$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft File: 9dmpKCydJUfFZmNPO6zMvPJYiCc.mft (raw, json) Hash identifier: Tv6apc3WOfEy2TZ9K3O3bpwmMuN3q7QBA7z/6YKLdtQ= Subject key identifier: 91:E2:47:F7:A2:54:1B:BB:AD:74:63:FF:41:BD:2E:E9:63:A2:AE:E6 Authority key identifier: F5:D9:A9:28:2C:9D:25:47:C5:66:63:4F:3B:AC:CC:BC:F2:58:88:27 Certificate issuer: /CN=f5d9a9282c9d2547c566634f3bacccbcf2588827 Certificate serial: 019F130A37590834E53B45844501DE033A02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft Manifest number: 0FA9 Signing time: Mon 29 Jun 2026 11:01:04 +0000 Manifest this update: Mon 29 Jun 2026 11:01:04 +0000 Manifest next update: Tue 30 Jun 2026 11:01:04 +0000 Files and hashes: 1: 1-TEmL5jbsK3PrKD8j52WhCZ0qeI.roa (hash: VGXlZbSa6lTTDzWoioV4bwS7txIXqiiihar6C8uT+sc=) 2: 7C0V1hBB2j4Z0mWBIUgnztA_FKo.roa (hash: NHdUGwrw8MVcwcj4xNyKJAEIGlAjm+SSRTtlFS7q5aU=) 3: 7HQY9fTNwYAKnHQdVkUdWkP7cMo.roa (hash: 02qwEv7GDGKTAQsJKIO+MBvgNnjaQx6u58d0cZrljtQ=) 4: 9dmpKCydJUfFZmNPO6zMvPJYiCc.crl (hash: HAx7DEAV4cmzgd3CWdASxCsiQES3mGiiqktpsMUqWMc=) 5: DvDmZHxr7NLVC2ShFbjqDWMVPSU.roa (hash: HGxEJ7LQfFiHhcT+DYcnCzFrTwYKp05D1m1E5DMnD6I=) 6: OUHOzLFqtWz2bbGyeYwSXrj00Uk.roa (hash: nlfqukJpNrtb/c5u87BSEisv1zmW8J3zLBOfs6U7Nrw=) 7: RZj6Q6dbNwuwz_b4LiYbYjt7s0Q.roa (hash: rZ5431yDGBLhE9MGa187xIN7yECgb8/EV3ZIyUsR8Xg=) 8: WSPBUC21vET1uaZZlnbFvCFRchE.roa (hash: 3N3I5TdJSWNVy1VYKwR1h9RK2xmp3aVZDnmQUt1fbBg=) 9: WzC3ng1LgvNoGeAWK-E4mAth79c.roa (hash: in7OVP806sec7BG3P2bRg0+XxW/GuztBYg8LKPCWtFc=) 10: b-KOOCgewsVhwidcvQfpRRWqU7I.roa (hash: X+AfcL5bK9mDooKI7JczwqJxSPkb+6057fPwNRB9rIo=) 11: sp7cckHOAVZ1urLLSuO5BmgV-dQ.roa (hash: YprGBhX6AZyr1/u6kF21WaMH+OCGQvlx5wwg1Z8Rfhk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.crl rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Jun 2026 11:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9f:13:0a:37:59:08:34:e5:3b:45:84:45:01:de:03:3a:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f5d9a9282c9d2547c566634f3bacccbcf2588827 Validity Not Before: Jun 29 11:01:04 2026 GMT Not After : Jun 30 11:01:04 2026 GMT Subject: CN=91e247f7a2541bbbad7463ff41bd2ee963a2aee6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:dc:91:f1:9b:74:5c:71:2d:b2:b4:6d:65:28: f2:45:44:a8:ff:dd:f2:ed:7c:8b:d7:1a:d4:8f:3c: df:ab:69:eb:d5:f4:b3:c5:d1:e8:e7:e8:2f:4a:dc: c1:fe:0c:03:d8:fa:8e:23:1e:c7:27:03:86:33:55: b2:95:e7:d4:a5:a6:df:ce:1f:f0:7f:ad:3f:82:5e: 61:a2:db:7d:b1:b1:0e:ed:94:6f:48:70:33:09:45: da:df:da:35:b1:ca:e4:b9:d0:53:38:e7:66:fc:90: 7d:2d:e0:ac:15:16:64:1d:e0:18:a7:dd:64:c4:37: 62:ca:27:b1:21:2c:48:14:1f:3d:e7:94:58:e1:7e: eb:73:95:c7:d3:34:bb:29:3e:00:d8:e4:5a:c2:c0: a6:7c:8e:47:e8:1b:77:88:a0:78:53:60:2c:d5:05: dc:17:a6:9c:18:37:cc:81:9c:47:b8:32:94:51:c3: a5:c2:42:a8:6a:ea:bf:08:4b:d2:6b:d3:6a:1b:96: 04:1e:4e:3f:3c:83:aa:86:d4:80:69:78:58:11:ca: 0b:37:e4:9c:47:7c:53:97:41:3a:6b:28:06:86:5f: 8b:29:9d:0e:9e:6a:30:d2:2a:97:11:59:6a:9e:00: c7:2b:e6:52:2e:64:25:1f:86:ee:b4:bc:e7:8f:d8: fd:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:E2:47:F7:A2:54:1B:BB:AD:74:63:FF:41:BD:2E:E9:63:A2:AE:E6 X509v3 Authority Key Identifier: keyid:F5:D9:A9:28:2C:9D:25:47:C5:66:63:4F:3B:AC:CC:BC:F2:58:88:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:7c:bd:2d:13:77:bd:40:55:ab:e5:b0:a7:df:22:7f:d4:ae: 4c:5d:81:aa:58:75:38:33:b5:ca:63:21:a7:65:a7:5a:ab:ae: 76:40:0d:1c:70:7b:91:c3:0d:31:5d:7c:4d:de:f2:c1:c6:39: f7:b4:79:85:a7:a1:aa:34:6f:37:6b:ab:55:b3:db:f3:ed:f3: 9f:4a:8c:d0:e3:63:81:3f:f3:8c:ba:6e:db:ce:e3:9a:6f:9a: ed:bc:8f:2c:c9:08:73:a6:1b:3b:bd:8f:83:44:da:b2:fc:13: bb:a2:2c:c1:75:82:e8:21:0a:c9:a9:f6:19:82:f5:ef:80:30: fa:3b:72:c0:2b:c7:0a:6a:fd:53:d5:a1:45:ca:8b:07:40:66: a7:d1:9c:d5:d0:20:0a:d1:07:93:5d:4b:3c:13:35:77:7e:bd: ff:cc:bd:f5:7a:dc:4a:72:d2:a7:f1:fa:e6:b5:45:66:eb:06: a9:5b:32:3a:62:bc:7e:00:a6:61:ac:bb:81:34:7e:68:a4:eb: f2:db:ec:a2:08:f2:61:96:af:c8:0d:52:81:bd:1d:4d:3c:9e: 8c:92:a1:6e:15:39:7a:68:9e:58:55:07:c8:13:6e:7c:ff:3a: f0:c5:ed:9c:1e:ac:e0:99:32:15:2a:b1:af:34:c0:cb:60:9c: f2:f8:c9:d8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ8TCjdZCDTlO0WERQHeAzoCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY1ZDlhOTI4MmM5ZDI1NDdjNTY2NjM0ZjNiYWNjY2JjZjI1 ODg4MjcwHhcNMjYwNjI5MTEwMTA0WhcNMjYwNjMwMTEwMTA0WjAzMTEwLwYDVQQD Eyg5MWUyNDdmN2EyNTQxYmJiYWQ3NDYzZmY0MWJkMmVlOTYzYTJhZWU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmNyR8Zt0XHEtsrRtZSjyRUSo/93y 7XyL1xrUjzzfq2nr1fSzxdHo5+gvStzB/gwD2PqOIx7HJwOGM1WylefUpabfzh/w f60/gl5hott9sbEO7ZRvSHAzCUXa39o1scrkudBTOOdm/JB9LeCsFRZkHeAYp91k xDdiyiexISxIFB8955RY4X7rc5XH0zS7KT4A2ORawsCmfI5H6Bt3iKB4U2As1QXc F6acGDfMgZxHuDKUUcOlwkKoauq/CEvSa9NqG5YEHk4/PIOqhtSAaXhYEcoLN+Sc R3xTl0E6aygGhl+LKZ0Onmow0iqXEVlqngDHK+ZSLmQlH4butLznj9j9gwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJHiR/eiVBu7rXRj/0G9Luljoq7mMB8GA1UdIwQY MBaAFPXZqSgsnSVHxWZjTzuszLzyWIgnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOWRtcEtDeWRKVWZGWm1OUE82ek12UEpZaUNjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8wZDA3NTUtMTg5Ny00N2VmLThkZjct OGNmNDFjYWZkY2UyLzEvOWRtcEtDeWRKVWZGWm1OUE82ek12UEpZaUNjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy8wZDA3NTUtMTg5Ny00N2VmLThkZjctOGNmNDFjYWZkY2Uy LzEvOWRtcEtDeWRKVWZGWm1OUE82ek12UEpZaUNjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATny9LRN3 vUBVq+Wwp98if9SuTF2Bqlh1ODO1ymMhp2WnWquudkANHHB7kcMNMV18Td7ywcY5 97R5haehqjRvN2urVbPb8+3zn0qM0ONjgT/zjLpu287jmm+a7byPLMkIc6YbO72P g0TasvwTu6IswXWC6CEKyan2GYL174Aw+jtywCvHCmr9U9WhRcqLB0Bmp9Gc1dAg CtEHk11LPBM1d369/8y99XrcSnLSp/H65rVFZusGqVsyOmK8fgCmYay7gTR+aKTr 8tvsogjyYZavyA1Sgb0dTTyejJKhbhU5emieWFUHyBNufP868MXtnB6s4JkyFSqx rzTAy2Cc8vjJ2A== -----END CERTIFICATE-----Generated at Mon Jun 29 17:02:29 2026 by rpki-client