$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft File: AOT2p3Not87P5nIgtDZXax4Aiuw.mft (raw, json) Hash identifier: KI9tc6Z/12s/lRLFLPsaxe06DiBzTm4NXhw+vPGrJ9Y= Subject key identifier: 92:EF:C8:90:8D:75:BE:6A:79:E3:F3:F2:CE:4B:32:F4:7B:A0:F3:1E Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec Certificate serial: 019DF885D0BEAFB78DD89652994CFB533C9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft Manifest number: 19FB Signing time: Tue 05 May 2026 14:23:32 +0000 Manifest this update: Tue 05 May 2026 14:23:32 +0000 Manifest next update: Wed 06 May 2026 14:23:32 +0000 Files and hashes: 1: 1-7-GRl1DpJL9MX_Eh7vVlgQAtds.roa (hash: qBQ+Yv34RT+76LqwEUvZMWK4vq87p/Tm5N2E03sJUtE=) 2: AOT2p3Not87P5nIgtDZXax4Aiuw.crl (hash: Xp2xWEm/nfxwvrVey7bd3tClC83lWCit+0GNEkvwL7g=) 3: CP1700xQhoIo0eqZb96w49fwMZU.roa (hash: FhGMMmXWb4O7zbwANRuKCF/ES8PwzOmEkZV99iTN5xU=) 4: F6dUztKMNdNv8ZSxIqUte1Cxnz4.roa (hash: ICR0ruZ1x8XFwG23XD2xqkslIHqozkbJAB3eaMcNBEI=) 5: Iz8oQHvYY4N1cu4pgE3299ogM34.roa (hash: GTn6Y+DWEw4+IcATVORnDqgcpHWD0i8V9c7BBTnRM3U=) 6: MQ0e7OQgina0hHLbzkJJI7ocRMY.roa (hash: lYlPT7y2KTJ0qjKzQaLtDJlIn+M8xo18ZCJuzXN583Y=) 7: VcGOwSBLa8MeclenBwYCnJTkc6Q.roa (hash: ZpKqr8OOjlncepBvaT8KeQio9IThw68qGgH8coHhuVI=) 8: gF0x-IgTBvCJCERAByN93AH9MjM.roa (hash: f9L9sZ2MryoARd93KF5kcE6ImNuSL3mNiWJ8yZc3d58=) 9: hGF5HckbV_mO1zNnnUvLaxvGgg0.roa (hash: LswWVKDsb8V0ubfBEeUCi7BkiOP6J97pjosqCGNORUk=) 10: mjA0pNQxoVl0KGEC4k-tYJlKGGk.roa (hash: lrLZhQx52IMzqIGLj7uTZANTlbmxap1lsbfyOuQwsgQ=) 11: oPPgaBYxfthIjxyRNKKvuQhADcA.roa (hash: vJpx4imZl2f0ZsJVLjSi4WZMmzQUNNlQIXHfoEUu3/k=) 12: v3K9UBCZQXetZHCASn_v-Er6z80.roa (hash: M01ADTQv5+WF8EwvS7wZ9W7tolykwshPsb2JjYqw3EQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 06 May 2026 13:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:f8:85:d0:be:af:b7:8d:d8:96:52:99:4c:fb:53:3c:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec Validity Not Before: May 5 14:23:32 2026 GMT Not After : May 6 14:23:32 2026 GMT Subject: CN=92efc8908d75be6a79e3f3f2ce4b32f47ba0f31e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8d:e7:50:34:e2:b0:24:0b:48:c3:64:94:30: eb:ec:0d:0d:f1:2e:d8:62:96:64:29:15:5a:fb:d1: b6:de:c0:f8:1c:0f:4a:f6:ca:46:48:b1:c6:f2:be: 4e:67:36:f1:99:37:c7:8d:75:99:46:1e:ef:08:fa: 94:c5:47:e5:16:e0:7f:6a:51:28:2b:69:b4:89:14: 8a:22:46:66:3b:65:07:f0:47:7f:41:6d:fd:ab:ad: 3d:7a:be:c2:8c:28:84:77:64:22:3a:86:24:59:8d: 1c:6f:83:16:f1:04:d2:b8:af:42:fb:de:1a:c1:ce: 76:f2:fd:f9:c2:2c:80:00:b8:26:ae:26:2e:0b:30: 0c:d9:bf:5a:21:57:72:6e:02:30:58:50:49:57:67: 4d:d4:76:ab:ae:df:89:51:3f:09:c8:67:75:41:a2: 82:71:e6:bd:f3:1d:6b:f1:5e:70:d1:21:0b:ca:2c: 2d:e1:ed:6e:9b:d3:ab:7b:39:34:21:e1:01:94:b6: 2a:de:a7:0d:d2:49:bd:b2:70:21:44:38:83:fa:0a: 01:59:91:36:6a:4b:47:f8:c4:84:1c:82:89:c1:23: b2:31:1a:c9:33:60:e6:9a:9f:18:e4:cd:18:d3:45: 13:fc:39:79:c4:75:99:12:bb:2f:98:48:9c:3c:3c: da:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:EF:C8:90:8D:75:BE:6A:79:E3:F3:F2:CE:4B:32:F4:7B:A0:F3:1E X509v3 Authority Key Identifier: keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e4:a9:70:54:18:ee:03:3c:e9:ea:5c:91:cf:ce:66:8e:2d:3d: 03:72:1b:01:87:55:b3:f3:9e:95:ae:54:71:ee:b5:44:7d:ea: a4:8b:e4:33:fc:bb:94:8f:16:21:b8:3b:3d:19:a7:b7:84:7e: af:ad:1e:07:0b:74:02:1e:ed:bd:64:77:07:12:4f:ed:b5:ef: 60:7f:8c:8a:1d:84:ec:6a:ab:f6:85:e7:5f:21:28:b1:5c:62: e4:b5:24:f9:72:9c:99:a1:9a:db:17:53:77:f2:ad:c0:fb:66: bd:cd:03:ec:a2:14:23:88:fb:32:7c:2f:9f:4f:de:7d:c2:5a: 97:21:34:71:32:0a:43:63:b8:b1:cc:b4:6a:42:21:6e:03:fc: ba:e7:3a:3e:02:47:49:2c:bc:09:0b:74:c6:13:db:a3:67:4b: 6b:e7:ea:60:c3:9c:ac:51:5d:ad:da:dd:b5:5c:37:26:2c:b1: bf:71:f6:0b:c8:5c:26:c0:96:b4:5f:6d:e2:9e:af:18:1f:6c: e4:b8:34:23:f9:a8:6e:81:9a:65:33:6e:a7:fd:b7:94:8e:93: ff:4d:25:98:e6:c0:d3:3e:c5:21:16:cd:d8:4b:ea:0e:0a:b2: a2:4f:15:f3:b4:2d:b0:75:18:25:c8:31:03:56:91:3c:73:6f: 65:2d:f3:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ34hdC+r7eN2JZSmUz7UzycMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZTRmNmE3NzM2OGI3Y2VjZmU2NzIyMGI0MzY1NzZiMWUw MDhhZWMwHhcNMjYwNTA1MTQyMzMyWhcNMjYwNTA2MTQyMzMyWjAzMTEwLwYDVQQD Eyg5MmVmYzg5MDhkNzViZTZhNzllM2YzZjJjZTRiMzJmNDdiYTBmMzFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsI3nUDTisCQLSMNklDDr7A0N8S7Y YpZkKRVa+9G23sD4HA9K9spGSLHG8r5OZzbxmTfHjXWZRh7vCPqUxUflFuB/alEo K2m0iRSKIkZmO2UH8Ed/QW39q609er7CjCiEd2QiOoYkWY0cb4MW8QTSuK9C+94a wc528v35wiyAALgmriYuCzAM2b9aIVdybgIwWFBJV2dN1Harrt+JUT8JyGd1QaKC cea98x1r8V5w0SELyiwt4e1um9Orezk0IeEBlLYq3qcN0km9snAhRDiD+goBWZE2 aktH+MSEHIKJwSOyMRrJM2Dmmp8Y5M0Y00UT/Dl5xHWZErsvmEicPDza2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJLvyJCNdb5qeePz8s5LMvR7oPMeMB8GA1UdIwQY MBaAFADk9qdzaLfOz+ZyILQ2V2seAIrsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMt YjA3ZDg0MTZhZTRhLzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMtYjA3ZDg0MTZhZTRh LzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA5KlwVBju Azzp6lyRz85mji09A3IbAYdVs/Oela5Uce61RH3qpIvkM/y7lI8WIbg7PRmnt4R+ r60eBwt0Ah7tvWR3BxJP7bXvYH+Mih2E7Gqr9oXnXyEosVxi5LUk+XKcmaGa2xdT d/KtwPtmvc0D7KIUI4j7Mnwvn0/efcJalyE0cTIKQ2O4scy0akIhbgP8uuc6PgJH SSy8CQt0xhPbo2dLa+fqYMOcrFFdrdrdtVw3Jiyxv3H2C8hcJsCWtF9t4p6vGB9s 5Lg0I/moboGaZTNup/23lI6T/00lmObA0z7FIRbN2EvqDgqyok8V87QtsHUYJcgx A1aRPHNvZS3zMQ== -----END CERTIFICATE-----Generated at Tue May 5 20:10:35 2026 by rpki-client