$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft File: kdDHjDCaPpncmrdPLNwEhIWedTA.mft (raw, json) Hash identifier: 0jPf1++J7xfdZzyrQ2VfBjenVmXSBuCqt56ZazvFxFM= Subject key identifier: 7F:0A:E5:D8:CB:09:3C:1A:5F:C3:13:34:AB:6B:D7:8D:11:FB:BA:9A Authority key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30 Certificate issuer: /CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530 Certificate serial: 019E20FF71434484F311940844A7644D8C43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft Manifest number: 1424 Signing time: Wed 13 May 2026 11:01:11 +0000 Manifest this update: Wed 13 May 2026 11:01:11 +0000 Manifest next update: Thu 14 May 2026 11:01:11 +0000 Files and hashes: 1: 9ThI9Z7soYxz8aK7SxBvxoPEOX4.roa (hash: 2FCnysFwLOl4zVeb97SHJ1QvBKVL+gw4QmS3UAORjFk=) 2: BsMfnzrxddpnmFQ8FtiqLN4hIRw.roa (hash: GbFN7H89aII0f8FiIff5RGaJGPYoV9OOEoYuPkHE93c=) 3: C67-QabxkPaVhoCKelfc7gJ1hK8.roa (hash: 0WW6NyrxV5VH4o1lj6kLTZOdEKPeDBs7ouwPQd+hBHw=) 4: F9-SxyIQIDP0T_L82XSaWh-dz-8.roa (hash: xq0esTvybmQE92rRBw7ldOk97wFXJ2Dn8bPKN1sbBN4=) 5: GXCfAVmuuL63Oe4dOVqYkc3Wuzg.roa (hash: L3MDEpVumA01FdWvikqD5sE8kkEXPwKtDKdz6KqfMnQ=) 6: RY0bArq-jZLzZUGQCt7VtVQ1eP8.roa (hash: nOIDnyfWMWKkEgKPjDc9li7leEEkKMO7ZYw+RINdMRI=) 7: WNwct_JeSUw9EGnGt5EMmHO1qnA.roa (hash: 8JESbBJVZwKNLtuuBYLAyN1yjWX+0RJfMcx4iiDnUQ0=) 8: br-MdcUGAgIJZ2jokAIrGgvBgVg.roa (hash: nAJrJwXFm0eNNJbUiUMkYMOpV3Mo7gqR8CqVePMN9SA=) 9: kdDHjDCaPpncmrdPLNwEhIWedTA.crl (hash: f7RGlIMxj+mKtVazmC+ILxnJr0xHxmGlYVA9uOmAeeo=) 10: p3gPfuFdg2rqrSBfl0UDEUdNbjM.roa (hash: bWC6ioqLuy3JQURX6TTBBncQtFn3EtAYrnrtm+JIq5g=) 11: qoJxh9RoMci9r1884qksasXONeQ.roa (hash: b1P5hF2MWBN0Il3GucTyqyanvw/mWve+jbkBZTYW4xQ=) 12: zByDWqzQes6Qf_5yruyAW6l4NA8.roa (hash: 4mGvD80bIUslVCK/Nf88S+YHOSjLonqjJpu89t+7Om0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 11:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:20:ff:71:43:44:84:f3:11:94:08:44:a7:64:4d:8c:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530 Validity Not Before: May 13 11:01:11 2026 GMT Not After : May 14 11:01:11 2026 GMT Subject: CN=7f0ae5d8cb093c1a5fc31334ab6bd78d11fbba9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:42:99:db:96:84:4c:9c:70:3e:0c:b5:66:87: 88:b2:d2:2c:e0:28:2f:9b:ff:f8:b4:38:f1:5e:2e: f4:bc:46:25:b1:af:8b:30:77:b3:f1:a0:f9:a0:42: 98:c4:fe:ec:5d:4d:b4:4d:6d:13:74:be:51:ec:fc: bf:6f:76:b0:4b:ae:33:99:d0:01:b5:23:10:ce:89: e0:c1:12:b3:ea:c2:76:f2:c8:1c:0f:98:6f:81:fc: b1:12:51:3e:a0:33:4f:8c:d0:64:56:1c:4f:ac:4c: 3c:b6:cc:30:b7:35:e3:37:97:28:bd:06:42:c0:8d: 09:5f:1c:64:b0:8f:1b:4c:72:f8:e0:25:73:61:77: 25:0f:0c:d4:29:47:0e:9c:35:d3:84:63:b8:b3:8f: c3:7d:83:e5:ce:d9:e6:e0:3a:7d:c7:a7:11:9a:70: d1:a2:89:a5:b0:d8:b8:19:24:e7:04:fa:32:e5:09: a1:08:15:4a:7c:97:ad:8b:05:75:0c:86:2f:2f:52: b8:7e:85:89:e4:d3:51:4f:b9:77:b4:a6:77:ae:cf: 6a:44:8f:34:43:26:2b:ad:59:30:5b:14:4b:2b:e6: ed:97:65:b6:ee:5e:4e:e0:e8:6c:bd:fd:8a:3a:76: c8:55:d7:48:7f:d8:1b:16:2b:f1:cc:be:b2:18:fa: a0:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:0A:E5:D8:CB:09:3C:1A:5F:C3:13:34:AB:6B:D7:8D:11:FB:BA:9A X509v3 Authority Key Identifier: keyid:91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:a9:0a:27:33:da:bd:a3:aa:d5:ff:0d:00:ed:66:bd:b1:07: 5f:7f:ae:d8:cb:0f:98:47:dc:bd:bd:74:f6:e4:33:75:5e:19: af:01:8e:fd:2e:5b:e4:44:4b:a4:a3:e5:28:59:bb:62:ec:43: 16:7a:5b:90:06:cf:0f:fb:c2:cb:e0:74:8c:51:8a:0f:8e:ec: c9:1a:78:4a:d7:e1:a4:56:4a:31:94:35:ae:9b:3f:86:05:5a: ae:35:f8:ee:c9:e7:be:88:2e:4b:fe:7f:45:65:61:56:b3:7e: d3:45:1b:c6:62:dd:8f:1e:e3:09:2b:a2:da:90:bf:58:4c:1b: ea:fe:ca:5c:cb:e8:83:a9:0e:21:59:d3:b1:a1:c5:8f:20:4d: 5a:7f:da:33:8f:fe:ce:5a:0b:17:29:d5:8b:8f:9a:b9:10:13: 26:6d:cc:e3:18:b8:ba:94:de:7f:a9:56:47:ec:fa:55:03:ed: 3a:bf:2b:e5:ab:20:4e:66:99:c4:a2:dc:4d:22:6d:ae:48:a7: d3:76:d6:ff:f0:f0:36:d8:d8:ea:12:cc:e9:36:28:a8:2c:87: c2:98:6d:78:d0:21:31:42:f7:e2:e6:10:9a:a7:ab:c4:71:ed: 51:1d:19:3a:33:b5:3a:39:ac:06:5f:5a:d5:4a:c8:0b:d0:b5: e4:60:27:4d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4g/3FDRITzEZQIRKdkTYxDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxZDBjNzhjMzA5YTNlOTlkYzlhYjc0ZjJjZGMwNDg0ODU5 ZTc1MzAwHhcNMjYwNTEzMTEwMTExWhcNMjYwNTE0MTEwMTExWjAzMTEwLwYDVQQD Eyg3ZjBhZTVkOGNiMDkzYzFhNWZjMzEzMzRhYjZiZDc4ZDExZmJiYTlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1kKZ25aETJxwPgy1ZoeIstIs4Cgv m//4tDjxXi70vEYlsa+LMHez8aD5oEKYxP7sXU20TW0TdL5R7Py/b3awS64zmdAB tSMQzongwRKz6sJ28sgcD5hvgfyxElE+oDNPjNBkVhxPrEw8tswwtzXjN5covQZC wI0JXxxksI8bTHL44CVzYXclDwzUKUcOnDXThGO4s4/DfYPlztnm4Dp9x6cRmnDR oomlsNi4GSTnBPoy5QmhCBVKfJetiwV1DIYvL1K4foWJ5NNRT7l3tKZ3rs9qRI80 QyYrrVkwWxRLK+btl2W27l5O4Ohsvf2KOnbIVddIf9gbFivxzL6yGPqgkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH8K5djLCTwaX8MTNKtr140R+7qaMB8GA1UdIwQY MBaAFJHQx4wwmj6Z3Jq3TyzcBISFnnUwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEt NDg1MmM4ZmY4YWYyLzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEtNDg1MmM4ZmY4YWYy LzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaKkKJzPa vaOq1f8NAO1mvbEHX3+u2MsPmEfcvb109uQzdV4ZrwGO/S5b5ERLpKPlKFm7YuxD FnpbkAbPD/vCy+B0jFGKD47syRp4StfhpFZKMZQ1rps/hgVarjX47snnvoguS/5/ RWVhVrN+00UbxmLdjx7jCSui2pC/WEwb6v7KXMvog6kOIVnTsaHFjyBNWn/aM4/+ zloLFynVi4+auRATJm3M4xi4upTef6lWR+z6VQPtOr8r5asgTmaZxKLcTSJtrkin 03bW//DwNtjY6hLM6TYoqCyHwphteNAhMUL34uYQmqerxHHtUR0ZOjO1OjmsBl9a 1UrIC9C15GAnTQ== -----END CERTIFICATE-----Generated at Wed May 13 19:10:21 2026 by rpki-client