$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft File: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft (raw, json) Hash identifier: Zbe+QoMrtZUfjbkIvVzhkv7EGMGbOchaLTjqCa1fpzY= Subject key identifier: 43:92:49:BE:F1:CF:7A:06:CF:F6:8D:83:1D:19:65:E0:9E:AC:C7:E0 Authority key identifier: 23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62 Certificate issuer: /CN=23259da3b1b38ca0939f490fb9043fcd89cfd062 Certificate serial: 019F1189886D254CDA4827FDA586E16EB03E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft Manifest number: 198E Signing time: Mon 29 Jun 2026 04:00:53 +0000 Manifest this update: Mon 29 Jun 2026 04:00:53 +0000 Manifest next update: Tue 30 Jun 2026 04:00:53 +0000 Files and hashes: 1: BNGMVvTZ1XawSMPOVaywEKgFz8w.roa (hash: WMt9Jn62xWAvsFJt6BLgLhIXnUKvtSHXK/jsLiQ9wc0=) 2: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl (hash: 0gdCyci+PF0lTWyzh0XRYHdXE6mf47zzpT/6L+rFWf0=) 3: J_k_uJydXhJKkAPBLn_Xr9EpYmw.roa (hash: bMaFsCf1Hj+guhXQdkk7ZJ24ZgANPSnkOncPj3CW1pQ=) 4: S9D_ZvZP7Y2SyyqdAWt1mGxtagE.roa (hash: hH6PHrAp3gX28fWUuJtWpjV+rB9bYio8w3wI6R4XHQI=) 5: YPhzzBUAAD8W6PxdQ8Eo6J_1Xlo.roa (hash: QJjVxTN7Kd8ed1QYD92fFHesTbkRe6gyeZIi3S6D0so=) 6: Z8UyJlJrz_tPx2Lzi2wtF6sRSoY.roa (hash: pZEmU7QBOi+LmI67NMxNilqE5KRHfsee+sRCVmykeWE=) 7: gw26QBwPzQF9bT3yyu20z1tgJyk.roa (hash: iuHp19gpWORmcmt7JfC/koJtOp0jpGQxA/LoBFKsFao=) 8: mdj55pZO6nRDbpPFsXBoK-GkNU8.roa (hash: JU7FZwf7hl0KcJAATQ/by5oF+/xX9ntEZw2LOkX+3S0=) 9: n70k782e6Gxq_-Hc2YO_idjOcAs.roa (hash: 9xPDUcAeeZeb+V1tJdiN4n6+fuVQh1F2hwH4+x4MOiQ=) 10: pX4-zHrOaGGZmLrFodKOqsDRVt8.roa (hash: oNNoPaGL9tiGcsnmh6pVkfSYR8zyTqJrDL9WChZzfdA=) 11: vqLY8AJRdwBNZp1vMAKBzj7hYMk.roa (hash: QScIVVTzvA87+g4pWqcXEROo6Uo1IppOyeJM8oSgj8s=) 12: xgHR7y7J0aGtYD0R9jhr6WJbZm8.roa (hash: CHXV05nQbB5KxwYkctbAeeyJMsjXN6ysG0w+cPnzH+Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Jun 2026 04:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9f:11:89:88:6d:25:4c:da:48:27:fd:a5:86:e1:6e:b0:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23259da3b1b38ca0939f490fb9043fcd89cfd062 Validity Not Before: Jun 29 04:00:53 2026 GMT Not After : Jun 30 04:00:53 2026 GMT Subject: CN=439249bef1cf7a06cff68d831d1965e09eacc7e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:46:87:b9:5a:b7:d1:16:1a:1a:e9:c9:1c:98: 60:82:42:50:74:cb:77:52:07:e4:7e:57:16:52:5c: 5a:72:94:94:bc:65:a6:cc:9c:d9:20:1c:95:2e:7f: fb:22:ee:3d:a2:76:c0:79:0b:ef:e2:52:ec:01:5d: 2e:ec:40:33:48:32:5d:7d:71:2a:05:7d:1a:37:13: 18:2d:00:2b:3f:42:10:69:93:2c:ff:f2:93:98:85: b2:ab:2e:ad:60:8e:1c:ad:03:20:31:92:be:57:17: e5:7f:35:7b:c7:d4:c2:75:3c:80:72:78:92:d9:81: 29:cb:f8:24:22:32:0d:77:a6:0d:f7:e6:4b:ab:d6: cf:30:36:03:79:7c:80:0f:7f:5f:5e:ed:b4:18:63: 15:95:92:62:d9:9c:bd:80:97:a4:d9:3b:9d:8a:0d: c1:d6:68:2d:f9:7a:9d:0f:21:67:d4:58:5b:5b:ff: be:c7:a5:dd:0d:e2:5e:7b:b8:a9:2a:3f:30:ba:2e: 4d:97:3b:af:36:a1:80:12:8c:61:91:47:8d:4f:7d: 88:21:a0:8c:d6:dd:2a:c5:4b:a1:ef:51:f9:d3:82: 1c:b7:89:cd:2c:ae:c2:ed:06:c6:2c:7b:78:84:94: c4:72:31:63:64:20:41:9c:85:cc:53:42:11:f2:1e: 02:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:92:49:BE:F1:CF:7A:06:CF:F6:8D:83:1D:19:65:E0:9E:AC:C7:E0 X509v3 Authority Key Identifier: keyid:23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:e8:63:e4:d5:ad:c0:40:1d:b3:98:63:e8:36:0e:08:ac:99: aa:ec:06:9a:67:32:8d:55:04:b2:6f:a4:ba:59:cb:82:ab:81: 27:33:4a:b9:fb:22:d5:c2:e2:e9:56:72:d2:69:01:98:72:95: 15:2c:1c:2a:63:f3:36:1a:e2:92:48:8f:a7:5a:be:2d:27:88: 42:ae:a9:74:82:e0:8d:a8:36:61:71:7a:92:fa:81:ff:d5:6b: 1d:d7:51:7c:f6:cd:b4:8c:46:9e:12:8a:d4:45:e8:bb:78:8e: e6:b1:a5:f6:8f:01:88:d5:9e:ac:a4:b2:34:4e:1c:4c:62:ba: 43:b9:6c:58:d3:43:ff:9a:f9:b6:95:7e:ff:b0:e4:91:14:67: c1:76:f2:d0:79:85:0b:72:06:5d:92:11:24:20:c8:f9:18:f0: 70:e8:30:23:d0:a5:c7:8c:fc:2f:a8:b0:c9:04:44:9d:8a:6d: bc:35:3f:54:62:a8:ba:73:1d:29:68:d0:72:cc:0b:ea:39:1a: 7b:bb:df:f0:b1:77:f6:f7:95:9f:41:eb:6d:05:d9:55:b8:f1: 35:e0:8b:97:c3:82:fc:cc:09:b1:83:25:37:b5:bc:f9:d6:4d: ab:a2:c0:55:0e:34:d3:4a:79:97:41:ee:d2:e4:a4:97:51:fb: ce:64:6e:fa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ8RiYhtJUzaSCf9pYbhbrA+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzMjU5ZGEzYjFiMzhjYTA5MzlmNDkwZmI5MDQzZmNkODlj ZmQwNjIwHhcNMjYwNjI5MDQwMDUzWhcNMjYwNjMwMDQwMDUzWjAzMTEwLwYDVQQD Eyg0MzkyNDliZWYxY2Y3YTA2Y2ZmNjhkODMxZDE5NjVlMDllYWNjN2UwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqUaHuVq30RYaGunJHJhggkJQdMt3 UgfkflcWUlxacpSUvGWmzJzZIByVLn/7Iu49onbAeQvv4lLsAV0u7EAzSDJdfXEq BX0aNxMYLQArP0IQaZMs//KTmIWyqy6tYI4crQMgMZK+VxflfzV7x9TCdTyAcniS 2YEpy/gkIjINd6YN9+ZLq9bPMDYDeXyAD39fXu20GGMVlZJi2Zy9gJek2Tudig3B 1mgt+XqdDyFn1FhbW/++x6XdDeJee7ipKj8wui5NlzuvNqGAEoxhkUeNT32IIaCM 1t0qxUuh71H504Ict4nNLK7C7QbGLHt4hJTEcjFjZCBBnIXMU0IR8h4CNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEOSSb7xz3oGz/aNgx0ZZeCerMfgMB8GA1UdIwQY MBaAFCMlnaOxs4ygk59JD7kEP82Jz9BiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUt NjU0ZGQ2NDQyY2U0LzEvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUtNjU0ZGQ2NDQyY2U0 LzEvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFOhj5NWt wEAds5hj6DYOCKyZquwGmmcyjVUEsm+kulnLgquBJzNKufsi1cLi6VZy0mkBmHKV FSwcKmPzNhrikkiPp1q+LSeIQq6pdILgjag2YXF6kvqB/9VrHddRfPbNtIxGnhKK 1EXou3iO5rGl9o8BiNWerKSyNE4cTGK6Q7lsWNND/5r5tpV+/7DkkRRnwXby0HmF C3IGXZIRJCDI+RjwcOgwI9Clx4z8L6iwyQREnYptvDU/VGKounMdKWjQcswL6jka e7vf8LF39veVn0HrbQXZVbjxNeCLl8OC/MwJsYMlN7W8+dZNq6LAVQ4000p5l0Hu 0uSkl1H7zmRu+g== -----END CERTIFICATE-----Generated at Mon Jun 29 12:40:30 2026 by rpki-client