$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft File: iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft (raw, json) Hash identifier: hJtXShOkRtJor1LG9pT1co0HqY5/YPCVneSxIhwHIM8= Subject key identifier: 43:94:E3:94:18:EE:B8:ED:B9:6A:0D:A9:D4:9C:73:C4:E3:33:8B:21 Authority key identifier: 89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08 Certificate issuer: /CN=896a82a725ed22bb46847ae568912078de25c108 Certificate serial: 019F122E820981AF94A11CAF90AEBDD8EC41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft Manifest number: 1995 Signing time: Mon 29 Jun 2026 07:01:05 +0000 Manifest this update: Mon 29 Jun 2026 07:01:05 +0000 Manifest next update: Tue 30 Jun 2026 07:01:05 +0000 Files and hashes: 1: 4Y6MQ3p-LB6KrtJDo2AEO8Db164.roa (hash: 5atEicVhW+L7Xp6D+LeVcw6nuJeehWHQba6IJiOM6Ms=) 2: As_pVbbnYy_pmBMm0RcX49iX6nY.roa (hash: qzus9UnBcueHhtxBHMySF8j/gf9sbzuNZT387lhMVtE=) 3: IauAxs74tysYNqUuPq3mwgGVBQY.roa (hash: I4y1ed39yJsl3DkGtY/KgIMLvKWqfNhrhjl/qeS45rw=) 4: Q7kjVEhiYHEz_AIBuFCX2o6kXpQ.roa (hash: MuV9xof7zxa6mZSUu9k4zgmUqNgq/+xzFvRw2ejciSU=) 5: UhbmNbA2hwd3CclD7uA5e7VB30s.roa (hash: juSkCYLLU3kVaC1Dq0hdQw2DrlMO0olfzSo1w3Y2IAk=) 6: VmKAAjA4J61Er2pV6nmm2We8eeg.roa (hash: H91QyBvG1I/wj9YFT3ovdtrMrR5xBG3HkuYFKTPkUdk=) 7: Z2JoyRveJcrOS84W6TpEPChd0u8.roa (hash: aEKu2ZE0v6kUC0OnwN6L0HbgZBJi/Gu9YSjx1j8FGfg=) 8: aC9Q_3qjddY1l6-wNmHh31rhiv4.roa (hash: uKO8uok9xpbvJA3MGYKk7ndaYzKJUW2pxyQNGvBjSDU=) 9: iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl (hash: axghEhdGs8fyNGt+atSBtdTPzx3uUY0Ixz2jiwj9C7c=) 10: ozLeruCkBhC4yZCUw5lMFfl-TtM.roa (hash: ygWG9N1PXEIgHYpH9dLMI7Qu5ggvIeMB+/+Dm4Mbbz4=) 11: q47qpt1p1Wj02CxPXYgOsikq_GY.roa (hash: RR0Z4b1X2W/yjPPcvR1hUKYG5qy0mYBUJ7YN4lZTqrk=) 12: s0Slj9yVMX7lCq79bqSGCqW6KPg.roa (hash: RaEewhp7TYWAZZHFh2A3/CMtjGLdyIT76c5b57zkYYU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Jun 2026 07:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9f:12:2e:82:09:81:af:94:a1:1c:af:90:ae:bd:d8:ec:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=896a82a725ed22bb46847ae568912078de25c108 Validity Not Before: Jun 29 07:01:05 2026 GMT Not After : Jun 30 07:01:05 2026 GMT Subject: CN=4394e39418eeb8edb96a0da9d49c73c4e3338b21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:98:96:0b:02:f2:3a:8f:33:7e:76:81:56:78: 8e:e2:cd:b1:01:27:a7:06:2c:7c:41:52:c9:43:cf: 5c:93:9b:c1:47:74:3d:06:e7:12:e1:ab:d4:f7:31: 3f:6e:fd:ea:9e:76:a1:e4:59:97:bd:58:11:ee:b7: 3f:64:a5:70:e0:c2:ff:e4:d7:2d:28:8a:6d:5a:a8: 17:f2:50:31:81:7e:ed:e9:16:68:39:02:fe:b9:b3: f2:8c:b7:1d:4a:d2:b8:16:eb:f3:16:06:d0:98:64: 6b:16:b8:f1:7d:86:b8:36:a6:0d:b6:d0:94:61:6b: 72:23:e9:a0:f9:3f:d2:8f:23:08:f0:77:b5:8a:62: d9:ff:0d:a0:0b:7a:d6:37:c2:d1:57:f1:ff:07:f5: 81:85:01:43:d2:27:24:49:9d:84:82:e9:24:c1:a8: 2d:93:71:57:69:de:89:55:be:f1:d3:2a:91:3c:1f: b9:b4:89:52:3d:25:67:27:7f:b0:e7:fa:b4:8d:f3: d2:b3:18:fa:85:f0:e5:2b:eb:f8:74:8f:cd:77:05: 13:65:d1:0e:09:25:1d:64:22:08:10:8c:9c:d4:a4: ea:7f:b8:cd:28:f4:e3:08:61:88:8c:9f:4c:ce:26: 1c:4e:07:72:f9:f4:4e:92:71:ca:38:46:93:a3:98: 6e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:94:E3:94:18:EE:B8:ED:B9:6A:0D:A9:D4:9C:73:C4:E3:33:8B:21 X509v3 Authority Key Identifier: keyid:89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:ff:fb:db:9d:7a:5d:aa:d2:b3:85:21:ea:bc:a5:ee:bc:5d: e0:b3:16:44:ae:55:1b:a2:25:cc:4e:df:a1:31:f1:2b:4e:d5: d4:39:a7:2b:ad:4a:67:a9:22:e2:17:75:be:0c:e9:47:52:0f: 97:32:c4:61:8d:32:2c:b2:01:92:9a:6f:89:c1:ec:a1:43:45: c1:c1:b3:9b:e9:a7:04:fb:98:be:20:70:3f:e3:e7:18:2c:92: 11:83:57:c1:39:87:e4:eb:87:2f:40:0a:67:c3:83:a7:54:e4: 0e:10:86:f1:dd:2d:9a:f6:3b:b5:83:80:ee:13:5a:2f:72:f5: 25:a6:31:86:f2:dc:d6:29:84:42:20:5c:7e:3a:36:c3:c3:96: 30:35:07:99:08:61:f7:68:e1:fb:d9:92:0f:66:17:70:e8:a7: ef:1b:49:8d:e5:f9:fe:5b:e3:d9:9a:b1:6d:20:6d:8b:1e:75: f8:36:da:d8:f4:fc:65:70:86:3f:e3:7f:cb:fb:0b:96:3c:bf: db:86:b8:6d:19:52:1e:42:7d:e5:5a:e9:7f:84:a9:cb:2a:e5: ce:21:88:b9:4c:ec:a2:92:26:e5:98:a2:35:8d:49:ef:15:da: dd:c1:40:14:5e:cf:17:d3:21:93:48:c1:f6:21:68:03:d3:53: 0e:35:2c:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ8SLoIJga+UoRyvkK692OxBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5NmE4MmE3MjVlZDIyYmI0Njg0N2FlNTY4OTEyMDc4ZGUy NWMxMDgwHhcNMjYwNjI5MDcwMTA1WhcNMjYwNjMwMDcwMTA1WjAzMTEwLwYDVQQD Eyg0Mzk0ZTM5NDE4ZWViOGVkYjk2YTBkYTlkNDljNzNjNGUzMzM4YjIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlpiWCwLyOo8zfnaBVniO4s2xASen Bix8QVLJQ89ck5vBR3Q9BucS4avU9zE/bv3qnnah5FmXvVgR7rc/ZKVw4ML/5Nct KIptWqgX8lAxgX7t6RZoOQL+ubPyjLcdStK4FuvzFgbQmGRrFrjxfYa4NqYNttCU YWtyI+mg+T/SjyMI8He1imLZ/w2gC3rWN8LRV/H/B/WBhQFD0ickSZ2Egukkwagt k3FXad6JVb7x0yqRPB+5tIlSPSVnJ3+w5/q0jfPSsxj6hfDlK+v4dI/NdwUTZdEO CSUdZCIIEIyc1KTqf7jNKPTjCGGIjJ9MziYcTgdy+fROknHKOEaTo5hu2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEOU45QY7rjtuWoNqdScc8TjM4shMB8GA1UdIwQY MBaAFIlqgqcl7SK7RoR65WiRIHjeJcEIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC8zZmM4ZGEtMzUxNS00MzRkLTlmMGUt MDQwMTI3MTAyMjA5LzEvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC8zZmM4ZGEtMzUxNS00MzRkLTlmMGUtMDQwMTI3MTAyMjA5 LzEvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANf/72516 XarSs4Uh6ryl7rxd4LMWRK5VG6IlzE7foTHxK07V1DmnK61KZ6ki4hd1vgzpR1IP lzLEYY0yLLIBkppvicHsoUNFwcGzm+mnBPuYviBwP+PnGCySEYNXwTmH5OuHL0AK Z8ODp1TkDhCG8d0tmvY7tYOA7hNaL3L1JaYxhvLc1imEQiBcfjo2w8OWMDUHmQhh 92jh+9mSD2YXcOin7xtJjeX5/lvj2ZqxbSBtix51+Dba2PT8ZXCGP+N/y/sLljy/ 24a4bRlSHkJ95Vrpf4SpyyrlziGIuUzsopIm5ZiiNY1J7xXa3cFAFF7PF9Mhk0jB 9iFoA9NTDjUsYw== -----END CERTIFICATE-----Generated at Mon Jun 29 12:41:10 2026 by rpki-client