$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft File: Us2aZRLb8lpfGbgn16LH4iou6N0.mft (raw, json) Hash identifier: tuTvDrh8jGDw9UpjasU2BgXszGxmLzlFtY70Wa33ss8= Subject key identifier: 22:B5:AE:AC:12:05:BD:B9:12:D5:B6:B3:48:A5:97:11:06:30:1D:76 Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Certificate serial: 019E1D911C6D30727DC8BA4103EBDD9A1013 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft Manifest number: 0BD2 Signing time: Tue 12 May 2026 19:01:49 +0000 Manifest this update: Tue 12 May 2026 19:01:49 +0000 Manifest next update: Wed 13 May 2026 19:01:49 +0000 Files and hashes: 1: 3JNAFPmuRusA7_P1cHUrpNc8ZWQ.roa (hash: zKy+aXsrA8Z978tqaQi0ynXqJW9mllBBtqQYt4mz8gc=) 2: 3eP-ZYKR74zQteZxg-jYK68KuKU.roa (hash: rI+Q6O08EYSoWZw7Ks588qVsTWbvSuHUC1dp2GQPsEg=) 3: Px4XmExl2QONyqSP6s8-qLoIeoI.roa (hash: reA0XoIHBbZsGAjNzRWT9dW+9757Ms5dgcUGYfnrDi8=) 4: SY0oaouPknTSy2MmGqSQOcOco4Q.roa (hash: HRxdYO/Iechw+UCcupxpKvFHOwFwn4JRjC6eMfFT/dQ=) 5: TQgAk-kjCmuvz2eqWr757vit-aI.roa (hash: lmDr2ZoodOyQIYq1JnmRLGHdUSfi5+BCh4SAfh571Mk=) 6: Us2aZRLb8lpfGbgn16LH4iou6N0.crl (hash: uhMr0IaUDruu8G5cY/ej1Wb3dWgdyxiAymsPmi7FE5s=) 7: b4bnSjrxkGqwlr0zkoxcOijmFkc.roa (hash: fQuLS072q+zjmBm2EgGlUmemoEePNKD15HIZM6Eyfw4=) 8: cwwhcNpzOg_pmBszouIx8h2CHRU.roa (hash: vBJrQQ0ItgE86n69h/fkj396ErwZyqxGCsEUUVNAzdI=) 9: hlAbpQnKYaIDHrjCT-1lNBwSXu0.roa (hash: BILz2oAMGgMF6vZP6W3jaxaaHIODVkHC+m/GaL33QlM=) 10: kPZtrooPlOyF8jQupuEU9Gy1bJQ.roa (hash: KtcI+6F6qPHzsOZYQ0EOD+pODuibLz2OAgS4M/a6Aq4=) 11: oLlQgePRk9yvcOlL0Fl_a56u9H4.roa (hash: Wqock9cGRbZPQGtCkafIuYZm7FqajUuA17fJ83OGRks=) 12: otDdauzK1pDpIELnjnezw5Wgbks.roa (hash: PkYGbseDQrN+XnOme6deJeEpgE/JFmyzszNd7IeDEBs=) 13: qPI1ggc-eoyI91LAejwAAyCD3rI.roa (hash: tWlcYblK/ohLjpwsq6RKKOq9sGO2SDlm/NJl1KT1Ji8=) 14: qyLbFsRIe8Jd6sG2DI_BiTtP7io.roa (hash: yTz+vrd5+uJTzoZ6RiYw+CeRxkudUElCAIqfmUpkz54=) 15: rQn2WRp_5UNupaC6UAipqauzOpI.roa (hash: V779a6mTTAXptosRzFipPRD6TSrcHWeP9YRr7LrdpBM=) 16: vMyjTCsIRe0V7qqYSqRKgQhGULM.roa (hash: V42mkCmxs+ZvZ6Tmc6moy5eFcyohGVGWyhDhVpPXGok=) 17: xp9MuE3K7E-Sb2HgnwhKc3yErto.roa (hash: 9FJKEkYOHXVi/GiMh+ZQtwPZthuSJbC+u80wUEZ5uBo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 19:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:1d:91:1c:6d:30:72:7d:c8:ba:41:03:eb:dd:9a:10:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Validity Not Before: May 12 19:01:49 2026 GMT Not After : May 13 19:01:49 2026 GMT Subject: CN=22b5aeac1205bdb912d5b6b348a5971106301d76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6d:72:3e:32:31:f5:67:3d:39:b4:35:a7:a7: 04:60:fd:d4:f6:52:b1:a9:ee:7d:35:2c:8a:5e:39: 0e:fe:32:b5:7d:70:e5:91:c8:05:80:7e:46:ac:fb: 2f:da:fe:e2:2f:45:27:2f:64:9a:39:fb:7b:cc:98: 50:55:83:f4:e5:fe:19:17:2e:95:6f:ae:63:e6:9a: c3:39:15:80:60:e4:7b:a2:69:8f:b6:f6:c7:4f:3f: c6:37:06:e2:d6:60:f1:88:5f:1f:b5:79:b2:f6:d9: a7:2b:ce:f4:e7:57:f9:b3:b8:28:e9:c6:04:67:65: a8:c8:fc:a1:55:a4:9a:05:a5:f7:5f:2c:fe:eb:ee: 38:91:87:52:49:17:c3:b2:38:a9:37:fd:c6:2d:28: 89:2d:dd:24:6d:c0:d8:e3:a1:70:9a:bf:87:27:c4: 51:1e:54:b0:23:78:a7:e7:8e:2f:57:42:5b:46:9c: 4e:ff:79:a6:75:79:52:2f:6a:ef:e7:ab:ed:b7:58: 9e:83:f7:32:d8:f2:ec:fd:f4:2f:14:f7:73:47:c8: f9:58:34:c8:43:13:c3:ca:d4:30:7e:70:e2:af:f3: 98:e9:c4:32:e3:17:28:74:0d:60:93:af:55:93:c6: f9:8a:33:84:9f:e2:07:3b:36:9c:7f:95:20:fe:a7: 61:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:B5:AE:AC:12:05:BD:B9:12:D5:B6:B3:48:A5:97:11:06:30:1D:76 X509v3 Authority Key Identifier: keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:d0:ab:58:fd:bc:5a:87:06:bf:20:b6:dd:4a:3e:09:f5:21: 1f:13:28:4e:fe:c7:50:2f:67:cd:94:60:fc:2d:6e:e0:b6:eb: 64:fa:ca:cd:76:52:55:89:e7:12:ea:46:ae:7a:d6:e4:e2:d5: 7f:d3:6f:c8:81:42:93:d8:de:01:55:4a:9a:4a:16:30:57:f3: 00:6f:37:32:13:eb:00:94:b9:1b:16:ac:34:60:b5:0b:88:61: c0:93:f5:71:76:31:aa:2b:73:84:58:06:f0:ad:0f:fd:00:ac: e3:3f:cc:16:1c:a4:b2:71:19:aa:11:73:63:17:25:d7:55:ba: db:a7:68:6f:b6:df:17:bc:22:06:8d:6a:77:ca:60:f4:6b:52: b5:cb:19:ab:d5:9b:9d:44:8b:c3:01:a9:79:2a:7f:d8:3e:ac: d7:9c:61:31:db:a6:f0:dc:31:3b:16:14:a7:36:6c:ed:8a:2e: b7:f7:8c:ca:cd:49:30:52:b6:af:12:c1:d5:cd:c9:de:ad:7f: 00:82:c2:16:8c:5d:ca:85:39:50:0e:9b:48:25:32:99:4b:2f: 79:e4:5f:1a:79:ea:f7:22:79:2f:1c:64:88:71:ae:a9:3f:2a: ee:28:7d:37:10:99:35:6b:45:cb:82:2c:0b:67:32:bd:dc:1e: 43:f2:90:60 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4dkRxtMHJ9yLpBA+vdmhATMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyY2Q5YTY1MTJkYmYyNWE1ZjE5YjgyN2Q3YTJjN2UyMmEy ZWU4ZGQwHhcNMjYwNTEyMTkwMTQ5WhcNMjYwNTEzMTkwMTQ5WjAzMTEwLwYDVQQD EygyMmI1YWVhYzEyMDViZGI5MTJkNWI2YjM0OGE1OTcxMTA2MzAxZDc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApW1yPjIx9Wc9ObQ1p6cEYP3U9lKx qe59NSyKXjkO/jK1fXDlkcgFgH5GrPsv2v7iL0UnL2SaOft7zJhQVYP05f4ZFy6V b65j5prDORWAYOR7ommPtvbHTz/GNwbi1mDxiF8ftXmy9tmnK87051f5s7go6cYE Z2WoyPyhVaSaBaX3Xyz+6+44kYdSSRfDsjipN/3GLSiJLd0kbcDY46Fwmr+HJ8RR HlSwI3in544vV0JbRpxO/3mmdXlSL2rv56vtt1ieg/cy2PLs/fQvFPdzR8j5WDTI QxPDytQwfnDir/OY6cQy4xcodA1gk69Vk8b5ijOEn+IHOzacf5Ug/qdhfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCK1rqwSBb25EtW2s0illxEGMB12MB8GA1UdIwQY MBaAFFLNmmUS2/JaXxm4J9eix+IqLujdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUt Y2NhMzc2MDZiZjE4LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUtY2NhMzc2MDZiZjE4 LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhNCrWP28 WocGvyC23Uo+CfUhHxMoTv7HUC9nzZRg/C1u4LbrZPrKzXZSVYnnEupGrnrW5OLV f9NvyIFCk9jeAVVKmkoWMFfzAG83MhPrAJS5GxasNGC1C4hhwJP1cXYxqitzhFgG 8K0P/QCs4z/MFhyksnEZqhFzYxcl11W626dob7bfF7wiBo1qd8pg9GtStcsZq9Wb nUSLwwGpeSp/2D6s15xhMdum8NwxOxYUpzZs7Yout/eMys1JMFK2rxLB1c3J3q1/ AILCFoxdyoU5UA6bSCUymUsveeRfGnnq9yJ5LxxkiHGuqT8q7ih9NxCZNWtFy4Is C2cyvdweQ/KQYA== -----END CERTIFICATE-----Generated at Wed May 13 06:33:18 2026 by rpki-client