$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft File: IqXYQFPisMMTrx47pRAkZqX3lng.mft (raw, json) Hash identifier: gcXc7TMYjkdt6airRSPeXkLGvJXpxtVouX50YsBux0o= Subject key identifier: AE:98:47:7F:9F:6B:E1:89:5C:16:48:F5:A4:5F:70:F9:AD:F3:E4:05 Authority key identifier: 22:A5:D8:40:53:E2:B0:C3:13:AF:1E:3B:A5:10:24:66:A5:F7:96:78 Certificate issuer: /CN=22a5d84053e2b0c313af1e3ba5102466a5f79678 Certificate serial: 019EB845A96B1CF37C4D0002CEBF62184E42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft Manifest number: 0C88 Signing time: Thu 11 Jun 2026 20:00:33 +0000 Manifest this update: Thu 11 Jun 2026 20:00:33 +0000 Manifest next update: Fri 12 Jun 2026 20:00:33 +0000 Files and hashes: 1: 1-Y24DkHX_YS8BQf944IXH_5kays.roa (hash: +VJRpnj8CgCWOeIl5a7z0P70ihS3i/FmFwSi/9utCPo=) 2: HSoISsJ-isLr8N_DHmCBMl3TpWs.roa (hash: eFtDBlD8d0dAnIzoz+b3NcMyduLIBF9yLf8ySSSmIvA=) 3: IqXYQFPisMMTrx47pRAkZqX3lng.crl (hash: 85eKU8Cft9XQIcJx7mbJ+n5zZ8gjIii7CpmhWMW0IVs=) 4: KSxgyXQgmuvgD3hsIbjoWlYRqkk.roa (hash: MfPYx4d8dGraW1R0Aep23IPqwadZP9+eAkLv5cmiWoM=) 5: M6wnPrDmWw7o372pn664G-6XMUM.roa (hash: vz3Xt9QAg5obB1AHMtVF5JrXwk6u3qtnMl8SakINxdQ=) 6: _25UfYuLERvQd7ERXXNW_sly9Oo.roa (hash: mce8PC+zpkQB3aka/bSBor9uJVmt1ZEupgGD8nmRstI=) 7: _6RAmWnPpmERwBYNK-TrrE7oVIA.roa (hash: aa7qoUpTL/t8ummAI7ryHIK1nARbf8cHlGEdf+aw+Hs=) 8: _hBOrFv7fim--KrBCy30YmUAo3I.roa (hash: qzAl3O9RiG1n+2GEMGj8zSfO491bHrCZda9IZnWLPqI=) 9: cnvwLGbVEITaoX8cDVSNQAcxcqk.roa (hash: HW2ZpeT6aGnIzGKKy1byADe7gS6Pw3jj7fdnL63L26E=) 10: gr17UYbRi7cQ6eQ9EyDF-CuJIp4.roa (hash: NAQ/vI5+2VgZpVpsxQmGoZaiAZnJI/pT7XEYYA4d1IM=) 11: mwE7644yuRyikfXfTRLC6TQjC0w.roa (hash: KcHRogBcTVnQMGjCpBXC4Xr5iRWrDOZmEHuY1S/TOXA=) 12: rYBbbZbaSpYI3VsNcTxJfCny0P8.roa (hash: dXyRGY+rTBPSQJnVZHUIy5ttKRmSJde9WkRmwq0FUYE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 20:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:b8:45:a9:6b:1c:f3:7c:4d:00:02:ce:bf:62:18:4e:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22a5d84053e2b0c313af1e3ba5102466a5f79678 Validity Not Before: Jun 11 20:00:33 2026 GMT Not After : Jun 12 20:00:33 2026 GMT Subject: CN=ae98477f9f6be1895c1648f5a45f70f9adf3e405 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:73:f3:58:28:22:26:d8:fb:73:b8:50:74:77: f8:9e:a7:d8:c8:0e:7b:e3:f5:bc:13:76:52:42:80: bd:ff:67:1e:18:4a:61:fc:6a:0f:0e:34:d5:fb:ee: 9e:95:2b:a9:34:4c:0f:45:8b:5e:58:ce:e4:30:ee: b2:6a:a4:1c:5c:18:bb:87:14:7d:f2:68:4e:e0:91: 95:06:22:25:6e:47:08:55:a1:ac:df:dc:85:f2:4a: 9e:f9:db:1a:f9:4d:f1:cb:85:ba:fe:c3:91:62:a1: a9:c1:14:c4:87:e5:4a:30:65:75:c2:c5:06:3c:ca: b9:71:b9:1b:38:1e:34:af:76:d2:0c:80:2e:ad:c5: 6b:e1:83:5c:5a:b2:61:c9:e8:78:d6:15:5d:5a:b1: 9f:2b:05:4d:7f:cd:50:ec:fd:3a:e1:9b:f0:b7:de: 7a:75:48:97:e6:41:64:c7:93:46:89:b6:b8:ff:5b: 20:3d:17:fc:7d:42:3f:4f:c3:a3:6f:41:f0:7a:c2: 8b:0b:90:0b:21:02:95:20:85:c0:d6:46:33:93:5a: c8:09:69:17:80:ce:4b:71:98:cf:76:c5:79:ee:fc: f3:a6:d2:74:24:5a:e7:39:7c:7c:4b:99:e2:2e:1a: 54:43:aa:a7:50:51:75:fb:0f:f2:44:db:55:c0:1f: 50:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:98:47:7F:9F:6B:E1:89:5C:16:48:F5:A4:5F:70:F9:AD:F3:E4:05 X509v3 Authority Key Identifier: keyid:22:A5:D8:40:53:E2:B0:C3:13:AF:1E:3B:A5:10:24:66:A5:F7:96:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:ee:67:e0:e1:44:91:d3:17:b5:54:4a:ba:e4:c8:46:63:9c: df:4e:39:b1:be:44:a6:ad:6a:2f:9d:61:6b:c4:90:3b:4d:da: 30:ab:d3:8b:f7:b5:15:4c:ed:b6:9e:63:a3:d8:27:9b:52:48: 8d:78:3c:f0:e7:ee:14:87:c7:24:47:6d:39:de:75:80:92:68: 7b:68:0b:5c:7d:cc:80:0c:09:9b:3b:8b:ed:c4:2c:e5:e3:8d: 63:32:b1:37:09:f6:4b:d2:90:3a:54:f8:67:ab:6a:1a:fc:e7: 64:01:14:a1:d1:88:4d:70:83:3e:30:92:b6:8c:d6:3a:a7:88: 0f:e8:31:81:86:e6:6b:0e:16:80:55:b6:9c:2a:51:8e:b5:8b: 42:fc:6f:d9:a0:79:dc:e4:84:5a:ce:10:7f:5e:3f:bc:17:e5: 14:21:94:4e:1e:fc:8e:ff:9d:33:8c:8f:8f:bc:db:7d:26:3f: db:6a:f4:88:da:70:89:f3:01:56:9b:6c:7d:01:06:81:63:7a: 6c:1b:b5:cb:df:8d:27:1e:7b:ee:43:d0:aa:bd:e6:e6:64:4b: cd:4d:8e:ef:c5:4a:62:f9:c2:0e:18:10:59:4a:53:53:5a:4e: 02:97:ca:fb:9d:46:b0:bf:6d:dc:ca:61:68:f3:08:4a:b2:a1: 28:86:ea:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ64RalrHPN8TQACzr9iGE5CMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYTVkODQwNTNlMmIwYzMxM2FmMWUzYmE1MTAyNDY2YTVm Nzk2NzgwHhcNMjYwNjExMjAwMDMzWhcNMjYwNjEyMjAwMDMzWjAzMTEwLwYDVQQD EyhhZTk4NDc3ZjlmNmJlMTg5NWMxNjQ4ZjVhNDVmNzBmOWFkZjNlNDA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjnPzWCgiJtj7c7hQdHf4nqfYyA57 4/W8E3ZSQoC9/2ceGEph/GoPDjTV++6elSupNEwPRYteWM7kMO6yaqQcXBi7hxR9 8mhO4JGVBiIlbkcIVaGs39yF8kqe+dsa+U3xy4W6/sORYqGpwRTEh+VKMGV1wsUG PMq5cbkbOB40r3bSDIAurcVr4YNcWrJhyeh41hVdWrGfKwVNf81Q7P064Zvwt956 dUiX5kFkx5NGiba4/1sgPRf8fUI/T8Ojb0HwesKLC5ALIQKVIIXA1kYzk1rICWkX gM5LcZjPdsV57vzzptJ0JFrnOXx8S5niLhpUQ6qnUFF1+w/yRNtVwB9QlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK6YR3+fa+GJXBZI9aRfcPmt8+QFMB8GA1UdIwQY MBaAFCKl2EBT4rDDE68eO6UQJGal95Z4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXFYWVFGUGlzTU1Ucng0N3BSQWtacVgzbG5nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9lM2ZiN2QtZGQ0Yi00ZDg1LWIwOGUt NTkxY2FmNTM2ZWNjLzEvSXFYWVFGUGlzTU1Ucng0N3BSQWtacVgzbG5nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi9lM2ZiN2QtZGQ0Yi00ZDg1LWIwOGUtNTkxY2FmNTM2ZWNj LzEvSXFYWVFGUGlzTU1Ucng0N3BSQWtacVgzbG5nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACu5n4OFE kdMXtVRKuuTIRmOc3045sb5Epq1qL51ha8SQO03aMKvTi/e1FUzttp5jo9gnm1JI jXg88OfuFIfHJEdtOd51gJJoe2gLXH3MgAwJmzuL7cQs5eONYzKxNwn2S9KQOlT4 Z6tqGvznZAEUodGITXCDPjCStozWOqeID+gxgYbmaw4WgFW2nCpRjrWLQvxv2aB5 3OSEWs4Qf14/vBflFCGUTh78jv+dM4yPj7zbfSY/22r0iNpwifMBVptsfQEGgWN6 bBu1y9+NJx577kPQqr3m5mRLzU2O78VKYvnCDhgQWUpTU1pOApfK+51GsL9t3Mph aPMISrKhKIbquQ== -----END CERTIFICATE-----Generated at Fri Jun 12 01:06:37 2026 by rpki-client