$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft File: pnhXc98xO5FxG_a8WxSezCRrnok.mft (raw, json) Hash identifier: D0yz9UYKbKZGbtKxxoUuWlpe6ZMKTPuCUOOC+NRbVPw= Subject key identifier: 19:EE:72:37:89:55:8B:69:4D:CC:C6:79:D9:2E:3A:4F:05:25:92:20 Authority key identifier: A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 Certificate issuer: /CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Certificate serial: 019E20233336CC7746F0384B4D5F32A98C9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft Manifest number: 16D2 Signing time: Wed 13 May 2026 07:00:38 +0000 Manifest this update: Wed 13 May 2026 07:00:38 +0000 Manifest next update: Thu 14 May 2026 07:00:38 +0000 Files and hashes: 1: C8g7Pi5B0RKpnrlAYnkGNfdVaNI.roa (hash: wxMFCVvSA3tdy7i3OaSOQ9SIAg2wmBIcYz9jkUGPtlk=) 2: Ine_1lLdl47bEMn6aiw9Axcdsgo.roa (hash: S/r8lpXeW/d857boj4AgP81lqUx6Xba1Zs9uDln2Uuk=) 3: L9nqjZgCKM_h4eShTqHdEr9Np6c.roa (hash: m3EOAebEcr3Ec2NVZh7NKfNA+27GisIbFErRrtFBX6k=) 4: NanNAKKpriw1xLHpXZYYWO89_ic.roa (hash: vJoNpzNu5goOWjEeID9l0AJGNtpWeDH6gI91uoAnwIk=) 5: O6JDbaslrGOSZKrdtuCBt6ssF94.roa (hash: 8ty72z4beTGAGlxyLGLA0AACx0Qa5f/MkundTg5sepM=) 6: Wvbb_a2COrZy8u2YHT4IAcPCo7A.roa (hash: JCvZpNcLMyYDQVI9nqJFb7h8bZSYYqo2EDX3T4my9ww=) 7: ZQQkerLBkFsKEtd48dsMSA_rmYI.roa (hash: 6NjK7e1f3uOhtOOeU7twP9rf1tXwX1yAjDALcNdcBDM=) 8: _dst1Xn6SlUI8nUoQkjpnLlhahc.roa (hash: BiPvKLoz5HOyAuWJJP0IXnbLHFFchqo6uteOhXIPeKs=) 9: dDB5YY9PZuYzIK0czNYk6awWuOU.roa (hash: B1+NRVwOUhTIMmxV8tnE89O/MNjbHirt4Fghn1v7gaE=) 10: eFI0tBDLnesndLqlj1NoxqsPUjg.roa (hash: hjKjXxMem27vbAFHspC4BJNh7EJxRAQg9zId7c2baKg=) 11: pnhXc98xO5FxG_a8WxSezCRrnok.crl (hash: dtqn587ffgX5kGiV55vSh2zv4nx07tsTKVPrdHGcdLo=) 12: vz8HwWs32wz7LdSPq6eo_tOp0to.roa (hash: 6psAckPnQ9/EqCFp17rxTfMjqVmehqU3pMQvhEu8MeM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 06:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:20:23:33:36:cc:77:46:f0:38:4b:4d:5f:32:a9:8c:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Validity Not Before: May 13 07:00:38 2026 GMT Not After : May 14 07:00:38 2026 GMT Subject: CN=19ee723789558b694dccc679d92e3a4f05259220 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a2:90:23:32:5a:a3:d9:ef:97:51:34:be:59: eb:c7:e3:a7:c2:d7:8f:25:84:69:92:ed:fa:99:ac: 2b:fd:52:a0:0b:b8:31:60:a4:2f:c0:60:66:6a:df: 6d:f2:7a:e8:72:0d:eb:f2:dd:b2:ed:bd:aa:3b:30: 83:5f:59:83:88:f6:6a:c1:c1:55:4f:fe:2f:0e:5b: 49:5a:9c:f1:e8:80:6b:1b:6e:37:6d:8c:2a:f8:8b: 33:c5:19:18:57:5f:f9:58:dd:16:c9:10:17:c7:58: 54:db:e3:7c:ad:bd:92:24:c4:72:e0:88:f2:0b:d8: e5:8f:a1:d6:7e:bf:6f:85:0f:95:d9:51:2f:a5:3b: d0:77:f8:8c:1e:02:07:bd:2d:85:28:45:e1:24:57: 17:27:77:3d:34:15:26:8b:50:24:14:42:e7:62:75: a9:5f:76:d9:4e:69:16:8b:86:54:d8:d8:a2:4a:9b: 53:d7:8f:2f:85:70:00:9c:ae:72:35:80:0a:61:49: 0d:5b:dd:5b:e5:f5:f5:d4:b8:b6:85:2a:31:f1:70: da:2e:80:f1:3b:f2:b2:46:51:80:e2:48:93:04:d7: e7:62:e8:28:55:6c:5a:fd:c6:06:b2:67:75:52:dc: a7:00:a7:4b:04:a6:d3:73:cd:99:8e:b1:21:04:c3: 88:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:EE:72:37:89:55:8B:69:4D:CC:C6:79:D9:2E:3A:4F:05:25:92:20 X509v3 Authority Key Identifier: keyid:A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:32:91:ba:5c:fb:36:fd:d5:13:86:d5:8b:39:79:1c:0d:88: a0:79:1f:30:ce:cb:5f:8d:5c:f2:f5:c3:1e:04:8c:fc:59:a0: fb:a8:16:ec:3b:0e:4f:d7:06:53:1f:b9:75:c3:f4:c8:d9:f6: 4c:bf:e1:d7:5e:1b:cc:71:fc:b0:1f:26:e2:f0:9f:47:a0:6a: 94:00:c0:11:77:5d:2a:60:86:ea:83:7c:3c:a5:b1:8f:69:97: d0:f2:a5:11:01:66:61:3c:ef:ad:d1:57:7d:cd:02:94:23:cc: f2:f0:63:cf:18:42:52:01:09:d8:76:80:ca:a5:e5:d5:1f:f3: a5:c6:83:03:07:a0:7d:fc:38:6b:89:50:46:b7:87:f4:d8:4e: 65:88:01:a8:3e:8c:6a:5c:a7:a6:c3:55:22:7a:a5:40:03:37: a7:56:9c:cb:7f:d3:b9:b3:dc:05:e7:03:ea:e3:f5:16:84:33: 7b:85:2b:fe:04:a3:f4:fd:c3:66:eb:b3:29:ed:ed:3e:09:1b: 22:d5:42:46:e7:0e:2f:a4:24:c8:68:25:39:67:2f:dd:81:a2: 91:07:d4:0a:f4:fe:de:17:7a:be:3d:16:fd:be:ca:3a:a1:5a: 79:e1:b4:66:bc:d9:58:8b:28:39:93:04:5e:cb:65:a5:f7:c7: 23:1e:33:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4gIzM2zHdG8DhLTV8yqYycMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2Nzg1NzczZGYzMTNiOTE3MTFiZjZiYzViMTQ5ZWNjMjQ2 YjllODkwHhcNMjYwNTEzMDcwMDM4WhcNMjYwNTE0MDcwMDM4WjAzMTEwLwYDVQQD EygxOWVlNzIzNzg5NTU4YjY5NGRjY2M2NzlkOTJlM2E0ZjA1MjU5MjIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsKKQIzJao9nvl1E0vlnrx+OnwteP JYRpku36mawr/VKgC7gxYKQvwGBmat9t8nrocg3r8t2y7b2qOzCDX1mDiPZqwcFV T/4vDltJWpzx6IBrG243bYwq+IszxRkYV1/5WN0WyRAXx1hU2+N8rb2SJMRy4Ijy C9jlj6HWfr9vhQ+V2VEvpTvQd/iMHgIHvS2FKEXhJFcXJ3c9NBUmi1AkFELnYnWp X3bZTmkWi4ZU2NiiSptT148vhXAAnK5yNYAKYUkNW91b5fX11Li2hSox8XDaLoDx O/KyRlGA4kiTBNfnYugoVWxa/cYGsmd1UtynAKdLBKbTc82ZjrEhBMOIIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBnucjeJVYtpTczGedkuOk8FJZIgMB8GA1UdIwQY MBaAFKZ4V3PfMTuRcRv2vFsUnswka56JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEt ZDc1ODY5YzBjNzFlLzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEtZDc1ODY5YzBjNzFl LzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAszKRulz7 Nv3VE4bVizl5HA2IoHkfMM7LX41c8vXDHgSM/Fmg+6gW7DsOT9cGUx+5dcP0yNn2 TL/h114bzHH8sB8m4vCfR6BqlADAEXddKmCG6oN8PKWxj2mX0PKlEQFmYTzvrdFX fc0ClCPM8vBjzxhCUgEJ2HaAyqXl1R/zpcaDAwegffw4a4lQRreH9NhOZYgBqD6M alynpsNVInqlQAM3p1acy3/TubPcBecD6uP1FoQze4Ur/gSj9P3DZuuzKe3tPgkb ItVCRucOL6QkyGglOWcv3YGikQfUCvT+3hd6vj0W/b7KOqFaeeG0ZrzZWIsoOZME XstlpffHIx4zRw== -----END CERTIFICATE-----Generated at Wed May 13 10:02:21 2026 by rpki-client