$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft File: OklF5GdkAp0lgdggwzc_pEWFVTk.mft (raw, json) Hash identifier: k+cehwKCKDvQP3CloUWxlyV5G7jSid5nkoRYq5kkLQM= Subject key identifier: A2:2E:D2:A5:E7:AF:49:A1:6D:6D:78:F4:C3:9C:DA:D8:77:8B:67:3F Authority key identifier: 3A:49:45:E4:67:64:02:9D:25:81:D8:20:C3:37:3F:A4:45:85:55:39 Certificate issuer: /CN=3a4945e46764029d2581d820c3373fa445855539 Certificate serial: 019E1F109A07A2A7DB3CA1F5F572C163F314 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OklF5GdkAp0lgdggwzc_pEWFVTk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft Manifest number: 1919 Signing time: Wed 13 May 2026 02:00:42 +0000 Manifest this update: Wed 13 May 2026 02:00:42 +0000 Manifest next update: Thu 14 May 2026 02:00:42 +0000 Files and hashes: 1: 0273NJ6iQvZTgyuMash3xOhPLj8.roa (hash: 4bykyvzdYlZRg3u7BKzjHELAB3KL3rC2juBQve+S7UU=) 2: 78Cs8FmR3BIH_U5LsGqewvTlDV8.roa (hash: Z1dE+G16ehwR1QYJ/Luwdk+orufuAf1qVWJAWByx1UU=) 3: 9ieasZqKBlr3lokENCedNiqsCIM.roa (hash: TDVoR875fUbuSNWGAFsbE/WCEgXPy5Nn5pq79JskxQQ=) 4: 9xohe0WrdtI7HVhoFYevFGaGlbc.roa (hash: JlRzOAenO4QPVaHIwuTlBW/1CKfl7RhsHIL/eBfeU2g=) 5: MD4cosIRi9elPGst52tPGWVVXgQ.roa (hash: uQ5E7La04dxcXCsqGXXrY+8iqi3ww+c05QuoQOajMIE=) 6: OklF5GdkAp0lgdggwzc_pEWFVTk.crl (hash: b6bW8LOjjLbhL6o4cHAXmv2uZYfTYPNIsAuOBtVKW/I=) 7: PrbXCFhVtFkWUcwdTHxrF95uYDo.roa (hash: qYxwfpMga93RAf62Cr8sXnqP6qDnonu8QcpFUw5HhJ8=) 8: aa9c3i_QmzIlTyi0XFZwJXrmq48.roa (hash: HcRPfUnw0rt8gf5+bGCJq0Ra7n/YA9e5E/2HwqC6qHA=) 9: pdrRYgteZLUMBCQJIc10YC36u-o.roa (hash: fx4ol1jSVjOBVf92RkrVydBgXb8sh/pU0bwRASzDz2U=) 10: pj8mJKqUF_T2Ou11ZZQsgbjDNYQ.roa (hash: fs3ur5x7vbxGo0xyTuilMeKyac+Lx5FJiRM1jXFcziw=) 11: vI4OFivT89O9243mI_1fzU94Pao.roa (hash: vkj2cXgQH1KS/H+As5+qw6+hxQEc0denm5Wi71uvRzE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft rsync://rpki.ripe.net/repository/DEFAULT/OklF5GdkAp0lgdggwzc_pEWFVTk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 23:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:1f:10:9a:07:a2:a7:db:3c:a1:f5:f5:72:c1:63:f3:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a4945e46764029d2581d820c3373fa445855539 Validity Not Before: May 13 02:00:42 2026 GMT Not After : May 14 02:00:42 2026 GMT Subject: CN=a22ed2a5e7af49a16d6d78f4c39cdad8778b673f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c9:dd:5a:0c:3c:e3:93:c1:0d:e4:18:cb:f2: c8:4d:fa:16:f8:57:5c:b9:4f:7c:ba:7a:9c:a1:a2: de:b7:f3:89:37:48:a4:61:3d:e5:c3:7b:2a:b2:25: 11:51:96:15:aa:94:4f:e6:98:85:da:62:c3:b3:e8: 57:00:bd:cf:ee:57:33:8f:a6:6d:d6:e7:05:a7:37: 8c:d2:e8:ec:7b:00:38:72:65:61:aa:97:6c:ab:cc: 7f:f5:a2:28:c7:d1:79:1b:e4:f2:09:21:e2:25:fe: 82:9b:ce:45:20:e6:bd:57:68:e3:b7:70:bd:f8:db: d0:74:9d:c9:05:ab:a1:53:5c:d7:62:ff:ea:b0:17: 1a:f8:4d:4d:6d:ab:c6:15:ed:88:f3:76:53:cd:39: 26:a1:70:bb:5d:d3:f8:c8:18:15:1e:e9:7d:80:a2: 1a:30:f1:ab:6f:ad:a6:a8:61:3a:d5:ac:6f:2b:9b: c5:b6:bf:5e:c1:24:94:48:02:22:6b:3c:aa:1b:31: 4b:83:5d:22:ff:9e:bd:39:38:9e:c0:63:02:4d:78: 8f:ad:c5:aa:99:61:ec:70:60:6f:aa:1a:f3:ac:43: 92:95:e5:51:5e:0c:54:42:06:33:37:f7:10:ca:bf: 75:d0:ef:35:93:98:8c:1c:c8:6c:e5:95:4e:e5:f3: b3:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:2E:D2:A5:E7:AF:49:A1:6D:6D:78:F4:C3:9C:DA:D8:77:8B:67:3F X509v3 Authority Key Identifier: keyid:3A:49:45:E4:67:64:02:9D:25:81:D8:20:C3:37:3F:A4:45:85:55:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OklF5GdkAp0lgdggwzc_pEWFVTk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/4ef680-7c55-4a5b-8568-336ac9456464/1/OklF5GdkAp0lgdggwzc_pEWFVTk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:6c:94:ed:17:4c:06:54:ec:cb:4a:c3:78:ee:bd:62:9d:54: 9b:da:33:fb:ca:5c:9b:c9:32:b9:b5:93:08:12:63:2e:8c:36: 9e:21:87:87:aa:c1:05:fc:a4:cf:e1:0b:50:41:1e:6f:64:a2: 41:fd:76:2e:c4:f6:f8:27:94:f8:37:58:e0:ce:06:35:c1:07: 8e:cc:1b:69:7d:03:b2:48:d9:8f:fb:05:b9:cb:50:d5:f2:87: ee:4d:68:c9:d6:d5:c4:47:24:38:c3:38:5c:72:ef:fb:bf:8e: 03:a0:7a:00:09:2d:c1:cd:67:6d:bf:e0:d3:10:b4:bf:1a:9b: ce:bd:b4:16:8c:b0:be:be:65:6e:f5:35:b5:c7:4a:d1:30:61: f7:66:0c:76:c7:ae:6f:06:02:0e:0b:79:06:e3:21:f3:4a:f8: 35:1b:b1:a9:3e:fc:1b:41:e9:b2:42:ec:76:69:65:82:d8:07: 99:f4:86:6f:0b:7a:f1:7f:1f:32:e8:b9:ee:15:07:1d:66:64: 8c:c8:0c:7f:59:30:f7:a1:17:61:f7:39:1b:0a:c6:07:4d:56: b5:ed:f1:8b:99:ab:05:4b:d4:bb:8b:ce:f0:7c:26:2e:54:ff: fc:e0:bc:58:04:f5:8f:f0:18:9a:65:f8:2b:83:33:d1:11:a6: 7a:2c:24:29 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4fEJoHoqfbPKH19XLBY/MUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhNDk0NWU0Njc2NDAyOWQyNTgxZDgyMGMzMzczZmE0NDU4 NTU1MzkwHhcNMjYwNTEzMDIwMDQyWhcNMjYwNTE0MDIwMDQyWjAzMTEwLwYDVQQD EyhhMjJlZDJhNWU3YWY0OWExNmQ2ZDc4ZjRjMzljZGFkODc3OGI2NzNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr8ndWgw845PBDeQYy/LITfoW+Fdc uU98unqcoaLet/OJN0ikYT3lw3sqsiURUZYVqpRP5piF2mLDs+hXAL3P7lczj6Zt 1ucFpzeM0ujsewA4cmVhqpdsq8x/9aIox9F5G+TyCSHiJf6Cm85FIOa9V2jjt3C9 +NvQdJ3JBauhU1zXYv/qsBca+E1NbavGFe2I83ZTzTkmoXC7XdP4yBgVHul9gKIa MPGrb62mqGE61axvK5vFtr9ewSSUSAIiazyqGzFLg10i/569OTiewGMCTXiPrcWq mWHscGBvqhrzrEOSleVRXgxUQgYzN/cQyr910O81k5iMHMhs5ZVO5fOz5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKIu0qXnr0mhbW149MOc2th3i2c/MB8GA1UdIwQY MBaAFDpJReRnZAKdJYHYIMM3P6RFhVU5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2tsRjVHZGtBcDBsZ2RnZ3d6Y19wRVdGVlRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS80ZWY2ODAtN2M1NS00YTViLTg1Njgt MzM2YWM5NDU2NDY0LzEvT2tsRjVHZGtBcDBsZ2RnZ3d6Y19wRVdGVlRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS80ZWY2ODAtN2M1NS00YTViLTg1NjgtMzM2YWM5NDU2NDY0 LzEvT2tsRjVHZGtBcDBsZ2RnZ3d6Y19wRVdGVlRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALWyU7RdM BlTsy0rDeO69Yp1Um9oz+8pcm8kyubWTCBJjLow2niGHh6rBBfykz+ELUEEeb2Si Qf12LsT2+CeU+DdY4M4GNcEHjswbaX0DskjZj/sFuctQ1fKH7k1oydbVxEckOMM4 XHLv+7+OA6B6AAktwc1nbb/g0xC0vxqbzr20Foywvr5lbvU1tcdK0TBh92YMdseu bwYCDgt5BuMh80r4NRuxqT78G0HpskLsdmllgtgHmfSGbwt68X8fMui57hUHHWZk jMgMf1kw96EXYfc5GwrGB01Wte3xi5mrBUvUu4vO8HwmLlT//OC8WAT1j/AYmmX4 K4Mz0RGmeiwkKQ== -----END CERTIFICATE-----Generated at Wed May 13 06:30:09 2026 by rpki-client