$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft File: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft (raw, json) Hash identifier: cx3wWX3PAYnkwxDXAwA7arOIuNbZR/eRQzvtfKGENV4= Subject key identifier: AE:02:31:08:87:96:F7:EC:B6:0C:FC:62:44:8D:13:30:CF:4E:0F:C6 Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Certificate serial: 019E1C7D5F6F09A24CA579406BA5ACCE024C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft Manifest number: 1930 Signing time: Tue 12 May 2026 14:00:38 +0000 Manifest this update: Tue 12 May 2026 14:00:38 +0000 Manifest next update: Wed 13 May 2026 14:00:38 +0000 Files and hashes: 1: 0ld9oICrjkM9PiOBYi7PkCMaP7g.roa (hash: 7pPoPeKMxfAld72vWaWuaU3WiGoLWbNKS8HJfbCj2GY=) 2: 1BFQM936y9WGcLJKwy60Wg2ag-8.roa (hash: NTbQFXMY5QSvW0BgWqBt3HeqiX8tXZPRJi0IS+SKq2s=) 3: DT8TXPB7Zoh4Y9JFFdsSZ2RIgLg.roa (hash: cdCtaCnFbbokb4IxB6SbsLXr+yswcQckTbmvZnS/sJA=) 4: H3d0QP653F6Jo-epVSXBiVH1h6k.roa (hash: B2NZF4jz4UwnLzA3KbDxjNp0EF7Qv4Th+B09WImKi2I=) 5: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl (hash: TyU9AdpSfYUVKcp0FIyT8Qou1wjq/6MVq9lQWEpna+s=) 6: O2mRnCNeDokP5q-PUWLd28D1SG8.roa (hash: XL7s2EUC28zeBKoJlmCFsu+5IjkYrbxfH3a9YMWon60=) 7: XPPuMgWRNY1QAnjWn2LftTc8cH4.roa (hash: LqWi3Xbli/jxxlx74n8O7L6EJtxaJ1UA0GYHmPMDyEU=) 8: ZRr2QwcqGgt_EOiTtMFoE-lkmow.roa (hash: SIg3ToChfd1+8YW/rxSI4oA419Stw5Sb9StcFL22beM=) 9: dY6eqUD4ykA92I5VKqHmYTX3q88.roa (hash: uvlx5CXBvfA8EWdxrFvclZnKJJH1HmhxtH5z6Fa+fBo=) 10: hCjWTJUhp9C-lxxCdRV4Jwzm4mk.roa (hash: ECwHPN5lxdIugX2ttk1L3l/uci2ps9CeCy1VAcBMeQs=) 11: lERL5Mrj2Bt3hRDr7br_N3d-JkE.roa (hash: /A5fyVRtCeR1gSok1lWq8T+wbRAaNz8PoEuYxSfdZSU=) 12: lWQXyxEJYv9OPJsRSSX1CCPbFb8.roa (hash: qyL/Gv6WkVcsE18337JVKs2VK9z6GTYDQ6GMJ2m3/WQ=) 13: whyP5FxoblHoIHhMTAeqWb1jp8w.roa (hash: a7SodNhSARcbHydA3wymHLN4IRqMOWIhBwT2PU/EoPc=) 14: zd2dqaKa6O4wz9TxJzSxhbKbteU.roa (hash: Sv1+bPBughIj/le0hfMKADppbA91Co/u0NeJGW/Uifs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 14:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:1c:7d:5f:6f:09:a2:4c:a5:79:40:6b:a5:ac:ce:02:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Validity Not Before: May 12 14:00:38 2026 GMT Not After : May 13 14:00:38 2026 GMT Subject: CN=ae0231088796f7ecb60cfc62448d1330cf4e0fc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4b:0f:d3:c0:84:2d:0f:a0:8f:ae:d5:f8:c4: 93:de:fb:b8:34:94:6f:af:ea:a1:47:dc:f9:8b:c7: b3:01:c2:22:f7:b9:ca:96:ec:be:21:98:7e:e1:09: f5:ba:ca:4e:73:5c:ea:b0:54:9f:f9:79:7e:e7:1a: 8a:ab:0c:b6:a0:87:b9:a5:21:0d:e3:2f:2f:ba:48: 4f:82:b6:01:c2:5d:ef:2b:86:76:21:4e:bd:71:40: 3d:1b:68:be:39:dd:f4:10:ff:4c:ea:11:26:9b:ac: 60:15:82:9f:ea:bc:b1:4f:25:a9:fc:bb:24:0c:09: 91:41:56:a6:ce:90:d4:c2:d8:11:61:09:7d:24:1b: 0a:14:50:84:61:96:8b:39:b2:05:5f:ba:0e:83:47: 31:c7:be:ba:d9:ca:af:f6:5e:55:ec:e4:a3:ea:c8: b2:9a:a7:87:b1:a6:f3:f7:f2:6e:e8:b6:cd:95:52: 25:71:8f:f9:f3:86:24:eb:ef:30:ba:1b:62:f9:c7: ce:ef:31:fc:fd:13:84:bf:f1:de:8f:0c:ef:24:b9: d8:c2:8d:18:a8:3d:99:b1:2c:a2:c0:a3:78:e9:ad: 2d:01:be:f5:bd:a9:05:ef:ad:2b:00:91:3c:54:5d: a3:68:b1:ed:b7:26:fa:08:73:a6:b4:87:04:71:1a: 1e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:02:31:08:87:96:F7:EC:B6:0C:FC:62:44:8D:13:30:CF:4E:0F:C6 X509v3 Authority Key Identifier: keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:8d:68:30:7a:ba:a9:a7:ed:00:13:fe:d5:29:74:17:9d:86: d6:47:68:68:55:a2:fb:df:33:83:f9:8f:8e:59:c0:3f:10:7c: ff:a0:85:c2:08:dd:75:9b:be:1b:4d:2d:35:a4:f6:d3:ab:1f: f0:73:2f:65:8e:f3:9a:42:f7:f5:a2:12:78:a8:f2:6b:df:0d: 4d:ff:9a:17:08:b1:52:3d:41:ad:83:9f:bd:a6:a2:bc:fa:80: 15:51:0d:4c:61:65:52:43:57:a4:a5:94:52:04:13:de:8b:ab: 14:ab:40:ae:a6:2f:07:e3:20:3f:e3:8c:38:8e:99:bf:39:5a: ff:88:93:d3:00:0e:d6:67:8e:f7:00:9b:58:2b:c7:1b:52:1d: 77:86:a0:fa:d1:6f:49:f1:08:43:c4:6d:4c:9d:57:35:39:1a: ec:1a:84:e0:c0:df:df:b0:48:53:c3:9e:8b:28:3f:ff:ba:95: f3:2e:8b:9b:0a:ee:26:69:6c:1e:d6:4d:cb:38:23:73:dc:a6: 0e:c6:0d:de:7a:e6:8e:88:e8:01:9a:bc:b1:38:09:31:e0:f5: 04:60:75:df:3c:3a:9e:7f:09:05:29:9d:7a:d1:f1:28:43:5f: b5:83:0a:56:c7:aa:42:15:89:ab:bc:f6:02:82:ca:6e:01:f8: 1a:19:3e:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4cfV9vCaJMpXlAa6WszgJMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNDc0YWM3Y2E4NWUwOWMyZDQ4YjMzZTdiZjY2ZjhlZDc2 NGRlMGYwHhcNMjYwNTEyMTQwMDM4WhcNMjYwNTEzMTQwMDM4WjAzMTEwLwYDVQQD EyhhZTAyMzEwODg3OTZmN2VjYjYwY2ZjNjI0NDhkMTMzMGNmNGUwZmM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsUsP08CELQ+gj67V+MST3vu4NJRv r+qhR9z5i8ezAcIi97nKluy+IZh+4Qn1uspOc1zqsFSf+Xl+5xqKqwy2oIe5pSEN 4y8vukhPgrYBwl3vK4Z2IU69cUA9G2i+Od30EP9M6hEmm6xgFYKf6ryxTyWp/Lsk DAmRQVamzpDUwtgRYQl9JBsKFFCEYZaLObIFX7oOg0cxx7662cqv9l5V7OSj6siy mqeHsabz9/Ju6LbNlVIlcY/584Yk6+8wuhti+cfO7zH8/ROEv/HejwzvJLnYwo0Y qD2ZsSyiwKN46a0tAb71vakF760rAJE8VF2jaLHttyb6CHOmtIcEcRoe8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK4CMQiHlvfstgz8YkSNEzDPTg/GMB8GA1UdIwQY MBaAFDJHSsfKheCcLUizPnv2b47XZN4PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzkt MTJlYzIyYzljNWEyLzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzktMTJlYzIyYzljNWEy LzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANI1oMHq6 qaftABP+1Sl0F52G1kdoaFWi+98zg/mPjlnAPxB8/6CFwgjddZu+G00tNaT206sf 8HMvZY7zmkL39aISeKjya98NTf+aFwixUj1BrYOfvaaivPqAFVENTGFlUkNXpKWU UgQT3ourFKtArqYvB+MgP+OMOI6Zvzla/4iT0wAO1meO9wCbWCvHG1Idd4ag+tFv SfEIQ8RtTJ1XNTka7BqE4MDf37BIU8Oeiyg//7qV8y6LmwruJmlsHtZNyzgjc9ym DsYN3nrmjojoAZq8sTgJMeD1BGB13zw6nn8JBSmdetHxKENftYMKVseqQhWJq7z2 AoLKbgH4Ghk+Mg== -----END CERTIFICATE-----Generated at Wed May 13 00:50:06 2026 by rpki-client