$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft File: lBZrcEhD09l1QJXIOpG0k4KCAKI.mft (raw, json) Hash identifier: BEsDEI5BhGVRdvhF4mT9UMWyUwW3a2DPO8wp9LEMS7s= Subject key identifier: F0:CA:72:A6:47:06:E5:42:BC:5F:F8:C8:04:CE:28:30:7D:26:C6:5B Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2 Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2 Certificate serial: 019E2A39478D820EC6137C1273FB99F9FF7A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft Manifest number: 19D1 Signing time: Fri 15 May 2026 06:00:57 +0000 Manifest this update: Fri 15 May 2026 06:00:57 +0000 Manifest next update: Sat 16 May 2026 06:00:57 +0000 Files and hashes: 1: DphGqvZQrkP0lkUlvlMiKlE5y0Y.roa (hash: CLYeeAHjhgfN3HTjVosWu6pT5KYLJeLfJmbxJK7H16E=) 2: F8c1izE-9RJV-qYbebPoSy0OO04.roa (hash: R4SfTxNG21QdwRjkrLqrgaOvhx8zK8zawB+KroMpRRM=) 3: HxStnFLPdzsPC0WO8bGixWpm5Zw.roa (hash: fuIxA9vCxBfZyKv0l+am+TRHrbOUD64a3j7zrUUU+R4=) 4: KHKpEj2THKj58bA0t2ta3IDNpvE.roa (hash: Pq1zZUJA84ZOxc7RlsG24SrZSENVQ5pv+oFLBtS7LdY=) 5: Xp1cuH5GckRebQbl04bBVOXl9c0.roa (hash: G9DoetqG3+uFPEjScRTeA6vdZfkVk+8JEJjCMtB7vJ4=) 6: cjuW9zHucIxHadivGPbPdZXZ_58.roa (hash: +/HavscS0K4ByxH8Sd+pAVMLMiLtpvePtkXZTD1HVWg=) 7: ckfmY3WSPr_4BWpV0qlaPUwbu8I.roa (hash: rA5xc/5hb1tqN7XSQMe8RP1nVeaWX6f+VPTMMamNxv0=) 8: kHJAbRZAn8BmDoNVsIR_1TrPdwU.roa (hash: MQR9UxJH6mrGqbSYbaZNH4TCjTvPKDgCy2uSCTLGIl4=) 9: lBZrcEhD09l1QJXIOpG0k4KCAKI.crl (hash: gwviSW3dUOnaFafa6ZuwDFnv8dAyL35fWUgaBReQ84A=) 10: oFjLnFx0PgjFBuwtiF_MYSFpqmA.roa (hash: VK+JXOgRMBfH6LlIiFROL5a7HEYqeypevfrTL4MJN2k=) 11: qd72DKJaICZWiagHwebWP0vFOJ8.roa (hash: /V0/an8AE34Kq1g8LUh0t2FSys6TP8h7lRi/4uGrR90=) 12: scipXrLku0FsLTMhFiRQqW2YNNI.roa (hash: 27jUzZWoywelCKzQdsVleudIQaMJ5nu6JvgSeIJacw8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 16 May 2026 02:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:2a:39:47:8d:82:0e:c6:13:7c:12:73:fb:99:f9:ff:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94166b704843d3d9754095c83a91b493828200a2 Validity Not Before: May 15 06:00:57 2026 GMT Not After : May 16 06:00:57 2026 GMT Subject: CN=f0ca72a64706e542bc5ff8c804ce28307d26c65b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:1c:91:ca:05:06:34:1a:ec:2a:c3:e9:b8:8a: 1a:ea:63:31:ef:d6:ab:41:d2:da:46:12:4a:98:20: f1:06:44:3a:2a:5c:51:1c:80:91:ba:c4:f6:40:8a: f3:2e:f8:e6:ad:2e:1b:30:44:29:4a:3f:d3:f1:90: 4e:48:32:87:0c:95:11:8a:61:a6:23:1f:a0:48:76: 87:ee:83:2b:89:e1:c2:af:91:aa:a8:c8:63:3c:25: 9b:f2:f8:b0:9d:69:28:54:72:3c:f2:dc:74:aa:6f: 45:a2:4b:27:0e:8e:42:63:4b:e2:a7:48:a6:40:20: 7b:09:e0:04:40:a4:82:3b:b5:52:f2:ce:d5:37:7f: 78:be:8e:a7:03:31:09:2f:5f:d8:26:90:bd:fd:a7: e2:6d:34:54:1e:25:d6:53:71:41:57:f8:43:e7:c2: 06:95:6c:f9:63:83:2e:82:cc:1d:e8:da:95:3e:93: 08:78:73:3c:94:0f:a9:12:3b:0b:2d:63:d9:8f:fe: 34:5e:0a:2d:e7:29:60:fa:a1:3e:59:85:17:6f:45: 3b:70:87:32:39:28:35:22:1a:89:43:67:b2:6e:35: 0a:16:15:d5:fe:f8:34:72:24:65:99:db:fe:42:42: 50:78:27:1f:e8:88:ba:99:57:71:f1:4f:da:45:8e: 11:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:CA:72:A6:47:06:E5:42:BC:5F:F8:C8:04:CE:28:30:7D:26:C6:5B X509v3 Authority Key Identifier: keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:9e:8e:65:94:45:bf:2d:f5:12:5a:1a:61:b9:c5:b6:8e:56: cf:f9:43:78:12:40:ca:33:6d:18:0c:a4:7d:da:fc:ea:68:c3: c0:51:f7:41:75:3f:1b:d7:1b:e4:98:2d:43:a4:cb:e7:f7:5f: 7f:01:3f:7e:ac:90:e8:44:24:30:18:cb:7f:6e:1a:2a:81:15: c6:ac:5e:c7:d5:8d:ab:3e:f7:4a:96:ff:26:e6:d1:fa:23:80: a2:6e:ab:6b:c2:06:e8:c1:3e:1c:b5:fd:5e:4d:8b:3a:7f:bd: 6a:4e:d5:61:17:c2:b1:54:3f:4f:dd:0e:2f:06:4c:4f:1b:cb: 26:03:1b:ee:0c:5f:53:bd:a0:99:95:3c:83:e0:24:10:82:65: 12:a4:62:20:bd:24:1c:bc:5c:d3:be:0d:f1:1d:18:e4:45:92: 9c:c9:22:87:2d:07:53:10:cb:47:44:2d:b6:0f:37:0f:df:bd: b9:56:b5:48:3f:01:f2:9f:9a:6d:16:b6:a3:5d:05:d2:45:9f: 9d:45:c7:e3:d8:2d:ef:d9:90:3c:d8:18:a0:49:38:65:a6:5a: 14:ad:80:29:62:4e:95:e5:ce:6f:58:ad:ff:39:ba:68:c8:df: 90:25:73:91:36:66:b1:b8:ba:e7:a6:3e:d3:7f:e5:51:63:73: f1:6e:07:68 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4qOUeNgg7GE3wSc/uZ+f96MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0MTY2YjcwNDg0M2QzZDk3NTQwOTVjODNhOTFiNDkzODI4 MjAwYTIwHhcNMjYwNTE1MDYwMDU3WhcNMjYwNTE2MDYwMDU3WjAzMTEwLwYDVQQD EyhmMGNhNzJhNjQ3MDZlNTQyYmM1ZmY4YzgwNGNlMjgzMDdkMjZjNjViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5ByRygUGNBrsKsPpuIoa6mMx79ar QdLaRhJKmCDxBkQ6KlxRHICRusT2QIrzLvjmrS4bMEQpSj/T8ZBOSDKHDJURimGm Ix+gSHaH7oMrieHCr5GqqMhjPCWb8viwnWkoVHI88tx0qm9FoksnDo5CY0vip0im QCB7CeAEQKSCO7VS8s7VN394vo6nAzEJL1/YJpC9/afibTRUHiXWU3FBV/hD58IG lWz5Y4Mugswd6NqVPpMIeHM8lA+pEjsLLWPZj/40Xgot5ylg+qE+WYUXb0U7cIcy OSg1IhqJQ2eybjUKFhXV/vg0ciRlmdv+QkJQeCcf6Ii6mVdx8U/aRY4RhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPDKcqZHBuVCvF/4yATOKDB9JsZbMB8GA1UdIwQY MBaAFJQWa3BIQ9PZdUCVyDqRtJOCggCiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEJacmNFaEQwOWwxUUpYSU9wRzBrNEtDQUtJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi80M2ZmOGYtY2Q1NC00Y2YxLThhYWYt NGJlMThlZjEyOGI0LzEvbEJacmNFaEQwOWwxUUpYSU9wRzBrNEtDQUtJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi80M2ZmOGYtY2Q1NC00Y2YxLThhYWYtNGJlMThlZjEyOGI0 LzEvbEJacmNFaEQwOWwxUUpYSU9wRzBrNEtDQUtJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMZ6OZZRF vy31EloaYbnFto5Wz/lDeBJAyjNtGAykfdr86mjDwFH3QXU/G9cb5JgtQ6TL5/df fwE/fqyQ6EQkMBjLf24aKoEVxqxex9WNqz73Spb/JubR+iOAom6ra8IG6ME+HLX9 Xk2LOn+9ak7VYRfCsVQ/T90OLwZMTxvLJgMb7gxfU72gmZU8g+AkEIJlEqRiIL0k HLxc074N8R0Y5EWSnMkihy0HUxDLR0Qttg83D9+9uVa1SD8B8p+abRa2o10F0kWf nUXH49gt79mQPNgYoEk4ZaZaFK2AKWJOleXOb1it/zm6aMjfkCVzkTZmsbi656Y+ 03/lUWNz8W4HaA== -----END CERTIFICATE-----Generated at Fri May 15 09:51:24 2026 by rpki-client