$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft File: bSDd05jayPYswSUmMl8YIftyT3U.mft (raw, json) Hash identifier: UO9cXdTSW92hBM2qt9lBLKpgxNtDWWubQkiDdoZIepY= Subject key identifier: 6F:9D:30:11:3B:C7:8A:3A:06:A0:82:3B:0C:93:A3:29:C8:BA:4F:9C Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Certificate serial: 019DB0C5DD41AE97FE76CC7ECFE96CC13BE4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft Manifest number: 17E7 Signing time: Tue 21 Apr 2026 16:00:50 +0000 Manifest this update: Tue 21 Apr 2026 16:00:50 +0000 Manifest next update: Wed 22 Apr 2026 16:00:50 +0000 Files and hashes: 1: 9xgiRaoDHZpfEWCuWGLVozZH1gk.roa (hash: v8wEhG7uE5X+Pic34dsR8NNSQFk/2P4s8T0Y6bprmWQ=) 2: Aq5wESOUolAkTosvnE7ETStDfyU.roa (hash: yfEBzyPkUQCnnTcx22tGTzIIsK+Ma5c/+X+c6Yry/fU=) 3: B3ZlbL4gU6mGNdfE7GNgbCqsduM.roa (hash: 0PhXlz7OHulz176DWbBx9T4BxrFfJgZd9rJZ8KuMZgo=) 4: BGTIebFN8Np0NsQtF_avGDoUny4.roa (hash: NPCQmuapy/fWkxHdwPSPdnEK1QY4KGIX45+Q8l7yby0=) 5: BVAbby4n4nfVJfXWrR5Zl8eKCNw.roa (hash: 9h5dLOvIi1c2+opBBUG4urPF6XN2qAHfeKjpbM4tCxM=) 6: Dbdu-sAYIxR5QPvvVrRAhYH105w.roa (hash: fWwOPydmpUe+IsyFRDNgiL4cigw5qNtOrAk6xHxF7LI=) 7: HeSSKy0hpbFZwXpL4wRARD7sBKI.roa (hash: QjJUiqYDK9L1FM50J7fBEzbh41rsVg1rLGSgPBSUCpc=) 8: MJgiLKofa3--UVTFUoDMYpkd14E.roa (hash: H6wYuGz0ahIxYTCSRji68dw9L5rj0iVmY7ULRmePIqo=) 9: OGG1AN9r1K7fCCBDdkuKp2YurRc.roa (hash: uKPYBtL6H7NRJR1/TrQfck1LuVNFXIVWB3lTB8Q9nkM=) 10: SXe4L80C6NNAi8_Z_r_OzYlFJMc.roa (hash: rvAKW+Jnjq6JcXJuZTuezh3N37RsgK/dxB2hqkABN5g=) 11: Yi_0sb2Cd1tYZiiWIymmt_L8-nc.roa (hash: ZfN0GVzt124vq1vIJ26ojNWgsCUqMSJ0wE5cCnsN3gQ=) 12: bSDd05jayPYswSUmMl8YIftyT3U.crl (hash: G8iMMiJ9YRZDnwcymzf67GfCxk9BrjZnMPbOBrJuMFw=) 13: bYiLveRsDlX78OsxGY3h5GANwkU.roa (hash: 7RIU6dRlDTBOGvkvNbaGxFh//l+X7XqnppaYQdzpO8E=) 14: iuRgfu21PTYsbZmCXChlKNQrvwY.roa (hash: bBVTlacYWROGx5pT6t29eLcMFfwpCwecFakjUlLqFkQ=) 15: lQ5I1RQhBLo7oEEMwItGQL1D4co.roa (hash: JsbTSCE7CBEzvAaKOwDU8edPgIOKQAAWgiGQC/UlKpg=) 16: sxM1hppwo8IA3sUIRWSmuh2DulM.roa (hash: d0rCe3Bx8Ky5qROI9ax/UnPDyR2WjD1W4X7Y8WVQZls=) 17: tXOl2ubuLkmi5Hms7cr2oOrONy4.roa (hash: /mpuqbpXTMSqEVxHEhqKLpXW3WVDEqBZMvkdGp9RQuk=) 18: uPXsHfVse8rlnzUbj2UoRMWOq8g.roa (hash: SCLabx4GN4AnmWRb1f32gO5dZZyqhDCGfjhfHlPlGlM=) 19: x4pQf17vDFkXV3GUtqmWbktS3Fo.roa (hash: TF4r3ErV+VPSElRBLhwHiJMcDMk0C1SKhfdxBMi4KUM=) 20: zw3H3DTpeUhcqqHWXtBf0WnIJoM.roa (hash: 6GByi9aIOsCybNHah1sj3rggT+SfOktCNujJlbLQbPg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 22 Apr 2026 14:21:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:b0:c5:dd:41:ae:97:fe:76:cc:7e:cf:e9:6c:c1:3b:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Validity Not Before: Apr 21 16:00:50 2026 GMT Not After : Apr 22 16:00:50 2026 GMT Subject: CN=6f9d30113bc78a3a06a0823b0c93a329c8ba4f9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a4:f9:c5:28:99:61:b6:83:ff:bf:9c:7a:ed: e1:ea:43:63:f9:a7:6d:2c:8d:e3:fa:ba:df:ca:7b: 0d:c9:b7:05:10:bf:4d:0a:7c:1a:0c:45:68:ea:cb: 4b:4d:e0:79:f5:29:16:b8:86:80:00:86:58:0b:5c: 84:6c:a6:43:a2:b0:23:8d:6d:f9:44:1c:1d:04:98: 66:88:5b:1e:07:36:ed:ee:d1:7a:f1:2d:54:b9:67: 6c:0c:5f:89:e7:d9:ba:b9:11:82:22:01:bf:07:cf: 83:1e:92:2a:86:fb:3c:f9:88:92:a6:57:43:bc:3a: 4e:ee:50:07:72:f4:ce:ec:89:b0:0e:4a:97:72:fd: f1:d9:0b:19:a6:91:b2:ef:9d:c5:a6:c0:b9:30:cd: e5:83:17:4a:8a:23:cc:a9:fd:c5:be:96:1d:f6:85: 98:39:2e:0f:94:2f:cd:a5:c1:25:6c:0b:7d:6b:bb: 26:84:e4:69:25:6f:f2:06:0b:b1:35:93:79:d2:8a: a9:96:ba:c2:9c:74:a3:22:66:fa:e6:89:1c:c2:7d: 3b:57:f0:ff:d7:eb:b5:05:ee:c4:95:39:ab:83:05: 2c:3a:3b:c8:59:a1:6d:7d:ee:3a:f2:1a:67:75:89: c8:41:89:db:8c:30:1f:52:32:d4:37:ef:e1:3c:29: f0:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:9D:30:11:3B:C7:8A:3A:06:A0:82:3B:0C:93:A3:29:C8:BA:4F:9C X509v3 Authority Key Identifier: keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:70:48:14:9a:9a:fc:70:2b:24:94:5a:c5:0f:71:58:92:20: 0e:3c:9a:e2:bb:46:ec:42:ce:1e:a2:20:a8:e2:31:62:09:b5: e7:6e:06:c2:b5:3b:de:5c:c9:41:58:4f:45:3f:b2:c4:92:e0: c0:bd:a8:75:58:d7:5f:fe:c4:05:eb:88:6d:b5:0b:9d:20:8d: 48:f4:ab:a4:94:99:a7:1c:e5:da:15:9f:0a:29:af:8b:a5:74: 61:40:82:da:48:4f:b0:a0:46:8d:5d:24:27:59:72:9d:16:cd: e4:3c:a3:27:26:a5:2d:c4:a7:d1:e1:21:27:80:0a:27:2c:a4: f9:3d:ef:48:32:ec:bd:81:93:cb:d7:e8:dc:ef:d1:7c:e8:45: 93:c3:bd:d5:e9:52:b5:5f:1f:01:55:5b:df:49:43:82:8f:2e: a4:6d:e5:a7:b8:a2:c1:3f:ba:ff:a5:bc:83:df:d9:07:98:64: 65:f9:04:b9:2f:9a:85:a1:9c:1a:a0:a5:b7:63:e0:0b:ec:55: af:56:16:5f:21:bc:6e:92:3e:b5:e7:fd:17:44:49:6f:5e:54: 67:63:35:f4:e6:4d:c6:e1:24:81:7e:15:ca:3c:04:f5:b6:01: 18:c5:4a:63:61:80:51:26:3d:f3:70:20:93:48:be:58:e2:6e: de:ad:e4:8e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2wxd1Brpf+dsx+z+lswTvkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMjBkZGQzOThkYWM4ZjYyY2MxMjUyNjMyNWYxODIxZmI3 MjRmNzUwHhcNMjYwNDIxMTYwMDUwWhcNMjYwNDIyMTYwMDUwWjAzMTEwLwYDVQQD Eyg2ZjlkMzAxMTNiYzc4YTNhMDZhMDgyM2IwYzkzYTMyOWM4YmE0ZjljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz6T5xSiZYbaD/7+ceu3h6kNj+adt LI3j+rrfynsNybcFEL9NCnwaDEVo6stLTeB59SkWuIaAAIZYC1yEbKZDorAjjW35 RBwdBJhmiFseBzbt7tF68S1UuWdsDF+J59m6uRGCIgG/B8+DHpIqhvs8+YiSpldD vDpO7lAHcvTO7ImwDkqXcv3x2QsZppGy753FpsC5MM3lgxdKiiPMqf3FvpYd9oWY OS4PlC/NpcElbAt9a7smhORpJW/yBguxNZN50oqplrrCnHSjImb65okcwn07V/D/ 1+u1Be7ElTmrgwUsOjvIWaFtfe468hpndYnIQYnbjDAfUjLUN+/hPCnwCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG+dMBE7x4o6BqCCOwyToynIuk+cMB8GA1UdIwQY MBaAFG0g3dOY2sj2LMElJjJfGCH7ck91MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmIt MzZkZTY1NzIzMmJlLzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmItMzZkZTY1NzIzMmJl LzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ3BIFJqa /HArJJRaxQ9xWJIgDjya4rtG7ELOHqIgqOIxYgm1524GwrU73lzJQVhPRT+yxJLg wL2odVjXX/7EBeuIbbULnSCNSPSrpJSZpxzl2hWfCimvi6V0YUCC2khPsKBGjV0k J1lynRbN5DyjJyalLcSn0eEhJ4AKJyyk+T3vSDLsvYGTy9fo3O/RfOhFk8O91elS tV8fAVVb30lDgo8upG3lp7iiwT+6/6W8g9/ZB5hkZfkEuS+ahaGcGqClt2PgC+xV r1YWXyG8bpI+tef9F0RJb15UZ2M19OZNxuEkgX4VyjwE9bYBGMVKY2GAUSY983Ag k0i+WOJu3q3kjg== -----END CERTIFICATE-----Generated at Wed Apr 22 00:08:14 2026 by rpki-client