$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft File: TKZvPA8ld05pbSpGcjJ365YRKMM.mft (raw, json) Hash identifier: 9kYjOGyOsueSykKHQXZOsRU/rJoF5ss58rLpfjvsulw= Subject key identifier: 0A:B7:B5:BA:47:97:2D:36:6E:9C:E4:2D:BF:50:E3:A6:7B:80:FD:14 Authority key identifier: 4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3 Certificate issuer: /CN=4ca66f3c0f25774e696d2a46723277eb961128c3 Certificate serial: 019F0A14647AE774AD94DECDB65CBF9909A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft Manifest number: 19AA Signing time: Sat 27 Jun 2026 17:15:36 +0000 Manifest this update: Sat 27 Jun 2026 17:15:36 +0000 Manifest next update: Sun 28 Jun 2026 17:15:36 +0000 Files and hashes: 1: 0IrKb4Ocom_z-8cWO6ogho_9Ejs.roa (hash: tjdt9PHspdzPY29Lxc8zvyVdheALBUo0bapCnScWepo=) 2: 0Va2x4Qd63us7kRWmkpIgs4VavE.roa (hash: mlH17TsTBWEMs6AwiTvf9MSqSgOdSNOB7ebIvjxdVCU=) 3: 2hev3Ozu25IR4V2dL7dAcH9H-38.roa (hash: JMnA8s2ygn9eCJpbiMUYRSb0p9eo/efu/ihrpcvOxF0=) 4: 9d-_5920bjCdAX8N09u8neSsl3o.roa (hash: o8FIziw32GpKzwaDWACsYaXRfvH+eTcW8yYR9DZRp+c=) 5: Ck8M77HakpPGYwHWR3tKMn6oX5I.roa (hash: /KHOK0banE/sW4SbVXZMrQo7GnXfsS39k2T0rCWRPJY=) 6: CxwFpKnVRB1YipI_w1rOdL2Rr_0.roa (hash: Sqj7uyxBPWvN499fr3Zl2IE3H+X3USQ46cvMPtYbWbI=) 7: TKZvPA8ld05pbSpGcjJ365YRKMM.crl (hash: ee87XEkUNTL+PipU+mzn8oBFIoHXMn7tVuvKr5ZjKTM=) 8: ZVNRgss5mTKJwhbB1mo1GGQyJRE.roa (hash: HjXOusJwIaZmZ+GD57QVPopBj5EraNR3jwZ+HMzM4p0=) 9: bEXar_PDdc_u4-EMnGh7tX0LHVg.roa (hash: tWOJsXIwz8NLZyOMtnHMC60APgOJn7JZ0y3xyIP4Gu4=) 10: k4d-Grd6fMOD6ch95iLC_D9xAmI.roa (hash: FpQzQlajcmhliY2oa1dKiB0yjFo7oTmcDQa2iboX4UE=) 11: kTrZwWya8vKsPzaTCCVly2aeBF0.roa (hash: GYxaPQmLs3qRxZhpYVXS6A4uk/iHpf3iWjyGg7/VHF4=) 12: oQUSrEROqxA0JRpbiStP3_G82GM.roa (hash: XUh60Rhyc+lm/VBx4kH4IarcFH4VCmn/oycmnKA5p14=) 13: uEnRng83DMivtU9u64kgfGid_Hs.roa (hash: vmYhF39wCahPYTq1VZ0x6GUk7X7pQ26ryeKoN/cfjf4=) 14: ulevrjdG84PyAEw2XIVUVcPHCk8.roa (hash: 3Q60+cTrF0CLxyPchKTvHU+bYI4wsJGncyWLEGOrjTs=) 15: xEmv6iMzO6ox8HZNasxgI207Ico.roa (hash: hvgnhFfU21tndV9juMrzdngLR+nEgCJ6x3FzWgGB75g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Jun 2026 14:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9f:0a:14:64:7a:e7:74:ad:94:de:cd:b6:5c:bf:99:09:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ca66f3c0f25774e696d2a46723277eb961128c3 Validity Not Before: Jun 27 17:15:36 2026 GMT Not After : Jun 28 17:15:36 2026 GMT Subject: CN=0ab7b5ba47972d366e9ce42dbf50e3a67b80fd14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fa:40:07:60:86:be:c4:72:d2:8b:c4:a3:6f: 39:98:d8:c6:77:6f:89:74:17:7f:82:9b:15:82:90: a0:51:41:6c:3e:ae:f8:ff:ef:ad:74:21:97:8e:08: 22:ab:f9:a2:fc:d0:53:b8:f1:61:c2:5e:d5:ff:87: 5c:3d:57:ed:37:dc:ab:e6:50:b8:18:43:5e:1b:4b: 68:a0:72:22:d3:92:4e:5b:4a:96:10:9e:71:62:06: f7:25:a8:3b:00:a0:89:53:bd:73:1f:2d:b6:ca:58: 9c:6d:8d:44:49:f4:79:4e:bb:09:98:6a:f7:e5:dd: 78:5b:d0:76:ef:23:29:6b:e0:94:97:bb:c9:90:cc: 8a:a3:76:21:d7:2d:b8:6c:50:6c:24:e5:13:81:ba: 3d:1f:d0:11:28:21:5f:9a:32:b3:e7:a0:0a:77:9d: 26:35:4a:db:a1:80:93:35:f9:6c:49:31:d2:80:3c: 0c:53:56:ec:59:cc:c4:8d:32:9f:f7:0c:f5:1c:c6: 46:0d:bd:42:cc:77:4c:5e:07:19:dc:ea:d7:fd:bd: 40:91:e4:6c:bb:fa:22:6c:f0:c0:3e:65:1f:9c:81: 16:77:aa:00:a2:f2:5d:ed:b3:0c:79:c4:2d:bd:be: 61:33:e8:8b:17:be:85:e1:3f:eb:37:a1:cd:5b:25: 58:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:B7:B5:BA:47:97:2D:36:6E:9C:E4:2D:BF:50:E3:A6:7B:80:FD:14 X509v3 Authority Key Identifier: keyid:4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:59:01:6c:45:ca:94:86:60:a3:db:3c:51:de:4b:1d:8c:1b: 07:00:e1:cf:30:e9:a4:dd:bb:27:d6:54:37:65:a7:96:32:0a: 8b:62:ed:1f:a5:14:5a:e0:41:78:7d:30:2c:b3:e2:91:d9:be: a1:56:59:75:63:39:8c:10:bd:14:7f:91:47:55:0a:e8:61:ab: 0a:98:dd:8a:b7:a4:df:a6:3c:3c:1d:e7:bc:b7:9c:ad:46:21: 3b:a1:8e:03:4c:3c:81:43:eb:d3:0c:d9:3c:af:2e:b5:3d:97: 25:db:ab:07:5e:8f:2e:51:b8:8a:28:0f:2f:b2:d4:f7:c5:8a: 2b:a7:ed:9c:1c:bd:59:2b:6b:96:46:db:3a:cf:f5:41:61:8a: e8:17:d0:e8:a9:c3:4a:d0:62:ef:d4:3f:cb:01:7a:8a:a2:53: 86:ab:4f:8c:74:04:17:33:c8:5c:9c:e3:12:b8:66:23:13:c9: 47:eb:93:9e:c4:07:11:45:d8:9d:85:63:1e:0c:f0:9d:f0:65: d9:6b:6d:4b:bf:71:82:92:c6:02:ac:3e:90:d3:c2:cc:34:57: 6c:f1:01:85:3f:ce:6f:ce:0d:4c:c7:be:b3:ef:c7:c8:08:de: 52:da:ba:88:dd:e2:ae:f6:34:33:d1:65:a4:6e:a0:87:0b:a0: 6b:d8:c6:50 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ8KFGR653StlN7Ntly/mQmnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjYTY2ZjNjMGYyNTc3NGU2OTZkMmE0NjcyMzI3N2ViOTYx MTI4YzMwHhcNMjYwNjI3MTcxNTM2WhcNMjYwNjI4MTcxNTM2WjAzMTEwLwYDVQQD EygwYWI3YjViYTQ3OTcyZDM2NmU5Y2U0MmRiZjUwZTNhNjdiODBmZDE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvfpAB2CGvsRy0ovEo285mNjGd2+J dBd/gpsVgpCgUUFsPq74/++tdCGXjggiq/mi/NBTuPFhwl7V/4dcPVftN9yr5lC4 GENeG0tooHIi05JOW0qWEJ5xYgb3Jag7AKCJU71zHy22ylicbY1ESfR5TrsJmGr3 5d14W9B27yMpa+CUl7vJkMyKo3Yh1y24bFBsJOUTgbo9H9ARKCFfmjKz56AKd50m NUrboYCTNflsSTHSgDwMU1bsWczEjTKf9wz1HMZGDb1CzHdMXgcZ3OrX/b1AkeRs u/oibPDAPmUfnIEWd6oAovJd7bMMecQtvb5hM+iLF76F4T/rN6HNWyVYgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAq3tbpHly02bpzkLb9Q46Z7gP0UMB8GA1UdIwQY MBaAFEymbzwPJXdOaW0qRnIyd+uWESjDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8yMDQwMTctZjA0Ni00YjY5LWIzZTUt MzE5YjBjODc0NDQwLzEvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy8yMDQwMTctZjA0Ni00YjY5LWIzZTUtMzE5YjBjODc0NDQw LzEvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALFkBbEXK lIZgo9s8Ud5LHYwbBwDhzzDppN27J9ZUN2WnljIKi2LtH6UUWuBBeH0wLLPikdm+ oVZZdWM5jBC9FH+RR1UK6GGrCpjdirek36Y8PB3nvLecrUYhO6GOA0w8gUPr0wzZ PK8utT2XJdurB16PLlG4iigPL7LU98WKK6ftnBy9WStrlkbbOs/1QWGK6BfQ6KnD StBi79Q/ywF6iqJThqtPjHQEFzPIXJzjErhmIxPJR+uTnsQHEUXYnYVjHgzwnfBl 2WttS79xgpLGAqw+kNPCzDRXbPEBhT/Ob84NTMe+s+/HyAjeUtq6iN3irvY0M9Fl pG6ghwuga9jGUA== -----END CERTIFICATE-----Generated at Sun Jun 28 00:33:02 2026 by rpki-client