$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft File: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft (raw, json) Hash identifier: RDCUErbE0y5OkxhkyUzO5smW5NoosPON0D/8tat/fBA= Subject key identifier: 4A:24:27:CE:D0:55:9D:95:97:D4:CA:30:E6:81:2E:9B:37:38:97:57 Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Certificate serial: 019DFF85C906FDD015F9C60F4C9595CDE79E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft Manifest number: 1921 Signing time: Wed 06 May 2026 23:00:50 +0000 Manifest this update: Wed 06 May 2026 23:00:50 +0000 Manifest next update: Thu 07 May 2026 23:00:50 +0000 Files and hashes: 1: 0ld9oICrjkM9PiOBYi7PkCMaP7g.roa (hash: 7pPoPeKMxfAld72vWaWuaU3WiGoLWbNKS8HJfbCj2GY=) 2: 1BFQM936y9WGcLJKwy60Wg2ag-8.roa (hash: NTbQFXMY5QSvW0BgWqBt3HeqiX8tXZPRJi0IS+SKq2s=) 3: DT8TXPB7Zoh4Y9JFFdsSZ2RIgLg.roa (hash: cdCtaCnFbbokb4IxB6SbsLXr+yswcQckTbmvZnS/sJA=) 4: H3d0QP653F6Jo-epVSXBiVH1h6k.roa (hash: B2NZF4jz4UwnLzA3KbDxjNp0EF7Qv4Th+B09WImKi2I=) 5: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl (hash: tCFFaDL2auIqS0g87g378lDyYmMv9Pi1Il/oueBPXO8=) 6: O2mRnCNeDokP5q-PUWLd28D1SG8.roa (hash: XL7s2EUC28zeBKoJlmCFsu+5IjkYrbxfH3a9YMWon60=) 7: XPPuMgWRNY1QAnjWn2LftTc8cH4.roa (hash: LqWi3Xbli/jxxlx74n8O7L6EJtxaJ1UA0GYHmPMDyEU=) 8: ZRr2QwcqGgt_EOiTtMFoE-lkmow.roa (hash: SIg3ToChfd1+8YW/rxSI4oA419Stw5Sb9StcFL22beM=) 9: dY6eqUD4ykA92I5VKqHmYTX3q88.roa (hash: uvlx5CXBvfA8EWdxrFvclZnKJJH1HmhxtH5z6Fa+fBo=) 10: hCjWTJUhp9C-lxxCdRV4Jwzm4mk.roa (hash: ECwHPN5lxdIugX2ttk1L3l/uci2ps9CeCy1VAcBMeQs=) 11: lERL5Mrj2Bt3hRDr7br_N3d-JkE.roa (hash: /A5fyVRtCeR1gSok1lWq8T+wbRAaNz8PoEuYxSfdZSU=) 12: lWQXyxEJYv9OPJsRSSX1CCPbFb8.roa (hash: qyL/Gv6WkVcsE18337JVKs2VK9z6GTYDQ6GMJ2m3/WQ=) 13: whyP5FxoblHoIHhMTAeqWb1jp8w.roa (hash: a7SodNhSARcbHydA3wymHLN4IRqMOWIhBwT2PU/EoPc=) 14: zd2dqaKa6O4wz9TxJzSxhbKbteU.roa (hash: Sv1+bPBughIj/le0hfMKADppbA91Co/u0NeJGW/Uifs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 07 May 2026 21:44:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:ff:85:c9:06:fd:d0:15:f9:c6:0f:4c:95:95:cd:e7:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Validity Not Before: May 6 23:00:50 2026 GMT Not After : May 7 23:00:50 2026 GMT Subject: CN=4a2427ced0559d9597d4ca30e6812e9b37389757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c0:14:2b:2c:bc:2e:01:3b:af:e2:7d:2c:39: ac:4a:21:9c:a7:6b:b0:61:1b:8b:16:50:21:b9:52: 6a:2a:5c:e0:45:c6:5a:24:75:f3:3f:a3:89:8c:01: 2e:91:a8:1e:ea:59:c9:98:42:e3:8e:70:02:da:11: 49:03:5f:91:67:36:c2:9d:ec:b8:69:8f:d9:fe:30: ca:dd:19:ca:ea:08:cc:5a:c0:fe:67:28:26:b7:96: 9a:b1:db:d7:90:2b:9f:de:d6:4b:9c:aa:40:2c:6d: 1a:57:6f:a8:d0:dd:40:87:7e:3c:f1:94:c3:b8:2a: 95:fb:f7:ab:ab:5e:4d:4a:24:c0:ce:02:a3:1f:8c: 80:db:16:0b:b7:33:70:2d:15:d6:cf:2e:65:77:4d: 3c:06:5d:ac:f2:89:3f:99:4c:74:5a:82:fd:2e:e0: cb:e3:19:78:b4:27:b4:5b:0e:af:9b:5e:90:0e:b7: 0c:85:04:6e:9d:7f:70:ce:53:4a:73:e9:18:7d:60: 4b:f6:d0:55:6c:20:fd:71:81:fd:63:a4:86:16:77: e7:2c:30:cf:9a:af:65:58:3f:a0:dc:83:8e:2d:18: 27:79:c2:3a:51:fe:e2:f2:fb:22:b0:c9:f3:fd:cc: 4b:c8:34:93:ca:72:b0:a2:73:30:f4:f6:46:92:9f: 5c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:24:27:CE:D0:55:9D:95:97:D4:CA:30:E6:81:2E:9B:37:38:97:57 X509v3 Authority Key Identifier: keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:5f:21:79:f8:ce:98:73:67:e8:72:b0:95:cf:85:b7:cd:1c: 87:72:6c:ea:78:b4:35:8a:15:ea:36:bb:8a:21:2e:be:6a:e6: 95:a7:90:f4:2c:47:77:ec:4e:35:ea:6b:dd:3b:74:c5:23:8a: 24:66:b3:9c:d0:fc:79:75:a6:24:26:83:1c:c5:43:20:25:79: 9a:f7:54:11:34:d8:d5:b9:9e:6d:45:ee:05:19:c1:b6:69:42: 77:3d:80:16:18:1e:c4:b3:42:bf:e3:38:2e:b9:c3:8f:84:37: 14:07:00:96:a3:f8:df:7a:f2:e3:4c:b6:70:d5:d2:60:df:ae: 43:2e:c7:70:7b:1a:d0:0e:b1:ae:5d:ce:02:f2:52:8b:e2:35: 4c:e5:5d:e4:b9:b8:77:a2:f1:86:0c:4c:b0:00:fc:33:c7:fa: 54:da:d1:c9:60:8e:44:f3:3d:90:9e:50:6a:1f:fe:2e:63:9b: 43:43:df:9b:ae:e9:5c:72:cd:8b:88:a9:d1:d5:e6:56:84:e7: 08:ab:2d:b2:7e:df:fe:3c:b5:6e:a4:1d:69:e3:32:bd:a0:39: f1:ff:de:93:f0:28:da:e3:b8:9a:90:3e:c2:0e:80:c1:43:7f: c6:d8:8c:39:1e:b4:e1:de:47:dc:26:1b:cc:8b:3e:9e:c2:8d: 01:cd:4b:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ3/hckG/dAV+cYPTJWVzeeeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNDc0YWM3Y2E4NWUwOWMyZDQ4YjMzZTdiZjY2ZjhlZDc2 NGRlMGYwHhcNMjYwNTA2MjMwMDUwWhcNMjYwNTA3MjMwMDUwWjAzMTEwLwYDVQQD Eyg0YTI0MjdjZWQwNTU5ZDk1OTdkNGNhMzBlNjgxMmU5YjM3Mzg5NzU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxsAUKyy8LgE7r+J9LDmsSiGcp2uw YRuLFlAhuVJqKlzgRcZaJHXzP6OJjAEukage6lnJmELjjnAC2hFJA1+RZzbCney4 aY/Z/jDK3RnK6gjMWsD+Zygmt5aasdvXkCuf3tZLnKpALG0aV2+o0N1Ah3488ZTD uCqV+/erq15NSiTAzgKjH4yA2xYLtzNwLRXWzy5ld008Bl2s8ok/mUx0WoL9LuDL 4xl4tCe0Ww6vm16QDrcMhQRunX9wzlNKc+kYfWBL9tBVbCD9cYH9Y6SGFnfnLDDP mq9lWD+g3IOOLRgnecI6Uf7i8vsisMnz/cxLyDSTynKwonMw9PZGkp9c+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEokJ87QVZ2Vl9TKMOaBLps3OJdXMB8GA1UdIwQY MBaAFDJHSsfKheCcLUizPnv2b47XZN4PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzkt MTJlYzIyYzljNWEyLzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzktMTJlYzIyYzljNWEy LzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArl8hefjO mHNn6HKwlc+Ft80ch3Js6ni0NYoV6ja7iiEuvmrmlaeQ9CxHd+xONepr3Tt0xSOK JGaznND8eXWmJCaDHMVDICV5mvdUETTY1bmebUXuBRnBtmlCdz2AFhgexLNCv+M4 LrnDj4Q3FAcAlqP433ry40y2cNXSYN+uQy7HcHsa0A6xrl3OAvJSi+I1TOVd5Lm4 d6LxhgxMsAD8M8f6VNrRyWCORPM9kJ5Qah/+LmObQ0Pfm67pXHLNi4ip0dXmVoTn CKstsn7f/jy1bqQdaeMyvaA58f/ek/Ao2uO4mpA+wg6AwUN/xtiMOR604d5H3CYb zIs+nsKNAc1LRQ== -----END CERTIFICATE-----Generated at Thu May 7 03:34:21 2026 by rpki-client