$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft File: Us2aZRLb8lpfGbgn16LH4iou6N0.mft (raw, json) Hash identifier: bb0neQpuhwxT6XhJZ/9GDwVcVOzJynpoW3t+B8euApM= Subject key identifier: 67:8C:5F:26:69:15:39:8E:C6:01:57:FD:91:1E:FF:EA:C1:78:F9:17 Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Certificate serial: 019EB8B3D646027EE959D3FCDC541E06F819 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft Manifest number: 0C25 Signing time: Thu 11 Jun 2026 22:00:53 +0000 Manifest this update: Thu 11 Jun 2026 22:00:53 +0000 Manifest next update: Fri 12 Jun 2026 22:00:53 +0000 Files and hashes: 1: 3JNAFPmuRusA7_P1cHUrpNc8ZWQ.roa (hash: zKy+aXsrA8Z978tqaQi0ynXqJW9mllBBtqQYt4mz8gc=) 2: 3eP-ZYKR74zQteZxg-jYK68KuKU.roa (hash: rI+Q6O08EYSoWZw7Ks588qVsTWbvSuHUC1dp2GQPsEg=) 3: 7UCLvACKFL5zxr_yWrkJA3_2oMM.roa (hash: xfPkwGQHVQT9CzmP7+QJgRXdoTw3Rugce1r0GD7IvJ0=) 4: KWeUe8stEcRBCfK1V9M1OdEhYVo.roa (hash: 5db5SBY8xLjigcej1g8W2J/cv1YnUc8GiiKN3rxcM4Y=) 5: Px4XmExl2QONyqSP6s8-qLoIeoI.roa (hash: reA0XoIHBbZsGAjNzRWT9dW+9757Ms5dgcUGYfnrDi8=) 6: SY0oaouPknTSy2MmGqSQOcOco4Q.roa (hash: HRxdYO/Iechw+UCcupxpKvFHOwFwn4JRjC6eMfFT/dQ=) 7: Us2aZRLb8lpfGbgn16LH4iou6N0.crl (hash: jFk+hqFwL5auKv5GF+c0DWNhy+Sx9K42/jO6YUWkkUg=) 8: b4bnSjrxkGqwlr0zkoxcOijmFkc.roa (hash: fQuLS072q+zjmBm2EgGlUmemoEePNKD15HIZM6Eyfw4=) 9: cwwhcNpzOg_pmBszouIx8h2CHRU.roa (hash: vBJrQQ0ItgE86n69h/fkj396ErwZyqxGCsEUUVNAzdI=) 10: hJvXiDYNILPphLXJ6klAtCIjVVg.roa (hash: Z0y5PrNu8DqrxqixzwoCHqlYDEEnmvaNJYffWfN3fzo=) 11: hlAbpQnKYaIDHrjCT-1lNBwSXu0.roa (hash: BILz2oAMGgMF6vZP6W3jaxaaHIODVkHC+m/GaL33QlM=) 12: kPZtrooPlOyF8jQupuEU9Gy1bJQ.roa (hash: KtcI+6F6qPHzsOZYQ0EOD+pODuibLz2OAgS4M/a6Aq4=) 13: nsRheFAl5sYIf69ZA2-lEa1c2n4.roa (hash: BPp2XQ3t/tQYCMkRPS8euZvqtBQ4DmQCayxjZbw1wJY=) 14: oLlQgePRk9yvcOlL0Fl_a56u9H4.roa (hash: Wqock9cGRbZPQGtCkafIuYZm7FqajUuA17fJ83OGRks=) 15: otDdauzK1pDpIELnjnezw5Wgbks.roa (hash: PkYGbseDQrN+XnOme6deJeEpgE/JFmyzszNd7IeDEBs=) 16: qyLbFsRIe8Jd6sG2DI_BiTtP7io.roa (hash: yTz+vrd5+uJTzoZ6RiYw+CeRxkudUElCAIqfmUpkz54=) 17: xp9MuE3K7E-Sb2HgnwhKc3yErto.roa (hash: 9FJKEkYOHXVi/GiMh+ZQtwPZthuSJbC+u80wUEZ5uBo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 20:26:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:b8:b3:d6:46:02:7e:e9:59:d3:fc:dc:54:1e:06:f8:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Validity Not Before: Jun 11 22:00:53 2026 GMT Not After : Jun 12 22:00:53 2026 GMT Subject: CN=678c5f266915398ec60157fd911effeac178f917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:de:d8:8a:81:e3:8c:6d:87:3d:e4:2f:78:f1: 39:f2:7a:96:8c:ba:32:b7:79:47:c1:9f:53:f3:9d: f3:e7:1c:69:20:7f:8f:fd:a8:12:36:91:fd:b3:8c: e3:11:c3:af:0d:90:ae:24:98:ad:64:21:08:1a:69: 28:2f:39:78:af:4b:4b:7a:7f:64:1a:87:f1:12:be: 4c:65:69:31:79:72:ab:d1:6f:da:91:db:09:87:1c: 2e:02:d5:94:14:c7:c5:a6:38:55:ed:c1:99:fc:34: fb:91:43:98:b8:15:fb:eb:7b:80:09:7e:43:e8:61: b2:3e:0a:49:f7:0a:79:df:6a:48:82:1d:6d:ec:c8: 6c:0a:9f:b2:25:79:20:c7:79:a5:ca:0b:a2:f4:71: a1:f5:01:14:5a:c9:c6:3d:72:0c:e3:00:9e:10:90: 42:f1:4e:b8:e2:11:53:c7:15:49:5a:5d:f7:0f:24: 0a:f2:05:09:4a:ce:a4:30:46:70:49:61:09:53:d1: 0f:f4:dc:fd:25:e3:bb:db:ec:72:0a:22:7b:75:11: 03:4b:cf:97:12:20:ee:7d:11:09:68:2a:6b:a8:cf: fe:2d:33:e6:94:cf:f9:b0:fc:d8:ba:4d:97:9e:6f: 6f:3f:33:7d:0b:29:8d:af:e9:bd:2a:f3:ce:61:dd: 4d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:8C:5F:26:69:15:39:8E:C6:01:57:FD:91:1E:FF:EA:C1:78:F9:17 X509v3 Authority Key Identifier: keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:4f:68:63:2d:f6:00:48:0b:7f:45:e6:35:82:da:76:b4:97: a0:1a:ba:31:af:8f:5f:31:0a:4c:c0:c8:8b:5c:30:47:92:68: 0e:c7:95:d3:5e:7c:87:69:d8:9a:84:21:ba:57:7b:a4:61:3f: 94:bc:5b:91:22:85:8e:d5:2b:b8:47:d3:49:c2:35:14:3c:81: 2d:11:a4:37:16:ca:20:78:17:d9:ba:ef:8d:78:b5:13:a2:50: 4f:14:b7:bb:c8:25:83:fc:8c:6f:dc:39:0c:21:6e:7c:32:87: 41:c2:5b:2c:f0:98:ec:11:3c:be:e8:0f:25:b9:dc:70:f4:91: 53:71:c9:ea:ba:60:0a:48:14:71:ef:c9:fd:26:56:f8:ec:10: 06:50:23:c2:61:0f:9a:05:58:20:b1:4c:87:5e:fb:86:4a:b2: 10:e9:01:e7:72:bb:98:a2:8c:09:90:e0:dd:fa:f0:a5:f3:1a: c7:d3:c2:35:ca:61:0d:f8:40:f5:f8:54:a6:91:ed:6e:9f:7c: 72:02:ff:bc:5a:cf:68:a4:bf:ce:3a:60:24:5f:a3:15:37:0a: 0c:02:50:92:2a:20:7d:25:09:e1:7c:6c:97:b6:a5:b2:40:e7: ae:98:d1:87:e4:85:eb:4a:c5:5c:37:16:4d:b9:96:08:7a:5a: 42:a4:47:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ64s9ZGAn7pWdP83FQeBvgZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyY2Q5YTY1MTJkYmYyNWE1ZjE5YjgyN2Q3YTJjN2UyMmEy ZWU4ZGQwHhcNMjYwNjExMjIwMDUzWhcNMjYwNjEyMjIwMDUzWjAzMTEwLwYDVQQD Eyg2NzhjNWYyNjY5MTUzOThlYzYwMTU3ZmQ5MTFlZmZlYWMxNzhmOTE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn97YioHjjG2HPeQvePE58nqWjLoy t3lHwZ9T853z5xxpIH+P/agSNpH9s4zjEcOvDZCuJJitZCEIGmkoLzl4r0tLen9k GofxEr5MZWkxeXKr0W/akdsJhxwuAtWUFMfFpjhV7cGZ/DT7kUOYuBX763uACX5D 6GGyPgpJ9wp532pIgh1t7MhsCp+yJXkgx3mlygui9HGh9QEUWsnGPXIM4wCeEJBC 8U644hFTxxVJWl33DyQK8gUJSs6kMEZwSWEJU9EP9Nz9JeO72+xyCiJ7dREDS8+X EiDufREJaCprqM/+LTPmlM/5sPzYuk2Xnm9vPzN9CymNr+m9KvPOYd1NnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGeMXyZpFTmOxgFX/ZEe/+rBePkXMB8GA1UdIwQY MBaAFFLNmmUS2/JaXxm4J9eix+IqLujdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUt Y2NhMzc2MDZiZjE4LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUtY2NhMzc2MDZiZjE4 LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACk9oYy32 AEgLf0XmNYLadrSXoBq6Ma+PXzEKTMDIi1wwR5JoDseV0158h2nYmoQhuld7pGE/ lLxbkSKFjtUruEfTScI1FDyBLRGkNxbKIHgX2brvjXi1E6JQTxS3u8glg/yMb9w5 DCFufDKHQcJbLPCY7BE8vugPJbnccPSRU3HJ6rpgCkgUce/J/SZW+OwQBlAjwmEP mgVYILFMh177hkqyEOkB53K7mKKMCZDg3frwpfMax9PCNcphDfhA9fhUppHtbp98 cgL/vFrPaKS/zjpgJF+jFTcKDAJQkiogfSUJ4Xxsl7alskDnrpjRh+SF60rFXDcW TbmWCHpaQqRHfw== -----END CERTIFICATE-----Generated at Fri Jun 12 03:38:32 2026 by rpki-client