$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft File: bf7PoOZpJZXPvqUmYHbo5T79lGE.mft (raw, json) Hash identifier: 4zO8/D9FHhGdUgAy/6tBd0bhnBhSKow13Yz//x9Qheo= Subject key identifier: E5:75:A2:AA:3C:86:DF:2B:DA:81:DC:D4:89:43:E3:BA:FC:E4:E1:BB Authority key identifier: 6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61 Certificate issuer: /CN=6dfecfa0e6692595cfbea5266076e8e53efd9461 Certificate serial: 019EE479E710AD619209A4CAE3FDBE39457C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft Manifest number: 120A Signing time: Sat 20 Jun 2026 10:00:54 +0000 Manifest this update: Sat 20 Jun 2026 10:00:54 +0000 Manifest next update: Sun 21 Jun 2026 10:00:54 +0000 Files and hashes: 1: 01O1H3vr-Xg2_Kt_tRxOoSePvYw.roa (hash: DTK4FxlalSIuFNse2BYUOpmcSGMhnqSmE/87aEUEtrg=) 2: 1-EqD6vgoA3IVAsjiLQYVEyyKW0U.roa (hash: Of+IRZAD6r3ftFWFR7yxzKwNLfYZjre35Dmg5UJV5ds=) 3: 3oqgYKPHjP4c1L0WVBDxXqGTNKs.roa (hash: PdT5GAbt00ZEVCyICmg6bHJkYgLa1nkpbJxhAhA4vnk=) 4: HB0FIxc95bfbXI-7nw5kY1VNoMs.roa (hash: 236zwT5kbl7DOv0ChJB+B8PFAcfi388Ks1QJGiJxQlM=) 5: RSEZnKImClpjfvRbvyGXO7YCT30.roa (hash: nbl9nzX5UblCyKX8B1eZxPxYHLEkClkhmOAKVpl4rkY=) 6: TCGXmp-ZcJuoO-eDyOqbUVRKJXI.roa (hash: zb8J86h3WDmjGOxtQQnoZ3rsuxycMmwLx3S1o5snyrE=) 7: XR-EYzoeTJi_gNpw5v85R8iIDCI.roa (hash: hr4Ank/yR0Q5kl1E1WgAYLVhDPaCeCKIZMYB9E/hjDs=) 8: bf7PoOZpJZXPvqUmYHbo5T79lGE.crl (hash: 0o8nBaOHeR04c7CORd0eAqTa7m6mZD84RKFC6CmpGaM=) 9: fv8hSy-qTmyzkAkKRiqf7Cbw4Q8.roa (hash: JVsfqbqPGUHeKikh7Yf/w82XL596L03oNIzuxFbcXEQ=) 10: ngXBDJqFRHqY02oCl22jHBT8QTU.roa (hash: J4yIx0/GQQvuBdXMZZvAxL9Vevspg59Zpn25unHuRA8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Jun 2026 08:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:e4:79:e7:10:ad:61:92:09:a4:ca:e3:fd:be:39:45:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6dfecfa0e6692595cfbea5266076e8e53efd9461 Validity Not Before: Jun 20 10:00:54 2026 GMT Not After : Jun 21 10:00:54 2026 GMT Subject: CN=e575a2aa3c86df2bda81dcd48943e3bafce4e1bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:94:9b:28:e6:5e:01:38:04:9b:1b:ec:da:d1: ec:19:bd:b1:d9:56:79:ff:e8:f2:e9:9e:97:a7:8a: 2f:4d:a7:2a:bc:ef:e8:65:54:83:94:68:1f:cd:a8: be:27:3f:eb:b6:d8:74:df:78:d8:01:2a:70:79:3e: 64:a3:db:b0:ae:58:2b:62:32:55:ee:9a:7f:30:7b: 9c:8a:e7:d8:41:8d:82:a4:c9:ab:83:63:a0:e5:1e: 62:2f:dc:8c:62:7f:0a:49:44:8c:88:cd:58:5c:7a: fe:c2:56:ee:a0:48:a9:1d:1f:b2:01:9e:f4:d6:3f: 18:53:7a:16:9d:a8:70:f8:91:18:3a:18:b2:ea:f9: 71:e3:e1:24:c5:43:9e:9e:ce:00:2e:e3:62:fa:43: e0:ad:b7:12:f6:6b:a4:17:75:ac:6c:f6:fe:ac:4c: 8e:57:bb:fb:cc:92:65:7a:66:bf:0d:f4:0a:df:2b: 03:49:3d:a1:f4:6c:a4:63:f8:b7:26:07:46:3e:9d: 7f:36:41:bc:95:8f:0c:a0:e5:9b:ba:f8:7e:96:71: ab:84:af:6d:84:07:4e:a1:9e:10:88:7f:8b:20:36: 0a:c5:75:a2:59:16:9f:91:01:ce:42:ff:5e:b1:a1: 0a:f7:d2:a0:0e:49:47:5d:9f:d7:ee:4d:12:cb:61: fb:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:75:A2:AA:3C:86:DF:2B:DA:81:DC:D4:89:43:E3:BA:FC:E4:E1:BB X509v3 Authority Key Identifier: keyid:6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:22:76:1b:3c:ad:f2:ac:57:c7:7c:31:e3:82:6f:09:63:b4: 5b:a3:8d:47:96:44:90:db:4c:64:be:df:f3:40:13:b1:05:df: 47:62:ba:b7:26:1d:c1:dd:0d:67:57:fd:d9:0d:ed:7a:bf:7f: 0a:c5:c1:d9:4c:d3:6b:44:56:d3:3d:0a:88:2c:f9:a1:d4:21: 0f:56:1a:d5:fe:3f:71:73:62:c5:bb:57:19:87:fb:e3:c7:10: 6e:c5:90:c4:b4:39:7e:5a:5b:0c:df:59:18:e6:d2:1d:57:04: ed:5e:30:9a:18:b4:87:df:70:e1:cc:d7:0b:65:99:25:d4:01: 25:ad:f2:6d:9d:5d:8d:41:82:5e:0a:de:67:d3:08:71:99:ee: b1:ef:7a:2c:70:6f:de:00:b1:6b:8e:c0:d8:71:a2:a5:a2:f5: 24:5e:ad:57:71:2a:e7:2a:89:1b:ef:2d:56:3c:5e:e0:cc:e4: 37:3a:b8:de:fe:48:31:b8:13:0e:88:0a:8c:6e:d9:b4:57:7c: 0b:85:63:df:f3:56:78:87:fb:ba:e8:92:39:90:0c:b7:ae:4e: 9c:0b:83:a7:68:06:65:a3:dc:6b:8e:bc:1d:0c:d7:82:a3:fc: 86:5a:e1:c4:cd:cb:03:1c:1e:d4:dc:c9:57:41:eb:93:bb:d7: e3:51:01:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ7keecQrWGSCaTK4/2+OUV8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZmVjZmEwZTY2OTI1OTVjZmJlYTUyNjYwNzZlOGU1M2Vm ZDk0NjEwHhcNMjYwNjIwMTAwMDU0WhcNMjYwNjIxMTAwMDU0WjAzMTEwLwYDVQQD EyhlNTc1YTJhYTNjODZkZjJiZGE4MWRjZDQ4OTQzZTNiYWZjZTRlMWJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3JSbKOZeATgEmxvs2tHsGb2x2VZ5 /+jy6Z6Xp4ovTacqvO/oZVSDlGgfzai+Jz/rtth033jYASpweT5ko9uwrlgrYjJV 7pp/MHuciufYQY2CpMmrg2Og5R5iL9yMYn8KSUSMiM1YXHr+wlbuoEipHR+yAZ70 1j8YU3oWnahw+JEYOhiy6vlx4+EkxUOens4ALuNi+kPgrbcS9mukF3WsbPb+rEyO V7v7zJJlema/DfQK3ysDST2h9GykY/i3JgdGPp1/NkG8lY8MoOWbuvh+lnGrhK9t hAdOoZ4QiH+LIDYKxXWiWRafkQHOQv9esaEK99KgDklHXZ/X7k0Sy2H7twIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOV1oqo8ht8r2oHc1IlD47r85OG7MB8GA1UdIwQY MBaAFG3+z6DmaSWVz76lJmB26OU+/ZRhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9mY2ZlYzctZDZjMy00YjQwLWJhMmMt Zjk4OGQ0OGU1MWU4LzEvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy9mY2ZlYzctZDZjMy00YjQwLWJhMmMtZjk4OGQ0OGU1MWU4 LzEvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlCJ2Gzyt 8qxXx3wx44JvCWO0W6ONR5ZEkNtMZL7f80ATsQXfR2K6tyYdwd0NZ1f92Q3ter9/ CsXB2UzTa0RW0z0KiCz5odQhD1Ya1f4/cXNixbtXGYf748cQbsWQxLQ5flpbDN9Z GObSHVcE7V4wmhi0h99w4czXC2WZJdQBJa3ybZ1djUGCXgreZ9MIcZnuse96LHBv 3gCxa47A2HGipaL1JF6tV3Eq5yqJG+8tVjxe4MzkNzq43v5IMbgTDogKjG7ZtFd8 C4Vj3/NWeIf7uuiSOZAMt65OnAuDp2gGZaPca468HQzXgqP8hlrhxM3LAxwe1NzJ V0Hrk7vX41EBzg== -----END CERTIFICATE-----Generated at Sat Jun 20 17:58:15 2026 by rpki-client