$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft File: iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft (raw, json) Hash identifier: G5yj0MvuCnRQRlYS6BE90H8gjLvAkBmDloKmT/fG0qM= Subject key identifier: 25:69:38:24:91:EF:A4:78:26:68:16:EF:C7:5A:FB:4D:D8:40:1C:81 Authority key identifier: 89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08 Certificate issuer: /CN=896a82a725ed22bb46847ae568912078de25c108 Certificate serial: 019E2A023A34DD9B39625DA154411672EAB5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft Manifest number: 191B Signing time: Fri 15 May 2026 05:00:49 +0000 Manifest this update: Fri 15 May 2026 05:00:49 +0000 Manifest next update: Sat 16 May 2026 05:00:49 +0000 Files and hashes: 1: 5iygaSWZF0yjUJ8jGYfCtVGM300.roa (hash: ET/P3Mdg0xkHqABx2gsgHyGvGIp2jJSSoXAlISRhnZ4=) 2: As_pVbbnYy_pmBMm0RcX49iX6nY.roa (hash: qzus9UnBcueHhtxBHMySF8j/gf9sbzuNZT387lhMVtE=) 3: IauAxs74tysYNqUuPq3mwgGVBQY.roa (hash: I4y1ed39yJsl3DkGtY/KgIMLvKWqfNhrhjl/qeS45rw=) 4: Q7kjVEhiYHEz_AIBuFCX2o6kXpQ.roa (hash: MuV9xof7zxa6mZSUu9k4zgmUqNgq/+xzFvRw2ejciSU=) 5: UhbmNbA2hwd3CclD7uA5e7VB30s.roa (hash: juSkCYLLU3kVaC1Dq0hdQw2DrlMO0olfzSo1w3Y2IAk=) 6: Z2JoyRveJcrOS84W6TpEPChd0u8.roa (hash: aEKu2ZE0v6kUC0OnwN6L0HbgZBJi/Gu9YSjx1j8FGfg=) 7: aC9Q_3qjddY1l6-wNmHh31rhiv4.roa (hash: uKO8uok9xpbvJA3MGYKk7ndaYzKJUW2pxyQNGvBjSDU=) 8: iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl (hash: 8x57N722GMJOVB3NcnHtc/UU/cWsqsodVn6SjZl5hBg=) 9: ozLeruCkBhC4yZCUw5lMFfl-TtM.roa (hash: ygWG9N1PXEIgHYpH9dLMI7Qu5ggvIeMB+/+Dm4Mbbz4=) 10: q47qpt1p1Wj02CxPXYgOsikq_GY.roa (hash: RR0Z4b1X2W/yjPPcvR1hUKYG5qy0mYBUJ7YN4lZTqrk=) 11: s0Slj9yVMX7lCq79bqSGCqW6KPg.roa (hash: RaEewhp7TYWAZZHFh2A3/CMtjGLdyIT76c5b57zkYYU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 16 May 2026 02:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:2a:02:3a:34:dd:9b:39:62:5d:a1:54:41:16:72:ea:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=896a82a725ed22bb46847ae568912078de25c108 Validity Not Before: May 15 05:00:49 2026 GMT Not After : May 16 05:00:49 2026 GMT Subject: CN=2569382491efa478266816efc75afb4dd8401c81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b2:a6:37:f7:10:59:19:6a:74:40:16:21:07: e0:6a:e2:5c:a1:22:a1:a4:fa:80:99:64:3a:40:9b: 8a:91:44:b8:d2:cc:c9:39:92:e0:93:a2:c5:1c:8c: 29:8c:04:00:35:c7:90:bf:d4:0f:d9:f1:cd:e7:96: 8f:a7:28:0a:5e:81:b5:96:2c:08:2d:3b:1e:e8:ee: 80:1f:68:c7:3c:d9:f2:37:ce:29:0a:7f:45:77:db: d4:97:81:2e:00:65:ed:77:8b:11:b3:be:a9:6c:67: c7:09:b0:2b:0f:50:d9:d5:24:ec:2f:8c:eb:81:30: 2d:18:73:9a:cb:b2:f9:e8:8c:f7:a3:da:93:a8:c2: 54:dd:53:8a:24:bf:27:b3:97:fb:68:3c:eb:94:a0: e5:13:37:f5:f3:51:71:d5:86:a1:c9:9c:b4:d2:88: 9e:24:8d:e9:58:60:cd:f0:13:bc:fb:ca:3f:fa:72: f7:85:dc:ea:3d:3c:0a:3e:9d:45:a6:1b:34:59:ec: ae:84:4e:95:5e:f9:ea:1c:d8:49:15:c2:86:3d:c0: 1d:01:63:97:cf:49:08:29:dc:bc:ae:49:e5:d2:36: 9e:f4:dc:5b:a2:38:8a:8c:35:40:60:d9:92:6d:7d: 0e:be:33:ca:63:da:5b:4c:75:e6:11:16:2c:6b:e0: 14:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:69:38:24:91:EF:A4:78:26:68:16:EF:C7:5A:FB:4D:D8:40:1C:81 X509v3 Authority Key Identifier: keyid:89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:3a:7e:6f:f2:bc:37:82:ae:34:52:4e:3c:0c:e7:8f:69:b2: ae:a4:d4:33:4b:19:ac:15:b3:32:a3:2a:51:12:4a:8e:f6:d4: 10:43:ac:12:ec:91:5a:fb:54:da:11:a5:73:d9:26:1d:20:c5: 5f:50:38:74:c4:8a:c8:a9:b2:ea:f2:43:28:46:c6:47:e2:b9: f0:53:61:f2:95:88:0c:6e:e5:1b:47:c0:09:26:72:ac:03:d3: 80:08:c4:71:87:23:40:ff:e3:be:e0:16:19:1c:e5:b7:c3:e1: 3e:a5:e9:40:f0:61:5a:38:8b:dc:b8:f6:c0:a7:4c:5d:68:c8: 38:01:ba:be:c4:a1:35:96:bc:40:ed:44:ad:81:3c:95:19:5d: 20:c0:7c:ec:d8:9e:23:f7:55:97:f6:dc:63:cd:cf:88:4e:0b: 8a:d9:5d:a3:a4:f7:78:fd:ca:5e:08:bf:e2:89:e5:8d:35:11: 74:6b:45:51:b4:26:65:6f:0f:00:ad:77:14:64:3d:59:49:6c: 07:a6:63:e3:04:97:1a:2f:21:31:cf:85:5b:0f:07:75:17:c3: 8f:e0:a9:9c:14:4f:3b:81:4c:f8:b6:08:03:f0:26:48:b9:39: 80:52:5f:9c:9a:da:3a:76:02:ee:19:07:27:75:2c:16:3b:8d: 6a:ee:a4:f6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4qAjo03Zs5Yl2hVEEWcuq1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5NmE4MmE3MjVlZDIyYmI0Njg0N2FlNTY4OTEyMDc4ZGUy NWMxMDgwHhcNMjYwNTE1MDUwMDQ5WhcNMjYwNTE2MDUwMDQ5WjAzMTEwLwYDVQQD EygyNTY5MzgyNDkxZWZhNDc4MjY2ODE2ZWZjNzVhZmI0ZGQ4NDAxYzgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqbKmN/cQWRlqdEAWIQfgauJcoSKh pPqAmWQ6QJuKkUS40szJOZLgk6LFHIwpjAQANceQv9QP2fHN55aPpygKXoG1liwI LTse6O6AH2jHPNnyN84pCn9Fd9vUl4EuAGXtd4sRs76pbGfHCbArD1DZ1STsL4zr gTAtGHOay7L56Iz3o9qTqMJU3VOKJL8ns5f7aDzrlKDlEzf181Fx1YahyZy00oie JI3pWGDN8BO8+8o/+nL3hdzqPTwKPp1Fphs0WeyuhE6VXvnqHNhJFcKGPcAdAWOX z0kIKdy8rknl0jae9NxbojiKjDVAYNmSbX0OvjPKY9pbTHXmERYsa+AUvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCVpOCSR76R4JmgW78da+03YQByBMB8GA1UdIwQY MBaAFIlqgqcl7SK7RoR65WiRIHjeJcEIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC8zZmM4ZGEtMzUxNS00MzRkLTlmMGUt MDQwMTI3MTAyMjA5LzEvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC8zZmM4ZGEtMzUxNS00MzRkLTlmMGUtMDQwMTI3MTAyMjA5 LzEvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaDp+b/K8 N4KuNFJOPAznj2myrqTUM0sZrBWzMqMqURJKjvbUEEOsEuyRWvtU2hGlc9kmHSDF X1A4dMSKyKmy6vJDKEbGR+K58FNh8pWIDG7lG0fACSZyrAPTgAjEcYcjQP/jvuAW GRzlt8PhPqXpQPBhWjiL3Lj2wKdMXWjIOAG6vsShNZa8QO1ErYE8lRldIMB87Nie I/dVl/bcY83PiE4Litldo6T3eP3KXgi/4onljTURdGtFUbQmZW8PAK13FGQ9WUls B6Zj4wSXGi8hMc+FWw8HdRfDj+CpnBRPO4FM+LYIA/AmSLk5gFJfnJraOnYC7hkH J3UsFjuNau6k9g== -----END CERTIFICATE-----Generated at Fri May 15 07:03:52 2026 by rpki-client