$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft File: iawKy_23onTvNsFvWGCtoqJHBpc.mft (raw, json) Hash identifier: oslCqgwVwj/dyB0vcFtbJONBnJwuYGl8jsAej2+kDTw= Subject key identifier: A5:10:D6:2F:25:D5:13:F7:55:38:D2:DF:D1:09:B7:A0:4C:8A:C8:10 Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97 Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697 Certificate serial: 019EB6C5EE768DE9AE3A34B39C01EF1831B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft Manifest number: 194A Signing time: Thu 11 Jun 2026 13:01:25 +0000 Manifest this update: Thu 11 Jun 2026 13:01:25 +0000 Manifest next update: Fri 12 Jun 2026 13:01:25 +0000 Files and hashes: 1: 8dz0TrMtwzys9aId9S0iNBUOM6I.roa (hash: QLXQgTisSL5o9NDXTvqc31xSu43P2bWSnl0Mbj1LxKA=) 2: CG9ohWuinT5B93Rnr5fGvMKn1vY.roa (hash: PUMGIgV3wIfMf5d0ulCrvrKBPvAL6Ata0pqTX8puweA=) 3: JSGXBtXBDhU1ugyi_XXHVVOXM3E.roa (hash: arGn6FJKM/5X/KQBvvmxnfiup95zCVTz6MKIcb88dnA=) 4: JutDRiQZPtkgRNn4DbKRtcU159k.roa (hash: TBfVgKnr15EdS367udNkZsLjUZkCmwigL6STK1CGALk=) 5: WYjaPZyXn9OqgdQ9oF2UyH6UZxY.roa (hash: EVCumPjXA28vp5ehPKHe+PCdpvR77Tfj3/cbydnM+o0=) 6: XXTLAzTN8ORt_-RYCj2-8C6GR00.roa (hash: 6BDh84FsMhXUtXLJgFo0Xh10o5gPmpg2C2PNspUTVCk=) 7: Y-SOlnUVIZjOVvcxnnWFzaAte_E.roa (hash: 2bLhdqPwt8VWaJXmqBQ8pl5vk0Pqbt7n4V7xQ3T9Dew=) 8: iawKy_23onTvNsFvWGCtoqJHBpc.crl (hash: +ad1q4l2M6JdkG4Ni5SkU74O/Z0+dybACW7pSTkwHGs=) 9: m6mcSmpfmNAj9RbqZcHLhm1-GBQ.roa (hash: p83WPoiu14c7eyRfswAFJNoQrZPR/HEj5misljpRM2U=) 10: nkHJQxs3RvxryxXyywwLA5kWGDI.roa (hash: VuLzAxuuKrma6aeyKBkCPTnFtqwkCI2Bh/sV0lxF7Jc=) 11: vzjiQ62-Ida16ZpmsWaWVB-3g8U.roa (hash: jsH0jmCurlULuLa9fBp8xexVcDJDX4+DOBZF+vtnAlE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:b6:c5:ee:76:8d:e9:ae:3a:34:b3:9c:01:ef:18:31:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697 Validity Not Before: Jun 11 13:01:25 2026 GMT Not After : Jun 12 13:01:25 2026 GMT Subject: CN=a510d62f25d513f75538d2dfd109b7a04c8ac810 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:6a:61:c7:4d:37:92:4f:8f:c6:79:70:d0:89: 28:ac:9e:4e:e7:df:1c:ae:61:86:39:15:f3:05:6a: c7:c0:f3:b0:0f:79:c5:3a:5d:a5:6c:c0:e8:e5:08: d3:b7:f4:86:3b:20:56:db:22:46:e1:df:25:6b:90: 84:c9:6d:5b:86:37:ce:b6:82:c1:ca:10:22:fe:12: 1d:5c:2d:22:7f:76:61:d5:2e:91:0c:9a:fd:a3:ed: fd:7c:ba:0a:30:5c:8f:7a:7a:10:60:7a:33:36:5b: 0f:66:a3:62:0c:be:2f:cd:26:35:cc:53:60:20:5e: ec:d5:d9:96:df:e8:f9:0d:68:06:6a:ac:39:c4:a0: 83:2b:7d:90:ea:66:d8:cd:6a:5e:06:ed:29:1d:05: 05:a7:ce:0a:76:34:06:b2:c6:61:23:e3:d5:fa:ab: 12:a0:93:cc:34:84:84:32:b0:3c:5f:78:66:fa:e2: 21:52:08:96:bc:1e:91:76:c0:f1:12:39:f8:99:4f: 77:8d:29:c7:2f:fd:39:28:72:ca:21:55:c6:56:1f: cf:78:35:68:2f:2a:fb:49:24:48:d0:71:c7:0a:15: 91:5d:8c:f6:30:f2:10:96:c8:b6:4e:18:b8:da:b6: cf:25:32:2c:e7:d3:81:ff:3f:62:f9:97:bf:99:29: bf:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:10:D6:2F:25:D5:13:F7:55:38:D2:DF:D1:09:B7:A0:4C:8A:C8:10 X509v3 Authority Key Identifier: keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:b0:46:35:c0:85:98:87:bf:10:57:e8:6e:91:71:1e:9f:87: 5e:7a:65:6f:16:8c:65:28:69:4b:c5:0e:53:e3:a9:f1:2d:30: a1:82:a6:0b:05:74:da:4c:7a:c3:d4:bc:d9:1e:18:6e:63:8d: 72:da:fa:6b:55:2d:6d:40:3c:4d:69:58:03:04:71:57:af:3f: 57:a8:22:b4:db:e2:04:7f:b1:32:25:ff:bb:7d:59:ad:4a:35: 1b:60:f2:d7:21:77:8b:5f:1a:0e:f8:92:57:0c:ed:10:27:54: 89:e7:e3:3f:1b:7a:e7:37:e5:bb:3b:ae:72:c1:58:0d:f9:79: 7c:bf:9d:c4:16:5b:9b:9f:23:40:4e:5b:f6:91:db:ec:de:25: 4b:21:bf:ae:69:46:12:49:db:64:56:e4:84:33:56:2e:fd:69: 7e:85:2a:84:fd:f6:cb:2f:f8:bf:59:5c:26:76:c7:1a:77:2f: be:43:15:d9:a9:3a:81:df:1d:fd:70:a9:32:5d:46:42:45:f6: 91:93:bb:d4:88:55:bc:b5:bc:70:83:68:44:53:bf:73:1c:26: 27:0a:41:05:6d:75:a9:c8:48:1a:a8:36:64:38:13:60:2e:f7: 4b:17:01:c2:40:25:14:7a:5c:2d:8f:5b:c1:04:01:5f:69:7e: 21:e2:de:df -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ62xe52jemuOjSznAHvGDG4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5YWMwYWNiZmRiN2EyNzRlZjM2YzE2ZjU4NjBhZGEyYTI0 NzA2OTcwHhcNMjYwNjExMTMwMTI1WhcNMjYwNjEyMTMwMTI1WjAzMTEwLwYDVQQD EyhhNTEwZDYyZjI1ZDUxM2Y3NTUzOGQyZGZkMTA5YjdhMDRjOGFjODEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz2phx003kk+Pxnlw0IkorJ5O598c rmGGORXzBWrHwPOwD3nFOl2lbMDo5QjTt/SGOyBW2yJG4d8la5CEyW1bhjfOtoLB yhAi/hIdXC0if3Zh1S6RDJr9o+39fLoKMFyPenoQYHozNlsPZqNiDL4vzSY1zFNg IF7s1dmW3+j5DWgGaqw5xKCDK32Q6mbYzWpeBu0pHQUFp84KdjQGssZhI+PV+qsS oJPMNISEMrA8X3hm+uIhUgiWvB6RdsDxEjn4mU93jSnHL/05KHLKIVXGVh/PeDVo Lyr7SSRI0HHHChWRXYz2MPIQlsi2Thi42rbPJTIs59OB/z9i+Ze/mSm/OQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKUQ1i8l1RP3VTjS39EJt6BMisgQMB8GA1UdIwQY MBaAFImsCsv9t6J07zbBb1hgraKiRwaXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWF3S3lfMjNvblR2TnNGdldHQ3RvcUpIQnBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS85M2E3NjgtMjY3Ny00OGQ2LTkxNGMt ZDRkYmY3MDY2ZmQzLzEvaWF3S3lfMjNvblR2TnNGdldHQ3RvcUpIQnBjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS85M2E3NjgtMjY3Ny00OGQ2LTkxNGMtZDRkYmY3MDY2ZmQz LzEvaWF3S3lfMjNvblR2TnNGdldHQ3RvcUpIQnBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALrBGNcCF mIe/EFfobpFxHp+HXnplbxaMZShpS8UOU+Op8S0woYKmCwV02kx6w9S82R4YbmON ctr6a1UtbUA8TWlYAwRxV68/V6gitNviBH+xMiX/u31ZrUo1G2Dy1yF3i18aDviS VwztECdUiefjPxt65zfluzuucsFYDfl5fL+dxBZbm58jQE5b9pHb7N4lSyG/rmlG EknbZFbkhDNWLv1pfoUqhP32yy/4v1lcJnbHGncvvkMV2ak6gd8d/XCpMl1GQkX2 kZO71IhVvLW8cINoRFO/cxwmJwpBBW11qchIGqg2ZDgTYC73SxcBwkAlFHpcLY9b wQQBX2l+IeLe3w== -----END CERTIFICATE-----Generated at Thu Jun 11 20:48:59 2026 by rpki-client