$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft File: oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft (raw, json) Hash identifier: leU5ZcEYN4j4SzFgJ35dBGjE+EdK0GzDgAt3Xjt/IjU= Subject key identifier: 1D:AE:F2:EF:30:BC:F9:5C:95:8D:96:28:8D:76:02:91:85:CF:98:4C Authority key identifier: A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7 Certificate issuer: /CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7 Certificate serial: 019EB65742E7639A8D70E18014B29D670A00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft Manifest number: 08E3 Signing time: Thu 11 Jun 2026 11:00:32 +0000 Manifest this update: Thu 11 Jun 2026 11:00:32 +0000 Manifest next update: Fri 12 Jun 2026 11:00:32 +0000 Files and hashes: 1: 1-EbrvxNY7jUJJte1JMBcOC69EBk.roa (hash: /M4gkvV/7tnw4BlBdpuc1viYnL0XhtHAFXwLDGq3QCg=) 2: NjOJ8tUpqLJAAfHhfTTwUysAm7s.roa (hash: 3a42jEcgSU6c6ZDozj7GhmcER8SN0dScIEdBDzntTP4=) 3: OA81K4GFXKVrjD-M584jTyFYST8.roa (hash: C4S9fMtXlXuIFqggmB3QlimOTqdUpyywlGKQgdOtY5w=) 4: YpbC5jk8lzSJpred_IHkkCVUCKE.roa (hash: Zo4+zcIWbT83bhve20wlbO77GzQpKYPsD28KLD9jN8Y=) 5: YxQb53gzYd0iTmUe7A41D-2rnY8.roa (hash: q+Z1iMu62RV5K/wK7fU9JbtFm1jSO7NLnuxYy0Ettbk=) 6: h_aNMTHSod3zvEv_zlqSsdV20TQ.roa (hash: GccHbmvEFlhiHjnJ+i3nG2pD81e9dD/oLrnSrArj6ig=) 7: oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl (hash: gTCkCnQ0jd1+IzUo2kV19s7pFxTxUdikSkPPrvFxaiY=) 8: oh53IB-aUH2plypNUq8_qw59tUU.roa (hash: k/rLC3QFD8nEmci+tQAmE7NOGPMxS4KDVOpLNqgFsg4=) 9: ondT0lA34VONX208YudOD0r79Fo.roa (hash: Q5xYjBiSMcwIIASL37DpTBEnCFikNHHBxM8KVMbJfYU=) 10: vyjCA1W9-6KFsgjaGvfzXuiMYLQ.roa (hash: 7JV7egLgY4Bzr/UvgYj0RPwIqhuXjEo3YWECD7QdwW0=) 11: wtolA6HMGVvPA6gYljfUXhGgO9w.roa (hash: 9lH1rM52hRaE2Kxe2ZgcgE2kAZOcfeGaiUJXArzl1qI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:b6:57:42:e7:63:9a:8d:70:e1:80:14:b2:9d:67:0a:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7 Validity Not Before: Jun 11 11:00:32 2026 GMT Not After : Jun 12 11:00:32 2026 GMT Subject: CN=1daef2ef30bcf95c958d96288d76029185cf984c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4f:44:c2:0d:3e:8c:4d:d0:a6:bd:6f:07:d4: ff:7b:3f:3c:b9:c0:e6:16:ed:43:ef:46:43:3b:a0: 56:71:26:9c:51:ab:0f:77:01:f7:2c:8d:43:ed:cf: fb:84:49:15:e4:ad:b8:4a:56:be:6c:7a:44:51:0e: a1:29:df:eb:e2:5b:a8:4d:a7:7c:4f:3e:c2:14:ae: 20:37:b2:49:73:bd:9c:17:1d:88:6e:6b:31:e9:ad: fc:61:58:17:36:9d:1e:ed:5e:31:9f:41:03:eb:3f: 63:c6:0a:80:56:37:96:bf:f5:06:6a:54:b0:21:b5: 6b:76:9b:6b:55:97:a8:20:03:ad:4b:3c:e5:59:86: bb:26:d1:56:70:0f:78:d0:04:0d:a8:f8:06:05:dc: 35:ae:9f:6a:e9:26:a6:00:bd:bf:e6:6b:cb:9e:50: a3:d6:1d:e6:35:9e:20:a8:f6:53:52:0f:15:cf:4a: bf:38:d9:34:47:08:fd:e0:d9:4f:8f:1f:a7:9d:bf: 7c:db:0b:7b:7f:41:c9:1b:e9:e9:14:8e:1c:0a:09: 06:9d:e9:75:a8:c0:ca:cb:6b:c5:2e:54:6f:9a:bf: 23:36:34:10:82:d2:a8:99:f9:99:62:33:dd:c1:99: f3:16:ba:a3:24:17:bb:68:73:ba:07:91:eb:f7:66: 0d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:AE:F2:EF:30:BC:F9:5C:95:8D:96:28:8D:76:02:91:85:CF:98:4C X509v3 Authority Key Identifier: keyid:A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:93:63:e3:27:86:71:55:ed:60:08:a1:7e:83:1c:6f:88:dd: d1:a3:8f:47:73:0b:77:6d:19:a8:c1:e8:0b:b3:29:66:e5:84: dd:71:f9:4d:74:53:56:72:74:cc:99:3e:66:0b:1a:c0:55:0c: 0a:10:a0:2d:25:4d:90:1b:25:c4:a3:a3:2a:d0:13:63:34:5a: de:15:ce:11:2c:58:49:44:d9:7c:37:e7:aa:a8:9e:45:24:bd: 40:51:79:4d:b0:2d:ff:58:53:3b:2d:1c:b7:7d:49:26:f7:08: 40:b1:71:b6:7f:b5:17:b8:99:71:51:cc:0b:9a:2e:dc:b7:57: 2f:0d:d9:7b:4c:d8:1b:8b:87:a1:1c:4f:f5:a4:32:83:e3:ba: f0:b3:3a:9e:e9:30:22:d1:c8:b7:0d:04:3e:09:9c:70:c4:d1: 6a:1b:3e:e3:49:e6:93:52:6a:d2:cd:01:dd:5a:a5:3d:e6:e1: c1:bb:58:59:4a:7c:8e:75:15:4f:c7:a0:a3:cb:08:d8:ef:ef: de:17:e5:a8:aa:87:22:d7:c2:b4:da:f7:95:35:03:c1:b2:33: ca:a7:8f:a8:29:9a:65:46:e3:8b:ff:71:5a:a4:07:47:b5:69: 41:db:6c:15:07:52:2f:a1:34:b4:5e:ab:e0:8f:11:a0:c9:12: 3b:46:cb:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ62V0LnY5qNcOGAFLKdZwoAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExMjRjY2RkNzBmM2VjNzYyY2JkNjVlMDRkZDZmNzZiZTIz NmE4YTcwHhcNMjYwNjExMTEwMDMyWhcNMjYwNjEyMTEwMDMyWjAzMTEwLwYDVQQD EygxZGFlZjJlZjMwYmNmOTVjOTU4ZDk2Mjg4ZDc2MDI5MTg1Y2Y5ODRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx09Ewg0+jE3Qpr1vB9T/ez88ucDm Fu1D70ZDO6BWcSacUasPdwH3LI1D7c/7hEkV5K24Sla+bHpEUQ6hKd/r4luoTad8 Tz7CFK4gN7JJc72cFx2Ibmsx6a38YVgXNp0e7V4xn0ED6z9jxgqAVjeWv/UGalSw IbVrdptrVZeoIAOtSzzlWYa7JtFWcA940AQNqPgGBdw1rp9q6SamAL2/5mvLnlCj 1h3mNZ4gqPZTUg8Vz0q/ONk0Rwj94NlPjx+nnb982wt7f0HJG+npFI4cCgkGnel1 qMDKy2vFLlRvmr8jNjQQgtKomfmZYjPdwZnzFrqjJBe7aHO6B5Hr92YNfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB2u8u8wvPlclY2WKI12ApGFz5hMMB8GA1UdIwQY MBaAFKEkzN1w8+x2LL1l4E3W92viNqinMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9iNjk0YjgtODIxMS00YzA2LTljODEt N2IzNTM5N2FmMmY3LzEvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni9iNjk0YjgtODIxMS00YzA2LTljODEtN2IzNTM5N2FmMmY3 LzEvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcpNj4yeG cVXtYAihfoMcb4jd0aOPR3MLd20ZqMHoC7MpZuWE3XH5TXRTVnJ0zJk+ZgsawFUM ChCgLSVNkBslxKOjKtATYzRa3hXOESxYSUTZfDfnqqieRSS9QFF5TbAt/1hTOy0c t31JJvcIQLFxtn+1F7iZcVHMC5ou3LdXLw3Ze0zYG4uHoRxP9aQyg+O68LM6nukw ItHItw0EPgmccMTRahs+40nmk1Jq0s0B3VqlPebhwbtYWUp8jnUVT8ego8sI2O/v 3hflqKqHItfCtNr3lTUDwbIzyqePqCmaZUbji/9xWqQHR7VpQdtsFQdSL6E0tF6r 4I8RoMkSO0bLkg== -----END CERTIFICATE-----Generated at Thu Jun 11 20:50:27 2026 by rpki-client