$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft File: JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft (raw, json) Hash identifier: 1XMpq44S4lHkQgh9Frp9GvcYakxt10oWnww0SFfET9w= Subject key identifier: 22:0E:9C:37:7A:01:5D:BA:D8:A2:67:B1:86:23:44:55:38:36:9A:6D Authority key identifier: 25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04 Certificate issuer: /CN=255876412d20fbb6cab823481782ac47703b4404 Certificate serial: 019DCCE261C0532D4867729113B201F086F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft Manifest number: 05B3 Signing time: Mon 27 Apr 2026 03:01:21 +0000 Manifest this update: Mon 27 Apr 2026 03:01:21 +0000 Manifest next update: Tue 28 Apr 2026 03:01:21 +0000 Files and hashes: 1: 3ni1lXz0xo-b4HoXI3wRu6vJL-c.roa (hash: 7b3P7fNZC5J3JcfQvJqiC/2neHH6f8kadDw6/l3P8/Y=) 2: AmdO1jA2vkBtxkn2vv7Y1wu4dFM.roa (hash: wY1LZtovvbzyHM2W8YhMwLuam5z9V3nwmwDqM8gEEF4=) 3: BYtnuImtTGdi14Pvw9xlRKAL65k.roa (hash: hUoeJXbJ5fZg7WKvqap5HxU1pLmROBa7LXCxisf4SP4=) 4: CNFp8fRkRFtEQks7R0O2wgi6-xA.roa (hash: bXlKDyyKKGdmKBfoGxYPygp5JG45Ozo2FLYDRNT3VpM=) 5: HrFuB2F4P326FdIKDHmR_z_oGqs.roa (hash: d1+J0bs8Jd4Tmg8E7c67C6CZ18CYNi+0jZ3ouxTsd3M=) 6: JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl (hash: dHMn43qRKDWJzFQHPptBYZA4QOFZPvwHbFekQmcWzWc=) 7: YlYX0-EwdZ0RjwlcesbIkWVsVTo.roa (hash: 12tzR601qVt1Vj7EME9V9wBl6cqsNdP8VmiHIJgAu5Q=) 8: cNqycsZxVsHcATCP8JWqqaoM9SI.roa (hash: CX+xOUuMFEXPOxevDnRNct6cRUm/jc1q9b58M6PTWZo=) 9: gE3k0i8jHZvr5aE-wjNKPwzJxvE.roa (hash: CuCVWX3Bl6EYyE6nnbYJN+zyPfahHe62RUo//GoIy9o=) 10: lBlo6PUCc6IqER-nFwmpK7D7yqo.roa (hash: Z5uCFtdD3Jko3O/Znx9FA924V5ua0wn5UjLkJKE8KyE=) 11: qbksFEEwSTb2bBOnvyMaaJhR7Ss.roa (hash: qH3mt9TzRYD5CJqPjTYWZEejOSD69A/a1ZIdDauUkQo=) 12: urqr3QuscnM9Gexd4HqCzda04Hs.roa (hash: +eFtvrmvtLAGjqTjuO2JbNNCYDwjSBJV6qDXXX+HoPY=) 13: vsRZs78l22h0vnp-DI6scU3LKUA.roa (hash: 4WpHfFl6tIuHybFbUi60kzMtYBl55u5TXUCckR5iGfg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 28 Apr 2026 03:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:cc:e2:61:c0:53:2d:48:67:72:91:13:b2:01:f0:86:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=255876412d20fbb6cab823481782ac47703b4404 Validity Not Before: Apr 27 03:01:21 2026 GMT Not After : Apr 28 03:01:21 2026 GMT Subject: CN=220e9c377a015dbad8a267b18623445538369a6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:42:9c:ab:bd:4e:49:c3:41:b4:75:84:80:2e: 15:a2:77:20:b7:63:f5:27:53:c8:ca:a2:8f:89:26: 83:e1:52:a3:73:a2:97:03:4b:d3:94:aa:6f:62:80: c6:fb:89:ee:34:ec:6e:21:24:0a:ca:6e:c6:f2:03: 41:ca:08:69:77:e7:19:93:f0:89:f2:1e:e6:d2:78: 1d:29:a5:0f:e8:00:72:b4:40:94:fe:04:5f:78:d3: 95:f4:17:ff:c2:05:b1:a7:85:5a:e9:40:f6:ce:b0: e1:5c:9d:3b:10:3d:08:56:fc:13:74:87:4b:e2:63: 27:5c:85:98:91:eb:8f:e4:16:35:09:0c:74:e8:38: 12:4a:ae:c3:98:64:97:f2:9c:ba:b6:e5:8c:15:2a: 77:40:c3:94:af:85:40:2a:aa:33:7d:0d:31:d1:02: 36:0c:8a:1c:94:b4:23:3e:7c:60:66:3c:d6:4e:90: 87:97:1a:95:da:c2:34:e6:40:32:e4:83:4a:08:9a: a8:64:0d:f0:e4:db:22:c1:41:19:af:37:27:10:04: 88:f0:ff:ae:d5:00:6f:2d:b9:09:65:98:54:63:e0: 43:28:db:c9:01:83:32:8d:c8:ad:4e:70:f4:1f:b4: 2a:b5:3b:58:b3:e9:d6:32:84:54:b4:12:ee:df:81: 20:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:0E:9C:37:7A:01:5D:BA:D8:A2:67:B1:86:23:44:55:38:36:9A:6D X509v3 Authority Key Identifier: keyid:25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:97:d5:9e:10:1d:96:f6:e8:17:fd:52:ab:46:9b:9b:04:34: b6:6a:d6:fb:f8:d6:9b:21:bb:b6:ef:d6:69:31:ba:ab:9d:30: c0:cb:2f:03:8a:33:3a:a3:ae:38:f2:a2:0a:ff:79:08:53:ce: a6:a9:c6:3c:1d:8c:63:19:d2:b5:7a:10:11:98:b1:08:09:00: b7:08:4f:3c:5d:d4:87:c1:4f:34:2c:0f:ea:2a:2e:5f:ce:80: 47:82:b3:a7:ff:38:79:65:90:6a:76:89:02:b1:ad:ac:f0:9c: 2e:2e:13:a9:b4:de:c7:85:7c:89:03:27:cf:07:9e:4f:7c:7c: 10:23:a3:ca:6b:7c:f2:7e:ba:28:df:d2:b2:3f:2a:99:30:6a: 0c:cc:96:01:05:42:bf:d6:f7:17:50:96:41:24:66:f1:f8:c0: 4f:81:0e:f7:85:fb:97:e8:91:81:be:07:2e:cf:9d:ab:ba:b1: dc:dc:9b:d0:64:54:ff:7e:92:2a:0a:84:00:53:4c:5a:f2:2f: 2e:f7:21:fd:f1:27:a3:f0:d5:99:34:81:ce:83:19:72:3e:a0: 03:6c:e9:e7:6e:41:35:ca:c2:c1:f7:58:41:f8:eb:0f:e3:1f: a3:18:7a:f5:9b:eb:72:88:88:8e:99:0a:c4:2d:be:43:48:4e: 91:c5:a4:be -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ3M4mHAUy1IZ3KRE7IB8IbwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1NTg3NjQxMmQyMGZiYjZjYWI4MjM0ODE3ODJhYzQ3NzAz YjQ0MDQwHhcNMjYwNDI3MDMwMTIxWhcNMjYwNDI4MDMwMTIxWjAzMTEwLwYDVQQD EygyMjBlOWMzNzdhMDE1ZGJhZDhhMjY3YjE4NjIzNDQ1NTM4MzY5YTZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvUKcq71OScNBtHWEgC4Voncgt2P1 J1PIyqKPiSaD4VKjc6KXA0vTlKpvYoDG+4nuNOxuISQKym7G8gNByghpd+cZk/CJ 8h7m0ngdKaUP6ABytECU/gRfeNOV9Bf/wgWxp4Va6UD2zrDhXJ07ED0IVvwTdIdL 4mMnXIWYkeuP5BY1CQx06DgSSq7DmGSX8py6tuWMFSp3QMOUr4VAKqozfQ0x0QI2 DIoclLQjPnxgZjzWTpCHlxqV2sI05kAy5INKCJqoZA3w5NsiwUEZrzcnEASI8P+u 1QBvLbkJZZhUY+BDKNvJAYMyjcitTnD0H7QqtTtYs+nWMoRUtBLu34EgbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCIOnDd6AV262KJnsYYjRFU4NpptMB8GA1UdIwQY MBaAFCVYdkEtIPu2yrgjSBeCrEdwO0QEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEt ODc2YzdmY2E0YjM0LzEvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEtODc2YzdmY2E0YjM0 LzEvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgJfVnhAd lvboF/1Sq0abmwQ0tmrW+/jWmyG7tu/WaTG6q50wwMsvA4ozOqOuOPKiCv95CFPO pqnGPB2MYxnStXoQEZixCAkAtwhPPF3Uh8FPNCwP6iouX86AR4Kzp/84eWWQanaJ ArGtrPCcLi4TqbTex4V8iQMnzweeT3x8ECOjymt88n66KN/Ssj8qmTBqDMyWAQVC v9b3F1CWQSRm8fjAT4EO94X7l+iRgb4HLs+dq7qx3Nyb0GRU/36SKgqEAFNMWvIv Lvch/fEno/DVmTSBzoMZcj6gA2zp525BNcrCwfdYQfjrD+Mfoxh69ZvrcoiIjpkK xC2+Q0hOkcWkvg== -----END CERTIFICATE-----Generated at Mon Apr 27 09:55:33 2026 by rpki-client