$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft File: hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft (raw, json) Hash identifier: BXB2/IPp78lkOEUn0xWMNfZCiLuXB53W5Q9Zf3h25R8= Subject key identifier: D6:B0:2A:22:24:C9:47:46:6D:25:E0:12:B8:B2:F2:B3:C2:2D:3E:35 Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd Certificate serial: 019E1FEC48703B313AD571856CBB00E67762 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft Manifest number: 1528 Signing time: Wed 13 May 2026 06:00:39 +0000 Manifest this update: Wed 13 May 2026 06:00:39 +0000 Manifest next update: Thu 14 May 2026 06:00:39 +0000 Files and hashes: 1: 4xaEdixeinTNAew5f36B5ogFapc.roa (hash: U+lj7Po2vIYbjteMOk724C6A7iSVfdA9w8Qr+wSn2EY=) 2: 6bp5_uY1eTTE0FRpgy0dJ0tGIWA.roa (hash: JQ6e3y/UZad8zx3alMXWmLY2Cs0ywtM7PcyjG1jGvp0=) 3: 8rDvMkxptJnltjzzUCN1e7h2mu0.roa (hash: bN6iyJOU8RYfCqW0mfWStueUrIARdx585ED2RX3ioso=) 4: 9561YDYiFuwA3cK9_Ao81cqPzyw.roa (hash: sI0N1MtQFC1Bs34l2HPoGh51MHvRDzLlzChm4jYV9bI=) 5: IrFs_aYDL98DrBmqXNeImOXYqVs.roa (hash: /du+UzfxF5Oy69bwitaws2QcGuPpQ2q/PzP+2+rlKmc=) 6: Mpb5tIfxbf_t0TleDipa0dPzQfg.roa (hash: dlPOC3LjslO4GRq7Su9TrpsYGXUfWyZVAl7s4ntuJgI=) 7: SnpB0ExR-bCAJLKknHnesUTaAWU.roa (hash: wlr5EY83KcqFkovq8AptI/Jy70VxHPVKk3n5WEh7t3w=) 8: W-auLweCazJVGZa2RWm9KCu-wKE.roa (hash: KDvTseiWMAdzP9ZuSgmWkkWqgGW79SkpbkY25PFZ98s=) 9: ZNVLkE0Hncpo1bsQ8SqkvCmjNMs.roa (hash: ckctwOhfUle+O6fK0mnv5ZMxRNGqbUG5lJdOX3nwnlo=) 10: djAPpFOBLqUtxJOa9UwBPjNac1E.roa (hash: 7Rj31INl1FIcMdN33laOh9K9+J+bHShe/BZUzyt8PUg=) 11: ggV7rBXwprR59jciPQhDDTZxxmQ.roa (hash: I4MtXY7ClGvNcIjMAoHA2mKMcNbnijfTuvNa/n/j6Xw=) 12: hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl (hash: mJrxtE9w+VT3OiA/KH3M54UxzE+0eFygWNoTbsh0P74=) 13: nkFmcbj5SRyrAXjUVz7jAMSoyJk.roa (hash: lYeXLJKim2pWsORoTqRVNykk1XTHGi948eQwJ6tFxj4=) 14: pnn2LDubyB-s2_PbTNDUNt7JA_8.roa (hash: vW3hxl2FPzWH44KmHJKXNpZV557F5Hczl/NZRDVCKlg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:1f:ec:48:70:3b:31:3a:d5:71:85:6c:bb:00:e6:77:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd Validity Not Before: May 13 06:00:39 2026 GMT Not After : May 14 06:00:39 2026 GMT Subject: CN=d6b02a2224c947466d25e012b8b2f2b3c22d3e35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5f:a4:88:88:c4:7d:cd:3b:57:66:72:03:90: 11:4e:f7:5f:32:14:6d:a0:ab:09:19:93:4d:f0:6c: bf:a6:60:53:35:5a:ca:ff:d4:c8:1e:03:fe:db:d1: a5:a1:ff:7a:64:40:a5:1d:40:5e:a4:a0:79:77:d9: 67:b4:66:b3:20:1d:3e:94:ff:02:dc:1e:d1:8b:2f: 85:1a:16:d3:c5:dd:07:31:53:05:44:51:f8:e8:4f: 5e:5c:b2:b9:98:79:ce:d8:66:bd:88:f0:7f:06:6f: ec:cb:fd:22:63:62:bb:02:fc:2b:c5:cd:f4:9d:36: 5e:d8:a2:ec:4d:f0:23:7d:13:67:95:7f:0e:85:ea: 5f:f9:e6:c2:52:d0:9f:06:b2:ef:e8:51:cc:02:27: f6:6d:25:3d:94:dc:bd:e2:92:93:5b:40:22:34:b5: 4e:fd:da:74:fb:fc:23:d9:dc:1a:da:7c:b5:f1:0f: 16:0e:54:24:08:64:a7:36:6d:26:76:0e:55:f7:6b: 73:01:3a:dd:06:fd:8d:10:92:ab:3c:b2:a2:6f:68: 59:8e:75:40:10:dc:2c:27:99:15:ca:27:68:e0:ec: 98:31:9e:3c:a9:b8:c5:3c:ff:ac:0c:06:1c:23:88: 86:b6:cf:09:64:40:fa:f3:43:8d:2e:70:99:e1:be: 90:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:B0:2A:22:24:C9:47:46:6D:25:E0:12:B8:B2:F2:B3:C2:2D:3E:35 X509v3 Authority Key Identifier: keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:45:f3:c2:c0:42:29:c1:de:41:85:ac:03:a3:4d:ff:cf:ae: 91:77:7b:8e:e1:a2:bb:4c:0a:05:de:ac:3b:7d:07:78:1d:4c: 85:a1:f9:0c:59:dc:e4:c4:6a:c6:1d:55:a6:bf:a3:42:68:cb: fb:c7:c5:8a:57:05:57:4a:56:c9:e0:59:a3:d0:6e:bf:ff:be: 88:24:ba:12:6f:1f:5f:76:43:1b:e1:70:59:10:fe:87:c1:0d: aa:c1:f4:df:b7:d1:db:4c:8f:bd:52:04:0d:8d:32:f1:13:40: d6:1e:7c:c4:24:4d:2b:d5:36:d3:04:f8:86:c8:69:72:10:94: f5:6f:6d:87:25:07:99:14:2c:23:e0:15:e7:87:37:91:2e:8d: fd:ad:77:1e:9d:bc:00:6f:07:f8:40:95:96:1c:2f:02:7c:e2: 96:5e:73:44:0f:4e:80:31:33:14:68:85:e4:df:99:21:e1:c2: cd:ad:82:90:5e:b4:a3:23:7e:b4:3e:06:d1:8b:51:46:94:6d: ba:18:4b:6b:76:43:37:de:dd:84:f0:7b:d9:be:a3:59:5f:ef: b7:4f:cb:6e:c1:97:9e:92:a6:97:e9:64:21:4b:39:c2:d4:f2: 35:14:21:ec:8a:c6:6d:ef:a7:40:27:c9:7e:79:9a:af:97:ab: f8:19:33:d3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4f7EhwOzE61XGFbLsA5ndiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZDBlNzYzZjkzNWMxNzE2OTRmMTcyMDU2ZWI0NDIwOWRi MmUyY2QwHhcNMjYwNTEzMDYwMDM5WhcNMjYwNTE0MDYwMDM5WjAzMTEwLwYDVQQD EyhkNmIwMmEyMjI0Yzk0NzQ2NmQyNWUwMTJiOGIyZjJiM2MyMmQzZTM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsV+kiIjEfc07V2ZyA5ARTvdfMhRt oKsJGZNN8Gy/pmBTNVrK/9TIHgP+29Glof96ZEClHUBepKB5d9lntGazIB0+lP8C 3B7Riy+FGhbTxd0HMVMFRFH46E9eXLK5mHnO2Ga9iPB/Bm/sy/0iY2K7Avwrxc30 nTZe2KLsTfAjfRNnlX8Ohepf+ebCUtCfBrLv6FHMAif2bSU9lNy94pKTW0AiNLVO /dp0+/wj2dwa2ny18Q8WDlQkCGSnNm0mdg5V92tzATrdBv2NEJKrPLKib2hZjnVA ENwsJ5kVyido4OyYMZ48qbjFPP+sDAYcI4iGts8JZED680ONLnCZ4b6QkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNawKiIkyUdGbSXgEriy8rPCLT41MB8GA1UdIwQY MBaAFIXQ52P5NcFxaU8XIFbrRCCdsuLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2Qt ZjEyODM1ZjAyNDdiLzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2QtZjEyODM1ZjAyNDdi LzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg0XzwsBC KcHeQYWsA6NN/8+ukXd7juGiu0wKBd6sO30HeB1MhaH5DFnc5MRqxh1Vpr+jQmjL +8fFilcFV0pWyeBZo9Buv/++iCS6Em8fX3ZDG+FwWRD+h8ENqsH037fR20yPvVIE DY0y8RNA1h58xCRNK9U20wT4hshpchCU9W9thyUHmRQsI+AV54c3kS6N/a13Hp28 AG8H+ECVlhwvAnzill5zRA9OgDEzFGiF5N+ZIeHCza2CkF60oyN+tD4G0YtRRpRt uhhLa3ZDN97dhPB72b6jWV/vt0/LbsGXnpKml+lkIUs5wtTyNRQh7IrGbe+nQCfJ fnmar5er+Bkz0w== -----END CERTIFICATE-----Generated at Wed May 13 16:14:01 2026 by rpki-client