$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft File: 9LdilQ63kWZou_qNG4cFYLHKdzk.mft (raw, json) Hash identifier: LoQOJD6krWcLiFVme4JcOfpSHEqqbGlRTMFwd/L9GWA= Subject key identifier: 12:DC:97:F7:A0:A9:4D:37:D5:60:BA:59:D5:42:A7:CC:7A:75:56:37 Authority key identifier: F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39 Certificate issuer: /CN=f4b762950eb7916668bbfa8d1b870560b1ca7739 Certificate serial: 019DCDF53D0333AF308B27553920CE34D725 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft Manifest number: 1780 Signing time: Mon 27 Apr 2026 08:01:34 +0000 Manifest this update: Mon 27 Apr 2026 08:01:34 +0000 Manifest next update: Tue 28 Apr 2026 08:01:34 +0000 Files and hashes: 1: 1-3IPJhNn2z6uBNLHxMmCKfvzzKc.roa (hash: NdBkfOzbM5bOy0bYu/5qjiwop0xpNPBqxYjexeBjzV4=) 2: 2Mw_RsL7Tu1raZO7N_NmWBt_4Lw.roa (hash: JucO5ifrsP8q+Lpu01KX5CahDpNNuMFp8igwggz5f+4=) 3: 7Iz6U-UbML_bHt2iBpNhyMsUex4.roa (hash: kuOf+8ykZKiwJgvJAoLirBjFoMp1t2BI/tsXr1phgfs=) 4: 9LdilQ63kWZou_qNG4cFYLHKdzk.crl (hash: +YNoakG0xOCWw2qMWZUkNIe74//IwxIV0y7h/w2hGZc=) 5: KTnr28UXB2AOhLUGojIXh3TKOoo.roa (hash: 8eiF90G8f4f8jQjBHQ0ai2Os8eR7L9120f3BRFVgphs=) 6: LKPNjW0FwzxJuXJJO8QeVx8xVKA.roa (hash: 7aAIkZ00eO3qTrf1/VDBo5PmzNCovWfeD3QFFzPD2+k=) 7: XWplAHLb4h-dRGf7GRqU5aYBne4.roa (hash: vcUnwVhvidom6bWizccTCS7wF3vMreiwdFHr11qyWHQ=) 8: XgKbk-VfS5Fk-dDKQjpQqRf0_lY.roa (hash: iWT0RhDme3TLlIGDD9yrT4WHfNUoRqswY0iSVi2J+04=) 9: bu5zIhc9syS0fhKBovFQXcGQRxQ.roa (hash: /Bq2k4bmIQ5EUPK41v03YcsLqkRVvDHXfxrIn2yzw5A=) 10: epRr3ot_tO1I-RC0EsosxizeUW8.roa (hash: 2A4W4DbPWY16lTKuPfcljbBbTU9AeJIZxwLQ/cXz2wo=) 11: hIAZzuP6Gsu6ylCAGgkd82Ycc_M.roa (hash: SQISDbvDjBaLkSadlmENoao3YxR8/bK49Sgx969cf+M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 28 Apr 2026 08:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:cd:f5:3d:03:33:af:30:8b:27:55:39:20:ce:34:d7:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f4b762950eb7916668bbfa8d1b870560b1ca7739 Validity Not Before: Apr 27 08:01:34 2026 GMT Not After : Apr 28 08:01:34 2026 GMT Subject: CN=12dc97f7a0a94d37d560ba59d542a7cc7a755637 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:aa:9e:3f:a5:1c:c5:2f:ba:fb:47:cd:c3:59: b7:9a:02:03:9b:58:00:04:10:ca:65:99:20:c4:ce: 26:ec:24:88:d1:25:46:5a:b3:92:55:6f:98:a7:28: 7d:ba:da:0a:ec:43:99:b8:24:4c:4c:1c:18:28:d3: f5:02:b6:41:8b:4b:90:00:25:c1:c7:7c:96:d7:86: 58:64:e0:b6:86:9e:f7:2f:87:33:12:06:7c:87:5d: 10:a7:af:35:7d:20:db:75:47:1a:ac:21:ca:66:4d: 98:37:40:a6:5e:67:46:44:17:b3:43:6e:5c:d0:51: 13:90:1e:8c:7d:af:9e:10:88:5c:86:c0:d1:aa:e6: 87:69:f3:d5:f6:9d:b5:36:bc:ca:18:4b:f4:3e:78: 66:bc:8a:fd:08:68:e3:39:09:49:67:94:90:9a:a8: db:e8:71:95:e0:4e:09:5c:44:27:7f:fa:41:89:64: e6:99:6e:a7:4a:64:ff:24:62:80:12:71:62:fc:ac: 53:7a:d4:b6:cb:3f:3a:fb:45:96:3b:e2:2d:06:43: d5:2f:2c:91:8d:26:8a:10:8a:38:a7:58:cf:8a:ee: 49:1e:15:eb:12:d0:0a:b1:96:d3:2b:78:aa:a5:eb: 94:7b:2b:07:72:6c:4e:81:dd:e9:d1:1b:8e:ab:cb: 01:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:DC:97:F7:A0:A9:4D:37:D5:60:BA:59:D5:42:A7:CC:7A:75:56:37 X509v3 Authority Key Identifier: keyid:F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:c4:68:31:30:82:2d:7d:91:cb:5c:03:17:71:48:e0:eb:08: d3:18:a0:51:16:df:10:0d:e2:56:ad:f4:a4:69:9a:3b:bf:5f: 21:7d:c3:e4:fa:25:e6:77:b1:27:e8:66:d6:17:b8:bc:cc:3b: 76:0c:97:c0:ba:1d:20:60:37:87:4c:d8:75:9b:4a:3e:d6:b3: a1:1f:10:61:9e:0b:64:02:7a:86:ed:91:9d:22:a6:d9:75:1a: dd:2f:bd:fe:9a:1a:17:04:c4:0d:b6:04:84:f5:86:11:b7:e0: 74:e5:cc:6f:23:29:05:68:4b:9e:1d:e7:2a:9b:34:9c:4c:e6: 95:49:9c:37:fa:a9:fe:ed:73:fe:d4:95:4f:cd:cc:55:24:c1: 4e:ba:2b:5f:57:e9:71:e8:39:e5:8f:1b:59:99:ef:75:35:95: a2:eb:33:04:20:62:ac:6f:18:60:73:23:d2:f4:0a:a5:f5:9b: 3f:a4:70:8a:81:7c:bb:2a:94:d6:ce:e8:19:20:b4:00:27:f6: dd:0e:b2:5a:e7:ae:26:f7:6c:2b:a3:b6:3f:12:83:a9:2d:dc: 70:3b:f2:1a:c4:1f:77:11:bd:48:11:4e:22:90:b2:83:39:4b: 1e:a5:3c:0b:28:ea:ff:06:72:12:11:ed:80:7b:f4:7a:bc:92: 7c:76:59:bd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ3N9T0DM68wiydVOSDONNclMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY0Yjc2Mjk1MGViNzkxNjY2OGJiZmE4ZDFiODcwNTYwYjFj YTc3MzkwHhcNMjYwNDI3MDgwMTM0WhcNMjYwNDI4MDgwMTM0WjAzMTEwLwYDVQQD EygxMmRjOTdmN2EwYTk0ZDM3ZDU2MGJhNTlkNTQyYTdjYzdhNzU1NjM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh6qeP6UcxS+6+0fNw1m3mgIDm1gA BBDKZZkgxM4m7CSI0SVGWrOSVW+Ypyh9utoK7EOZuCRMTBwYKNP1ArZBi0uQACXB x3yW14ZYZOC2hp73L4czEgZ8h10Qp681fSDbdUcarCHKZk2YN0CmXmdGRBezQ25c 0FETkB6Mfa+eEIhchsDRquaHafPV9p21NrzKGEv0PnhmvIr9CGjjOQlJZ5SQmqjb 6HGV4E4JXEQnf/pBiWTmmW6nSmT/JGKAEnFi/KxTetS2yz86+0WWO+ItBkPVLyyR jSaKEIo4p1jPiu5JHhXrEtAKsZbTK3iqpeuUeysHcmxOgd3p0RuOq8sBEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBLcl/egqU031WC6WdVCp8x6dVY3MB8GA1UdIwQY MBaAFPS3YpUOt5FmaLv6jRuHBWCxync5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOUxkaWxRNjNrV1pvdV9xTkc0Y0ZZTEhLZHprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8wYjIzYzUtMjFiNS00YWIzLTk3YTAt MmY4ZGYxODdmOThiLzEvOUxkaWxRNjNrV1pvdV9xTkc0Y0ZZTEhLZHprLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi8wYjIzYzUtMjFiNS00YWIzLTk3YTAtMmY4ZGYxODdmOThi LzEvOUxkaWxRNjNrV1pvdV9xTkc0Y0ZZTEhLZHprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAsRoMTCC LX2Ry1wDF3FI4OsI0xigURbfEA3iVq30pGmaO79fIX3D5Pol5nexJ+hm1he4vMw7 dgyXwLodIGA3h0zYdZtKPtazoR8QYZ4LZAJ6hu2RnSKm2XUa3S+9/poaFwTEDbYE hPWGEbfgdOXMbyMpBWhLnh3nKps0nEzmlUmcN/qp/u1z/tSVT83MVSTBTrorX1fp ceg55Y8bWZnvdTWVouszBCBirG8YYHMj0vQKpfWbP6RwioF8uyqU1s7oGSC0ACf2 3Q6yWueuJvdsK6O2PxKDqS3ccDvyGsQfdxG9SBFOIpCygzlLHqU8Cyjq/wZyEhHt gHv0erySfHZZvQ== -----END CERTIFICATE-----Generated at Mon Apr 27 14:54:17 2026 by rpki-client