$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft File: pnhXc98xO5FxG_a8WxSezCRrnok.mft (raw, json) Hash identifier: usizY3E8/Ay//Ut1lXB/6IPW9221yi9hG/gFD/Ln5bw= Subject key identifier: 94:7A:D4:D1:F3:56:A5:CC:D8:77:8F:CD:B3:03:CA:94:0D:C5:23:12 Authority key identifier: A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 Certificate issuer: /CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Certificate serial: 019EBC90480777B74B632C4EFC1B2DA22BAB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft Manifest number: 1723 Signing time: Fri 12 Jun 2026 16:00:32 +0000 Manifest this update: Fri 12 Jun 2026 16:00:32 +0000 Manifest next update: Sat 13 Jun 2026 16:00:32 +0000 Files and hashes: 1: C8g7Pi5B0RKpnrlAYnkGNfdVaNI.roa (hash: wxMFCVvSA3tdy7i3OaSOQ9SIAg2wmBIcYz9jkUGPtlk=) 2: Ine_1lLdl47bEMn6aiw9Axcdsgo.roa (hash: S/r8lpXeW/d857boj4AgP81lqUx6Xba1Zs9uDln2Uuk=) 3: L9nqjZgCKM_h4eShTqHdEr9Np6c.roa (hash: m3EOAebEcr3Ec2NVZh7NKfNA+27GisIbFErRrtFBX6k=) 4: NanNAKKpriw1xLHpXZYYWO89_ic.roa (hash: vJoNpzNu5goOWjEeID9l0AJGNtpWeDH6gI91uoAnwIk=) 5: O6JDbaslrGOSZKrdtuCBt6ssF94.roa (hash: 8ty72z4beTGAGlxyLGLA0AACx0Qa5f/MkundTg5sepM=) 6: Wvbb_a2COrZy8u2YHT4IAcPCo7A.roa (hash: JCvZpNcLMyYDQVI9nqJFb7h8bZSYYqo2EDX3T4my9ww=) 7: ZQQkerLBkFsKEtd48dsMSA_rmYI.roa (hash: 6NjK7e1f3uOhtOOeU7twP9rf1tXwX1yAjDALcNdcBDM=) 8: _dst1Xn6SlUI8nUoQkjpnLlhahc.roa (hash: BiPvKLoz5HOyAuWJJP0IXnbLHFFchqo6uteOhXIPeKs=) 9: dDB5YY9PZuYzIK0czNYk6awWuOU.roa (hash: B1+NRVwOUhTIMmxV8tnE89O/MNjbHirt4Fghn1v7gaE=) 10: eFI0tBDLnesndLqlj1NoxqsPUjg.roa (hash: hjKjXxMem27vbAFHspC4BJNh7EJxRAQg9zId7c2baKg=) 11: pnhXc98xO5FxG_a8WxSezCRrnok.crl (hash: 7eGqbH1XVClumz8/sukALbO6NgUrs2xqjAtEhBytUXc=) 12: vz8HwWs32wz7LdSPq6eo_tOp0to.roa (hash: 6psAckPnQ9/EqCFp17rxTfMjqVmehqU3pMQvhEu8MeM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 16:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:bc:90:48:07:77:b7:4b:63:2c:4e:fc:1b:2d:a2:2b:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Validity Not Before: Jun 12 16:00:32 2026 GMT Not After : Jun 13 16:00:32 2026 GMT Subject: CN=947ad4d1f356a5ccd8778fcdb303ca940dc52312 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:44:2b:6a:15:b1:0a:a2:b0:93:94:b8:21:c4: f0:a9:a6:d5:c2:92:2f:70:22:e8:0a:ec:04:cc:e2: 05:06:91:34:25:06:7b:9c:70:d4:68:a9:e3:5b:50: 49:7b:4a:3c:e8:4e:f2:51:8b:7d:d8:7f:21:4d:ce: 3f:ae:3e:1a:d0:09:10:e3:6d:2e:5c:88:3c:3e:d0: 81:dc:6e:8f:3a:81:79:91:b7:ab:11:32:0d:80:ff: 56:2d:39:81:c1:b4:2b:d3:5c:b0:2c:b8:1e:09:74: 1d:98:bb:34:39:3f:c6:d2:4e:4c:66:1a:d3:35:e0: c8:f3:95:0a:3d:12:22:66:dc:a6:b9:e1:28:ac:91: 95:54:84:9a:55:40:bd:d4:4f:a4:8c:53:c0:7e:55: 7d:f7:d2:b7:9e:72:8a:58:3b:a7:be:46:bf:36:91: bb:ce:77:55:65:b7:7d:c2:7f:dc:b3:38:05:5b:e6: 16:85:8c:14:80:30:f1:6d:b5:18:a9:80:54:1f:f4: 73:7d:e5:e4:33:0f:aa:79:d5:78:9f:4e:14:cb:ad: 06:88:e4:8a:01:19:0e:ea:d0:80:23:11:47:17:4f: e9:f8:c3:59:52:8f:50:25:e1:07:b2:6c:fd:d0:e1: 5d:c5:7c:0b:0f:43:8a:52:fb:ea:48:c3:ec:fb:4e: 8f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:7A:D4:D1:F3:56:A5:CC:D8:77:8F:CD:B3:03:CA:94:0D:C5:23:12 X509v3 Authority Key Identifier: keyid:A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:da:35:ad:62:12:20:6d:72:b7:2e:cf:4a:cb:46:71:8a:d2: 92:b1:ec:ad:23:85:16:b1:4a:32:f8:4b:f2:3f:b4:89:70:80: 1f:de:aa:38:f6:5c:fe:9f:b6:0b:27:31:cc:6b:1e:80:d9:66: 0e:9c:73:3c:9e:ca:60:3e:6b:18:ed:ca:a7:be:28:50:dc:c0: d3:e6:84:09:a7:48:8a:0b:e1:ea:69:a4:e6:76:59:5c:e4:fa: bf:d4:a6:db:c8:9d:c8:2f:4a:f8:d7:13:3b:b1:94:af:33:d6: 93:ca:bb:d2:26:c9:db:cc:a7:4c:a0:ac:40:54:42:e6:df:3a: 62:35:31:f6:e7:37:ac:8e:dd:13:a9:2a:fa:bf:18:81:13:57: f8:3f:69:3b:b0:03:12:52:10:41:e5:9a:1f:2e:4f:30:64:15: 99:cd:db:e1:3f:42:1b:83:b9:32:27:25:1b:d5:2d:19:c1:44: 2c:2c:37:81:df:ab:53:7b:20:0e:9e:e0:8b:e9:00:02:18:84: f0:e2:82:2a:79:57:3e:75:21:51:95:51:f7:35:15:f5:b9:38: 33:d5:2c:37:44:91:f2:b2:59:ae:3a:f5:5c:c6:79:de:34:86: b7:6c:c7:c8:a2:57:7a:5c:db:17:e7:53:34:f0:7c:55:45:c8: ea:7c:48:3f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ68kEgHd7dLYyxO/BstoiurMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2Nzg1NzczZGYzMTNiOTE3MTFiZjZiYzViMTQ5ZWNjMjQ2 YjllODkwHhcNMjYwNjEyMTYwMDMyWhcNMjYwNjEzMTYwMDMyWjAzMTEwLwYDVQQD Eyg5NDdhZDRkMWYzNTZhNWNjZDg3NzhmY2RiMzAzY2E5NDBkYzUyMzEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1kQrahWxCqKwk5S4IcTwqabVwpIv cCLoCuwEzOIFBpE0JQZ7nHDUaKnjW1BJe0o86E7yUYt92H8hTc4/rj4a0AkQ420u XIg8PtCB3G6POoF5kberETINgP9WLTmBwbQr01ywLLgeCXQdmLs0OT/G0k5MZhrT NeDI85UKPRIiZtymueEorJGVVISaVUC91E+kjFPAflV999K3nnKKWDunvka/NpG7 zndVZbd9wn/cszgFW+YWhYwUgDDxbbUYqYBUH/RzfeXkMw+qedV4n04Uy60GiOSK ARkO6tCAIxFHF0/p+MNZUo9QJeEHsmz90OFdxXwLD0OKUvvqSMPs+06PiQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJR61NHzVqXM2HePzbMDypQNxSMSMB8GA1UdIwQY MBaAFKZ4V3PfMTuRcRv2vFsUnswka56JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEt ZDc1ODY5YzBjNzFlLzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEtZDc1ODY5YzBjNzFl LzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALNo1rWIS IG1yty7PSstGcYrSkrHsrSOFFrFKMvhL8j+0iXCAH96qOPZc/p+2CycxzGsegNlm DpxzPJ7KYD5rGO3Kp74oUNzA0+aECadIigvh6mmk5nZZXOT6v9Sm28idyC9K+NcT O7GUrzPWk8q70ibJ28ynTKCsQFRC5t86YjUx9uc3rI7dE6kq+r8YgRNX+D9pO7AD ElIQQeWaHy5PMGQVmc3b4T9CG4O5MiclG9UtGcFELCw3gd+rU3sgDp7gi+kAAhiE 8OKCKnlXPnUhUZVR9zUV9bk4M9UsN0SR8rJZrjr1XMZ53jSGt2zHyKJXelzbF+dT NPB8VUXI6nxIPw== -----END CERTIFICATE-----Generated at Sat Jun 13 02:17:42 2026 by rpki-client