$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft File: oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft (raw, json) Hash identifier: wyrjGhcwe4oPJBGLjKNZmKpoXQQTG/Ddrl+kG1SKeOw= Subject key identifier: 0F:DA:4C:30:DD:36:13:D9:44:B3:72:62:EE:38:45:0C:68:46:F7:87 Authority key identifier: A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7 Certificate issuer: /CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7 Certificate serial: 019E1DC71F16051E54774BB6A9E955CE9F74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft Manifest number: 0894 Signing time: Tue 12 May 2026 20:00:49 +0000 Manifest this update: Tue 12 May 2026 20:00:49 +0000 Manifest next update: Wed 13 May 2026 20:00:49 +0000 Files and hashes: 1: 1-EbrvxNY7jUJJte1JMBcOC69EBk.roa (hash: /M4gkvV/7tnw4BlBdpuc1viYnL0XhtHAFXwLDGq3QCg=) 2: NjOJ8tUpqLJAAfHhfTTwUysAm7s.roa (hash: 3a42jEcgSU6c6ZDozj7GhmcER8SN0dScIEdBDzntTP4=) 3: OA81K4GFXKVrjD-M584jTyFYST8.roa (hash: C4S9fMtXlXuIFqggmB3QlimOTqdUpyywlGKQgdOtY5w=) 4: YpbC5jk8lzSJpred_IHkkCVUCKE.roa (hash: Zo4+zcIWbT83bhve20wlbO77GzQpKYPsD28KLD9jN8Y=) 5: YxQb53gzYd0iTmUe7A41D-2rnY8.roa (hash: q+Z1iMu62RV5K/wK7fU9JbtFm1jSO7NLnuxYy0Ettbk=) 6: h_aNMTHSod3zvEv_zlqSsdV20TQ.roa (hash: GccHbmvEFlhiHjnJ+i3nG2pD81e9dD/oLrnSrArj6ig=) 7: oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl (hash: rsTiC3RxS+9oUrG065eueaU5A/zSffyCiajceS0xXTM=) 8: oh53IB-aUH2plypNUq8_qw59tUU.roa (hash: k/rLC3QFD8nEmci+tQAmE7NOGPMxS4KDVOpLNqgFsg4=) 9: ondT0lA34VONX208YudOD0r79Fo.roa (hash: Q5xYjBiSMcwIIASL37DpTBEnCFikNHHBxM8KVMbJfYU=) 10: vyjCA1W9-6KFsgjaGvfzXuiMYLQ.roa (hash: 7JV7egLgY4Bzr/UvgYj0RPwIqhuXjEo3YWECD7QdwW0=) 11: wtolA6HMGVvPA6gYljfUXhGgO9w.roa (hash: 9lH1rM52hRaE2Kxe2ZgcgE2kAZOcfeGaiUJXArzl1qI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 20:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:1d:c7:1f:16:05:1e:54:77:4b:b6:a9:e9:55:ce:9f:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7 Validity Not Before: May 12 20:00:49 2026 GMT Not After : May 13 20:00:49 2026 GMT Subject: CN=0fda4c30dd3613d944b37262ee38450c6846f787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7f:94:2d:11:90:29:9b:48:ce:80:25:f9:f8: 3f:52:d7:37:a2:5f:4e:0b:bd:5f:09:15:e3:49:66: d1:63:2f:c2:de:b9:7d:e5:c5:bc:f0:8f:b7:02:ad: 0c:4f:94:c4:71:a9:da:86:39:ee:38:ed:b5:b4:80: 1d:e9:1e:54:41:bc:7e:92:30:fa:b4:03:e7:22:c6: 28:d3:1a:3d:a1:49:b4:c6:df:a2:3c:f6:c6:ed:d9: 9e:b4:e7:2e:90:bd:19:eb:50:93:b6:b0:00:40:28: 72:7c:3c:29:4d:6b:50:c1:ff:6a:7c:c4:51:29:5f: 80:f1:73:a1:0d:71:c0:c3:1f:85:ca:bc:d9:a9:48: e4:36:ad:03:a5:5b:01:ce:91:ae:d9:0c:00:37:b8: 5f:28:13:53:f4:1c:22:49:d5:0b:70:26:ec:ea:43: f5:fa:27:9e:cf:55:08:1d:c6:c9:4f:a6:b3:c3:1b: 99:4a:9f:41:4a:e2:70:8a:ce:9f:d6:d2:e8:63:15: 23:75:96:cb:21:0b:c6:4a:67:f3:68:b8:e1:a8:20: d3:13:5b:5f:4c:6e:31:7c:6a:8f:b2:43:84:79:28: 95:da:00:88:fd:6f:2b:61:78:51:17:88:dd:6e:06: e7:ea:96:da:b8:14:29:47:94:ab:8d:dc:47:24:42: d6:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:DA:4C:30:DD:36:13:D9:44:B3:72:62:EE:38:45:0C:68:46:F7:87 X509v3 Authority Key Identifier: keyid:A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:20:fe:d4:1e:07:97:ee:21:47:73:68:e9:d0:7e:6d:f5:08: f4:ac:c3:2a:d7:7b:08:5b:f5:1a:d2:4f:06:b9:ba:46:d2:db: 1f:91:96:b7:09:27:8c:31:fc:29:83:95:62:99:5f:11:71:74: 61:8b:34:9f:60:36:77:80:69:cb:e8:af:b8:46:36:e2:81:08: 45:81:b3:42:51:05:e6:a6:6d:b3:a8:99:6a:db:19:bb:23:7e: 33:2c:92:8c:5d:9b:30:ba:68:9d:7e:cb:1c:ba:55:d1:28:db: 02:42:ba:6c:72:42:4a:6d:09:b3:52:05:1b:5a:d1:55:ef:64: 38:99:6b:9f:d9:0b:db:f4:0f:33:eb:57:8b:f8:f5:99:5d:01: 33:78:a3:9f:4a:ca:7b:23:e4:3c:1b:f0:4e:06:94:b2:f4:0a: d8:c3:1e:2f:65:ea:eb:c3:ac:2c:10:9e:dd:f1:d1:59:ec:87: d6:a4:33:0f:b9:8f:79:18:4d:ef:e4:78:18:b7:fa:6b:14:3e: 40:28:a1:a3:78:44:2f:57:f1:b0:51:de:75:6c:5c:06:1f:3d: c9:c0:06:90:1b:19:f3:43:b3:13:ac:fb:ea:7e:c6:50:a3:21: 11:83:69:2f:60:a4:ba:79:53:c4:cb:2a:21:31:18:70:69:0e: 97:d5:76:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4dxx8WBR5Ud0u2qelVzp90MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExMjRjY2RkNzBmM2VjNzYyY2JkNjVlMDRkZDZmNzZiZTIz NmE4YTcwHhcNMjYwNTEyMjAwMDQ5WhcNMjYwNTEzMjAwMDQ5WjAzMTEwLwYDVQQD EygwZmRhNGMzMGRkMzYxM2Q5NDRiMzcyNjJlZTM4NDUwYzY4NDZmNzg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx3+ULRGQKZtIzoAl+fg/Utc3ol9O C71fCRXjSWbRYy/C3rl95cW88I+3Aq0MT5TEcanahjnuOO21tIAd6R5UQbx+kjD6 tAPnIsYo0xo9oUm0xt+iPPbG7dmetOcukL0Z61CTtrAAQChyfDwpTWtQwf9qfMRR KV+A8XOhDXHAwx+FyrzZqUjkNq0DpVsBzpGu2QwAN7hfKBNT9BwiSdULcCbs6kP1 +ieez1UIHcbJT6azwxuZSp9BSuJwis6f1tLoYxUjdZbLIQvGSmfzaLjhqCDTE1tf TG4xfGqPskOEeSiV2gCI/W8rYXhRF4jdbgbn6pbauBQpR5SrjdxHJELWtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA/aTDDdNhPZRLNyYu44RQxoRveHMB8GA1UdIwQY MBaAFKEkzN1w8+x2LL1l4E3W92viNqinMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9iNjk0YjgtODIxMS00YzA2LTljODEt N2IzNTM5N2FmMmY3LzEvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni9iNjk0YjgtODIxMS00YzA2LTljODEtN2IzNTM5N2FmMmY3 LzEvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWyD+1B4H l+4hR3No6dB+bfUI9KzDKtd7CFv1GtJPBrm6RtLbH5GWtwknjDH8KYOVYplfEXF0 YYs0n2A2d4Bpy+ivuEY24oEIRYGzQlEF5qZts6iZatsZuyN+MyySjF2bMLponX7L HLpV0SjbAkK6bHJCSm0Js1IFG1rRVe9kOJlrn9kL2/QPM+tXi/j1mV0BM3ijn0rK eyPkPBvwTgaUsvQK2MMeL2Xq68OsLBCe3fHRWeyH1qQzD7mPeRhN7+R4GLf6axQ+ QCiho3hEL1fxsFHedWxcBh89ycAGkBsZ80OzE6z76n7GUKMhEYNpL2CkunlTxMsq ITEYcGkOl9V2yw== -----END CERTIFICATE-----Generated at Wed May 13 06:50:32 2026 by rpki-client