC58ANmtN8Q7KGYosR3WYEjWSUDjk59K4CWo2v5Ue oiMEIflI58OEyQ== -----END CERTIFICATE-----Generated at Wed May 13 05:26:41 2026 by rpki-client