$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft File: kdDHjDCaPpncmrdPLNwEhIWedTA.mft (raw, json) Hash identifier: lv0xeL8BE+Zan7BEce5DJ6Xd+9zKCrPM8IUrRJ0LmK4= Subject key identifier: 2D:97:7A:83:5C:59:7B:4C:E1:5E:17:40:BF:A1:C5:BB:53:99:A6:B1 Authority key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30 Certificate issuer: /CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530 Certificate serial: 019F0AE2F235E9ED3BEE22933BD3A96B897F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft Manifest number: 149E Signing time: Sat 27 Jun 2026 21:01:13 +0000 Manifest this update: Sat 27 Jun 2026 21:01:13 +0000 Manifest next update: Sun 28 Jun 2026 21:01:13 +0000 Files and hashes: 1: 4VmR_FihzyMKRVwNqS1q32ma_4w.roa (hash: 8llGmDSPV1S8WvDmecxyGu8AsVkz9E7OwToEbm9Afi8=) 2: 9ThI9Z7soYxz8aK7SxBvxoPEOX4.roa (hash: 2FCnysFwLOl4zVeb97SHJ1QvBKVL+gw4QmS3UAORjFk=) 3: BsMfnzrxddpnmFQ8FtiqLN4hIRw.roa (hash: GbFN7H89aII0f8FiIff5RGaJGPYoV9OOEoYuPkHE93c=) 4: C67-QabxkPaVhoCKelfc7gJ1hK8.roa (hash: 0WW6NyrxV5VH4o1lj6kLTZOdEKPeDBs7ouwPQd+hBHw=) 5: GXCfAVmuuL63Oe4dOVqYkc3Wuzg.roa (hash: L3MDEpVumA01FdWvikqD5sE8kkEXPwKtDKdz6KqfMnQ=) 6: RY0bArq-jZLzZUGQCt7VtVQ1eP8.roa (hash: nOIDnyfWMWKkEgKPjDc9li7leEEkKMO7ZYw+RINdMRI=) 7: WNwct_JeSUw9EGnGt5EMmHO1qnA.roa (hash: 8JESbBJVZwKNLtuuBYLAyN1yjWX+0RJfMcx4iiDnUQ0=) 8: br-MdcUGAgIJZ2jokAIrGgvBgVg.roa (hash: nAJrJwXFm0eNNJbUiUMkYMOpV3Mo7gqR8CqVePMN9SA=) 9: kdDHjDCaPpncmrdPLNwEhIWedTA.crl (hash: dZbt04RF6Lex75fob5UBjQQmCre+n19hfcvbt9XCVic=) 10: p3gPfuFdg2rqrSBfl0UDEUdNbjM.roa (hash: bWC6ioqLuy3JQURX6TTBBncQtFn3EtAYrnrtm+JIq5g=) 11: qoJxh9RoMci9r1884qksasXONeQ.roa (hash: b1P5hF2MWBN0Il3GucTyqyanvw/mWve+jbkBZTYW4xQ=) 12: rUMTx45HXhT_MTA8guO-8T9IUPs.roa (hash: yK8AP3UaROn7J6m+AMP74llGEVQg0fy8g5ZS+T2U/tk=) 13: zByDWqzQes6Qf_5yruyAW6l4NA8.roa (hash: 4mGvD80bIUslVCK/Nf88S+YHOSjLonqjJpu89t+7Om0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Jun 2026 14:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9f:0a:e2:f2:35:e9:ed:3b:ee:22:93:3b:d3:a9:6b:89:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530 Validity Not Before: Jun 27 21:01:13 2026 GMT Not After : Jun 28 21:01:13 2026 GMT Subject: CN=2d977a835c597b4ce15e1740bfa1c5bb5399a6b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:67:17:9a:e0:4a:74:5c:39:89:16:ae:50:9b: 4b:e5:1a:a5:85:93:f4:af:14:7a:26:82:13:3f:09: 08:bb:67:5a:45:5b:32:e7:e8:0a:ac:32:91:e1:a3: 17:dc:d4:79:c9:4f:b8:56:2b:c9:21:f9:05:9d:16: e2:f3:35:33:ba:4f:0a:59:ed:06:b3:c9:f3:11:18: 6f:98:28:ac:dc:dc:ee:7a:6c:4b:e5:42:5e:b8:4f: d5:48:4f:da:f3:b2:11:9c:ed:74:c3:38:50:55:d9: cc:97:9d:23:54:73:a8:fb:61:d9:80:c4:6d:4c:5b: 5b:e9:47:e8:7c:11:85:ef:36:6c:6d:70:f2:56:6a: 9b:d0:43:b8:80:81:22:3a:f7:0c:e5:a5:8b:a3:c0: 88:1d:36:52:42:05:2b:cc:b8:cf:a9:31:4e:c7:ca: ac:9f:be:76:1d:42:2f:3f:4b:9b:61:2f:1e:d9:a3: 09:7d:c7:f3:be:74:eb:b1:07:c1:94:65:94:e5:98: d3:39:5c:43:cb:0d:7d:75:9a:67:b3:b4:4a:79:c8: 08:37:10:b7:24:67:b7:12:de:de:6e:28:a9:08:38: 52:e8:42:f2:38:c3:94:8a:b4:42:bb:0d:d1:ad:f7: a7:9a:b9:31:78:1f:62:3e:ce:75:94:77:48:44:95: f5:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:97:7A:83:5C:59:7B:4C:E1:5E:17:40:BF:A1:C5:BB:53:99:A6:B1 X509v3 Authority Key Identifier: keyid:91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:41:aa:ee:68:9e:11:e1:81:a2:0b:10:55:4c:a5:72:f6:15: 2d:90:21:d1:bf:c8:00:b7:ca:24:ea:8b:f1:47:f3:11:f6:ed: b6:b6:87:bc:40:e8:d6:d7:99:de:a1:7f:56:b6:04:12:11:84: 28:83:56:b5:2e:86:4a:90:12:3f:a2:5d:49:1a:10:a2:57:e1: 80:d7:d9:54:43:09:7d:e4:9e:b7:08:fb:12:f2:b0:6b:51:85: e0:16:00:34:06:0b:86:ab:78:36:3c:dd:de:b6:0d:20:61:70: 2b:29:f7:d8:1c:36:1b:8c:d6:ba:88:59:32:44:90:fa:5d:46: c1:1a:a3:1f:7d:0f:2b:59:20:85:1f:7a:99:3c:d2:6f:18:26: 4d:25:c4:2d:be:58:ea:3b:fa:1c:a5:a9:28:f2:2b:e3:21:9f: 5e:6e:ea:42:4b:0e:30:0d:ee:f2:12:06:22:b7:21:53:0a:9e: e7:61:bf:82:96:5b:1a:18:59:1a:f3:fe:50:51:83:19:f8:85: d2:4e:d0:2f:19:ff:fc:1e:36:a1:b5:32:9b:ff:cd:14:c9:9d: 7f:33:72:c5:7d:23:9e:4d:d7:eb:f2:cc:f7:9f:26:14:6c:d2: 3b:84:87:02:05:35:bf:b4:02:eb:25:56:0e:f9:1b:3f:94:5b: 56:7a:1e:19 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ8K4vI16e077iKTO9Opa4l/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxZDBjNzhjMzA5YTNlOTlkYzlhYjc0ZjJjZGMwNDg0ODU5 ZTc1MzAwHhcNMjYwNjI3MjEwMTEzWhcNMjYwNjI4MjEwMTEzWjAzMTEwLwYDVQQD EygyZDk3N2E4MzVjNTk3YjRjZTE1ZTE3NDBiZmExYzViYjUzOTlhNmIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtGcXmuBKdFw5iRauUJtL5RqlhZP0 rxR6JoITPwkIu2daRVsy5+gKrDKR4aMX3NR5yU+4VivJIfkFnRbi8zUzuk8KWe0G s8nzERhvmCis3NzuemxL5UJeuE/VSE/a87IRnO10wzhQVdnMl50jVHOo+2HZgMRt TFtb6UfofBGF7zZsbXDyVmqb0EO4gIEiOvcM5aWLo8CIHTZSQgUrzLjPqTFOx8qs n752HUIvP0ubYS8e2aMJfcfzvnTrsQfBlGWU5ZjTOVxDyw19dZpns7RKecgINxC3 JGe3Et7ebiipCDhS6ELyOMOUirRCuw3RrfenmrkxeB9iPs51lHdIRJX1fwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC2XeoNcWXtM4V4XQL+hxbtTmaaxMB8GA1UdIwQY MBaAFJHQx4wwmj6Z3Jq3TyzcBISFnnUwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEt NDg1MmM4ZmY4YWYyLzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEtNDg1MmM4ZmY4YWYy LzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkEGq7mie EeGBogsQVUylcvYVLZAh0b/IALfKJOqL8UfzEfbttraHvEDo1teZ3qF/VrYEEhGE KINWtS6GSpASP6JdSRoQolfhgNfZVEMJfeSetwj7EvKwa1GF4BYANAYLhqt4Njzd 3rYNIGFwKyn32Bw2G4zWuohZMkSQ+l1GwRqjH30PK1kghR96mTzSbxgmTSXELb5Y 6jv6HKWpKPIr4yGfXm7qQksOMA3u8hIGIrchUwqe52G/gpZbGhhZGvP+UFGDGfiF 0k7QLxn//B42obUym//NFMmdfzNyxX0jnk3X6/LM958mFGzSO4SHAgU1v7QC6yVW DvkbP5RbVnoeGQ== -----END CERTIFICATE-----Generated at Sun Jun 28 00:11:54 2026 by rpki-client