$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft File: Kfp91j8uLYe194UAk8dDu_vhTkQ.mft (raw, json) Hash identifier: ui6vY+wpWwSo/HZn7sLIotWrqmTS+DjGkftO7PV+RCE= Subject key identifier: 23:ED:26:EB:C0:DA:74:9F:2F:D1:34:16:D2:5E:70:4A:BD:7B:3B:03 Authority key identifier: 29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 Certificate issuer: /CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Certificate serial: 019E1D599EAFE72A1664E868609B0794C3C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft Manifest number: 07B7 Signing time: Tue 12 May 2026 18:01:12 +0000 Manifest this update: Tue 12 May 2026 18:01:12 +0000 Manifest next update: Wed 13 May 2026 18:01:12 +0000 Files and hashes: 1: 1FTeokhUADkYbgvOTwGp40m_BPE.roa (hash: PPoy3S4bKc1j/djL6NTv+eGLXSL7GZ17YwI5tAXRtDM=) 2: 59s8eNqYwVH5ydf7xyV2eJR3_TU.roa (hash: xFhHztukLroKSICySsgp6ifCMDIbrBfwaaKjTAvv1Gw=) 3: 9c4kttevmySnfkQUW_qfNzaHphg.roa (hash: /cAqDalO1CeZ8c8IzYLpRoSc0JDQhBthLLFNZ86hRlw=) 4: FZeGgU2IawBK8YA4BwTM_e6x5Mo.roa (hash: 4nQMnYqmNvBAGhwCS2lyqUc1bPr2XdXqGh923cUp0bQ=) 5: FhQiMY_Y2B9WuZvyCd_uaF0M5dI.roa (hash: fZfKiY8vxqzWF+WGF85vLsOO0yrQwq1azfxlL3m6ht4=) 6: GrgWTPWfiMj8FwdKYhn8zJ6Z7e8.roa (hash: IO94toPK6/Wits1irHXbrZl6wNHfS6p+U483COk6R2Y=) 7: KNWwGCklL3zKbMsgIOCdcNGo2tI.roa (hash: 5rF454gnBcOMqEez62ErUsCgENLRW0isAHz0go80+Fs=) 8: Kfp91j8uLYe194UAk8dDu_vhTkQ.crl (hash: 1CesI/q8QHc829C6Bvugiu4ldnRbHkwNfpNtnGtEIcE=) 9: Pjq2usg2Ddr0jCim-rnljjUP2xg.roa (hash: 5RL0lX+XVqmkdynoA/ZI5Ffknvw/dGR/1FpAcrG1JiE=) 10: WrWpDNw0abEoNedClZIQXtxLaNM.roa (hash: gCZS2khmjJiGzLXjdqtdk6eKzbLBYpiu89Bi9tphMq4=) 11: aSoz0nTSHVKxl1w-_tXDaUBfI_U.roa (hash: 3H/725peI0ylJlXSnX6sTF3RBFyOHCBWf0zA//LWaS4=) 12: aqUiuM7FSwO0jQrVAdkkACyulNU.roa (hash: QJoSdYm5s8mfEJjbCj5VhQz2H0KAbaPDRRmLmgZWht0=) 13: hTJEftSpqDKpAn62ncVILyiUIA4.roa (hash: CgeSiN+wMYpnSUEh7oWmMa8OtknjA6ZGJ6sq3RGzTFw=) 14: nBxToIyQbLD03aHgRpkeeNieOPw.roa (hash: +npXv56cRJNf6jJA2m2/8FRk/EXL/cvT8hUJka5s2Lk=) 15: yBrC20joWzPYJC2p3ASrdCZ0wzk.roa (hash: xZei5bNpfbVHrnCyo7DX6ea+rnn9Va9LPl3q+efKuDg=) 16: yINiCi-fcEAzzbT8ry3F24_HnBw.roa (hash: DTnC3s+dTYZX9VNSoLxZjlybV3sMyllGW6D2HGEmUQ8=) 17: y_Cp0Ost5PqmlG4Hk_lC2iR2YZ8.roa (hash: x+U/bdDPmhe7n+Wg1yqeuhWGZvsQ5Fcm1ldpfk9dBgs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 18:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:1d:59:9e:af:e7:2a:16:64:e8:68:60:9b:07:94:c3:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Validity Not Before: May 12 18:01:12 2026 GMT Not After : May 13 18:01:12 2026 GMT Subject: CN=23ed26ebc0da749f2fd13416d25e704abd7b3b03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e1:88:17:cd:8c:07:ef:a1:b3:1c:b3:88:65: 11:4c:0f:60:55:cf:d2:98:8d:69:22:3b:1a:63:18: 3e:c3:d7:6a:7c:5f:49:58:34:99:f4:d1:c7:8e:2f: 6f:ed:7c:8d:06:d3:9e:3c:c7:85:fa:3b:12:0f:b5: ad:38:79:b1:cf:d3:af:b1:48:aa:ab:91:36:74:be: 26:ff:fd:3c:b0:0b:3b:67:20:fd:c2:94:9d:e5:41: d0:54:8b:bd:3b:a0:be:f0:b2:d7:19:31:fd:74:30: b8:a7:dd:cb:f8:9c:04:7d:4c:fc:a4:2d:ce:89:b1: c3:cc:72:8b:3b:ac:59:6e:76:57:83:5b:34:b0:ee: e6:b6:8c:7e:6a:da:9f:fc:1b:c5:15:0c:4e:94:7f: ff:4f:b5:9c:ce:76:1f:b6:77:73:8d:28:41:0c:3e: 17:54:39:b3:7f:f6:91:49:74:e8:9f:3f:4e:fa:8c: 31:5d:94:95:9b:7d:dd:6b:9a:fe:12:c1:51:bb:91: 5e:32:73:c8:0a:d3:f7:10:28:dd:b7:cd:ca:c5:51: 8e:6a:23:da:40:37:2d:d5:2c:0e:34:40:20:b5:4b: ec:af:48:cc:76:93:89:76:75:d3:cc:17:34:cd:13: 2c:d7:bc:91:39:51:d0:06:eb:ba:bc:4e:b0:ff:35: 2b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:ED:26:EB:C0:DA:74:9F:2F:D1:34:16:D2:5E:70:4A:BD:7B:3B:03 X509v3 Authority Key Identifier: keyid:29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:76:cf:3c:56:ca:35:26:d9:31:eb:7c:34:02:08:7a:23:6e: 9a:e8:48:e8:9d:98:9c:d2:94:ea:0f:4c:2a:00:c5:1a:bb:7a: 37:b1:b5:1f:5a:a5:04:5b:6d:6c:d7:8e:10:06:fb:e7:60:04: f5:05:04:9a:d0:ac:ab:b0:28:bd:98:02:f8:c5:37:fb:40:3d: ea:6a:91:28:ac:ea:be:33:70:80:fe:12:e2:83:3e:44:21:8c: d2:9e:ae:1b:c9:e4:f3:d7:46:e5:1a:91:40:f0:a4:f4:1c:b4: 9d:ef:8f:3c:8a:d8:1b:4f:aa:3c:e8:39:fe:80:c9:31:13:84: 57:73:15:29:04:4d:ff:2d:40:e0:25:a5:44:28:f6:40:85:73: f1:51:dd:5f:e7:c3:79:ce:09:01:f8:a1:81:5e:b2:7e:27:52: 6b:24:c9:9d:99:2f:3a:a1:16:6b:c5:91:f2:a1:09:62:72:75: 31:3d:0d:7d:0a:2b:33:8d:44:ed:18:15:08:e9:b6:03:16:c1: 6e:83:42:7f:7e:9f:e1:40:18:4e:0d:b1:6e:f6:1c:bf:84:fb: 26:61:dd:3c:fa:0f:ea:a4:c6:f9:db:c9:57:5c:be:e5:f0:19: 85:a0:ed:14:ef:a7:35:59:fa:f6:4a:7a:52:15:62:3f:37:80: 7c:3f:c2:dd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4dWZ6v5yoWZOhoYJsHlMPIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZmE3ZGQ2M2YyZTJkODdiNWY3ODUwMDkzYzc0M2JiZmJl MTRlNDQwHhcNMjYwNTEyMTgwMTEyWhcNMjYwNTEzMTgwMTEyWjAzMTEwLwYDVQQD EygyM2VkMjZlYmMwZGE3NDlmMmZkMTM0MTZkMjVlNzA0YWJkN2IzYjAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv+GIF82MB++hsxyziGURTA9gVc/S mI1pIjsaYxg+w9dqfF9JWDSZ9NHHji9v7XyNBtOePMeF+jsSD7WtOHmxz9OvsUiq q5E2dL4m//08sAs7ZyD9wpSd5UHQVIu9O6C+8LLXGTH9dDC4p93L+JwEfUz8pC3O ibHDzHKLO6xZbnZXg1s0sO7mtox+atqf/BvFFQxOlH//T7WcznYftndzjShBDD4X VDmzf/aRSXTonz9O+owxXZSVm33da5r+EsFRu5FeMnPICtP3ECjdt83KxVGOaiPa QDct1SwONEAgtUvsr0jMdpOJdnXTzBc0zRMs17yROVHQBuu6vE6w/zUrSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCPtJuvA2nSfL9E0FtJecEq9ezsDMB8GA1UdIwQY MBaAFCn6fdY/Li2HtfeFAJPHQ7v74U5EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUt NzlmN2I2ZWE3YzE0LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUtNzlmN2I2ZWE3YzE0 LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWnbPPFbK NSbZMet8NAIIeiNumuhI6J2YnNKU6g9MKgDFGrt6N7G1H1qlBFttbNeOEAb752AE 9QUEmtCsq7AovZgC+MU3+0A96mqRKKzqvjNwgP4S4oM+RCGM0p6uG8nk89dG5RqR QPCk9By0ne+PPIrYG0+qPOg5/oDJMROEV3MVKQRN/y1A4CWlRCj2QIVz8VHdX+fD ec4JAfihgV6yfidSayTJnZkvOqEWa8WR8qEJYnJ1MT0NfQorM41E7RgVCOm2AxbB boNCf36f4UAYTg2xbvYcv4T7JmHdPPoP6qTG+dvJV1y+5fAZhaDtFO+nNVn69kp6 UhViPzeAfD/C3Q== -----END CERTIFICATE-----Generated at Wed May 13 02:21:59 2026 by rpki-client