$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft File: rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft (raw, json) Hash identifier: wd99UZr8jKihjxPTCLy3eCOdSJ8vUgqcGN83jMLnoj4= Subject key identifier: 23:FF:05:E6:B5:A8:E1:F6:DC:C8:A6:4F:CC:59:4D:DE:64:EE:CD:9A Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Certificate serial: 019DF915CB832D77CAB0ED658F3861048E86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft Manifest number: 1946 Signing time: Tue 05 May 2026 17:00:48 +0000 Manifest this update: Tue 05 May 2026 17:00:48 +0000 Manifest next update: Wed 06 May 2026 17:00:48 +0000 Files and hashes: 1: 5IhZSBiDvsOSeVhRVnHGfrZ9l5M.roa (hash: 07LF7iOUP4kz2UtFtdj1J7VVMfVv3ZHccZXokZwfZtg=) 2: BiYRVVML9NNTA_8LHQsEIyn-udM.roa (hash: MQi6PP1rzRM1KN1VV4mGhoaMI5G3SPq1bp7SEkx+KmA=) 3: NMfbsowFqcogPMg6cAeG3w9cjq0.roa (hash: uFoj7c/4SsWRnxgjbLgJrGS7fytT/Dv79U+edW6MDx8=) 4: Nc3Qv6HWCUL0coHdhzehCvqorjQ.roa (hash: 1cr7/XMm8bJJ1VGTZJBo+emXZtefD8zXujejZu9BwnE=) 5: RiJbycN_HnEaFdxBy-0QqogHp9w.roa (hash: HrWeheuaH2PNBF70Yz5xTkWSf+oor2QnLluzhSuwnU8=) 6: cd86fuGEpcvGitdJ6j4qmONtrs4.roa (hash: OyWo2jddiuk9oXVabZhwBWcG9HobQGDOXj6VfpvDkjo=) 7: deTEkBZi5H7AIejV16ysjHwAbxY.roa (hash: l0JbGg+HLxrf5Ag/2z2pTojVken0ajBmDjhItX+Hm3I=) 8: f36wSuri4isgGvRNSVH6JQhVoXQ.roa (hash: yoPRFfkeY6wwCb2HhFYtsNc5bsYeGXcwftlwYv52l3Q=) 9: hPDJ7bwWMVeeA66R-Nm66UMAI3I.roa (hash: S6FoRCGZ+2A7ou0QqZgDgmiPo527/Z9rU6I1qlBMQXY=) 10: ocHryKy0JCZoZXuWFydbiaPAXvA.roa (hash: VJkfS4R1R0/kVOkQFygl/eqzEOXMlTWCdbkGDaHwbCQ=) 11: pGPZirCKZzbNWc11cAMZui5y53g.roa (hash: x16id1SP+uWE4b9i/PFLiuYNReYseV++lthZDwFfk5U=) 12: pKSlP4qI-iIWoFFAgY7hZYUI5lE.roa (hash: fJiLeKrrQ0jkNTOG3gU1SfB8kCZt5PRpsv9OHklxoM8=) 13: qltZRt6yv2xmd-YFzKK4-T95t70.roa (hash: ouYg4rusjDVFIksWY2y+Jv/jtKdXu+HEE/CHgFLthz4=) 14: rGIovrXr2PenpqE83Nj9eWB1x8s.roa (hash: 34LCqWqcnvgQ4rKtRytxb38DA5KqQIpYL78rOxx5xLc=) 15: rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl (hash: jdHiLK5s2GTOf0hEgbVwTrtKUrXz5u5XovYnZ8Fh9BM=) 16: sQ8qQg5RChJp9JsfMBZ7VZwT8WE.roa (hash: obNWII8S7VxaHifOdhDpl8/q/V3M1i4VuliV8Z+MBow=) 17: z4qbPsOP-xo2NMp3HqpekMdf7sA.roa (hash: CIa0hH24rP2xgaENBe4fdRe+EVe1YceIYbMEnicxUf8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 06 May 2026 17:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:f9:15:cb:83:2d:77:ca:b0:ed:65:8f:38:61:04:8e:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Validity Not Before: May 5 17:00:48 2026 GMT Not After : May 6 17:00:48 2026 GMT Subject: CN=23ff05e6b5a8e1f6dcc8a64fcc594dde64eecd9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:82:e1:93:15:6c:be:49:0c:8f:5f:8c:40:af: 29:04:93:3b:04:06:3e:56:ce:cc:ff:83:d0:57:97: 2c:af:31:9c:c7:ed:09:6c:f8:9c:04:c1:67:c5:d8: b3:65:de:e6:47:22:25:5e:34:fb:5a:b9:28:ef:44: df:e4:7e:19:a6:2c:34:cd:88:26:6c:71:51:91:31: e1:aa:6a:23:be:78:25:09:ce:de:a8:ba:35:0c:e8: e1:68:46:19:f3:9b:03:e5:08:fc:62:84:96:a4:22: 20:9f:ff:e0:0e:13:b9:cd:b8:86:93:3a:59:4d:10: c8:40:f3:4a:9f:3f:8a:67:e3:6a:7d:4a:ec:3c:82: 06:69:87:9a:51:95:9a:3d:c1:75:8b:20:a0:51:22: 40:7c:61:de:d9:62:48:eb:d9:42:ef:1f:bb:b4:a7: da:03:0d:1e:c8:9b:6d:25:df:48:d1:5c:4f:4c:8e: 0b:ea:07:8b:4d:86:7e:09:41:b7:4e:7a:d6:64:69: 5e:b1:37:8d:8e:7e:7b:73:f3:ee:63:de:b0:f3:be: 9e:34:f7:e3:e2:90:46:1f:bf:fe:ef:14:46:3c:41: 4a:8e:02:e3:8b:e5:9a:ce:fc:3c:b2:75:a5:ee:19: a7:46:84:0c:c8:09:c4:5d:b8:f7:56:a5:63:11:ec: b1:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:FF:05:E6:B5:A8:E1:F6:DC:C8:A6:4F:CC:59:4D:DE:64:EE:CD:9A X509v3 Authority Key Identifier: keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:df:ac:f4:59:ad:ac:fc:0d:d6:59:dc:de:a8:88:be:d3:9d: 94:6e:91:c6:d0:6b:8f:3c:a4:20:22:67:bf:74:9c:c9:c6:e4: 9f:f0:a7:1c:c0:54:53:67:ea:e3:c9:bb:81:a8:11:7a:32:23: 0c:b6:dd:0a:1b:4b:6e:4b:f0:a8:0d:33:4d:25:24:93:58:28: 77:05:81:b2:9a:bf:46:4c:d0:63:f7:b1:e5:d1:dd:9a:2a:d7: e7:03:37:ad:b9:f7:c2:3e:00:3e:fe:68:1d:3f:7f:06:1d:a7: 2c:e2:8e:bf:d0:9f:a5:9f:ba:97:af:20:ea:22:47:6d:25:de: bd:b8:26:2f:71:7d:d6:1b:86:a1:e0:d9:84:78:67:77:f1:4e: 77:d1:33:e1:50:46:ec:b7:cc:07:21:0d:e3:73:2b:88:20:0e: e3:d7:4a:cf:cf:58:97:67:06:98:31:6e:01:11:1d:7b:2b:d1: 22:71:50:b5:a8:69:df:d3:14:9d:e7:dc:d5:da:1a:0c:7c:28: 03:7c:c2:80:f8:a7:4f:c4:39:05:c7:16:ba:95:55:02:1b:a4: c4:e6:0a:4e:dc:3c:ae:3e:69:2c:42:bf:81:86:78:31:f9:cd: 1e:a0:57:64:9f:d2:16:05:bc:58:4a:61:b7:96:eb:8c:e1:4e: f7:97:c3:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ35FcuDLXfKsO1ljzhhBI6GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMGRhNDNiNGE1ZDNkYjc4YmEzZjc3NGU1YjMxYjc3MDM3 MjAyZDUwHhcNMjYwNTA1MTcwMDQ4WhcNMjYwNTA2MTcwMDQ4WjAzMTEwLwYDVQQD EygyM2ZmMDVlNmI1YThlMWY2ZGNjOGE2NGZjYzU5NGRkZTY0ZWVjZDlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA44LhkxVsvkkMj1+MQK8pBJM7BAY+ Vs7M/4PQV5csrzGcx+0JbPicBMFnxdizZd7mRyIlXjT7Wrko70Tf5H4Zpiw0zYgm bHFRkTHhqmojvnglCc7eqLo1DOjhaEYZ85sD5Qj8YoSWpCIgn//gDhO5zbiGkzpZ TRDIQPNKnz+KZ+NqfUrsPIIGaYeaUZWaPcF1iyCgUSJAfGHe2WJI69lC7x+7tKfa Aw0eyJttJd9I0VxPTI4L6geLTYZ+CUG3TnrWZGlesTeNjn57c/PuY96w876eNPfj 4pBGH7/+7xRGPEFKjgLji+Wazvw8snWl7hmnRoQMyAnEXbj3VqVjEeyxyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCP/Bea1qOH23MimT8xZTd5k7s2aMB8GA1UdIwQY MBaAFK0NpDtKXT23i6P3dOWzG3cDcgLVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTct YzUxNWYzNTRjYzVhLzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTctYzUxNWYzNTRjYzVh LzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmt+s9Fmt rPwN1lnc3qiIvtOdlG6RxtBrjzykICJnv3Scycbkn/CnHMBUU2fq48m7gagRejIj DLbdChtLbkvwqA0zTSUkk1godwWBspq/RkzQY/ex5dHdmirX5wM3rbn3wj4APv5o HT9/Bh2nLOKOv9CfpZ+6l68g6iJHbSXevbgmL3F91huGoeDZhHhnd/FOd9Ez4VBG 7LfMByEN43MriCAO49dKz89Yl2cGmDFuAREdeyvRInFQtahp39MUnefc1doaDHwo A3zCgPinT8Q5BccWupVVAhukxOYKTtw8rj5pLEK/gYZ4MfnNHqBXZJ/SFgW8WEph t5brjOFO95fDhw== -----END CERTIFICATE-----Generated at Wed May 6 03:27:05 2026 by rpki-client