$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft File: lBZrcEhD09l1QJXIOpG0k4KCAKI.mft (raw, json) Hash identifier: uW9ty0RN+jGjKZ+ekVf9qQBL0PqyaJmJk6LVMNZpMFo= Subject key identifier: 18:FB:AF:CC:5E:34:3F:41:8D:DF:7C:0C:57:4D:A9:03:72:45:8B:3A Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2 Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2 Certificate serial: 019F11F8253F195A538F86BB9EB715B9177D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft Manifest number: 1A4A Signing time: Mon 29 Jun 2026 06:01:42 +0000 Manifest this update: Mon 29 Jun 2026 06:01:42 +0000 Manifest next update: Tue 30 Jun 2026 06:01:42 +0000 Files and hashes: 1: DphGqvZQrkP0lkUlvlMiKlE5y0Y.roa (hash: CLYeeAHjhgfN3HTjVosWu6pT5KYLJeLfJmbxJK7H16E=) 2: F8c1izE-9RJV-qYbebPoSy0OO04.roa (hash: R4SfTxNG21QdwRjkrLqrgaOvhx8zK8zawB+KroMpRRM=) 3: HxStnFLPdzsPC0WO8bGixWpm5Zw.roa (hash: fuIxA9vCxBfZyKv0l+am+TRHrbOUD64a3j7zrUUU+R4=) 4: KHKpEj2THKj58bA0t2ta3IDNpvE.roa (hash: Pq1zZUJA84ZOxc7RlsG24SrZSENVQ5pv+oFLBtS7LdY=) 5: Xp1cuH5GckRebQbl04bBVOXl9c0.roa (hash: G9DoetqG3+uFPEjScRTeA6vdZfkVk+8JEJjCMtB7vJ4=) 6: cjuW9zHucIxHadivGPbPdZXZ_58.roa (hash: +/HavscS0K4ByxH8Sd+pAVMLMiLtpvePtkXZTD1HVWg=) 7: ckfmY3WSPr_4BWpV0qlaPUwbu8I.roa (hash: rA5xc/5hb1tqN7XSQMe8RP1nVeaWX6f+VPTMMamNxv0=) 8: kHJAbRZAn8BmDoNVsIR_1TrPdwU.roa (hash: MQR9UxJH6mrGqbSYbaZNH4TCjTvPKDgCy2uSCTLGIl4=) 9: lBZrcEhD09l1QJXIOpG0k4KCAKI.crl (hash: Ugw7GtYrUKd+nc/uCkaUfiVyIIavi2qJCuqWWoLehbw=) 10: oFjLnFx0PgjFBuwtiF_MYSFpqmA.roa (hash: VK+JXOgRMBfH6LlIiFROL5a7HEYqeypevfrTL4MJN2k=) 11: scipXrLku0FsLTMhFiRQqW2YNNI.roa (hash: 27jUzZWoywelCKzQdsVleudIQaMJ5nu6JvgSeIJacw8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Jun 2026 02:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9f:11:f8:25:3f:19:5a:53:8f:86:bb:9e:b7:15:b9:17:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94166b704843d3d9754095c83a91b493828200a2 Validity Not Before: Jun 29 06:01:42 2026 GMT Not After : Jun 30 06:01:42 2026 GMT Subject: CN=18fbafcc5e343f418ddf7c0c574da90372458b3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e2:e9:0b:cd:1f:ac:2a:2d:2d:07:55:17:eb: 02:02:9f:07:17:6e:56:c8:9d:4b:ea:5d:30:86:d8: 33:f0:61:52:9a:12:44:de:d1:f3:45:65:0a:0f:7c: c8:de:e4:3c:c7:a3:e0:f2:c3:c4:54:d4:cf:cb:f4: 38:2f:11:a4:39:49:a1:db:08:6c:d2:fe:5a:18:ec: 69:3d:34:43:60:04:d0:1d:2f:de:78:e5:25:6a:b9: 66:5f:f8:88:c6:80:cc:13:8b:41:d7:1e:bf:45:5c: 2b:69:1e:9e:4e:4f:63:fd:a4:55:02:36:a4:10:cf: ce:6e:8f:13:60:f3:87:8b:75:65:a3:f2:36:ed:5c: bb:ca:cd:e7:11:cb:bb:18:64:08:95:99:4f:09:3f: 8c:b7:18:c3:9a:73:31:85:55:05:9a:ea:dc:76:c3: 5e:ae:e8:0b:79:4d:8c:ea:61:a6:bd:19:40:6a:62: e9:9e:b9:62:de:00:43:85:2f:4c:d1:3b:c6:96:14: fc:fb:12:41:9b:f0:4c:48:3e:80:9b:a9:04:76:d0: 0f:29:70:66:ac:1e:8b:f4:87:4f:25:6f:38:e3:43: 84:da:44:07:08:83:10:e5:b7:93:f2:80:d6:c2:86: 20:d0:31:d2:b4:ff:6c:1f:c2:bb:b6:fc:34:91:8f: cd:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:FB:AF:CC:5E:34:3F:41:8D:DF:7C:0C:57:4D:A9:03:72:45:8B:3A X509v3 Authority Key Identifier: keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:05:25:9e:a2:66:48:67:57:f1:69:b9:6f:88:c9:f0:73:cd: 76:67:38:d4:de:28:03:77:7a:51:75:df:0f:13:a6:83:ae:de: 5b:95:2d:16:cf:99:f2:99:68:66:bb:3d:97:92:fd:cd:e3:5c: 37:94:8d:b9:97:82:8c:37:58:1a:c4:21:5b:f8:46:32:bf:d8: 08:91:81:d8:ec:62:f7:56:47:78:c0:e9:d2:56:ac:4f:21:e1: 35:7a:83:d0:95:34:cb:f6:6d:49:cb:15:1e:fb:31:04:39:a8: bd:bc:68:5b:0d:38:0f:cd:e3:45:2a:6d:2d:d0:f1:8e:c3:47: 1d:99:51:a2:80:f2:6a:fc:9e:cb:0b:ad:42:97:c1:d6:9b:88: d9:82:38:48:83:92:d6:80:91:8c:23:bb:99:0e:cd:60:43:52: be:12:08:0d:d1:bd:f1:8d:e4:98:cf:21:81:41:6f:ef:44:dd: b9:76:dd:1c:67:f8:9c:35:04:c4:b1:de:e3:94:ee:e4:01:7a: ba:9d:bd:77:cb:39:38:ac:93:d8:bf:3e:62:e0:46:bb:d3:ed: b3:cc:36:1b:55:e3:ca:4f:38:92:58:23:ef:d8:21:49:b1:b4: fc:7e:a9:6a:fd:7a:72:36:4f:92:e8:c3:e4:8a:d7:a0:4a:ac: 30:1f:6c:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ8R+CU/GVpTj4a7nrcVuRd9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0MTY2YjcwNDg0M2QzZDk3NTQwOTVjODNhOTFiNDkzODI4 MjAwYTIwHhcNMjYwNjI5MDYwMTQyWhcNMjYwNjMwMDYwMTQyWjAzMTEwLwYDVQQD EygxOGZiYWZjYzVlMzQzZjQxOGRkZjdjMGM1NzRkYTkwMzcyNDU4YjNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvOLpC80frCotLQdVF+sCAp8HF25W yJ1L6l0whtgz8GFSmhJE3tHzRWUKD3zI3uQ8x6Pg8sPEVNTPy/Q4LxGkOUmh2whs 0v5aGOxpPTRDYATQHS/eeOUlarlmX/iIxoDME4tB1x6/RVwraR6eTk9j/aRVAjak EM/Obo8TYPOHi3Vlo/I27Vy7ys3nEcu7GGQIlZlPCT+MtxjDmnMxhVUFmurcdsNe rugLeU2M6mGmvRlAamLpnrli3gBDhS9M0TvGlhT8+xJBm/BMSD6Am6kEdtAPKXBm rB6L9IdPJW8440OE2kQHCIMQ5beT8oDWwoYg0DHStP9sH8K7tvw0kY/NPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBj7r8xeND9Bjd98DFdNqQNyRYs6MB8GA1UdIwQY MBaAFJQWa3BIQ9PZdUCVyDqRtJOCggCiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEJacmNFaEQwOWwxUUpYSU9wRzBrNEtDQUtJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi80M2ZmOGYtY2Q1NC00Y2YxLThhYWYt NGJlMThlZjEyOGI0LzEvbEJacmNFaEQwOWwxUUpYSU9wRzBrNEtDQUtJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi80M2ZmOGYtY2Q1NC00Y2YxLThhYWYtNGJlMThlZjEyOGI0 LzEvbEJacmNFaEQwOWwxUUpYSU9wRzBrNEtDQUtJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhAUlnqJm SGdX8Wm5b4jJ8HPNdmc41N4oA3d6UXXfDxOmg67eW5UtFs+Z8ploZrs9l5L9zeNc N5SNuZeCjDdYGsQhW/hGMr/YCJGB2Oxi91ZHeMDp0lasTyHhNXqD0JU0y/ZtScsV HvsxBDmovbxoWw04D83jRSptLdDxjsNHHZlRooDyavyeywutQpfB1puI2YI4SIOS 1oCRjCO7mQ7NYENSvhIIDdG98Y3kmM8hgUFv70TduXbdHGf4nDUExLHe45Tu5AF6 up29d8s5OKyT2L8+YuBGu9Pts8w2G1Xjyk84klgj79ghSbG0/H6pav16cjZPkujD 5IrXoEqsMB9sqg== -----END CERTIFICATE-----Generated at Mon Jun 29 11:09:33 2026 by rpki-client