$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/bOl89NjQvBezrx1ixNcUiGYb0hI.mft File: bOl89NjQvBezrx1ixNcUiGYb0hI.mft (raw, json) Hash identifier: PHdZN/so/mD95PCXzdpoGNFErTNXhPsuCrwnBcZvQyg= Subject key identifier: 70:0C:9E:C4:7D:D4:FE:E2:4F:97:30:D2:D7:A4:D7:8F:45:E8:4D:E4 Authority key identifier: 6C:E9:7C:F4:D8:D0:BC:17:B3:AF:1D:62:C4:D7:14:88:66:1B:D2:12 Certificate issuer: /CN=6ce97cf4d8d0bc17b3af1d62c4d71488661bd212 Certificate serial: 019EB845EB36EA4D7030D03FFFB6BBDD9632 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/bOl89NjQvBezrx1ixNcUiGYb0hI.mft Manifest number: 1962 Signing time: Thu 11 Jun 2026 20:00:50 +0000 Manifest this update: Thu 11 Jun 2026 20:00:50 +0000 Manifest next update: Fri 12 Jun 2026 20:00:50 +0000 Files and hashes: 1: 3VQqtiom1KN9zcDFbHb_HNwz1EI.roa (hash: n7BuRmEffiATFiumwmipm2pKN3sbI8aRpEp3yWS0w6c=) 2: 53Y6HNT6PybZ5fv0RIq3VzI1Ero.roa (hash: gfRH81Dg27dQ3kodzezmL1Q0yfGmr/Pdqe1spxmMPZE=) 3: 7fjKgyx9Yaxh1FmHZYJUH95301c.roa (hash: T1XxvO4P4dkHl+WGoPHzZBE5VBrM/N30kEx3n7zSiDA=) 4: 8rGqH77YTfgMLRPyoN61N8RnEq0.roa (hash: ZNQ10Ukgjrp4rH/Ovez3kQihf1PS+l23PddvrRzZauI=) 5: BXn_bVoFgxHmHunAkFZSuzgFSwk.roa (hash: jxJIsK3YcEKMp25t1FYnjxefcJAQeAeiUCQ6rxD9bpw=) 6: BoaVLgPlhn4qr_fU3lgNc_DP-CI.roa (hash: 8gys4r5Jrh79V6ospkWBTCV9aubZPTwmXqR+dBSZNIM=) 7: ID3uGpE-dcekqFUA9CaskNQTHgw.roa (hash: +8FnPQxela/00fZdYSydOiN682t6g2gq5E5EtP0QcC8=) 8: LfmeRYcfUiEj399TDpOym_UlFRA.roa (hash: BkStJv/EZ8z0hAQkEE3CqcK8hG9A1BieEUEqY6z0bK8=) 9: NEyQG9kyLEW4Um4QAvO7DA9LZsE.roa (hash: v1Y4jsLwKJqAeGZpT4JA4xV86AlZtwzcF7xc4splz3Q=) 10: TY35IYclW4VPKdwgjzeN1-eRV5w.roa (hash: NrbtXiKXpUhJK+M5wfVFLQO6KPLEcpep0fo9uaa4vxY=) 11: UPWe1Wug7fNHuCoRI5LkUE4bICs.roa (hash: RDVH/BCV293ZQWWctDV3PRotDWVexWOj6PnUwJgAPTM=) 12: ayDmsI9qPMkxJ9NCKjnvD4ewlH0.roa (hash: D0WB+C7bGTZZc6yEWTFDivFil9okzEXHOU5scGXoB+Q=) 13: bOl89NjQvBezrx1ixNcUiGYb0hI.crl (hash: JB57CFYAhh4mGD7RK92bjDNrQakCJ7ApY526JCjRrpk=) 14: h-Wv51tawGDDmzKTTiZygQFK1dI.roa (hash: gqUuhqm1O9kzFr7mzHK7ZrQWJPre8M3ei4+B6j2pDcQ=) 15: kDFa5fuToySOCU5vcGqCPDIk2Pc.roa (hash: I1BI9NSvaTv9rq7lHhxdUbN5f5WvqbSLYeczo8o1iF8=) 16: kehR6DRCeFwK5vsEVm60Bz8cG6c.roa (hash: L7sYa6xHC69xAZ7O1gkCc5slSgVN1A33m9IE9XvzF3U=) 17: mpGPMzUEL2GiaFu_ro-uoSMpDSM.roa (hash: De6x6yshStzd8qqnnIj6N4UKaPqhjyF/TsaAnqUmWqQ=) 18: oBqkwnj05lVwlwGOkOtelMXi290.roa (hash: KWxt3/pFpWp3KL1iplFsqb9jfnpqg64kOikp0uiyOdM=) 19: p1SWpdWXGLbEBPrhZY5QfK82wIw.roa (hash: VfVL2JfcEVzWDqasnouu2XzXkqrAe9JpcBaMStaIF8Y=) 20: sBAGBCoZpRTh-6po9Toi-VKMV10.roa (hash: XU348a2UokXBEiecPQsK1jFxCMx0Gc+NuqKhJQxgwZk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/bOl89NjQvBezrx1ixNcUiGYb0hI.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/bOl89NjQvBezrx1ixNcUiGYb0hI.mft rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:b8:45:eb:36:ea:4d:70:30:d0:3f:ff:b6:bb:dd:96:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ce97cf4d8d0bc17b3af1d62c4d71488661bd212 Validity Not Before: Jun 11 20:00:50 2026 GMT Not After : Jun 12 20:00:50 2026 GMT Subject: CN=700c9ec47dd4fee24f9730d2d7a4d78f45e84de4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d2:d2:2c:91:d9:dd:57:f8:1f:f0:9b:f3:84: 1f:09:ba:d2:1c:8a:dc:c6:23:8b:94:33:a2:44:59: 51:a8:ff:5a:3e:cc:ea:54:7b:cd:51:64:3d:71:c9: 62:04:97:81:b4:43:25:3d:bc:e2:b2:6b:fb:60:94: 72:14:37:7a:84:c4:06:63:4b:12:d2:a5:5a:ae:9f: 14:0d:31:f4:fe:13:63:dc:7b:1a:5e:93:17:aa:38: fe:b6:c1:eb:0b:ef:a1:f0:20:ef:40:a2:ec:c7:36: 14:4d:dd:25:4b:5d:ba:59:31:1f:23:0d:11:bb:4a: 65:b1:17:94:a1:7f:da:28:01:17:f0:57:52:c9:14: 04:73:65:b1:0b:7a:a5:cd:f9:e0:ab:91:94:97:19: 67:d8:30:03:29:46:f2:ee:9c:62:22:84:60:08:9b: 3b:09:0e:17:cb:5c:2e:0c:0d:db:6c:35:89:11:5e: 56:f7:06:28:9d:85:4a:d5:d7:18:0a:11:44:a3:ac: 37:49:b0:15:66:59:c1:f3:83:21:9d:1e:d1:71:29: 82:bc:75:de:38:b6:14:3f:50:19:78:2f:f8:90:ae: 66:33:79:57:51:e2:2a:6c:4e:d8:cb:4c:b0:c7:fc: 89:c8:50:28:f9:ed:df:e5:46:c2:b3:f0:78:33:b2: 66:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:0C:9E:C4:7D:D4:FE:E2:4F:97:30:D2:D7:A4:D7:8F:45:E8:4D:E4 X509v3 Authority Key Identifier: keyid:6C:E9:7C:F4:D8:D0:BC:17:B3:AF:1D:62:C4:D7:14:88:66:1B:D2:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/bOl89NjQvBezrx1ixNcUiGYb0hI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/bOl89NjQvBezrx1ixNcUiGYb0hI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:aa:d8:a1:13:1e:77:e9:c4:fc:6a:0c:30:28:24:f8:bd:fd: 8e:dc:e9:33:f1:b8:a8:54:15:23:dd:a7:e3:7a:0c:41:06:70: b2:df:62:52:63:0c:9b:c7:30:fd:ea:4c:0b:a4:78:cb:0b:9e: 90:28:e9:93:aa:74:ca:99:38:6b:a3:5d:47:9a:ee:63:19:a3: 35:af:22:b3:cc:3a:67:4a:10:98:ed:78:d1:24:e0:8a:dd:66: 3e:69:ef:c7:2b:c6:0d:3c:50:44:06:59:87:82:d4:ab:13:e6: a1:49:83:71:da:9a:d8:5f:e8:eb:20:69:50:df:dd:b9:67:b0: e2:15:91:4c:72:00:61:02:4f:16:66:ab:ef:a2:22:1c:1c:31: cd:71:15:79:2f:84:9d:de:92:09:8b:f0:66:87:18:b1:99:a7: 09:e8:9f:33:b6:ca:ab:82:9d:6b:36:4c:4a:ff:c4:0b:5d:d8: 27:ce:21:10:19:0e:de:cc:7a:5e:5c:84:47:7d:7f:44:a1:6a: eb:2a:62:21:58:04:4c:cc:96:db:e2:ab:3b:f5:af:ac:7b:62: e5:ff:f3:3e:0d:47:21:62:64:5c:b1:82:24:a9:8e:a3:76:a0: 3f:b0:5d:6a:81:a1:fe:6f:8e:31:f9:15:3f:af:58:e8:6e:b3: 92:7d:d6:2f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ64Res26k1wMNA//7a73ZYyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjZTk3Y2Y0ZDhkMGJjMTdiM2FmMWQ2MmM0ZDcxNDg4NjYx YmQyMTIwHhcNMjYwNjExMjAwMDUwWhcNMjYwNjEyMjAwMDUwWjAzMTEwLwYDVQQD Eyg3MDBjOWVjNDdkZDRmZWUyNGY5NzMwZDJkN2E0ZDc4ZjQ1ZTg0ZGU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApNLSLJHZ3Vf4H/Cb84QfCbrSHIrc xiOLlDOiRFlRqP9aPszqVHvNUWQ9ccliBJeBtEMlPbzismv7YJRyFDd6hMQGY0sS 0qVarp8UDTH0/hNj3HsaXpMXqjj+tsHrC++h8CDvQKLsxzYUTd0lS126WTEfIw0R u0plsReUoX/aKAEX8FdSyRQEc2WxC3qlzfngq5GUlxln2DADKUby7pxiIoRgCJs7 CQ4Xy1wuDA3bbDWJEV5W9wYonYVK1dcYChFEo6w3SbAVZlnB84MhnR7RcSmCvHXe OLYUP1AZeC/4kK5mM3lXUeIqbE7Yy0ywx/yJyFAo+e3f5UbCs/B4M7JmLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHAMnsR91P7iT5cw0tek149F6E3kMB8GA1UdIwQY MBaAFGzpfPTY0LwXs68dYsTXFIhmG9ISMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYk9sODlOalF2QmV6cngxaXhOY1VpR1liMGhJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9lNGNjYjEtY2EyNS00MDk5LTgyNzMt Mzk5M2FhMzI0ZTFmLzEvYk9sODlOalF2QmV6cngxaXhOY1VpR1liMGhJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS9lNGNjYjEtY2EyNS00MDk5LTgyNzMtMzk5M2FhMzI0ZTFm LzEvYk9sODlOalF2QmV6cngxaXhOY1VpR1liMGhJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADarYoRMe d+nE/GoMMCgk+L39jtzpM/G4qFQVI92n43oMQQZwst9iUmMMm8cw/epMC6R4ywue kCjpk6p0ypk4a6NdR5ruYxmjNa8is8w6Z0oQmO140STgit1mPmnvxyvGDTxQRAZZ h4LUqxPmoUmDcdqa2F/o6yBpUN/duWew4hWRTHIAYQJPFmar76IiHBwxzXEVeS+E nd6SCYvwZocYsZmnCeifM7bKq4KdazZMSv/EC13YJ84hEBkO3sx6XlyER31/RKFq 6ypiIVgETMyW2+KrO/WvrHti5f/zPg1HIWJkXLGCJKmOo3agP7BdaoGh/m+OMfkV P69Y6G6zkn3WLw== -----END CERTIFICATE-----Generated at Thu Jun 11 22:42:18 2026 by rpki-client