$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft File: Kb4C3qCghumID1ZMhocrvFl8xnI.mft (raw, json) Hash identifier: OgDkjkJLrDpoiWKM0r7wfrkTcB+SMJ6rH4CtpOy2pQA= Subject key identifier: 35:B6:AD:FC:7A:65:41:B5:5D:5D:42:54:B1:04:8F:6F:E7:70:D8:95 Authority key identifier: 29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72 Certificate issuer: /CN=29be02dea0a086e9880f564c86872bbc597cc672 Certificate serial: 019E1DFE0301E1EDC38FBCB6C7881715BFCA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft Manifest number: 16F8 Signing time: Tue 12 May 2026 21:00:46 +0000 Manifest this update: Tue 12 May 2026 21:00:46 +0000 Manifest next update: Wed 13 May 2026 21:00:46 +0000 Files and hashes: 1: 1-W964s-KtZyiNamSbJ6IP1jbFT4.roa (hash: tyUpzznYouv+Rmk3/StqHsUEFXC/JRLOGyGTS4NNP4Y=) 2: GStnKDxU2VExQ_xcPN4egFEKjLo.roa (hash: siSBOiPXXJh3GCU5grMPMkb/iUn8KcQ7coKcPhWce6E=) 3: Kb4C3qCghumID1ZMhocrvFl8xnI.crl (hash: nnctwdteVZ7wHq3xNmyCNls9C3G1zUapuvBq3iTo3sg=) 4: KzDc8QsMTzvMJxQ96GJ3yCoLi_U.roa (hash: Xkhd86uGm3VF/evalHU0tYC3SzwGKBs1H4sASP/73Pg=) 5: RMWLa9nYNadgqj8fRvJ7gt0vmRY.roa (hash: YPSVWQ4p2Yzt69XO4XRgEZdOa23MUm2U51FrUJbQeG0=) 6: VSrC1QP0T_UaXaaEFdbsOmUjBh0.roa (hash: zTpZ/xLPhwOsaGOqgGhoR4AJouaTmVoH7QdVIfFBLJc=) 7: WkDZDOXBWr9x5TExAfjLxWKxbkU.roa (hash: YkRBfAeJDTqNqtEqsLxdtIzJ8woFGgTRSv1hmR+uNQ4=) 8: mju1GTQPLsJiestxJWXcq-E1Bo0.roa (hash: 95gpW7g+cVKJk4QbRN0p3aXkVNHoQsAxKOBXvYSCcxk=) 9: qJD08TGqbLXdbWVjPMA7B5pGkPI.roa (hash: Kx7++AsdN5bNJwCWFiOZcN26zdxHM+ZF2tTRAsBHsXQ=) 10: rg80XbUJLJkTb5OEL1rZgHZ1y6U.roa (hash: vhHXEQRDhmmcuNgaQBq7IXJimIzM9H1G1xvHCsunoqk=) 11: wlkqPCWXMJsz1R99hgzE3_VYv5c.roa (hash: KrKqWLoyfi0cuRqfEdDLZj1DmY6m+y1d1kGaimNA4oE=) 12: xewkVdgaX0V36_1yEpoUi8m7v6c.roa (hash: kF/BrgELi4+Am7OL4A+u/VI4R7I6POdHlx4gpQyUi6M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 20:10:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:1d:fe:03:01:e1:ed:c3:8f:bc:b6:c7:88:17:15:bf:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29be02dea0a086e9880f564c86872bbc597cc672 Validity Not Before: May 12 21:00:46 2026 GMT Not After : May 13 21:00:46 2026 GMT Subject: CN=35b6adfc7a6541b55d5d4254b1048f6fe770d895 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c3:2d:5d:16:f6:3d:02:08:1b:cc:a6:09:40: f7:03:82:50:3a:55:36:56:d4:a4:15:ea:2e:66:ab: 6b:82:aa:c8:0d:21:71:27:21:e1:b4:46:cf:fa:e2: f2:cf:f1:f3:3f:51:1a:26:bf:bb:0e:0d:d1:12:28: e6:a6:e7:2d:18:ba:ef:ac:3e:6e:77:d0:60:27:82: 9e:6a:ee:cc:ac:aa:56:94:1e:5f:30:14:8e:62:31: 1c:1e:55:e1:2d:bc:f0:24:ea:f6:e9:30:57:10:24: 11:3a:66:99:5c:4e:1e:c8:ab:7e:27:b7:52:36:5d: 85:f5:d1:20:d4:0e:a7:2c:ab:5a:b9:e6:13:f7:40: b6:4a:3d:cf:0e:f1:ed:88:3b:a6:7e:8f:4f:ec:65: 24:eb:a7:af:17:20:70:27:8f:69:a3:49:e5:d9:b0: 37:51:55:07:69:96:62:5e:03:1d:d5:bf:0a:78:12: eb:0d:17:8f:c3:9e:3b:79:77:10:5b:0b:a1:74:a0: 21:cf:e9:c7:a6:f0:49:ad:e5:40:17:52:bd:98:37: 77:a8:9f:4c:14:df:4a:5b:7f:dc:18:0b:f2:e0:d9: c2:1d:27:79:ce:ef:49:79:01:2b:01:1b:55:f7:11: 01:69:83:ab:18:f8:bf:be:0d:93:47:7c:18:44:d9: dc:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:B6:AD:FC:7A:65:41:B5:5D:5D:42:54:B1:04:8F:6F:E7:70:D8:95 X509v3 Authority Key Identifier: keyid:29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:b3:7e:d2:c7:eb:db:f2:e0:70:8a:04:29:5d:8c:dd:41:1a: d4:b9:e6:4d:36:72:c1:20:b0:6d:db:d6:00:8f:1c:21:f7:92: 67:9a:27:62:74:1a:72:fc:18:22:b1:2a:cf:95:ca:1b:1c:2c: 04:78:bb:20:12:58:eb:a2:de:5d:5f:a1:fc:dc:8e:fd:2c:e2: 97:01:05:0c:a0:6e:f6:be:d8:7f:27:f7:07:e6:c4:28:92:0d: b4:98:bd:26:88:65:55:e8:d4:48:93:9f:b9:17:48:d2:d0:02: 6e:ce:c9:61:68:41:0e:0e:39:bd:5d:c4:94:6e:d5:6a:0b:79: 5a:76:2a:f9:52:5a:ae:1e:76:59:1e:ff:20:a6:e0:56:4c:68: 4e:0e:b6:a2:ee:de:21:13:7f:cc:be:02:b0:24:42:c0:a5:f5: 57:e0:57:78:e3:73:c0:95:2d:73:a7:4b:5c:45:bf:60:a2:48: ed:75:08:bb:55:f3:43:b6:d1:59:7d:13:d7:cf:1e:24:52:1b: 2e:6e:fa:be:59:3b:cc:66:40:8c:48:7c:0a:f8:45:e8:5d:3c: 53:1a:86:4b:5b:c8:bd:01:6d:65:e9:2d:92:3b:2d:c3:ce:71: 97:a7:ff:31:69:f7:6d:2e:ab:da:fc:6d:71:4e:ab:f6:8a:79: 10:d5:f2:d8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4d/gMB4e3Dj7y2x4gXFb/KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5YmUwMmRlYTBhMDg2ZTk4ODBmNTY0Yzg2ODcyYmJjNTk3 Y2M2NzIwHhcNMjYwNTEyMjEwMDQ2WhcNMjYwNTEzMjEwMDQ2WjAzMTEwLwYDVQQD EygzNWI2YWRmYzdhNjU0MWI1NWQ1ZDQyNTRiMTA0OGY2ZmU3NzBkODk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0cMtXRb2PQIIG8ymCUD3A4JQOlU2 VtSkFeouZqtrgqrIDSFxJyHhtEbP+uLyz/HzP1EaJr+7Dg3REijmpuctGLrvrD5u d9BgJ4Keau7MrKpWlB5fMBSOYjEcHlXhLbzwJOr26TBXECQROmaZXE4eyKt+J7dS Nl2F9dEg1A6nLKtaueYT90C2Sj3PDvHtiDumfo9P7GUk66evFyBwJ49po0nl2bA3 UVUHaZZiXgMd1b8KeBLrDRePw547eXcQWwuhdKAhz+nHpvBJreVAF1K9mDd3qJ9M FN9KW3/cGAvy4NnCHSd5zu9JeQErARtV9xEBaYOrGPi/vg2TR3wYRNnc6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDW2rfx6ZUG1XV1CVLEEj2/ncNiVMB8GA1UdIwQY MBaAFCm+At6goIbpiA9WTIaHK7xZfMZyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9lYTFjZmYtYWU4Zi00NzE5LTg5YjMt MDAzYTE1NjhiZjNmLzEvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS9lYTFjZmYtYWU4Zi00NzE5LTg5YjMtMDAzYTE1NjhiZjNm LzEvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASLN+0sfr 2/LgcIoEKV2M3UEa1LnmTTZywSCwbdvWAI8cIfeSZ5onYnQacvwYIrEqz5XKGxws BHi7IBJY66LeXV+h/NyO/SzilwEFDKBu9r7Yfyf3B+bEKJINtJi9JohlVejUSJOf uRdI0tACbs7JYWhBDg45vV3ElG7Vagt5WnYq+VJarh52WR7/IKbgVkxoTg62ou7e IRN/zL4CsCRCwKX1V+BXeONzwJUtc6dLXEW/YKJI7XUIu1XzQ7bRWX0T188eJFIb Lm76vlk7zGZAjEh8CvhF6F08UxqGS1vIvQFtZektkjstw85xl6f/MWn3bS6r2vxt cU6r9op5ENXy2A== -----END CERTIFICATE-----Generated at Wed May 13 03:12:31 2026 by rpki-client