$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft File: 3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft (raw, json) Hash identifier: HIJ+HQDM/dlQxVHea4PMne+NYRypdVKgxgaOEWYNlWU= Subject key identifier: 13:63:2E:A7:EB:81:DA:9C:F0:81:B5:74:0F:18:78:1C:B6:11:E5:FF Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89 Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589 Certificate serial: 019E1CB4FE518E7B86DAC80E094F8A045A68 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft Manifest number: 1878 Signing time: Tue 12 May 2026 15:01:24 +0000 Manifest this update: Tue 12 May 2026 15:01:24 +0000 Manifest next update: Wed 13 May 2026 15:01:24 +0000 Files and hashes: 1: 1-gX6qbETIIttBQf3NGjlhSo5a40.roa (hash: UW2uFSR1KC4UlPwX8F178+KvKc01uMjxgEJ5QQoAtmc=) 2: 1-sLuOUAWdw4gGuyAdDDNO5R3knY.roa (hash: UwJHgy6hiFG+CS5eWBzCb6KdVKW08xdJRDA4sajHgnA=) 3: 28w3148cO6lb1X7ebO0uJL6_jSA.roa (hash: /RvdIaEAOvXEUcZ/8C4+ae+9cR72KRnISKVr0yoxpuM=) 4: 3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl (hash: 8RYNUU3okyaUj70/oB/wzsDxTDyS6ZOvBsnuNhRfqds=) 5: 3nWcd2m6s6bBzM_QYoygo0Ze6w0.roa (hash: htxDxHlHgU8dQkoVd6zcmNYRmFdbpmcNklfsUpe9Ix0=) 6: 78EB01J4WgTKHPdcf3EVHTeuc8s.roa (hash: AEd0Bl1EvO9i526KOfk+4Yr0kpyHuNMccILjVfMb8ds=) 7: 7u4rgz4l09r-eJqaQbI2EBriaRA.roa (hash: zlTV4eAW718JNR0mXym0vLWTb030NL8qDVFSJoistdw=) 8: BHSiCUrFc-TEdSEPwjcFCNQnGR8.roa (hash: hkVbYU9rreHO+iPmRQJ/E53L6MLfLKmzXEGQtgni27o=) 9: CHNXC3Z7q99hc7adVoxJZxDHWcQ.roa (hash: J59ogE/mSWqNwSaq5zDJFpLck2CQta+up20YJBmZqb0=) 10: FxInXR4DyqQT6DlyBPj_QGb3Tac.roa (hash: IFL+h0KaA01oNLzGyeAHHUWDYmIL4MN6R8/eqH6wmqo=) 11: MP6MyJ6JGT0Qd4fuNuAz8iDFiNo.roa (hash: JCKZg5aviqvu7Z76Faoxn9dtcsunUKEMHmwZGg/KRw0=) 12: MPnt1Ig40nuVBqADsEn8dObr5rE.roa (hash: LN3oJQmX/zwIzND61FwWanHfUPQZt6FmbQdO3LMJ4oI=) 13: NmTQqlVS4gvcDPcirwbd6QLOVW8.roa (hash: LMiHoX5P+lxgXfAq1o1ofUm+DKjY+GVzWYYvknBSyow=) 14: P89VxKlNGfRRMcSuDRi9zH0r-u4.roa (hash: m3Eb7tBEhi4jXpT2iac2bbRuZRo0+dNZTqs68H5Q/F8=) 15: QE4mWlynJcIb4WilZerciyCNIrM.roa (hash: O9hvkcBv0v7y2K1dBWJ4Vo0JgVG4Safg6I/3GHzMudQ=) 16: TTJbmeKN4OVpmVuz_9sVlDJ2-Qo.roa (hash: 9sn1cXj9PO9ABZhQTgF9fcIiZgMJttBAVbmqJSaXZvE=) 17: bGv-g5_Nq1lLtgwZjdzPyrknk9w.roa (hash: tFnnk/Nq81EttMG2a3kvMmGtdurbGz3xRmf1Xa0yg94=) 18: fH8Dmn4VQed_Qx1Vb_WAZiWK9No.roa (hash: jS9yGbolsVVkM6D04tMpgm8DxgjSbem+4eIOd9cAi6g=) 19: fmkJzH3NkUCcJph7bWlPwTvK1as.roa (hash: 5sVDquLqlQZjsrPg0UHa9viYVxRAjcZdLVAKXAnlaOQ=) 20: lVZUPTWkrcD9zWV0d6GRZgTVVtY.roa (hash: wqHHRXTgzV5U05gKB+m5zqGdaleWNQFqgG+iBB1QzNE=) 21: n2yklqPTbZScECuvP8sdtw1dqJs.roa (hash: XUl4EOZ0ACrcilwccYybYvigPaj+N+oRT70pMBR6/n4=) 22: nN_vAAZMEXdGpiLTZSquGYgk0ks.roa (hash: kiwSwAJEtUNKm6ywQc/ev4K8fjQGdo+U4PEggQj3XM4=) 23: r-BZPpfjArLuq-BQOY_DpWlcEMI.roa (hash: TJP0L3M3YkBnX+yCeWtuHnSFQJHToZMzD9dO3r+rF7Q=) 24: shInVxnETptNhYG5ctgG1wBa_IE.roa (hash: b14rKwCriv8+d3rzjVPCL7UyXFm3J/o38M8wbLSbZig=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 14:18:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:1c:b4:fe:51:8e:7b:86:da:c8:0e:09:4f:8a:04:5a:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589 Validity Not Before: May 12 15:01:24 2026 GMT Not After : May 13 15:01:24 2026 GMT Subject: CN=13632ea7eb81da9cf081b5740f18781cb611e5ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ae:47:8b:64:d3:8f:1b:a6:d4:a9:52:a5:97: c9:58:e1:fd:d6:88:48:bf:a5:76:17:c6:00:f1:c6: bb:f6:bb:a4:a9:c0:df:72:b8:4f:a8:d9:6f:0c:71: d0:cd:f9:88:e5:14:20:bd:91:0e:ec:ac:1d:cc:15: 2d:e7:c5:d3:0f:87:13:0f:82:b5:30:09:b1:7b:14: 7f:b8:a4:b9:35:14:9c:fa:dd:3a:ff:9c:a7:c1:52: db:3c:e3:3d:5f:e5:8c:16:2c:ff:fe:41:b5:6a:35: af:a1:b7:7d:bc:3d:e3:3b:de:3a:51:58:23:87:50: bd:93:97:a7:96:e5:7d:75:99:06:61:98:56:cc:9c: 6e:f6:8f:ab:ec:54:54:6b:a1:c6:a6:96:91:49:7d: 75:fb:b4:79:54:18:ce:de:da:40:4f:fb:c9:95:7a: 88:21:d8:d8:cd:80:18:d5:b3:d8:d3:3f:16:bd:01: 88:1e:31:9e:db:68:10:a8:f2:72:05:25:c4:69:61: f0:04:d2:f3:7b:3b:d6:27:e8:f6:a3:50:2d:f6:83: 4e:dc:7e:89:08:a9:ed:7e:c7:63:59:ae:ec:52:1f: 83:8c:a8:29:2a:59:34:8f:0b:50:03:e8:9d:5b:94: b4:d6:cc:bd:b5:7a:0b:d2:55:70:28:47:80:07:9f: a3:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:63:2E:A7:EB:81:DA:9C:F0:81:B5:74:0F:18:78:1C:B6:11:E5:FF X509v3 Authority Key Identifier: keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:97:9b:4d:52:a1:35:54:13:83:5b:7d:f4:2f:ba:dc:3e:ee: 47:7c:aa:10:67:6b:02:81:b5:db:1d:97:79:0f:20:dc:5d:e7: ff:c5:a6:91:d1:10:94:9e:4b:e0:f5:e8:6a:39:0b:39:3e:bd: ad:cf:6e:3c:b2:6b:7f:6b:b3:77:d0:94:30:77:d4:cc:a7:88: d2:07:af:15:b3:63:31:30:8a:4a:d2:71:4b:96:3d:3f:7c:af: 87:f1:f1:7e:02:e9:76:61:29:03:55:c0:b7:b2:a8:75:cb:63: cc:a2:dd:29:8a:c1:4d:7d:81:aa:28:16:a2:02:52:36:ad:dc: bc:b5:d4:5a:17:2f:b2:08:aa:9d:67:6e:ea:21:8c:97:11:10: 4c:4d:33:e1:38:d4:b2:c3:de:c9:f6:53:67:79:90:ec:af:3d: 85:55:57:a5:36:e4:ef:dd:c7:7b:37:2b:d5:1f:24:7d:3e:8f: a0:71:48:fe:e6:e4:d7:d6:68:c9:61:9e:37:78:fd:06:55:28: b4:e9:82:58:9d:be:bc:bb:fa:cf:d9:56:a6:64:6e:70:f5:c9: 11:bb:1a:8c:41:23:98:01:75:19:df:6f:28:2e:f1:68:a3:98: 3c:61:c2:5f:6b:f6:b6:04:2d:ba:6b:97:4c:b9:75:bc:e7:83: 73:c4:5b:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4ctP5RjnuG2sgOCU+KBFpoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjZWY1OGQ0Y2ZhMzU1NDNmODQ4OGEyNzU2ZTY5MjRlNjQ3 YjQ1ODkwHhcNMjYwNTEyMTUwMTI0WhcNMjYwNTEzMTUwMTI0WjAzMTEwLwYDVQQD EygxMzYzMmVhN2ViODFkYTljZjA4MWI1NzQwZjE4NzgxY2I2MTFlNWZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAma5Hi2TTjxum1KlSpZfJWOH91ohI v6V2F8YA8ca79rukqcDfcrhPqNlvDHHQzfmI5RQgvZEO7KwdzBUt58XTD4cTD4K1 MAmxexR/uKS5NRSc+t06/5ynwVLbPOM9X+WMFiz//kG1ajWvobd9vD3jO946UVgj h1C9k5enluV9dZkGYZhWzJxu9o+r7FRUa6HGppaRSX11+7R5VBjO3tpAT/vJlXqI IdjYzYAY1bPY0z8WvQGIHjGe22gQqPJyBSXEaWHwBNLzezvWJ+j2o1At9oNO3H6J CKntfsdjWa7sUh+DjKgpKlk0jwtQA+idW5S01sy9tXoL0lVwKEeAB5+jHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBNjLqfrgdqc8IG1dA8YeBy2EeX/MB8GA1UdIwQY MBaAFNzvWNTPo1VD+EiKJ1bmkk5ke0WJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9lYTQ0NTUtNzgzNi00NGM0LWIyYTMt MmVjZTA0ZTE4NWMyLzEvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS9lYTQ0NTUtNzgzNi00NGM0LWIyYTMtMmVjZTA0ZTE4NWMy LzEvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmpebTVKh NVQTg1t99C+63D7uR3yqEGdrAoG12x2XeQ8g3F3n/8WmkdEQlJ5L4PXoajkLOT69 rc9uPLJrf2uzd9CUMHfUzKeI0gevFbNjMTCKStJxS5Y9P3yvh/HxfgLpdmEpA1XA t7KodctjzKLdKYrBTX2BqigWogJSNq3cvLXUWhcvsgiqnWdu6iGMlxEQTE0z4TjU ssPeyfZTZ3mQ7K89hVVXpTbk793Hezcr1R8kfT6PoHFI/ubk19ZoyWGeN3j9BlUo tOmCWJ2+vLv6z9lWpmRucPXJEbsajEEjmAF1Gd9vKC7xaKOYPGHCX2v2tgQtumuX TLl1vOeDc8Rbdg== -----END CERTIFICATE-----Generated at Wed May 13 01:02:35 2026 by rpki-client