$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft File: AOT2p3Not87P5nIgtDZXax4Aiuw.mft (raw, json) Hash identifier: S6W4BTCw/AWxPMEVlBl8urCR4gjXWhOuHEldUYc9UFY= Subject key identifier: BA:24:88:86:23:93:B3:02:5F:DB:F5:B8:F3:A7:9A:5E:20:EC:9E:05 Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec Certificate serial: 019E1CEBCD4C02840B62DFC4F3E98DF2892F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft Manifest number: 1A0E Signing time: Tue 12 May 2026 16:01:15 +0000 Manifest this update: Tue 12 May 2026 16:01:15 +0000 Manifest next update: Wed 13 May 2026 16:01:15 +0000 Files and hashes: 1: 1-7-GRl1DpJL9MX_Eh7vVlgQAtds.roa (hash: qBQ+Yv34RT+76LqwEUvZMWK4vq87p/Tm5N2E03sJUtE=) 2: AOT2p3Not87P5nIgtDZXax4Aiuw.crl (hash: FQ5/l3PGev2O00QCzLBPRtzV43k9njaCKOM9NDOZr8k=) 3: CP1700xQhoIo0eqZb96w49fwMZU.roa (hash: FhGMMmXWb4O7zbwANRuKCF/ES8PwzOmEkZV99iTN5xU=) 4: Iz8oQHvYY4N1cu4pgE3299ogM34.roa (hash: GTn6Y+DWEw4+IcATVORnDqgcpHWD0i8V9c7BBTnRM3U=) 5: MQ0e7OQgina0hHLbzkJJI7ocRMY.roa (hash: lYlPT7y2KTJ0qjKzQaLtDJlIn+M8xo18ZCJuzXN583Y=) 6: VcGOwSBLa8MeclenBwYCnJTkc6Q.roa (hash: ZpKqr8OOjlncepBvaT8KeQio9IThw68qGgH8coHhuVI=) 7: dawd4JG-4SefCP0YaRO5uFnOQHE.roa (hash: ZiFd59GAQkB1veA9+zpfwB3gp3VJAIktuXxJIRJaNhQ=) 8: gF0x-IgTBvCJCERAByN93AH9MjM.roa (hash: f9L9sZ2MryoARd93KF5kcE6ImNuSL3mNiWJ8yZc3d58=) 9: hGF5HckbV_mO1zNnnUvLaxvGgg0.roa (hash: LswWVKDsb8V0ubfBEeUCi7BkiOP6J97pjosqCGNORUk=) 10: mjA0pNQxoVl0KGEC4k-tYJlKGGk.roa (hash: lrLZhQx52IMzqIGLj7uTZANTlbmxap1lsbfyOuQwsgQ=) 11: oPPgaBYxfthIjxyRNKKvuQhADcA.roa (hash: vJpx4imZl2f0ZsJVLjSi4WZMmzQUNNlQIXHfoEUu3/k=) 12: v3K9UBCZQXetZHCASn_v-Er6z80.roa (hash: M01ADTQv5+WF8EwvS7wZ9W7tolykwshPsb2JjYqw3EQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 14:18:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:1c:eb:cd:4c:02:84:0b:62:df:c4:f3:e9:8d:f2:89:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec Validity Not Before: May 12 16:01:15 2026 GMT Not After : May 13 16:01:15 2026 GMT Subject: CN=ba2488862393b3025fdbf5b8f3a79a5e20ec9e05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3c:4b:c7:6b:8d:fb:4b:f5:4b:a9:ba:a4:f3: 12:f1:ae:f4:78:a7:6b:44:2a:84:d9:4e:89:43:f3: b5:3d:67:8c:6d:a9:65:b6:c9:be:8e:46:cd:14:98: 25:68:17:6f:c0:79:b9:b0:e1:d4:19:2a:86:c5:4e: 4c:01:b6:65:7d:2e:89:42:97:61:a7:1f:61:7b:05: 4e:0c:ac:4a:45:e3:cf:2b:f7:6e:19:ff:96:42:d5: 97:de:6a:b0:09:5f:25:41:06:ee:3b:17:6a:8f:2c: 47:42:49:ee:7d:15:78:ec:00:1f:9c:f4:82:59:8f: 5e:47:ef:f3:9d:46:ba:19:f0:c1:4e:bc:97:49:db: 70:c0:da:c5:a1:a7:c7:9e:c7:d6:9e:e0:aa:07:d6: 44:d1:43:b2:3c:7d:8a:f3:e7:57:ba:9e:ad:b6:66: 94:55:38:10:c3:81:ee:24:6c:3f:8f:95:b3:13:43: 51:8e:ad:94:a3:d3:96:e6:98:11:d3:d3:e9:93:f5: 93:9f:6f:4e:e4:b3:37:f4:51:c3:a9:fe:34:63:bb: 88:59:1c:85:db:f1:ac:ab:7a:0a:a1:29:d5:75:4d: 49:d7:77:25:0f:8e:23:4c:d2:79:6b:81:77:1c:c5: 98:e7:bb:5a:59:bb:cb:a0:04:68:d1:33:ac:dc:e4: 1d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:24:88:86:23:93:B3:02:5F:DB:F5:B8:F3:A7:9A:5E:20:EC:9E:05 X509v3 Authority Key Identifier: keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:5e:9f:5d:26:b2:f2:1b:66:b6:de:12:ea:46:f6:79:b5:63: 98:9b:52:c5:9f:ef:83:50:b5:47:b9:b3:40:6f:58:c4:bc:51: 38:97:69:02:4d:73:b7:38:4e:1a:63:76:33:92:91:ef:fb:b3: 7b:34:8c:52:4e:95:89:c0:b3:7e:68:be:d5:87:16:5e:7b:fa: 0b:4d:8f:e5:25:8a:a4:90:57:0c:c9:5f:28:f2:aa:c8:3f:22: 0c:6c:0d:bc:0d:13:94:49:b3:5b:fc:80:25:16:4f:f9:bc:13: 4c:e7:b0:49:55:81:4a:4d:25:d3:48:97:37:4d:87:73:97:8e: 9a:0c:d7:de:82:f2:44:09:89:b2:d9:2c:5e:ab:fd:67:4d:76: 43:ee:ab:43:b6:9b:cb:51:d8:67:e3:ab:c6:a0:0b:65:46:c3: 84:49:41:12:b2:59:e6:1a:72:6e:f6:81:9a:ec:07:ee:2a:a9: 3b:b3:08:36:76:b9:52:b1:80:a0:99:4f:ec:99:3b:06:ad:f9: b5:22:7b:b5:ec:36:a2:95:be:9e:d0:4c:cc:34:8e:55:89:23: df:05:1c:fd:ab:4e:73:bd:ee:dd:21:58:bb:9d:b8:d7:30:60: fd:bd:c9:23:99:ba:c7:cc:de:c1:a1:27:3b:5a:66:fe:d7:6e: 6f:e2:db:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4c681MAoQLYt/E8+mN8okvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZTRmNmE3NzM2OGI3Y2VjZmU2NzIyMGI0MzY1NzZiMWUw MDhhZWMwHhcNMjYwNTEyMTYwMTE1WhcNMjYwNTEzMTYwMTE1WjAzMTEwLwYDVQQD EyhiYTI0ODg4NjIzOTNiMzAyNWZkYmY1YjhmM2E3OWE1ZTIwZWM5ZTA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArTxLx2uN+0v1S6m6pPMS8a70eKdr RCqE2U6JQ/O1PWeMballtsm+jkbNFJglaBdvwHm5sOHUGSqGxU5MAbZlfS6JQpdh px9hewVODKxKRePPK/duGf+WQtWX3mqwCV8lQQbuOxdqjyxHQknufRV47AAfnPSC WY9eR+/znUa6GfDBTryXSdtwwNrFoafHnsfWnuCqB9ZE0UOyPH2K8+dXup6ttmaU VTgQw4HuJGw/j5WzE0NRjq2Uo9OW5pgR09Ppk/WTn29O5LM39FHDqf40Y7uIWRyF 2/Gsq3oKoSnVdU1J13clD44jTNJ5a4F3HMWY57taWbvLoARo0TOs3OQdAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLokiIYjk7MCX9v1uPOnml4g7J4FMB8GA1UdIwQY MBaAFADk9qdzaLfOz+ZyILQ2V2seAIrsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMt YjA3ZDg0MTZhZTRhLzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMtYjA3ZDg0MTZhZTRh LzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV16fXSay 8htmtt4S6kb2ebVjmJtSxZ/vg1C1R7mzQG9YxLxROJdpAk1ztzhOGmN2M5KR7/uz ezSMUk6VicCzfmi+1YcWXnv6C02P5SWKpJBXDMlfKPKqyD8iDGwNvA0TlEmzW/yA JRZP+bwTTOewSVWBSk0l00iXN02Hc5eOmgzX3oLyRAmJstksXqv9Z012Q+6rQ7ab y1HYZ+OrxqALZUbDhElBErJZ5hpybvaBmuwH7iqpO7MINna5UrGAoJlP7Jk7Bq35 tSJ7tew2opW+ntBMzDSOVYkj3wUc/atOc73u3SFYu5241zBg/b3JI5m6x8zewaEn O1pm/tdub+Lbmw== -----END CERTIFICATE-----Generated at Wed May 13 00:30:33 2026 by rpki-client