$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft File: kdDHjDCaPpncmrdPLNwEhIWedTA.mft (raw, json) Hash identifier: vk6dutkyhZ4XA/TWnuXpjaN3uscEcvR0Rh3tBxHFBA0= Subject key identifier: 01:3E:27:43:81:98:76:3D:FC:75:FB:71:B1:99:02:82:F8:8B:68:AA Authority key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30 Certificate issuer: /CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530 Certificate serial: 019E1D227C7D1F84CADF1307FB7F80A96A12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft Manifest number: 1422 Signing time: Tue 12 May 2026 17:00:59 +0000 Manifest this update: Tue 12 May 2026 17:00:59 +0000 Manifest next update: Wed 13 May 2026 17:00:59 +0000 Files and hashes: 1: 9ThI9Z7soYxz8aK7SxBvxoPEOX4.roa (hash: 2FCnysFwLOl4zVeb97SHJ1QvBKVL+gw4QmS3UAORjFk=) 2: BsMfnzrxddpnmFQ8FtiqLN4hIRw.roa (hash: GbFN7H89aII0f8FiIff5RGaJGPYoV9OOEoYuPkHE93c=) 3: C67-QabxkPaVhoCKelfc7gJ1hK8.roa (hash: 0WW6NyrxV5VH4o1lj6kLTZOdEKPeDBs7ouwPQd+hBHw=) 4: F9-SxyIQIDP0T_L82XSaWh-dz-8.roa (hash: xq0esTvybmQE92rRBw7ldOk97wFXJ2Dn8bPKN1sbBN4=) 5: GXCfAVmuuL63Oe4dOVqYkc3Wuzg.roa (hash: L3MDEpVumA01FdWvikqD5sE8kkEXPwKtDKdz6KqfMnQ=) 6: RY0bArq-jZLzZUGQCt7VtVQ1eP8.roa (hash: nOIDnyfWMWKkEgKPjDc9li7leEEkKMO7ZYw+RINdMRI=) 7: WNwct_JeSUw9EGnGt5EMmHO1qnA.roa (hash: 8JESbBJVZwKNLtuuBYLAyN1yjWX+0RJfMcx4iiDnUQ0=) 8: br-MdcUGAgIJZ2jokAIrGgvBgVg.roa (hash: nAJrJwXFm0eNNJbUiUMkYMOpV3Mo7gqR8CqVePMN9SA=) 9: kdDHjDCaPpncmrdPLNwEhIWedTA.crl (hash: jJ/wJ6Kq0PWWDWMzKmtsiLHrCvLRV+/OEV8LhP9ZUXs=) 10: p3gPfuFdg2rqrSBfl0UDEUdNbjM.roa (hash: bWC6ioqLuy3JQURX6TTBBncQtFn3EtAYrnrtm+JIq5g=) 11: qoJxh9RoMci9r1884qksasXONeQ.roa (hash: b1P5hF2MWBN0Il3GucTyqyanvw/mWve+jbkBZTYW4xQ=) 12: zByDWqzQes6Qf_5yruyAW6l4NA8.roa (hash: 4mGvD80bIUslVCK/Nf88S+YHOSjLonqjJpu89t+7Om0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 17:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:1d:22:7c:7d:1f:84:ca:df:13:07:fb:7f:80:a9:6a:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530 Validity Not Before: May 12 17:00:59 2026 GMT Not After : May 13 17:00:59 2026 GMT Subject: CN=013e27438198763dfc75fb71b1990282f88b68aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:1c:42:a6:58:fb:54:35:da:59:68:1a:4c:04: 40:e7:c2:81:28:9a:a3:cd:cb:9d:a3:15:44:b5:93: 84:7d:15:18:98:76:1a:9a:6d:6c:7e:9a:c1:d8:c2: e3:8b:d8:50:35:6c:1e:53:b3:16:a8:4b:29:d6:72: 7d:ea:cd:50:24:85:cd:dd:3f:54:7a:38:db:5f:2f: a8:5b:44:ac:e3:1c:0a:64:dd:5a:04:55:87:87:be: 98:44:57:b7:9b:c1:fc:92:24:02:e9:7e:7e:49:5b: 37:e7:fe:b9:24:c3:e6:9a:36:76:7d:35:d3:b7:5d: 4d:3b:81:f8:3b:37:58:8d:bc:10:cf:1d:26:c8:25: f4:77:9c:38:c7:d1:3d:a0:4b:0a:3a:eb:43:c7:54: 08:30:45:c5:65:27:e2:b2:20:0e:cf:0c:8a:74:cf: e6:68:61:a6:de:26:7a:6e:06:b2:28:c2:ba:c0:83: bf:27:75:f0:08:22:9f:22:b5:31:c8:1e:23:6a:dc: 6f:6b:f9:80:db:1b:bd:99:22:52:e8:10:a0:c7:58: bb:9c:b0:e0:c1:e4:ab:5b:a4:73:01:fa:2e:f4:2a: 08:f9:36:ea:36:34:87:8f:1f:ba:ce:9d:21:c2:17: ff:9c:3c:4c:34:6d:f9:e8:31:7f:86:c8:1e:7c:cd: 85:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:3E:27:43:81:98:76:3D:FC:75:FB:71:B1:99:02:82:F8:8B:68:AA X509v3 Authority Key Identifier: keyid:91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:51:e6:9d:c3:79:97:24:8f:0c:1b:3b:9b:84:92:8e:da:bb: b1:e6:46:da:97:15:57:49:61:00:df:47:a2:9e:92:96:2d:67: 94:e9:76:76:ee:58:d7:b1:b0:96:15:d6:f6:9e:23:c2:57:09: c1:e7:f2:55:84:2a:84:ab:70:ca:eb:00:7a:5c:fd:5c:de:e3: df:35:6a:a1:e3:5d:13:cf:5b:5b:f8:38:fc:7b:79:43:71:cf: 49:e5:36:b9:4b:fb:12:59:57:9c:f5:6c:ca:3d:e8:5d:d9:55: 49:96:4a:00:34:6d:16:1f:d7:56:90:b5:b6:91:8f:ac:8c:40: da:dd:db:87:db:05:56:1c:cc:f4:61:15:b9:8e:73:ac:fc:e7: 93:62:b5:a5:7e:20:f3:c8:ef:61:36:91:40:56:cb:97:23:fe: b5:92:54:81:c7:24:ec:52:9e:21:e6:fe:a5:d8:eb:7b:e9:19: 2c:f6:b1:51:8b:a1:55:46:ec:89:c6:3c:11:0f:06:a1:3c:92: 07:80:91:f4:9e:bc:68:90:47:d3:9c:cc:a1:75:63:3b:82:1b: 9f:f3:27:ef:37:5c:93:c6:e0:9c:2d:c8:36:d8:8a:55:cc:d2: ef:45:6f:96:02:56:06:93:04:e1:8c:65:40:0e:4f:6b:e0:49: 85:a0:25:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4dInx9H4TK3xMH+3+AqWoSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxZDBjNzhjMzA5YTNlOTlkYzlhYjc0ZjJjZGMwNDg0ODU5 ZTc1MzAwHhcNMjYwNTEyMTcwMDU5WhcNMjYwNTEzMTcwMDU5WjAzMTEwLwYDVQQD EygwMTNlMjc0MzgxOTg3NjNkZmM3NWZiNzFiMTk5MDI4MmY4OGI2OGFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkxxCplj7VDXaWWgaTARA58KBKJqj zcudoxVEtZOEfRUYmHYamm1sfprB2MLji9hQNWweU7MWqEsp1nJ96s1QJIXN3T9U ejjbXy+oW0Ss4xwKZN1aBFWHh76YRFe3m8H8kiQC6X5+SVs35/65JMPmmjZ2fTXT t11NO4H4OzdYjbwQzx0myCX0d5w4x9E9oEsKOutDx1QIMEXFZSfisiAOzwyKdM/m aGGm3iZ6bgayKMK6wIO/J3XwCCKfIrUxyB4jatxva/mA2xu9mSJS6BCgx1i7nLDg weSrW6RzAfou9CoI+TbqNjSHjx+6zp0hwhf/nDxMNG356DF/hsgefM2FRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAE+J0OBmHY9/HX7cbGZAoL4i2iqMB8GA1UdIwQY MBaAFJHQx4wwmj6Z3Jq3TyzcBISFnnUwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEt NDg1MmM4ZmY4YWYyLzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEtNDg1MmM4ZmY4YWYy LzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAslHmncN5 lySPDBs7m4SSjtq7seZG2pcVV0lhAN9Hop6Sli1nlOl2du5Y17GwlhXW9p4jwlcJ wefyVYQqhKtwyusAelz9XN7j3zVqoeNdE89bW/g4/Ht5Q3HPSeU2uUv7EllXnPVs yj3oXdlVSZZKADRtFh/XVpC1tpGPrIxA2t3bh9sFVhzM9GEVuY5zrPznk2K1pX4g 88jvYTaRQFbLlyP+tZJUgcck7FKeIeb+pdjre+kZLPaxUYuhVUbsicY8EQ8GoTyS B4CR9J68aJBH05zMoXVjO4Ibn/Mn7zdck8bgnC3INtiKVczS70VvlgJWBpME4Yxl QA5Pa+BJhaAloQ== -----END CERTIFICATE-----Generated at Wed May 13 02:09:54 2026 by rpki-client