$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft File: Kfp91j8uLYe194UAk8dDu_vhTkQ.mft (raw, json) Hash identifier: z5xv8oRh27C5B5Dzf68Szrc0If3yg5rj46bwPWIxtf0= Subject key identifier: 21:47:D1:96:1E:EE:93:95:EF:02:5F:0D:20:14:08:BA:60:8B:C1:C3 Authority key identifier: 29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 Certificate issuer: /CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Certificate serial: 019DCC3D843D7A00E6D209F1ADC690ADF46F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft Manifest number: 078D Signing time: Mon 27 Apr 2026 00:01:16 +0000 Manifest this update: Mon 27 Apr 2026 00:01:16 +0000 Manifest next update: Tue 28 Apr 2026 00:01:16 +0000 Files and hashes: 1: 1FTeokhUADkYbgvOTwGp40m_BPE.roa (hash: PPoy3S4bKc1j/djL6NTv+eGLXSL7GZ17YwI5tAXRtDM=) 2: 59s8eNqYwVH5ydf7xyV2eJR3_TU.roa (hash: xFhHztukLroKSICySsgp6ifCMDIbrBfwaaKjTAvv1Gw=) 3: 9c4kttevmySnfkQUW_qfNzaHphg.roa (hash: /cAqDalO1CeZ8c8IzYLpRoSc0JDQhBthLLFNZ86hRlw=) 4: FZeGgU2IawBK8YA4BwTM_e6x5Mo.roa (hash: 4nQMnYqmNvBAGhwCS2lyqUc1bPr2XdXqGh923cUp0bQ=) 5: FhQiMY_Y2B9WuZvyCd_uaF0M5dI.roa (hash: fZfKiY8vxqzWF+WGF85vLsOO0yrQwq1azfxlL3m6ht4=) 6: GrgWTPWfiMj8FwdKYhn8zJ6Z7e8.roa (hash: IO94toPK6/Wits1irHXbrZl6wNHfS6p+U483COk6R2Y=) 7: KNWwGCklL3zKbMsgIOCdcNGo2tI.roa (hash: 5rF454gnBcOMqEez62ErUsCgENLRW0isAHz0go80+Fs=) 8: Kfp91j8uLYe194UAk8dDu_vhTkQ.crl (hash: br5USz8cEb3WUbgiacBSDaTGUn+KM3rzbO6QJjCDYiI=) 9: Pjq2usg2Ddr0jCim-rnljjUP2xg.roa (hash: 5RL0lX+XVqmkdynoA/ZI5Ffknvw/dGR/1FpAcrG1JiE=) 10: WrWpDNw0abEoNedClZIQXtxLaNM.roa (hash: gCZS2khmjJiGzLXjdqtdk6eKzbLBYpiu89Bi9tphMq4=) 11: aSoz0nTSHVKxl1w-_tXDaUBfI_U.roa (hash: 3H/725peI0ylJlXSnX6sTF3RBFyOHCBWf0zA//LWaS4=) 12: aqUiuM7FSwO0jQrVAdkkACyulNU.roa (hash: QJoSdYm5s8mfEJjbCj5VhQz2H0KAbaPDRRmLmgZWht0=) 13: hTJEftSpqDKpAn62ncVILyiUIA4.roa (hash: CgeSiN+wMYpnSUEh7oWmMa8OtknjA6ZGJ6sq3RGzTFw=) 14: nBxToIyQbLD03aHgRpkeeNieOPw.roa (hash: +npXv56cRJNf6jJA2m2/8FRk/EXL/cvT8hUJka5s2Lk=) 15: yBrC20joWzPYJC2p3ASrdCZ0wzk.roa (hash: xZei5bNpfbVHrnCyo7DX6ea+rnn9Va9LPl3q+efKuDg=) 16: yINiCi-fcEAzzbT8ry3F24_HnBw.roa (hash: DTnC3s+dTYZX9VNSoLxZjlybV3sMyllGW6D2HGEmUQ8=) 17: y_Cp0Ost5PqmlG4Hk_lC2iR2YZ8.roa (hash: x+U/bdDPmhe7n+Wg1yqeuhWGZvsQ5Fcm1ldpfk9dBgs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 27 Apr 2026 23:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:cc:3d:84:3d:7a:00:e6:d2:09:f1:ad:c6:90:ad:f4:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Validity Not Before: Apr 27 00:01:16 2026 GMT Not After : Apr 28 00:01:16 2026 GMT Subject: CN=2147d1961eee9395ef025f0d201408ba608bc1c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5f:33:96:da:4d:40:7b:e4:d8:e1:0c:08:5e: 73:4f:bb:06:80:01:0b:0f:a6:69:7c:6b:af:0b:94: 5c:51:46:4a:e9:a8:9f:b7:29:71:32:e5:37:ac:73: 6e:b9:31:fc:24:30:ae:73:35:b8:30:a0:ee:73:4e: a8:d6:d6:fe:f7:59:c3:d6:03:ee:36:f6:7b:59:90: 14:cc:21:7e:64:9b:97:6e:0b:41:14:d5:2e:67:1d: 66:7c:da:76:b4:cc:29:dc:3b:6e:ee:72:6c:7f:f2: bc:7b:b1:2c:41:c7:5a:4b:5b:f6:49:78:30:a2:d3: 27:75:85:4a:94:fc:64:c7:23:fa:02:45:61:b2:9c: 97:c6:09:5a:c3:b4:8c:4b:e3:cc:a3:98:44:05:85: fa:b5:93:f5:85:26:c7:c2:56:e7:e9:2e:cc:d0:f0: 51:47:0e:6d:6f:05:6e:68:d6:7b:35:37:88:ca:da: 00:38:35:59:66:ba:22:3f:9d:70:98:3c:5f:34:06: 7d:57:3c:76:16:47:ad:76:b5:64:c2:b3:3c:ae:63: 5c:83:dd:d6:cb:56:d6:40:de:b3:8f:ab:47:64:ce: 82:22:35:99:13:f2:71:3e:66:52:04:95:a5:28:2d: 1d:1f:c3:11:a4:c2:f4:f4:29:a5:12:92:87:44:50: ab:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:47:D1:96:1E:EE:93:95:EF:02:5F:0D:20:14:08:BA:60:8B:C1:C3 X509v3 Authority Key Identifier: keyid:29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:3d:57:81:58:a8:6e:26:90:49:dc:a1:12:44:4f:ea:ec:33: 95:cf:b5:49:fb:07:30:b3:92:93:36:c6:f6:9f:4a:16:eb:c8: af:b6:35:40:0d:74:fd:d7:ed:1e:36:0c:41:30:5b:28:2c:b8: ef:1b:3b:d8:7e:d7:3d:3c:98:97:1e:ad:fa:a3:7c:60:c9:ad: 62:2b:be:f4:db:3c:46:d1:78:58:06:bd:e1:1e:41:64:e1:b6: a9:08:7d:f2:e7:af:21:7a:50:aa:c9:f0:3c:79:a6:a7:ef:1f: 15:63:a0:03:63:ec:65:48:a3:58:69:fc:5d:48:be:74:48:4b: 97:24:fc:ff:70:f0:b7:1d:08:8b:05:d2:85:48:db:a9:40:2e: dc:fd:c6:55:f1:ce:97:23:1f:7b:09:e9:ff:de:36:7d:57:01: e3:8b:64:d9:b8:bd:c8:a2:8c:24:9c:0b:72:93:2f:c0:2e:45: 9e:28:d7:32:92:6f:37:d2:c9:5d:aa:a9:f5:7a:97:3f:58:8c: 53:c2:41:6c:f9:9f:5b:cc:1f:36:4d:0f:d7:a0:15:46:42:05: 39:49:fa:17:f0:c6:c7:ce:eb:fc:fc:2a:d8:72:e8:9f:4c:28: cf:c3:b7:82:1d:b3:6d:87:89:43:af:ed:f3:41:94:cb:b9:2e: 64:c1:4e:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ3MPYQ9egDm0gnxrcaQrfRvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZmE3ZGQ2M2YyZTJkODdiNWY3ODUwMDkzYzc0M2JiZmJl MTRlNDQwHhcNMjYwNDI3MDAwMTE2WhcNMjYwNDI4MDAwMTE2WjAzMTEwLwYDVQQD EygyMTQ3ZDE5NjFlZWU5Mzk1ZWYwMjVmMGQyMDE0MDhiYTYwOGJjMWMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu18zltpNQHvk2OEMCF5zT7sGgAEL D6ZpfGuvC5RcUUZK6aiftylxMuU3rHNuuTH8JDCuczW4MKDuc06o1tb+91nD1gPu NvZ7WZAUzCF+ZJuXbgtBFNUuZx1mfNp2tMwp3Dtu7nJsf/K8e7EsQcdaS1v2SXgw otMndYVKlPxkxyP6AkVhspyXxglaw7SMS+PMo5hEBYX6tZP1hSbHwlbn6S7M0PBR Rw5tbwVuaNZ7NTeIytoAODVZZroiP51wmDxfNAZ9Vzx2FketdrVkwrM8rmNcg93W y1bWQN6zj6tHZM6CIjWZE/JxPmZSBJWlKC0dH8MRpML09CmlEpKHRFCr1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCFH0ZYe7pOV7wJfDSAUCLpgi8HDMB8GA1UdIwQY MBaAFCn6fdY/Li2HtfeFAJPHQ7v74U5EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUt NzlmN2I2ZWE3YzE0LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUtNzlmN2I2ZWE3YzE0 LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASD1XgVio biaQSdyhEkRP6uwzlc+1SfsHMLOSkzbG9p9KFuvIr7Y1QA10/dftHjYMQTBbKCy4 7xs72H7XPTyYlx6t+qN8YMmtYiu+9Ns8RtF4WAa94R5BZOG2qQh98uevIXpQqsnw PHmmp+8fFWOgA2PsZUijWGn8XUi+dEhLlyT8/3Dwtx0IiwXShUjbqUAu3P3GVfHO lyMfewnp/942fVcB44tk2bi9yKKMJJwLcpMvwC5FnijXMpJvN9LJXaqp9XqXP1iM U8JBbPmfW8wfNk0P16AVRkIFOUn6F/DGx87r/Pwq2HLon0woz8O3gh2zbYeJQ6/t 80GUy7kuZMFOwg== -----END CERTIFICATE-----Generated at Mon Apr 27 09:16:02 2026 by rpki-client