$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft File: OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft (raw, json) Hash identifier: Uquf0b2EOfXVF9jbay31rErG/vP3C08rhk+QSSwTchM= Subject key identifier: 84:CA:A4:07:EE:D6:3F:BB:71:16:53:F1:21:D2:3B:FE:A4:A8:C0:EF Authority key identifier: 38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 Certificate issuer: /CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Certificate serial: 019E995FDFFEE58E17876989129E3700E057 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft Manifest number: 1958 Signing time: Fri 05 Jun 2026 20:00:57 +0000 Manifest this update: Fri 05 Jun 2026 20:00:57 +0000 Manifest next update: Sat 06 Jun 2026 20:00:57 +0000 Files and hashes: 1: 1wr8QIeSM3CIv5J7uap933hLaGs.roa (hash: Y6lFO4ooFEDBG8EOKNjhhaIJIuCCzVgscAraR7wX8B4=) 2: 4nJ0h3kxVoLTGLl-KMMdIGNO3U4.roa (hash: yXSTzPv+VSMPQEsmFJQmVgwkS8AYD6u5M83BtbV+VIE=) 3: EdrkWbcqLRMSNrh6Sa5x5mnTLPc.roa (hash: Fk5tDegQkNWmVnCc3SYJvszlVAARBSOO/qIaE+GvEdY=) 4: FOt64C6RCxN5JGIdYYt0-jp9RJQ.roa (hash: tamHBKuLjpWpXY8LQK286Mn5I3Q0OVkX8D4lvECCpD8=) 5: LTj2PGdyu1TZVch3WwkoLN3benA.roa (hash: 0uIInrnjr5BRMLrYPZ3TlKAb12B+T0z8Pu5nxkwhOwA=) 6: OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl (hash: cz3NFWD7szy0bJgYHD9kDu9Lqavg93Iq/QCgAzh3vak=) 7: OR9wB6bWiqsZvjqNRRbC11UhrBA.roa (hash: BLhfuTsmrrfMXC8Lx4hjGsCFS5Q2HKcD1UJlTtem6+U=) 8: UJVwk9mntlMFjdR5x6Gz4DwAego.roa (hash: Y9Qzk1ZJNkQeeN5SL4rk7tJNNAoeHg7LXp+c5rv1kJY=) 9: XIxZD227ioGX0cqqVFAINXLyX6Q.roa (hash: sDleWGEf+rrGs4/hbX/4+JTQcRgaaTHiE45KWqHpF+s=) 10: XkdalcQg6hGFzhglm3gQzCnpww4.roa (hash: 8jItQEffXXa+ZvcKZLLyn2RNT/EfLCbVUQe+TOkVNeM=) 11: YWsBcXgsO8gZFuZAgXqc8mQzIPQ.roa (hash: FIq3otCEvunZWYD7V3EpFGXTGzchT90RBkn3PHEPtpE=) 12: cgpmcoUK85pTENssifHpCXJlfPE.roa (hash: JM0iNu1ajeTkqDE4Nqu0ZyqAU2JL5GqcLbiW8nq6Ilc=) 13: eSOXNELPy2P_3h7R8IBwrZVgqTM.roa (hash: r38ULUfgOCtbQfGW33x7ibVGykkgQ5HIh/ZXyBOz91w=) 14: fPatpWdNAbZy6ojdptQs2lNi1EE.roa (hash: X9tWk7+bmsyMGDUglxjA0jdRl4uO9c2P7cIjkiKVhfo=) 15: fny2WANL9Kakl_hzClrFytLGIbA.roa (hash: Li0zLoSXMQkOWimSeqYniHU5WmqmT1OGtibQ573h2wE=) 16: lqG4TiS1VcHtRo5hXtYqEofYXQY.roa (hash: lQ0va2Pv+RAccp1R5C/OndWZWgx6m66STBo/DZ6jbSw=) 17: snScws96TnQnAtgCESncYf2cHQI.roa (hash: Rg061AAdsDJTEuVCFaKulmhMa2nYwQQcIJgWuXh/KyU=) 18: zyiTueEsxpcD3PrX5wVtwGJMZ_Y.roa (hash: 7R1f/73J/Qx3gYsQEvvU8YVQZND5dDU9/Elan9+1kYw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 17:49:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:99:5f:df:fe:e5:8e:17:87:69:89:12:9e:37:00:e0:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Validity Not Before: Jun 5 20:00:57 2026 GMT Not After : Jun 6 20:00:57 2026 GMT Subject: CN=84caa407eed63fbb711653f121d23bfea4a8c0ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:52:63:fa:4b:b3:7b:72:78:4d:99:80:e6:19: 0f:a7:d4:0a:ea:7d:3a:fe:5e:14:a2:db:06:10:8d: 01:ba:52:29:32:11:49:29:d4:cf:ab:f4:f7:4b:6c: 11:d4:71:1e:7d:65:5c:01:81:f5:f1:05:d2:54:97: 8f:e2:d8:7c:d7:03:57:df:24:46:57:26:55:ed:2a: c2:93:16:77:53:db:27:03:06:a8:95:26:fd:79:17: e7:a2:ac:21:f8:21:d1:f7:70:61:c1:47:5a:7d:8d: 34:cf:65:23:c6:b9:7a:ca:bd:30:b8:0b:6f:e9:16: 5e:77:88:3b:80:ea:33:3c:eb:b3:da:b4:04:56:cf: 01:4d:84:33:f7:8f:53:5b:de:23:16:46:3e:fc:e3: 93:36:88:4d:e8:d6:5b:e5:e2:c4:d1:3c:70:75:24: ae:d6:f3:73:83:9f:ed:85:57:6c:5f:03:dc:72:99: 99:ff:1c:83:dc:69:1e:15:f7:b6:5e:62:a2:9d:e3: d6:9a:44:0c:67:ca:c0:c8:17:1e:1b:b7:45:65:47: d6:a4:10:0a:11:31:bf:05:b6:1f:57:42:eb:3f:3e: 06:05:26:7f:8c:f0:8b:0e:34:20:cb:ed:1f:c6:96: 26:56:a4:31:b3:5f:40:d6:f2:9f:b7:5a:fc:a2:b3: 72:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:CA:A4:07:EE:D6:3F:BB:71:16:53:F1:21:D2:3B:FE:A4:A8:C0:EF X509v3 Authority Key Identifier: keyid:38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b5:7f:9c:f0:3c:45:3f:17:83:a6:45:98:8d:e8:f1:5c:0d:b3: a4:4a:25:f0:79:8e:88:c8:64:58:bd:57:39:bd:e7:07:6e:1d: c5:e7:ec:cc:5b:6b:e7:03:43:07:75:cf:e2:d1:ac:91:35:a2: 71:54:2a:df:1e:12:71:50:68:8a:3b:64:09:eb:69:ac:60:27: 60:6f:e2:09:94:d6:ec:84:c8:79:e6:56:7f:74:d9:27:1d:24: ab:e6:29:b8:aa:37:65:35:0d:63:8a:58:24:ff:2f:39:d7:55: 91:64:bc:9a:07:5e:d6:4c:d8:c7:74:42:69:85:05:8a:4b:e8: ae:1a:e2:32:57:7a:59:26:ab:d1:73:12:08:33:32:71:00:7c: df:88:2b:38:bd:d3:93:0b:72:7d:e1:c3:ee:97:25:1f:c2:1a: 4f:04:ff:ca:51:d5:85:2e:ab:30:32:46:02:eb:bb:e7:90:74: 42:3f:23:dc:90:1a:41:4d:a1:94:b4:31:33:4c:66:1d:11:d5: 6b:48:64:d4:39:7b:c6:8b:6b:42:ed:78:d1:4d:46:3f:75:5b: 52:88:03:74:56:41:3d:28:6e:03:41:60:2a:5e:29:9d:b1:be: 65:6d:37:30:01:5e:76:a9:eb:8f:bc:f1:bc:74:62:4c:4c:6f: a8:68:c4:7c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ6ZX9/+5Y4Xh2mJEp43AOBXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4N2Q2ZGY3ZWI3NTQyZTAzMzNhZWVkZDE0YWRmZjhmNTFm OGNiZDgwHhcNMjYwNjA1MjAwMDU3WhcNMjYwNjA2MjAwMDU3WjAzMTEwLwYDVQQD Eyg4NGNhYTQwN2VlZDYzZmJiNzExNjUzZjEyMWQyM2JmZWE0YThjMGVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvVJj+kuze3J4TZmA5hkPp9QK6n06 /l4UotsGEI0BulIpMhFJKdTPq/T3S2wR1HEefWVcAYH18QXSVJeP4th81wNX3yRG VyZV7SrCkxZ3U9snAwaolSb9eRfnoqwh+CHR93BhwUdafY00z2Ujxrl6yr0wuAtv 6RZed4g7gOozPOuz2rQEVs8BTYQz949TW94jFkY+/OOTNohN6NZb5eLE0TxwdSSu 1vNzg5/thVdsXwPccpmZ/xyD3GkeFfe2XmKinePWmkQMZ8rAyBceG7dFZUfWpBAK ETG/BbYfV0LrPz4GBSZ/jPCLDjQgy+0fxpYmVqQxs19A1vKft1r8orNy2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFITKpAfu1j+7cRZT8SHSO/6kqMDvMB8GA1UdIwQY MBaAFDh9bffrdULgMzru3RSt/49R+MvYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2Mt NjA5YTQ4YjJiMTRkLzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2MtNjA5YTQ4YjJiMTRk LzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtX+c8DxF PxeDpkWYjejxXA2zpEol8HmOiMhkWL1XOb3nB24dxefszFtr5wNDB3XP4tGskTWi cVQq3x4ScVBoijtkCetprGAnYG/iCZTW7ITIeeZWf3TZJx0kq+YpuKo3ZTUNY4pY JP8vOddVkWS8mgde1kzYx3RCaYUFikvorhriMld6WSar0XMSCDMycQB834grOL3T kwtyfeHD7pclH8IaTwT/ylHVhS6rMDJGAuu755B0Qj8j3JAaQU2hlLQxM0xmHRHV a0hk1Dl7xotrQu140U1GP3VbUogDdFZBPShuA0FgKl4pnbG+ZW03MAFedqnrj7zx vHRiTExvqGjEfA== -----END CERTIFICATE-----Generated at Sat Jun 6 00:32:55 2026 by rpki-client