$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft File: bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft (raw, json) Hash identifier: uonLDi33A/Qe4U0wRLDAuuxm/xN8Q12zGhUnBEJSDl4= Subject key identifier: 33:C2:EC:14:B7:F3:7C:81:6B:6F:73:DE:34:DD:91:F0:82:9F:D2:40 Authority key identifier: 6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 Certificate issuer: /CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Certificate serial: 019EB80F65AFA10BB1879D4DFE2A3550B395 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft Manifest number: 19DD Signing time: Thu 11 Jun 2026 19:01:17 +0000 Manifest this update: Thu 11 Jun 2026 19:01:17 +0000 Manifest next update: Fri 12 Jun 2026 19:01:17 +0000 Files and hashes: 1: PwuSIA0hAOdkPMZ2quzEU3bQAQ0.roa (hash: Ac1mXvYNWfR081H3woPMQ2jUftr1kB/8KT2lgRMPVQ4=) 2: TjYcJALyGbmW-x31ry7QsUvdQtQ.roa (hash: knhLPKVdJjwTBCuKiy0BNSL8TQGPgiu2tFYYWRO2204=) 3: baEkayAg80jmYDBU-ExaHSLpuaI.roa (hash: nAErtQy9uElHFQjfJS5ckQ4epiwL6hvpsQEYN9BEeqw=) 4: bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl (hash: F3g+1tn+TjBAy1rAMJCFKj8nJXo+q9VsqdsMLj/beg0=) 5: cGs3UaDvGLQ1Q_TQpZAPaINt4Es.roa (hash: W7uHnT9KoPvCIjHy/wyMQaAb03AUeFyxBB7Do1XvIvI=) 6: ebSZBecc7df92SgP59-y12trz8Y.roa (hash: eWLHCXv7jbIrxX4dZcu1pV/1wCL3MzIiRwN/vf2jitQ=) 7: nmGtGkrhBfqxDaqozTHEU7woU_8.roa (hash: myNlScXFtUNhqDOYxLDED2mEeSRwem2M2mluAw2qbGU=) 8: oRALtbh2nuCRd23sDYqfy35X5z0.roa (hash: jC6NP1kM59PVY3etFPE/j9NV0XqouvnOb2E4RPSGrX4=) 9: pI2S2lg5Mevtnr1gNuhTMLXlTZk.roa (hash: 5cp4WqQX2Fq4/2gG8NNXNJQnzkTkhV+uz8kgPR8ik8M=) 10: pUi-gLSXqZ0JaQPDBRSSYpMiavg.roa (hash: BVbd5i0a2oHy3QrO+gV4ifjJEQxi06QcvV9UBgsyx9E=) 11: rWySjgHmxws3lM6jmie75S8CDBw.roa (hash: At0oBHsNt1VyqDJTW3hMzgCfUrv9SJ/hPxisShjHIa0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 19:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:b8:0f:65:af:a1:0b:b1:87:9d:4d:fe:2a:35:50:b3:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Validity Not Before: Jun 11 19:01:17 2026 GMT Not After : Jun 12 19:01:17 2026 GMT Subject: CN=33c2ec14b7f37c816b6f73de34dd91f0829fd240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:98:ed:76:19:9b:10:9d:7d:1b:b2:34:7e:ca: 5b:65:d0:4b:78:db:f2:c5:03:66:10:ed:28:71:7f: d9:25:22:71:58:37:0e:c6:02:92:cb:40:f7:91:2d: 80:2d:dc:b8:dc:70:aa:37:c4:e3:c9:fb:79:61:09: c2:4a:5c:6f:d5:eb:64:19:1d:6e:86:6c:f3:8d:69: 71:39:63:e1:70:27:30:d4:d3:23:40:57:dd:d8:a1: fe:88:85:2f:08:a0:87:78:b3:65:a0:05:9e:12:19: c4:36:ba:21:81:47:6e:bf:b8:c6:08:a2:75:f6:7d: e9:d1:4f:cc:4d:57:c5:1f:62:7d:85:b5:5e:82:61: a4:17:1b:ac:1f:69:5f:5a:20:98:7a:a1:54:0d:d9: 5d:39:81:9e:98:21:38:21:02:ee:33:27:68:d0:c6: b5:56:77:b7:d4:a8:1d:86:1f:63:7a:4b:a5:5e:5f: e0:3c:4c:3c:89:08:e3:4f:79:68:ae:59:e8:83:b9: 9b:0b:87:97:4a:2b:5d:8e:78:0b:0a:23:6e:bf:b3: 95:4a:98:43:4c:83:4b:45:ab:30:e0:53:d3:e3:cc: 41:96:d0:2a:bc:9e:f3:02:85:83:08:db:e3:b6:56: 79:fb:36:15:33:5a:9f:ba:ca:95:ed:a9:ca:30:35: 9c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:C2:EC:14:B7:F3:7C:81:6B:6F:73:DE:34:DD:91:F0:82:9F:D2:40 X509v3 Authority Key Identifier: keyid:6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:ed:74:35:2b:20:3c:1d:c0:b7:cd:ed:7d:0b:00:04:93:74: 4c:13:0e:94:79:e0:51:70:96:30:c3:12:48:f8:2a:2b:e8:d6: e2:ad:03:91:0f:74:fc:93:b4:1c:d5:9c:83:cd:26:38:b5:33: 53:f9:91:1a:b3:22:43:a8:45:7a:30:84:82:eb:43:f6:8d:a8: f4:f6:e8:22:62:85:92:51:94:7a:8c:ad:04:fc:1a:66:3a:63: b2:2f:e9:b5:a7:41:ae:7b:a6:f0:f9:61:6b:6d:77:1f:7e:5d: 63:09:9d:23:6c:de:bc:3e:8e:e1:fa:c8:3c:ad:f4:23:2b:80: 57:79:dc:ab:22:59:c5:aa:8c:76:8e:c3:a5:be:25:3e:70:2f: 2f:6a:53:0d:09:e1:05:79:32:8e:12:c0:86:4d:ad:f4:e6:44: a9:cf:d5:96:8e:e3:9b:23:a9:45:b9:71:f2:a0:8c:e4:67:27: b9:75:d2:7a:2f:4b:b9:29:28:95:22:08:4a:e8:88:17:3a:ed: 68:b3:82:01:26:d4:9c:77:32:0b:76:52:4e:58:e9:52:ba:25: f2:b7:b2:c2:26:6d:4f:c9:d1:58:bf:ed:af:36:c9:ea:fd:8b: a0:42:e5:85:74:8e:f2:e2:f5:1a:22:89:63:f6:c6:28:48:32: ad:56:d4:26 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ64D2WvoQuxh51N/io1ULOVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMzAzMGE0YjY3Zjk1YzJmZWQ5MDJkNTY2NTdmYWEyNDk0 YjUxMjkwHhcNMjYwNjExMTkwMTE3WhcNMjYwNjEyMTkwMTE3WjAzMTEwLwYDVQQD EygzM2MyZWMxNGI3ZjM3YzgxNmI2ZjczZGUzNGRkOTFmMDgyOWZkMjQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6JjtdhmbEJ19G7I0fspbZdBLeNvy xQNmEO0ocX/ZJSJxWDcOxgKSy0D3kS2ALdy43HCqN8Tjyft5YQnCSlxv1etkGR1u hmzzjWlxOWPhcCcw1NMjQFfd2KH+iIUvCKCHeLNloAWeEhnENrohgUduv7jGCKJ1 9n3p0U/MTVfFH2J9hbVegmGkFxusH2lfWiCYeqFUDdldOYGemCE4IQLuMydo0Ma1 Vne31Kgdhh9jekulXl/gPEw8iQjjT3lorlnog7mbC4eXSitdjngLCiNuv7OVSphD TINLRasw4FPT48xBltAqvJ7zAoWDCNvjtlZ5+zYVM1qfusqV7anKMDWcgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDPC7BS383yBa29z3jTdkfCCn9JAMB8GA1UdIwQY MBaAFG8wMKS2f5XC/tkC1WZX+qJJS1EpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYt YmYzYjIxYTI3MGYyLzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYtYmYzYjIxYTI3MGYy LzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAee10NSsg PB3At83tfQsABJN0TBMOlHngUXCWMMMSSPgqK+jW4q0DkQ90/JO0HNWcg80mOLUz U/mRGrMiQ6hFejCEgutD9o2o9PboImKFklGUeoytBPwaZjpjsi/ptadBrnum8Plh a213H35dYwmdI2zevD6O4frIPK30IyuAV3ncqyJZxaqMdo7Dpb4lPnAvL2pTDQnh BXkyjhLAhk2t9OZEqc/Vlo7jmyOpRblx8qCM5GcnuXXSei9LuSkolSIISuiIFzrt aLOCASbUnHcyC3ZSTljpUrol8reywiZtT8nRWL/trzbJ6v2LoELlhXSO8uL1GiKJ Y/bGKEgyrVbUJg== -----END CERTIFICATE-----Generated at Fri Jun 12 04:20:20 2026 by rpki-client