$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft File: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft (raw, json) Hash identifier: pjBw36ajrC/vEgQG8iHZMtfKb/8y16Ja1tbPP15fEAw= Subject key identifier: 70:9E:61:D8:8A:E0:F0:B0:A8:4B:3D:50:98:57:7D:07:87:D8:F6:06 Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Certificate serial: 019EF6B786AD833864CE6990EA0FDF43F3C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft Manifest number: 19A1 Signing time: Tue 23 Jun 2026 23:01:23 +0000 Manifest this update: Tue 23 Jun 2026 23:01:23 +0000 Manifest next update: Wed 24 Jun 2026 23:01:23 +0000 Files and hashes: 1: 0ld9oICrjkM9PiOBYi7PkCMaP7g.roa (hash: 7pPoPeKMxfAld72vWaWuaU3WiGoLWbNKS8HJfbCj2GY=) 2: 1BFQM936y9WGcLJKwy60Wg2ag-8.roa (hash: NTbQFXMY5QSvW0BgWqBt3HeqiX8tXZPRJi0IS+SKq2s=) 3: DT8TXPB7Zoh4Y9JFFdsSZ2RIgLg.roa (hash: cdCtaCnFbbokb4IxB6SbsLXr+yswcQckTbmvZnS/sJA=) 4: H3d0QP653F6Jo-epVSXBiVH1h6k.roa (hash: B2NZF4jz4UwnLzA3KbDxjNp0EF7Qv4Th+B09WImKi2I=) 5: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl (hash: EBCuc4Mgjtd3Z0wzd582pFLRgcyOKitKgdbsWi/Qqw4=) 6: O2mRnCNeDokP5q-PUWLd28D1SG8.roa (hash: XL7s2EUC28zeBKoJlmCFsu+5IjkYrbxfH3a9YMWon60=) 7: XPPuMgWRNY1QAnjWn2LftTc8cH4.roa (hash: LqWi3Xbli/jxxlx74n8O7L6EJtxaJ1UA0GYHmPMDyEU=) 8: ZRr2QwcqGgt_EOiTtMFoE-lkmow.roa (hash: SIg3ToChfd1+8YW/rxSI4oA419Stw5Sb9StcFL22beM=) 9: dY6eqUD4ykA92I5VKqHmYTX3q88.roa (hash: uvlx5CXBvfA8EWdxrFvclZnKJJH1HmhxtH5z6Fa+fBo=) 10: hCjWTJUhp9C-lxxCdRV4Jwzm4mk.roa (hash: ECwHPN5lxdIugX2ttk1L3l/uci2ps9CeCy1VAcBMeQs=) 11: lERL5Mrj2Bt3hRDr7br_N3d-JkE.roa (hash: /A5fyVRtCeR1gSok1lWq8T+wbRAaNz8PoEuYxSfdZSU=) 12: lWQXyxEJYv9OPJsRSSX1CCPbFb8.roa (hash: qyL/Gv6WkVcsE18337JVKs2VK9z6GTYDQ6GMJ2m3/WQ=) 13: whyP5FxoblHoIHhMTAeqWb1jp8w.roa (hash: a7SodNhSARcbHydA3wymHLN4IRqMOWIhBwT2PU/EoPc=) 14: zd2dqaKa6O4wz9TxJzSxhbKbteU.roa (hash: Sv1+bPBughIj/le0hfMKADppbA91Co/u0NeJGW/Uifs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Jun 2026 22:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:f6:b7:86:ad:83:38:64:ce:69:90:ea:0f:df:43:f3:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Validity Not Before: Jun 23 23:01:23 2026 GMT Not After : Jun 24 23:01:23 2026 GMT Subject: CN=709e61d88ae0f0b0a84b3d5098577d0787d8f606 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:5d:e1:83:fe:7c:4d:ff:3d:0d:25:4e:7d:91: 11:c4:e7:57:46:ab:aa:70:34:3c:f9:23:e2:18:92: 19:28:f4:28:ef:6a:c4:31:cb:41:06:3c:86:30:47: 54:6f:99:4b:32:54:2e:b3:1f:c5:48:cb:ab:0b:43: 86:19:85:b1:07:ad:16:e6:b9:c3:17:7b:48:ab:bf: c7:ee:ec:b8:65:07:a0:a7:e0:58:0d:ee:b0:40:91: d8:8c:b4:52:7a:6c:18:6a:6b:64:7b:f4:72:59:3a: a5:51:ce:1d:dd:79:02:dc:c6:be:3b:4f:3a:7c:4b: ad:9e:a6:a0:da:e4:34:ae:66:0d:d5:16:c5:1b:fd: e7:69:80:ca:fc:99:f3:f7:83:1c:5c:84:56:43:1b: 4b:6a:37:0c:67:bc:12:61:b7:84:56:2a:ea:64:15: 94:d6:dc:8b:23:aa:0c:07:84:9e:b7:5c:b1:a6:03: e2:c1:d6:5d:96:a0:2f:9d:93:10:ab:b0:b3:de:7f: 3b:86:70:55:bf:b0:fa:62:95:67:23:05:23:37:59: f8:73:88:34:4b:d9:00:c6:a1:92:70:d4:61:f5:f2: 11:bd:0a:30:3a:71:be:f1:ee:81:2d:0c:25:d1:f9: 18:21:af:c5:0c:e9:70:00:8f:eb:c1:54:cb:92:7b: ec:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:9E:61:D8:8A:E0:F0:B0:A8:4B:3D:50:98:57:7D:07:87:D8:F6:06 X509v3 Authority Key Identifier: keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:92:8c:d7:98:f6:36:ee:ec:e8:90:f0:57:8d:18:c7:b8:74: 97:2c:a5:f8:2f:ee:4e:1a:5d:da:ee:10:88:0e:35:f7:8f:e1: b0:b8:0a:31:c8:53:35:34:9e:04:27:af:e3:35:ee:e2:42:21: 55:3d:10:c0:9e:35:b0:03:7a:be:9d:36:ec:4b:ef:51:6e:9f: c3:a4:39:76:b7:7b:ae:64:a4:ad:d9:16:5d:bf:88:1f:36:db: 33:55:42:74:a9:3b:0c:e0:e3:93:89:fa:79:d9:8c:40:16:02: ec:72:aa:c3:7a:d5:48:13:79:4a:97:13:1e:e3:16:d0:e8:38: b4:78:34:f2:1d:2c:6d:34:1e:3f:9d:2e:50:17:0f:3e:20:7e: 3c:97:92:fe:ea:90:e1:c5:98:d6:d8:35:c5:db:ae:80:75:d6: 50:58:42:4d:6d:62:be:ab:c0:62:6b:84:4f:22:a1:01:1d:f3: 12:20:f9:52:66:fa:45:9a:8e:ae:bb:aa:5a:43:1b:b5:57:04: 38:42:ce:4e:3a:87:7e:d1:e5:4b:a8:46:08:89:e0:9e:35:7e: f5:18:2a:49:20:38:91:5e:5f:9b:96:5e:6e:ae:4b:fd:24:82: 52:e5:62:d9:35:b4:e7:92:82:e0:c5:d8:9b:fd:4d:7d:f3:3b: 69:2e:c2:e7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ72t4atgzhkzmmQ6g/fQ/PJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNDc0YWM3Y2E4NWUwOWMyZDQ4YjMzZTdiZjY2ZjhlZDc2 NGRlMGYwHhcNMjYwNjIzMjMwMTIzWhcNMjYwNjI0MjMwMTIzWjAzMTEwLwYDVQQD Eyg3MDllNjFkODhhZTBmMGIwYTg0YjNkNTA5ODU3N2QwNzg3ZDhmNjA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA313hg/58Tf89DSVOfZERxOdXRquq cDQ8+SPiGJIZKPQo72rEMctBBjyGMEdUb5lLMlQusx/FSMurC0OGGYWxB60W5rnD F3tIq7/H7uy4ZQegp+BYDe6wQJHYjLRSemwYamtke/RyWTqlUc4d3XkC3Ma+O086 fEutnqag2uQ0rmYN1RbFG/3naYDK/Jnz94McXIRWQxtLajcMZ7wSYbeEVirqZBWU 1tyLI6oMB4Set1yxpgPiwdZdlqAvnZMQq7Cz3n87hnBVv7D6YpVnIwUjN1n4c4g0 S9kAxqGScNRh9fIRvQowOnG+8e6BLQwl0fkYIa/FDOlwAI/rwVTLknvsnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHCeYdiK4PCwqEs9UJhXfQeH2PYGMB8GA1UdIwQY MBaAFDJHSsfKheCcLUizPnv2b47XZN4PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzkt MTJlYzIyYzljNWEyLzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzktMTJlYzIyYzljNWEy LzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ5KM15j2 Nu7s6JDwV40Yx7h0lyyl+C/uThpd2u4QiA4194/hsLgKMchTNTSeBCev4zXu4kIh VT0QwJ41sAN6vp027EvvUW6fw6Q5drd7rmSkrdkWXb+IHzbbM1VCdKk7DODjk4n6 edmMQBYC7HKqw3rVSBN5SpcTHuMW0Og4tHg08h0sbTQeP50uUBcPPiB+PJeS/uqQ 4cWY1tg1xduugHXWUFhCTW1ivqvAYmuETyKhAR3zEiD5Umb6RZqOrruqWkMbtVcE OELOTjqHftHlS6hGCIngnjV+9RgqSSA4kV5fm5Zebq5L/SSCUuVi2TW055KC4MXY m/1NffM7aS7C5w== -----END CERTIFICATE-----Generated at Wed Jun 24 07:32:40 2026 by rpki-client