$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft File: D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft (raw, json) Hash identifier: KmDWrJYyfwESZ0QDpEozaHVyV1tLyVU1cXG991lMzYk= Subject key identifier: 20:F3:3C:38:F0:27:A0:3A:0B:A6:6D:4A:52:10:E2:12:55:9C:D6:1B Authority key identifier: 0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5 Certificate issuer: /CN=0f6363d428b7915c108825f09706004b8ea3d4b5 Certificate serial: 019E1BD924117587C960F28A4A57F146A684 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft Manifest number: 1927 Signing time: Tue 12 May 2026 11:01:15 +0000 Manifest this update: Tue 12 May 2026 11:01:15 +0000 Manifest next update: Wed 13 May 2026 11:01:15 +0000 Files and hashes: 1: 2um_rS6WPk2IN6s5x2XbXkQen_M.roa (hash: B3h5JybIRNgVZgqeJwphCEgik9Z267VqHxwbsqTyFKg=) 2: 5du9oXm-5RnmJ8KX2xj_Zy0VqSw.roa (hash: Y1EwroZc2iGhdcqssdik2/Y5BQLLil5kyZQd3CFxooI=) 3: 8f-eDRc6_FXPO45wpxV1xiQ1HAI.roa (hash: qCD4Jc/TwmM8SzWErouUslVtMstyIPcxvXJzTBG565w=) 4: AQlhfGVcA8R2Bwt2uq11a9BJ3I8.roa (hash: ZpJgowIRgidE/63sx4+7oMD9312HUQ//RvFSY5dDQVE=) 5: D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl (hash: zQTXh56ppk09E3RXrAYmMAOhYGvJ5jJEg2HUQJGrGPQ=) 6: DewPVx0uxJChPazGVl04iEQt-GM.roa (hash: zJ7nbS6MIVpf02vap/KhBVzOnoGcoyj3FKo3YbsVGF0=) 7: NRE_ExP25AUx8aw3isiH4EnLbWo.roa (hash: SKLRbqjSGl9WDWUOA+lP72kkE1542Czk3hD2WUZlOgE=) 8: WLsy-DnnYnQhVtIJoLpzduDgWrE.roa (hash: V18CJCRRVUNGPvZK+aRf70kDiLaxF9fIzOBbbor2Dw4=) 9: b1zJ7NbuL57-e0rkevnmNIo0USU.roa (hash: 6oXQKWkeIUo+oie2lp60DcRhSM6jyLL6Sog8QbpX/bA=) 10: mWfbcxQdC8J-VBP4j7EBWfW3Qb4.roa (hash: osYbMfspLkdv49SbR62yA1rUcvBEuqW1/Mq+AH8uZCU=) 11: pcZnUT88SN1u2R3xPf6LVW5AwuQ.roa (hash: ZB/G3ZNzs5uxcuPvRWlbNalCCRVbwpgrXGxyYOGJMA4=) 12: xvB92g3viVT1q0eYULHN2quLguo.roa (hash: VRmr+2VnW18lzVv/zbO7wYNSjIEYoaGpdy+0x7pBFg4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 11:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:1b:d9:24:11:75:87:c9:60:f2:8a:4a:57:f1:46:a6:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f6363d428b7915c108825f09706004b8ea3d4b5 Validity Not Before: May 12 11:01:15 2026 GMT Not After : May 13 11:01:15 2026 GMT Subject: CN=20f33c38f027a03a0ba66d4a5210e212559cd61b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:51:17:ac:39:42:ad:ca:6c:99:23:c1:43:e4: fb:d1:f3:5c:b8:2d:6c:14:e6:b9:f0:32:0a:00:61: f9:2a:7b:b6:c8:9e:e1:2d:9d:89:94:3c:10:63:3a: 95:ea:7e:b8:1c:bd:9a:1b:fd:1c:77:e7:7d:a1:f2: 04:a1:13:a2:80:a7:ef:33:53:b5:a9:7a:a7:3d:cd: 24:ea:a0:15:91:7c:87:07:1a:a1:7e:78:f6:22:42: db:9e:c1:be:94:90:00:21:cc:7b:f9:59:82:5c:f6: a4:19:b8:a1:01:6e:e4:0b:a9:42:35:85:4f:a7:06: 25:9a:20:d8:f2:2d:90:fe:d7:11:24:0e:27:3a:ba: 07:d7:4a:21:5e:1d:f0:53:31:17:61:dc:33:5e:45: 30:af:b2:eb:24:fd:9a:8d:f1:8f:46:84:b2:11:79: f0:d1:b5:5e:c7:22:8b:04:9a:72:59:7c:c6:1f:4c: 3b:68:14:b8:c4:ef:5c:b1:d4:da:19:a4:d5:44:bb: 25:23:ed:2c:bc:a6:b6:89:b0:82:bd:ac:e5:59:52: f5:72:31:7d:c8:46:38:35:17:4f:f7:0c:94:a6:2f: 43:c8:06:f0:87:49:5e:8c:ff:81:0f:86:28:40:05: 1d:16:58:b2:b0:06:00:95:54:e3:ae:23:0e:d4:48: 56:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:F3:3C:38:F0:27:A0:3A:0B:A6:6D:4A:52:10:E2:12:55:9C:D6:1B X509v3 Authority Key Identifier: keyid:0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:6b:1a:13:d6:7a:ce:40:0b:8a:c8:29:55:4d:09:eb:e6:58: 2e:da:28:09:6d:3b:b5:8a:49:5a:52:1d:34:db:1a:35:33:13: ea:bf:18:d9:af:e1:1d:29:30:d4:b9:01:9e:58:45:c0:f2:f8: 0a:ba:50:d0:53:a2:de:4c:66:e6:05:02:7e:76:a8:6c:94:94: 1a:37:d7:44:5c:7d:57:ee:3d:e2:d0:fd:f1:5d:71:dd:6e:9d: 92:d7:f6:fb:2e:c3:23:4b:8c:29:28:9a:89:eb:1e:14:e4:3a: 31:aa:f2:fa:27:09:a5:ff:f3:2c:ee:07:f9:b2:8f:ac:b3:b3: d5:2b:73:54:28:31:26:fd:47:59:ff:4b:50:d9:b1:04:00:df: 17:60:2b:3e:11:79:09:4a:7a:9b:36:61:6b:d8:d1:54:0e:e4: cd:b1:81:ef:29:d4:b8:dc:f5:73:58:d3:ab:eb:c5:07:f8:77: af:ab:4f:d7:85:e6:cd:06:89:64:17:93:47:cd:8e:34:66:22: d0:a2:36:60:6d:6d:f9:d2:09:cc:73:57:f3:0b:1c:09:79:e6: 0b:6c:93:21:63:25:97:69:42:07:3e:86:87:44:7a:f5:e5:9f: c0:c4:85:21:9c:1e:f2:6a:c2:c2:54:d1:97:b3:5a:6a:58:f4: 11:a4:71:5e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4b2SQRdYfJYPKKSlfxRqaEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmNjM2M2Q0MjhiNzkxNWMxMDg4MjVmMDk3MDYwMDRiOGVh M2Q0YjUwHhcNMjYwNTEyMTEwMTE1WhcNMjYwNTEzMTEwMTE1WjAzMTEwLwYDVQQD EygyMGYzM2MzOGYwMjdhMDNhMGJhNjZkNGE1MjEwZTIxMjU1OWNkNjFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo1EXrDlCrcpsmSPBQ+T70fNcuC1s FOa58DIKAGH5Knu2yJ7hLZ2JlDwQYzqV6n64HL2aG/0cd+d9ofIEoROigKfvM1O1 qXqnPc0k6qAVkXyHBxqhfnj2IkLbnsG+lJAAIcx7+VmCXPakGbihAW7kC6lCNYVP pwYlmiDY8i2Q/tcRJA4nOroH10ohXh3wUzEXYdwzXkUwr7LrJP2ajfGPRoSyEXnw 0bVexyKLBJpyWXzGH0w7aBS4xO9csdTaGaTVRLslI+0svKa2ibCCvazlWVL1cjF9 yEY4NRdP9wyUpi9DyAbwh0lejP+BD4YoQAUdFliysAYAlVTjriMO1EhW7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCDzPDjwJ6A6C6ZtSlIQ4hJVnNYbMB8GA1UdIwQY MBaAFA9jY9Qot5FcEIgl8JcGAEuOo9S1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDJOajFDaTNrVndRaUNYd2x3WUFTNDZqMUxVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy82YmVjYjAtMThmZC00YWRkLWJiNDEt MmUxYzBhZjRmYWE0LzEvRDJOajFDaTNrVndRaUNYd2x3WUFTNDZqMUxVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy82YmVjYjAtMThmZC00YWRkLWJiNDEtMmUxYzBhZjRmYWE0 LzEvRDJOajFDaTNrVndRaUNYd2x3WUFTNDZqMUxVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq2saE9Z6 zkALisgpVU0J6+ZYLtooCW07tYpJWlIdNNsaNTMT6r8Y2a/hHSkw1LkBnlhFwPL4 CrpQ0FOi3kxm5gUCfnaobJSUGjfXRFx9V+494tD98V1x3W6dktf2+y7DI0uMKSia ieseFOQ6Mary+icJpf/zLO4H+bKPrLOz1StzVCgxJv1HWf9LUNmxBADfF2ArPhF5 CUp6mzZha9jRVA7kzbGB7ynUuNz1c1jTq+vFB/h3r6tP14XmzQaJZBeTR82ONGYi 0KI2YG1t+dIJzHNX8wscCXnmC2yTIWMll2lCBz6Gh0R69eWfwMSFIZwe8mrCwlTR l7Naalj0EaRxXg== -----END CERTIFICATE-----Generated at Tue May 12 21:44:08 2026 by rpki-client