$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft File: bf7PoOZpJZXPvqUmYHbo5T79lGE.mft (raw, json) Hash identifier: PzQ7Q4DDZaIUefMcLpEg0hoyji0tbngSPEFBIPHgEeY= Subject key identifier: F2:73:4F:2B:D3:87:6F:8E:3B:EC:81:C3:1F:48:C6:C9:44:38:0D:64 Authority key identifier: 6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61 Certificate issuer: /CN=6dfecfa0e6692595cfbea5266076e8e53efd9461 Certificate serial: 019DDDD5D35ED9432293FF5AB4482AF077CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft Manifest number: 1182 Signing time: Thu 30 Apr 2026 10:01:11 +0000 Manifest this update: Thu 30 Apr 2026 10:01:11 +0000 Manifest next update: Fri 01 May 2026 10:01:11 +0000 Files and hashes: 1: 01O1H3vr-Xg2_Kt_tRxOoSePvYw.roa (hash: DTK4FxlalSIuFNse2BYUOpmcSGMhnqSmE/87aEUEtrg=) 2: 1-EqD6vgoA3IVAsjiLQYVEyyKW0U.roa (hash: Of+IRZAD6r3ftFWFR7yxzKwNLfYZjre35Dmg5UJV5ds=) 3: 3oqgYKPHjP4c1L0WVBDxXqGTNKs.roa (hash: PdT5GAbt00ZEVCyICmg6bHJkYgLa1nkpbJxhAhA4vnk=) 4: HB0FIxc95bfbXI-7nw5kY1VNoMs.roa (hash: 236zwT5kbl7DOv0ChJB+B8PFAcfi388Ks1QJGiJxQlM=) 5: RSEZnKImClpjfvRbvyGXO7YCT30.roa (hash: nbl9nzX5UblCyKX8B1eZxPxYHLEkClkhmOAKVpl4rkY=) 6: TCGXmp-ZcJuoO-eDyOqbUVRKJXI.roa (hash: zb8J86h3WDmjGOxtQQnoZ3rsuxycMmwLx3S1o5snyrE=) 7: XR-EYzoeTJi_gNpw5v85R8iIDCI.roa (hash: hr4Ank/yR0Q5kl1E1WgAYLVhDPaCeCKIZMYB9E/hjDs=) 8: bf7PoOZpJZXPvqUmYHbo5T79lGE.crl (hash: Wdr2gF0YYauO3Cv8DdqfzemSvtDE39nVSZLTp/o4l2U=) 9: fv8hSy-qTmyzkAkKRiqf7Cbw4Q8.roa (hash: JVsfqbqPGUHeKikh7Yf/w82XL596L03oNIzuxFbcXEQ=) 10: ngXBDJqFRHqY02oCl22jHBT8QTU.roa (hash: J4yIx0/GQQvuBdXMZZvAxL9Vevspg59Zpn25unHuRA8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 01 May 2026 10:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:dd:d5:d3:5e:d9:43:22:93:ff:5a:b4:48:2a:f0:77:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6dfecfa0e6692595cfbea5266076e8e53efd9461 Validity Not Before: Apr 30 10:01:11 2026 GMT Not After : May 1 10:01:11 2026 GMT Subject: CN=f2734f2bd3876f8e3bec81c31f48c6c944380d64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d0:c4:ca:b5:f7:b5:d4:64:16:52:f5:f2:58: 52:51:8d:7d:47:db:49:4d:b6:10:a8:2b:eb:f6:de: 7c:21:95:e1:2d:69:35:dc:00:a2:05:de:cf:e1:b5: 66:57:ec:77:c8:be:99:a9:dd:3c:0b:12:83:01:36: b9:b0:ad:40:59:5b:0d:ba:41:eb:14:13:81:91:14: 9b:4d:f3:b5:03:de:09:cc:0e:2a:8a:4a:c0:15:b0: d7:3c:04:97:14:5e:ad:c9:ee:fd:92:9a:6d:45:f0: 73:e6:2d:de:db:a6:3c:82:2f:cf:2f:5e:a7:de:7e: 56:2d:53:20:03:fb:64:58:7c:60:b7:e2:22:90:a4: 7e:56:75:97:6d:01:2b:5d:9a:46:52:b1:b7:cc:f1: 95:64:df:2a:26:2e:42:5b:bb:38:6e:22:74:91:be: fe:30:bc:a6:6f:ca:4b:ed:1b:02:4f:0a:43:2f:3e: 1e:55:97:e3:3f:62:29:90:29:5c:34:44:af:34:30: c4:89:83:09:9d:89:4c:ac:2d:77:dd:88:08:29:25: 0b:68:47:4f:35:ad:5f:cb:17:ca:11:f8:9c:0d:43: 80:eb:d0:47:9f:7f:f7:95:19:af:11:cb:f7:d9:96: 15:96:bc:6d:52:2e:4f:cd:e5:0d:3d:26:1d:0d:a7: 84:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:73:4F:2B:D3:87:6F:8E:3B:EC:81:C3:1F:48:C6:C9:44:38:0D:64 X509v3 Authority Key Identifier: keyid:6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:27:38:66:4b:72:8f:3e:af:b4:d4:2d:e6:b2:d3:36:cd:72: 48:1e:f2:42:be:81:77:5d:42:76:b0:2a:61:48:cb:8f:21:2c: d0:23:a1:59:bb:ae:d3:3d:b8:49:04:91:b3:96:b8:cf:61:2d: f6:fc:20:51:bf:bf:31:13:82:f1:49:6f:8d:e6:be:63:fb:06: 17:cc:40:86:12:60:c7:72:ac:80:5f:07:fc:ea:de:ab:87:7f: 93:fe:99:d9:66:2f:14:1b:8f:b1:e6:4c:59:c7:be:72:b8:ed: 8e:a3:77:a6:81:ee:82:06:59:5b:ac:e2:98:ee:8d:60:b8:b6: ff:94:e0:cd:25:22:8b:f6:84:35:51:fb:e0:15:0a:e1:41:9e: a1:97:3e:45:d2:ad:c1:06:6d:cf:81:86:cf:d0:5f:2c:3f:c1: f0:f2:4f:74:1c:8c:3d:8e:c1:7e:34:a8:55:e4:00:ac:ff:51: 50:ea:83:97:cd:ec:d2:be:ea:bf:fc:cc:1d:7b:8d:01:6e:bd: cc:de:05:a5:1c:dc:ec:59:c1:14:76:66:c6:f4:d1:69:73:aa: 00:9e:19:33:2f:09:e1:d4:7c:4d:04:fc:ec:be:75:a9:87:85: a4:33:59:71:3b:0b:7d:10:64:2e:1b:b6:f0:83:a9:c1:c0:7b: 53:6e:52:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ3d1dNe2UMik/9atEgq8HfNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZmVjZmEwZTY2OTI1OTVjZmJlYTUyNjYwNzZlOGU1M2Vm ZDk0NjEwHhcNMjYwNDMwMTAwMTExWhcNMjYwNTAxMTAwMTExWjAzMTEwLwYDVQQD EyhmMjczNGYyYmQzODc2ZjhlM2JlYzgxYzMxZjQ4YzZjOTQ0MzgwZDY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxNDEyrX3tdRkFlL18lhSUY19R9tJ TbYQqCvr9t58IZXhLWk13ACiBd7P4bVmV+x3yL6Zqd08CxKDATa5sK1AWVsNukHr FBOBkRSbTfO1A94JzA4qikrAFbDXPASXFF6tye79kpptRfBz5i3e26Y8gi/PL16n 3n5WLVMgA/tkWHxgt+IikKR+VnWXbQErXZpGUrG3zPGVZN8qJi5CW7s4biJ0kb7+ MLymb8pL7RsCTwpDLz4eVZfjP2IpkClcNESvNDDEiYMJnYlMrC133YgIKSULaEdP Na1fyxfKEficDUOA69BHn3/3lRmvEcv32ZYVlrxtUi5PzeUNPSYdDaeEkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPJzTyvTh2+OO+yBwx9IxslEOA1kMB8GA1UdIwQY MBaAFG3+z6DmaSWVz76lJmB26OU+/ZRhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9mY2ZlYzctZDZjMy00YjQwLWJhMmMt Zjk4OGQ0OGU1MWU4LzEvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy9mY2ZlYzctZDZjMy00YjQwLWJhMmMtZjk4OGQ0OGU1MWU4 LzEvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeSc4Zkty jz6vtNQt5rLTNs1ySB7yQr6Bd11CdrAqYUjLjyEs0COhWbuu0z24SQSRs5a4z2Et 9vwgUb+/MROC8Ulvjea+Y/sGF8xAhhJgx3KsgF8H/Oreq4d/k/6Z2WYvFBuPseZM Wce+crjtjqN3poHuggZZW6zimO6NYLi2/5TgzSUii/aENVH74BUK4UGeoZc+RdKt wQZtz4GGz9BfLD/B8PJPdByMPY7BfjSoVeQArP9RUOqDl83s0r7qv/zMHXuNAW69 zN4FpRzc7FnBFHZmxvTRaXOqAJ4ZMy8J4dR8TQT87L51qYeFpDNZcTsLfRBkLhu2 8IOpwcB7U25Ssg== -----END CERTIFICATE-----Generated at Thu Apr 30 17:36:56 2026 by rpki-client