$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/bOl89NjQvBezrx1ixNcUiGYb0hI.mft File: bOl89NjQvBezrx1ixNcUiGYb0hI.mft (raw, json) Hash identifier: nC8g/GHIrdUnnfzr/RN+fnsrBG7YuazEEA6i856StJI= Subject key identifier: 7B:77:4E:3E:2F:DF:7E:31:C8:B5:1D:AA:68:E1:16:49:B1:17:34:2D Authority key identifier: 6C:E9:7C:F4:D8:D0:BC:17:B3:AF:1D:62:C4:D7:14:88:66:1B:D2:12 Certificate issuer: /CN=6ce97cf4d8d0bc17b3af1d62c4d71488661bd212 Certificate serial: 019DCD1901932B714C06B85C8B4F90B98CE9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/bOl89NjQvBezrx1ixNcUiGYb0hI.mft Manifest number: 18E8 Signing time: Mon 27 Apr 2026 04:01:01 +0000 Manifest this update: Mon 27 Apr 2026 04:01:01 +0000 Manifest next update: Tue 28 Apr 2026 04:01:01 +0000 Files and hashes: 1: 3VQqtiom1KN9zcDFbHb_HNwz1EI.roa (hash: n7BuRmEffiATFiumwmipm2pKN3sbI8aRpEp3yWS0w6c=) 2: 53Y6HNT6PybZ5fv0RIq3VzI1Ero.roa (hash: gfRH81Dg27dQ3kodzezmL1Q0yfGmr/Pdqe1spxmMPZE=) 3: 7fjKgyx9Yaxh1FmHZYJUH95301c.roa (hash: T1XxvO4P4dkHl+WGoPHzZBE5VBrM/N30kEx3n7zSiDA=) 4: 8rGqH77YTfgMLRPyoN61N8RnEq0.roa (hash: ZNQ10Ukgjrp4rH/Ovez3kQihf1PS+l23PddvrRzZauI=) 5: BXn_bVoFgxHmHunAkFZSuzgFSwk.roa (hash: jxJIsK3YcEKMp25t1FYnjxefcJAQeAeiUCQ6rxD9bpw=) 6: BoaVLgPlhn4qr_fU3lgNc_DP-CI.roa (hash: 8gys4r5Jrh79V6ospkWBTCV9aubZPTwmXqR+dBSZNIM=) 7: ID3uGpE-dcekqFUA9CaskNQTHgw.roa (hash: +8FnPQxela/00fZdYSydOiN682t6g2gq5E5EtP0QcC8=) 8: LfmeRYcfUiEj399TDpOym_UlFRA.roa (hash: BkStJv/EZ8z0hAQkEE3CqcK8hG9A1BieEUEqY6z0bK8=) 9: TY35IYclW4VPKdwgjzeN1-eRV5w.roa (hash: NrbtXiKXpUhJK+M5wfVFLQO6KPLEcpep0fo9uaa4vxY=) 10: UPWe1Wug7fNHuCoRI5LkUE4bICs.roa (hash: RDVH/BCV293ZQWWctDV3PRotDWVexWOj6PnUwJgAPTM=) 11: ayDmsI9qPMkxJ9NCKjnvD4ewlH0.roa (hash: D0WB+C7bGTZZc6yEWTFDivFil9okzEXHOU5scGXoB+Q=) 12: bOl89NjQvBezrx1ixNcUiGYb0hI.crl (hash: JqExZ5le7PKXl2CC3skai9s8znc9LK7lF8w00fFLQzQ=) 13: h-Wv51tawGDDmzKTTiZygQFK1dI.roa (hash: gqUuhqm1O9kzFr7mzHK7ZrQWJPre8M3ei4+B6j2pDcQ=) 14: kDFa5fuToySOCU5vcGqCPDIk2Pc.roa (hash: I1BI9NSvaTv9rq7lHhxdUbN5f5WvqbSLYeczo8o1iF8=) 15: kehR6DRCeFwK5vsEVm60Bz8cG6c.roa (hash: L7sYa6xHC69xAZ7O1gkCc5slSgVN1A33m9IE9XvzF3U=) 16: mpGPMzUEL2GiaFu_ro-uoSMpDSM.roa (hash: De6x6yshStzd8qqnnIj6N4UKaPqhjyF/TsaAnqUmWqQ=) 17: oBqkwnj05lVwlwGOkOtelMXi290.roa (hash: KWxt3/pFpWp3KL1iplFsqb9jfnpqg64kOikp0uiyOdM=) 18: p1SWpdWXGLbEBPrhZY5QfK82wIw.roa (hash: VfVL2JfcEVzWDqasnouu2XzXkqrAe9JpcBaMStaIF8Y=) 19: sBAGBCoZpRTh-6po9Toi-VKMV10.roa (hash: XU348a2UokXBEiecPQsK1jFxCMx0Gc+NuqKhJQxgwZk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/bOl89NjQvBezrx1ixNcUiGYb0hI.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/bOl89NjQvBezrx1ixNcUiGYb0hI.mft rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 28 Apr 2026 04:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:cd:19:01:93:2b:71:4c:06:b8:5c:8b:4f:90:b9:8c:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ce97cf4d8d0bc17b3af1d62c4d71488661bd212 Validity Not Before: Apr 27 04:01:01 2026 GMT Not After : Apr 28 04:01:01 2026 GMT Subject: CN=7b774e3e2fdf7e31c8b51daa68e11649b117342d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:83:82:c3:47:2b:75:9f:ee:25:16:26:91:06: dd:06:96:b9:45:8d:b6:d9:3d:5f:00:d8:1d:3d:7b: 1c:b6:03:81:ab:84:34:c1:fe:bf:08:8b:97:f4:af: 31:32:c7:de:03:0b:00:26:95:35:4b:36:a0:dc:bd: 66:a1:20:e6:48:a4:23:30:ec:b8:13:f0:bd:2c:e0: 5e:b4:cc:ae:2a:8a:ac:d9:72:f2:f5:eb:5d:ff:66: 7e:19:6a:ea:36:52:fd:c2:75:b1:48:e6:b8:e8:78: 16:26:d4:30:84:74:cf:e5:42:20:00:00:fc:00:2f: 39:58:d5:49:80:31:6e:bc:78:4f:5e:5d:a0:f7:78: 22:c4:81:9e:80:1d:7d:c9:76:64:e5:11:25:80:c3: 50:eb:2e:12:b8:b0:84:0d:d2:12:24:fc:17:f4:fb: cd:85:15:05:8b:3a:17:e8:c6:16:b7:af:76:73:59: 86:fe:e5:3d:26:6b:7c:a4:0a:ff:cf:ef:6e:3f:7b: 51:e9:3d:6c:7d:cb:5e:20:c4:69:2f:45:23:71:96: 5d:55:73:eb:e2:24:7b:47:49:5d:5b:b6:5d:14:0e: 3e:8d:8c:2a:f0:ec:4b:d8:3d:df:41:82:d0:4e:e6: 09:3b:8a:79:db:40:31:7f:9e:d6:73:1b:fd:7b:bb: 12:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:77:4E:3E:2F:DF:7E:31:C8:B5:1D:AA:68:E1:16:49:B1:17:34:2D X509v3 Authority Key Identifier: keyid:6C:E9:7C:F4:D8:D0:BC:17:B3:AF:1D:62:C4:D7:14:88:66:1B:D2:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/bOl89NjQvBezrx1ixNcUiGYb0hI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/bOl89NjQvBezrx1ixNcUiGYb0hI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:b8:42:74:c3:fc:82:c3:f9:85:6d:d4:24:43:11:90:ed:c4: e1:70:84:52:23:9b:85:87:9e:f8:3f:4d:17:01:1a:1a:5e:1f: 36:3a:30:49:ed:2d:d0:07:39:18:44:d1:0b:f1:a6:47:b7:75: 29:4c:45:82:96:26:3b:f7:ea:bf:dc:82:f6:49:0d:49:52:d0: 90:6b:12:70:8b:9e:6b:f5:a5:3f:ee:4a:f0:70:95:22:57:0e: f2:af:c3:db:39:7c:e2:81:3a:29:73:de:8e:0e:2d:65:c4:71: 17:ee:d3:30:96:97:8f:1e:50:4c:be:4c:6e:32:95:83:b7:56: 48:3f:de:ef:65:b7:e5:1b:f8:58:5a:3e:d1:88:c3:56:e5:ee: 89:d6:b1:60:bd:86:62:a5:08:26:7d:ac:80:cd:74:94:89:c0: 6a:de:23:f0:0a:16:ad:6e:f9:81:73:00:8a:45:a7:aa:ef:14: 9d:58:17:66:29:66:ca:1c:0c:3e:30:08:54:f9:ac:d2:d3:30: 2b:e7:06:00:f5:a1:4a:95:0c:fb:94:9d:0e:17:85:74:a9:5b: a7:e9:e9:bd:5b:bf:8b:c8:bd:48:68:00:77:b3:1c:a3:9b:27: 93:3a:7c:9f:a2:e7:b3:69:df:25:d8:a5:86:f7:df:8d:08:95: 63:91:6e:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ3NGQGTK3FMBrhci0+QuYzpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjZTk3Y2Y0ZDhkMGJjMTdiM2FmMWQ2MmM0ZDcxNDg4NjYx YmQyMTIwHhcNMjYwNDI3MDQwMTAxWhcNMjYwNDI4MDQwMTAxWjAzMTEwLwYDVQQD Eyg3Yjc3NGUzZTJmZGY3ZTMxYzhiNTFkYWE2OGUxMTY0OWIxMTczNDJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoYOCw0crdZ/uJRYmkQbdBpa5RY22 2T1fANgdPXsctgOBq4Q0wf6/CIuX9K8xMsfeAwsAJpU1Szag3L1moSDmSKQjMOy4 E/C9LOBetMyuKoqs2XLy9etd/2Z+GWrqNlL9wnWxSOa46HgWJtQwhHTP5UIgAAD8 AC85WNVJgDFuvHhPXl2g93gixIGegB19yXZk5RElgMNQ6y4SuLCEDdISJPwX9PvN hRUFizoX6MYWt692c1mG/uU9Jmt8pAr/z+9uP3tR6T1sfcteIMRpL0UjcZZdVXPr 4iR7R0ldW7ZdFA4+jYwq8OxL2D3fQYLQTuYJO4p520Axf57Wcxv9e7sSGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHt3Tj4v334xyLUdqmjhFkmxFzQtMB8GA1UdIwQY MBaAFGzpfPTY0LwXs68dYsTXFIhmG9ISMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYk9sODlOalF2QmV6cngxaXhOY1VpR1liMGhJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9lNGNjYjEtY2EyNS00MDk5LTgyNzMt Mzk5M2FhMzI0ZTFmLzEvYk9sODlOalF2QmV6cngxaXhOY1VpR1liMGhJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS9lNGNjYjEtY2EyNS00MDk5LTgyNzMtMzk5M2FhMzI0ZTFm LzEvYk9sODlOalF2QmV6cngxaXhOY1VpR1liMGhJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc7hCdMP8 gsP5hW3UJEMRkO3E4XCEUiObhYee+D9NFwEaGl4fNjowSe0t0Ac5GETRC/GmR7d1 KUxFgpYmO/fqv9yC9kkNSVLQkGsScIuea/WlP+5K8HCVIlcO8q/D2zl84oE6KXPe jg4tZcRxF+7TMJaXjx5QTL5MbjKVg7dWSD/e72W35Rv4WFo+0YjDVuXuidaxYL2G YqUIJn2sgM10lInAat4j8AoWrW75gXMAikWnqu8UnVgXZilmyhwMPjAIVPms0tMw K+cGAPWhSpUM+5SdDheFdKlbp+npvVu/i8i9SGgAd7Mco5snkzp8n6Lns2nfJdil hvffjQiVY5Fuuw== -----END CERTIFICATE-----Generated at Mon Apr 27 10:44:50 2026 by rpki-client