$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft File: dOPDNpcglLGowT1BgWhX0Zejquk.mft (raw, json) Hash identifier: PyACRXylQhSB1QX1xxKCedh8/FR82prvJLE+gAlJkE0= Subject key identifier: D6:11:0F:F5:C6:AE:64:CD:B7:AD:5A:33:8B:BE:23:09:B9:DF:A7:A7 Authority key identifier: 74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9 Certificate issuer: /CN=74e3c336972094b1a8c13d41816857d197a3aae9 Certificate serial: 019EB68DEBC737433BFDAA6CDCD18223EC07 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft Manifest number: 167A Signing time: Thu 11 Jun 2026 12:00:14 +0000 Manifest this update: Thu 11 Jun 2026 12:00:14 +0000 Manifest next update: Fri 12 Jun 2026 12:00:14 +0000 Files and hashes: 1: 1vjKgLyMbmbnD9BN-ENq6mCvpdQ.roa (hash: j6oOw0mW9VGeX6HTh7Pt8Y8xHM75I2sfi2YWe7POauE=) 2: 65FnmspDUVJ9_6QxvLd4l0NA4FE.roa (hash: lgYYkTyMefTXhDS2aNN91oiVE93MHjvbMsoRpFVLAkk=) 3: 6USIsr77ojsfaUkK7p_9yPX50RE.roa (hash: bxePdusDHlOz01oH/vysD1HExvewxm7Ub84+S8jsj6E=) 4: Bh0VhXCtnVTu6NYuZ4a0xAtyxnA.roa (hash: HBYP5wsCK4dtPnx1EHAW2IQhQMnr5dUB/nJJqTK+1C4=) 5: EnU8KLDk0MRS40FVtDjms_Soitw.roa (hash: rcy33n4rwkCj0xCW3i6XJv7RosymyzbT1+UqsgkLw0Q=) 6: Fe1_O6lqpZ4wU51PSyJRl5pRxgs.roa (hash: 3NI8C19YgNRWzyzmt0xuFsZNQ7eEnAdbBiag8O0XRuA=) 7: LcVUnzg476sY0cRj19anqQVr9co.roa (hash: CgyZ8RxzuluDb45z3tYn/fize5wHrZwU9v+utbAlRwk=) 8: QtjndSCGblrfab-ioVOroaNfPN4.roa (hash: 4OpyhaYwVmjq3TRkCJRrHAwNHbosmRoeTn4+UUJfDU8=) 9: dOPDNpcglLGowT1BgWhX0Zejquk.crl (hash: NF7++880mjI1JQVk+ao+c60wds+9ezCajSKE4174+k0=) 10: lC8mVQtZgzYCvFwXFlGkBqCpw84.roa (hash: SarrKRsARvJpAVux4A8mAEIosBVax08KS/WsVU5r/mE=) 11: ooTDK5wBI-XJq8zfv_YSdFU-vlo.roa (hash: xJD4AS2qcydvJ4nIFIToFd7KJeX/bcKOS0Cq1Ky05fE=) 12: sOU9sf_TLtLowD_NZ2t2Nk3oMWk.roa (hash: A6LA4etDI922EmA77PSJlPQnzxugY9xfCjTlpLtEMx0=) 13: usyF6cqpiTZ36Hi-zUV3iBaL6mI.roa (hash: MwwYW4a1c7XEGwwS8SXJYUUEBBLKVu6KJRZWVoJlLQo=) 14: v4wBo_Qz0X5zJTIwb0QZQ9GFZms.roa (hash: IlvU1dySJCzAWqUq3ax3NvMIRPVQQDJqs9utM98mnVw=) 15: y8jNpNhJhN8HEtdIA-w7AJf_i5Q.roa (hash: 8sIOOrWgw4Q4JWzlfJJ/cqOkQmwBNx1SNCCheRpOVMM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 12:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:b6:8d:eb:c7:37:43:3b:fd:aa:6c:dc:d1:82:23:ec:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74e3c336972094b1a8c13d41816857d197a3aae9 Validity Not Before: Jun 11 12:00:14 2026 GMT Not After : Jun 12 12:00:14 2026 GMT Subject: CN=d6110ff5c6ae64cdb7ad5a338bbe2309b9dfa7a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:95:85:cf:3f:ba:26:a2:09:9e:9a:22:8c:15: ae:7f:6a:70:68:d5:1c:24:23:76:a3:3e:a2:ce:2e: c0:1d:69:e7:41:a1:30:bb:f5:8c:93:37:4a:37:6c: 00:16:c8:40:c8:ab:c5:c3:ad:44:c8:8a:ae:25:73: 09:7e:10:b8:62:6f:21:cf:bf:0a:6e:5b:51:f9:b3: 0f:99:41:b1:19:9f:88:85:5a:cd:6a:af:8b:82:10: b5:b9:6a:d6:e9:62:b0:84:4f:af:9f:1d:93:e9:d3: e1:f4:fd:7d:d5:d3:97:63:0e:18:3d:79:52:cd:d0: 4a:36:5c:b7:17:42:e3:00:7d:33:a5:44:78:7a:35: 8c:cb:55:07:eb:ae:fe:f9:a4:17:f2:36:ca:e5:92: ce:bb:d7:27:27:88:0a:38:9a:c4:44:fb:1f:9f:e8: cd:0b:65:64:99:78:a7:fa:f4:cd:8a:46:28:61:88: c7:93:fb:72:4b:90:51:19:9f:a8:38:80:91:99:95: e5:b5:88:e6:84:80:9a:31:db:25:bb:52:ec:7d:ab: a4:ec:b5:6f:03:30:56:d4:3d:3e:cc:44:99:a3:57: 03:6a:51:51:48:4a:5a:88:48:c8:f6:35:88:c4:cc: 1b:7d:f2:f0:de:ac:c2:52:64:87:8d:f8:bb:c4:af: 21:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:11:0F:F5:C6:AE:64:CD:B7:AD:5A:33:8B:BE:23:09:B9:DF:A7:A7 X509v3 Authority Key Identifier: keyid:74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:27:e4:8a:2b:71:94:cc:40:df:e5:1d:75:58:51:c5:9b:e9: 0d:98:a2:4d:d3:b4:44:fe:fa:fd:fb:f9:d5:f0:d4:1f:e9:31: 5e:b5:c2:db:f7:f4:22:2f:ef:d8:d3:34:04:a2:44:8f:68:4a: 09:95:05:cf:4b:97:e5:11:9d:ff:b8:c1:f7:87:39:2e:f2:1c: 1e:32:69:4a:45:f0:49:44:cd:bc:22:3a:4c:4c:89:07:95:12: e8:ce:da:cf:d2:fd:66:1d:2e:80:b2:b0:83:61:da:3a:dd:c3: 88:94:bb:5e:d4:ac:e6:bd:38:2c:64:26:de:fd:c5:7b:36:25: 6c:fe:f5:35:b3:bc:a0:fd:8e:51:af:16:2d:1c:91:78:07:e4: b1:78:c0:af:db:88:6b:3b:93:a6:45:56:7f:8b:3f:3d:2b:4c: aa:f4:9e:b4:85:52:cc:9f:02:2c:52:71:60:2d:6c:03:5a:c5: 7f:49:63:44:05:6a:30:c8:99:95:46:4f:64:06:87:cf:68:4b: fb:6c:92:15:32:ea:ef:49:f6:5a:11:39:fd:85:e5:90:2a:e2: 70:b5:46:2c:2d:e3:ae:3e:26:87:90:34:b0:48:87:52:d1:0a: ee:c4:cd:bd:e2:c5:12:fd:6d:8d:61:bb:27:f3:69:b0:17:94: a6:97:83:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ62jevHN0M7/aps3NGCI+wHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0ZTNjMzM2OTcyMDk0YjFhOGMxM2Q0MTgxNjg1N2QxOTdh M2FhZTkwHhcNMjYwNjExMTIwMDE0WhcNMjYwNjEyMTIwMDE0WjAzMTEwLwYDVQQD EyhkNjExMGZmNWM2YWU2NGNkYjdhZDVhMzM4YmJlMjMwOWI5ZGZhN2E3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA25WFzz+6JqIJnpoijBWuf2pwaNUc JCN2oz6izi7AHWnnQaEwu/WMkzdKN2wAFshAyKvFw61EyIquJXMJfhC4Ym8hz78K bltR+bMPmUGxGZ+IhVrNaq+LghC1uWrW6WKwhE+vnx2T6dPh9P191dOXYw4YPXlS zdBKNly3F0LjAH0zpUR4ejWMy1UH667++aQX8jbK5ZLOu9cnJ4gKOJrERPsfn+jN C2VkmXin+vTNikYoYYjHk/tyS5BRGZ+oOICRmZXltYjmhICaMdslu1Lsfauk7LVv AzBW1D0+zESZo1cDalFRSEpaiEjI9jWIxMwbffLw3qzCUmSHjfi7xK8hjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNYRD/XGrmTNt61aM4u+Iwm536enMB8GA1UdIwQY MBaAFHTjwzaXIJSxqME9QYFoV9GXo6rpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZE9QRE5wY2dsTEdvd1QxQmdXaFgwWmVqcXVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8xOGM0OTgtMjE3MS00ZTFjLThkODAt YTZjNDllYjI4Mjg3LzEvZE9QRE5wY2dsTEdvd1QxQmdXaFgwWmVqcXVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi8xOGM0OTgtMjE3MS00ZTFjLThkODAtYTZjNDllYjI4Mjg3 LzEvZE9QRE5wY2dsTEdvd1QxQmdXaFgwWmVqcXVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfyfkiitx lMxA3+UddVhRxZvpDZiiTdO0RP76/fv51fDUH+kxXrXC2/f0Ii/v2NM0BKJEj2hK CZUFz0uX5RGd/7jB94c5LvIcHjJpSkXwSUTNvCI6TEyJB5US6M7az9L9Zh0ugLKw g2HaOt3DiJS7XtSs5r04LGQm3v3FezYlbP71NbO8oP2OUa8WLRyReAfksXjAr9uI azuTpkVWf4s/PStMqvSetIVSzJ8CLFJxYC1sA1rFf0ljRAVqMMiZlUZPZAaHz2hL +2ySFTLq70n2WhE5/YXlkCricLVGLC3jrj4mh5A0sEiHUtEK7sTNveLFEv1tjWG7 J/NpsBeUppeDHw== -----END CERTIFICATE-----Generated at Thu Jun 11 19:18:18 2026 by rpki-client