$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft File: Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft (raw, json) Hash identifier: ZMYWW0yTshyBO8JiiPd7SyoOAuue8kGRfPG3lkvmZnc= Subject key identifier: 7B:C3:28:69:D5:7C:70:1E:76:E4:A4:72:B5:16:84:D5:83:1B:79:16 Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65 Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65 Certificate serial: 019DB246C58793590871CECF677653A7F39F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft Manifest number: 0C32 Signing time: Tue 21 Apr 2026 23:01:15 +0000 Manifest this update: Tue 21 Apr 2026 23:01:15 +0000 Manifest next update: Wed 22 Apr 2026 23:01:15 +0000 Files and hashes: 1: 1vbf4idXUPCWVm0PjanUNDzo3LM.roa (hash: /Im6rBlfP/hqnXVPz/7A/iNYH4vUpjF3xS/bQj/oQ5Q=) 2: 2KGI0ncnRfDhkkE_GeDt4kg9A6A.roa (hash: D03oFEIOCPyMTFkWyGOuVN6dyHDgUfDh2sP45/yVk0M=) 3: 7ZlxFMTrvWHxaDQj8cGRFKFOYRs.roa (hash: cMX6h6ESvCK8kLWWGv+cii+7hJJzZRIJOKQPIQ2Prc4=) 4: 99pLW5NSdSWyy1K_KuBziUqycLU.roa (hash: iIMALiQte4M3j2/lLwOQNkJ4eCV7WxTe0kTN8g67L1E=) 5: BVH6b7o32zruo819dGQ7RJqUDl8.roa (hash: xnWOB/u8pFkczKp6SQPwHh+agMf57JcMqkeEhSQno3k=) 6: CFRA8brf5sE4J0Vi_mv81svugxI.roa (hash: uvljp7f/z0E6aDzdRUCbiXg1uxB0BXMPXZAh/OfcnR8=) 7: O95FYcJt2MJqQBJC_AIOSexxhY0.roa (hash: 0fj+Bm1xvWakTGbe1RmNsauUNwiHSCe1QzuuMJQvQKI=) 8: Q319puPuZ6pEVFIow6HSoz6aiu4.roa (hash: w5OU1Qsqqe0TAPMfpoTlrKdZQKLeQmRMZSWdZEzQ0ZA=) 9: R2Xs7XqXEclO85JXT59oGHv2UUY.roa (hash: nIFGF9nru9tSwOgFOZOY266TEUqFgtMmSxtUiekx1us=) 10: SRu3Oj_JR0Aqw1_pXOqCkyqZiNM.roa (hash: OXGfPj6oOrbejLX45mK4NILgwBe4FcCaUI2RA3UNsvQ=) 11: UGOdZFnWOaDTUW1gBJTVRUvwwsg.roa (hash: 31f0c90jHRTJFbEadEWirIAL83TgIDaQVunpcdqq/Lc=) 12: WBXZwfjVQMhyPd0wAfSbxYfJifA.roa (hash: 7Zi1rF/rVFpFWu59NAjvAspfxDVu7Q9niDEtiwGb2YM=) 13: YnEzVxxydocNJgTIMFRXPna0zB4.roa (hash: ZgavJWzGoXn3e/0BfVR/irboVRcmVNTc0rTuF6DBaG8=) 14: Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl (hash: TnL6FC993mNNDbe3hXZaZqwMQOQiecXEesMcEgxuE+Q=) 15: fja8EDLSj-GXWp-ja1-kSk00taQ.roa (hash: fV9XPVZHv5y/fbzPwaa+4kN4atFK0nZgUPlx8b1imXU=) 16: qUJVzkvCS28CT-LmqvhYZclQCzE.roa (hash: BntXpT1OhjVzTBdajvz/YjJOLIAqWeZhu5LfIQJSn34=) 17: ulmVQiOp1gOs49EtEkyImPsqtd0.roa (hash: f351U+o3k5FK4942+J3BTuz1lhxg1e9CRMaV4iDlrp0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 22 Apr 2026 21:56:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:b2:46:c5:87:93:59:08:71:ce:cf:67:76:53:a7:f3:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67499595a65aab0b53768def08091e31061e9e65 Validity Not Before: Apr 21 23:01:15 2026 GMT Not After : Apr 22 23:01:15 2026 GMT Subject: CN=7bc32869d57c701e76e4a472b51684d5831b7916 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f8:86:a2:fe:09:e5:84:fd:3e:1a:a0:13:81: 3e:ec:64:cb:ba:20:3c:49:b5:af:23:14:0f:98:0a: 3b:d5:a1:5f:5d:63:2c:9f:8b:d1:7c:8d:5e:ef:65: 45:fe:78:f4:79:11:25:31:b7:bd:ed:ea:e3:c2:2e: 7c:1d:8d:89:7a:16:b3:d3:c8:2b:12:53:ae:33:18: df:1f:fa:ec:5c:9e:82:a9:a2:73:f8:1f:c0:93:62: cd:91:ab:36:e1:80:50:91:44:66:7c:13:0b:04:a7: 3a:28:d5:9d:6f:bb:0e:93:fc:1c:c3:30:f5:e8:4b: 46:94:90:19:06:0d:03:61:22:7d:2a:93:6e:83:9e: 9d:54:30:f9:01:f8:a8:08:b6:38:1a:39:e3:3b:10: 68:6f:71:72:e6:be:36:b9:93:2c:4a:e7:82:49:98: 77:6a:5f:69:42:c6:f3:3c:37:09:55:09:2f:06:39: 06:7a:f6:de:d1:80:da:d6:03:fb:53:3d:42:d7:8e: 5e:5f:0a:ad:da:0c:11:2c:02:f0:96:99:91:17:2b: c2:df:0d:43:b4:78:1a:ea:ae:65:a1:0a:a8:f5:f7: 18:ba:f7:91:83:fc:ac:2f:2b:7d:1f:ad:a9:78:73: 6d:c1:e7:ae:4b:6a:03:f9:1d:25:a5:1b:c7:87:ac: 25:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:C3:28:69:D5:7C:70:1E:76:E4:A4:72:B5:16:84:D5:83:1B:79:16 X509v3 Authority Key Identifier: keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:81:e0:e1:75:f4:9a:9c:fb:c3:ad:21:aa:e7:9b:63:98:6f: e7:5d:ea:0a:7a:c2:c4:10:96:ae:ae:f4:8b:2f:13:3c:ed:8d: bd:3a:6a:fb:5c:d9:10:4b:b8:f1:80:82:30:a0:eb:bc:b7:bb: a5:84:f3:07:c6:9d:b5:38:16:c1:46:09:56:d4:13:88:5f:14: a6:e1:51:38:62:75:a6:18:27:6d:76:31:41:49:54:52:ff:0e: 02:d9:4d:d5:89:14:77:6d:48:d2:62:2f:49:94:2c:d6:84:bb: de:bb:4e:6a:a8:ee:04:b3:60:51:33:ad:69:e9:52:7d:29:ce: 67:75:fe:b5:53:6e:f9:ca:06:42:06:ed:93:83:5f:22:bd:71: 41:b9:d4:42:2b:2b:a5:f7:da:a3:34:5e:f8:14:5f:3a:c9:35: 8b:ee:dc:66:b5:33:34:cc:9c:48:96:82:49:a6:a8:2f:35:c8: 12:77:2b:47:ef:13:38:de:cd:0a:9f:e9:4b:77:57:40:e9:e2: 50:a0:99:f3:5e:62:2d:32:59:9a:b5:8b:50:9c:a8:b5:75:01: 09:f8:5b:6a:db:81:12:a8:5c:1e:e0:32:65:eb:23:bc:d3:1c: 1d:47:d3:c5:74:00:a6:fa:d4:5b:20:52:de:54:59:da:c6:87: fe:d6:e8:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2yRsWHk1kIcc7PZ3ZTp/OfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3NDk5NTk1YTY1YWFiMGI1Mzc2OGRlZjA4MDkxZTMxMDYx ZTllNjUwHhcNMjYwNDIxMjMwMTE1WhcNMjYwNDIyMjMwMTE1WjAzMTEwLwYDVQQD Eyg3YmMzMjg2OWQ1N2M3MDFlNzZlNGE0NzJiNTE2ODRkNTgzMWI3OTE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoPiGov4J5YT9PhqgE4E+7GTLuiA8 SbWvIxQPmAo71aFfXWMsn4vRfI1e72VF/nj0eRElMbe97erjwi58HY2Jehaz08gr ElOuMxjfH/rsXJ6CqaJz+B/Ak2LNkas24YBQkURmfBMLBKc6KNWdb7sOk/wcwzD1 6EtGlJAZBg0DYSJ9KpNug56dVDD5AfioCLY4GjnjOxBob3Fy5r42uZMsSueCSZh3 al9pQsbzPDcJVQkvBjkGevbe0YDa1gP7Uz1C145eXwqt2gwRLALwlpmRFyvC3w1D tHga6q5loQqo9fcYuveRg/ysLyt9H62peHNtweeuS2oD+R0lpRvHh6wljwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHvDKGnVfHAeduSkcrUWhNWDG3kWMB8GA1UdIwQY MBaAFGdJlZWmWqsLU3aN7wgJHjEGHp5lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTct MzU1MDgwNDE2NTJkLzEvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTctMzU1MDgwNDE2NTJk LzEvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhYHg4XX0 mpz7w60hquebY5hv513qCnrCxBCWrq70iy8TPO2NvTpq+1zZEEu48YCCMKDrvLe7 pYTzB8adtTgWwUYJVtQTiF8UpuFROGJ1phgnbXYxQUlUUv8OAtlN1YkUd21I0mIv SZQs1oS73rtOaqjuBLNgUTOtaelSfSnOZ3X+tVNu+coGQgbtk4NfIr1xQbnUQisr pffaozRe+BRfOsk1i+7cZrUzNMycSJaCSaaoLzXIEncrR+8TON7NCp/pS3dXQOni UKCZ815iLTJZmrWLUJyotXUBCfhbatuBEqhcHuAyZesjvNMcHUfTxXQApvrUWyBS 3lRZ2saH/tbo1A== -----END CERTIFICATE-----Generated at Wed Apr 22 02:39:46 2026 by rpki-client