$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft File: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft (raw, json) Hash identifier: DMREgbz9bMKg1LlGf5ptyotDaH3S/Y145wDNMWEeHsM= Subject key identifier: 83:A1:7E:97:29:D2:C6:20:CA:35:2F:B3:69:2A:C5:98:57:D0:9B:8B Authority key identifier: 23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62 Certificate issuer: /CN=23259da3b1b38ca0939f490fb9043fcd89cfd062 Certificate serial: 019E29CC58412B691D4EEA2F3C5C557BF13B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft Manifest number: 1916 Signing time: Fri 15 May 2026 04:01:58 +0000 Manifest this update: Fri 15 May 2026 04:01:58 +0000 Manifest next update: Sat 16 May 2026 04:01:58 +0000 Files and hashes: 1: BNGMVvTZ1XawSMPOVaywEKgFz8w.roa (hash: WMt9Jn62xWAvsFJt6BLgLhIXnUKvtSHXK/jsLiQ9wc0=) 2: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl (hash: QUolGCuxCxxit/SEoePzLw8AKopbTqQFxx8YA+ef6z8=) 3: J_k_uJydXhJKkAPBLn_Xr9EpYmw.roa (hash: bMaFsCf1Hj+guhXQdkk7ZJ24ZgANPSnkOncPj3CW1pQ=) 4: S9D_ZvZP7Y2SyyqdAWt1mGxtagE.roa (hash: hH6PHrAp3gX28fWUuJtWpjV+rB9bYio8w3wI6R4XHQI=) 5: YPhzzBUAAD8W6PxdQ8Eo6J_1Xlo.roa (hash: QJjVxTN7Kd8ed1QYD92fFHesTbkRe6gyeZIi3S6D0so=) 6: Z8UyJlJrz_tPx2Lzi2wtF6sRSoY.roa (hash: pZEmU7QBOi+LmI67NMxNilqE5KRHfsee+sRCVmykeWE=) 7: gw26QBwPzQF9bT3yyu20z1tgJyk.roa (hash: iuHp19gpWORmcmt7JfC/koJtOp0jpGQxA/LoBFKsFao=) 8: mdj55pZO6nRDbpPFsXBoK-GkNU8.roa (hash: JU7FZwf7hl0KcJAATQ/by5oF+/xX9ntEZw2LOkX+3S0=) 9: n70k782e6Gxq_-Hc2YO_idjOcAs.roa (hash: 9xPDUcAeeZeb+V1tJdiN4n6+fuVQh1F2hwH4+x4MOiQ=) 10: pX4-zHrOaGGZmLrFodKOqsDRVt8.roa (hash: oNNoPaGL9tiGcsnmh6pVkfSYR8zyTqJrDL9WChZzfdA=) 11: vqLY8AJRdwBNZp1vMAKBzj7hYMk.roa (hash: QScIVVTzvA87+g4pWqcXEROo6Uo1IppOyeJM8oSgj8s=) 12: xgHR7y7J0aGtYD0R9jhr6WJbZm8.roa (hash: CHXV05nQbB5KxwYkctbAeeyJMsjXN6ysG0w+cPnzH+Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 16 May 2026 02:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:29:cc:58:41:2b:69:1d:4e:ea:2f:3c:5c:55:7b:f1:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23259da3b1b38ca0939f490fb9043fcd89cfd062 Validity Not Before: May 15 04:01:58 2026 GMT Not After : May 16 04:01:58 2026 GMT Subject: CN=83a17e9729d2c620ca352fb3692ac59857d09b8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:12:6a:08:e2:e2:99:82:34:7e:17:cd:0f:f9: 82:ce:ee:d8:62:4c:79:41:c3:91:c8:a4:b1:1a:d0: cc:8f:52:01:db:b3:a3:04:92:de:07:da:80:1f:9f: 05:63:a0:d8:f6:90:c8:a0:68:54:b8:39:d6:15:da: 92:fe:ae:ee:0f:b3:be:9c:cd:e0:0a:ed:21:91:05: 8d:f6:98:68:57:43:6f:3f:86:4c:0d:5c:63:d6:f6: 72:7e:09:14:b9:b1:52:d1:ab:fb:28:57:ed:f5:37: 7a:83:9a:6a:a4:c9:20:bc:7b:85:62:1f:2d:17:78: 6e:cd:69:fc:12:b5:43:ec:b4:2e:49:f2:8d:65:80: bf:1a:ea:26:ec:d6:0e:5a:a5:2d:4b:04:8e:7a:ab: b8:9c:18:d1:25:5a:e8:55:fb:65:d8:5a:12:4e:1e: ff:1d:b6:02:4b:b8:e9:27:62:f7:a8:c8:c1:10:3c: fa:89:57:5e:82:0b:e9:ce:49:a6:7d:8f:b2:e2:60: 5c:db:7f:b0:e5:1c:33:8d:b6:84:d6:6c:97:50:a8: b9:c9:a0:a4:0a:b2:96:f5:72:63:15:81:52:71:fa: 44:ab:a8:d3:59:37:60:05:18:2e:6d:75:2f:34:95: c8:93:e0:20:3a:b0:19:91:32:de:d3:fa:ca:93:17: 65:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:A1:7E:97:29:D2:C6:20:CA:35:2F:B3:69:2A:C5:98:57:D0:9B:8B X509v3 Authority Key Identifier: keyid:23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:d8:7b:6c:29:5d:72:44:58:03:b2:ce:e0:d8:d6:14:db:7f: 12:fd:5e:37:1e:b7:a5:52:50:d0:1b:14:8e:05:38:61:4d:4b: f9:79:a4:77:cb:24:f7:a1:04:54:03:fa:f2:33:18:89:5c:0c: 05:38:e6:bd:f5:35:20:62:ba:72:97:6f:d7:15:dc:ef:d2:12: 8b:2f:20:97:28:df:1d:e5:9d:d3:55:3c:e7:28:5f:03:9a:02: c4:5e:4c:06:2b:a6:7e:31:fa:c5:da:a8:52:e4:62:98:e6:a0: d4:5e:13:8e:cd:5b:b3:d4:3c:3e:d0:85:69:12:7e:92:5f:b9: 38:b0:34:74:39:28:83:74:9d:0d:48:7e:3a:75:8d:03:b4:90: 9d:bc:31:6a:a1:f5:0c:7d:d2:c6:f3:eb:ec:eb:03:e6:22:20: 6c:e0:e9:60:1d:4a:aa:9d:35:81:66:67:0b:34:cf:01:51:7d: 1c:d2:5d:f3:33:d8:b0:da:ef:ac:19:28:e4:bd:97:2f:fd:20: 62:f4:0d:13:1b:de:54:3a:42:4e:61:3a:24:87:6a:55:e6:b6: 00:a7:d6:15:92:93:d8:38:4c:15:fd:e5:df:d4:84:a9:b1:df: a7:7a:fe:16:5a:3e:79:4a:ee:27:25:a3:ec:b0:11:7e:1a:9c: 5e:65:58:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4pzFhBK2kdTuovPFxVe/E7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzMjU5ZGEzYjFiMzhjYTA5MzlmNDkwZmI5MDQzZmNkODlj ZmQwNjIwHhcNMjYwNTE1MDQwMTU4WhcNMjYwNTE2MDQwMTU4WjAzMTEwLwYDVQQD Eyg4M2ExN2U5NzI5ZDJjNjIwY2EzNTJmYjM2OTJhYzU5ODU3ZDA5YjhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoRJqCOLimYI0fhfND/mCzu7YYkx5 QcORyKSxGtDMj1IB27OjBJLeB9qAH58FY6DY9pDIoGhUuDnWFdqS/q7uD7O+nM3g Cu0hkQWN9phoV0NvP4ZMDVxj1vZyfgkUubFS0av7KFft9Td6g5pqpMkgvHuFYh8t F3huzWn8ErVD7LQuSfKNZYC/Guom7NYOWqUtSwSOequ4nBjRJVroVftl2FoSTh7/ HbYCS7jpJ2L3qMjBEDz6iVdeggvpzkmmfY+y4mBc23+w5RwzjbaE1myXUKi5yaCk CrKW9XJjFYFScfpEq6jTWTdgBRgubXUvNJXIk+AgOrAZkTLe0/rKkxdlmwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIOhfpcp0sYgyjUvs2kqxZhX0JuLMB8GA1UdIwQY MBaAFCMlnaOxs4ygk59JD7kEP82Jz9BiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUt NjU0ZGQ2NDQyY2U0LzEvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUtNjU0ZGQ2NDQyY2U0 LzEvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcdh7bCld ckRYA7LO4NjWFNt/Ev1eNx63pVJQ0BsUjgU4YU1L+Xmkd8sk96EEVAP68jMYiVwM BTjmvfU1IGK6cpdv1xXc79ISiy8glyjfHeWd01U85yhfA5oCxF5MBiumfjH6xdqo UuRimOag1F4Tjs1bs9Q8PtCFaRJ+kl+5OLA0dDkog3SdDUh+OnWNA7SQnbwxaqH1 DH3SxvPr7OsD5iIgbODpYB1Kqp01gWZnCzTPAVF9HNJd8zPYsNrvrBko5L2XL/0g YvQNExveVDpCTmE6JIdqVea2AKfWFZKT2DhMFf3l39SEqbHfp3r+Flo+eUruJyWj 7LARfhqcXmVY+w== -----END CERTIFICATE-----Generated at Fri May 15 07:03:08 2026 by rpki-client