$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft File: aZHFbxGnFxxhUyOXafVXvroQGC0.mft (raw, json) Hash identifier: hpIy4i7yLI3hClBvwKfbVyPqiUtAK8s98i4nMlV7L8s= Subject key identifier: C4:B5:6C:B9:A3:F2:0C:8D:7A:85:74:4B:FB:73:B6:C4:A9:3E:1D:19 Authority key identifier: 69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D Certificate issuer: /CN=6991c56f11a7171c6153239769f557beba10182d Certificate serial: 019DAFFA42650A2C32206CD59F72D559B51A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft Manifest number: 0C55 Signing time: Tue 21 Apr 2026 12:18:26 +0000 Manifest this update: Tue 21 Apr 2026 12:18:26 +0000 Manifest next update: Wed 22 Apr 2026 12:18:26 +0000 Files and hashes: 1: 0detsVv3VnmYHeQurxCIjBtID8c.roa (hash: 0pX6b3eXTKL9E1Fk4JhvGHfk6VrtSr0roszLfXSq758=) 2: 0z8pTI41iPuVrCQVQ1wuJedcLng.roa (hash: e+SXHoPepQrK1mT7vZuMdVv/Sb/mCHdwtmRTk5f2KY0=) 3: 1-1lvKVidMjz9SqtbPt81s0r7r0I.roa (hash: ZlBElaLY1A20NV3b70L3QV0eyy9Ku8m61r7maErkkKY=) 4: 2_-FI-AoJnOM9FRj9JIZ87TxIGU.roa (hash: fYqLfLAgXXv2j6Hlh2bmzcVErlr45q7qc3mJo6wcwjY=) 5: 38r2X0leHHTAmJ6zVJSwuzoD2E0.roa (hash: uyTAZ2GgNW9/wIH0EkQGQyRV3AY/RO2eHsNraGcFPPk=) 6: 3PUBNkz9FwV2NNGvr5c1xPHsrKs.roa (hash: Iue6j8hQXBufFHKI47UYN7vcS1Nx2fj3o4JuzfixAMQ=) 7: AJ3MwDklWh6RGcZWO3B6VDqJAJY.roa (hash: Yuib442tbLdb8BWpxFaa8rNZZob81Q5G+L93ljA7GLg=) 8: BK8IgDa2YWfH15KeQoypNaZ7M18.roa (hash: 6BpUvOIxTW0cg027WM/QNtn7tQ+zM4t80RnLiUv7sIs=) 9: CZCLA3Cj6YYp_k_a7y0b2rbgyzo.roa (hash: SaDoVmzs9e3hbWzh+uCnOLVQP2mnuXiNzqqPyyTBq2o=) 10: F0KEI4lW7Epb_3eoekIpwBqbc2E.roa (hash: UC+E/xpST3sk4LrjHrlkIcP31YMZn/3d6DZdEgG8Rdg=) 11: FQ6e3qLq07N7c6vb8xSdMPOMvJc.roa (hash: jL7hfr1fG9q8Db+UI2ObK7nG/hXNzIiR02v0n72Zs0Y=) 12: JrpsDD8G_9HrVRADrUGdVzpQ0GM.roa (hash: PfSJmHGRfRFt+GOTf/z8aUHtcRQ35VQoUt2Ubm4KDs4=) 13: Latg5HfFxVV45cY_wXpQ9M7y2UM.roa (hash: AMl3v5ozRzV/5w1KglWOLAOe0okRBu64taR6MmvtD44=) 14: N0sDm-EFGV2amFYWHwErrX3Dbus.roa (hash: Xmo1dvVrCIWSNTaeVoMmKU+6tNLC/YtQosQjQwiD/3c=) 15: UypHuJtN1zmqt0Zba9DljNJ2WgY.roa (hash: PFDshKDp/mzgsdaZsjSV8dCLT3xJ6p+HUpwQxcGrMuI=) 16: _opU9Zflr19Qgw9wxcT5CzBzFeE.roa (hash: hVBzTOs1aH7AxZYfWOOyLBurJardjc8RPMc3Hjjv5+g=) 17: aZHFbxGnFxxhUyOXafVXvroQGC0.crl (hash: NQdaOy9khsLx/6C4jallmWwTo8cdL1HH8B6gJBxK38c=) 18: aqPgWOakmp5fii05oBo6v_tlmAQ.roa (hash: 4j9frFtx7FlfahOenBDreDRrYBvvkfNPAcv1Ywz2/HM=) 19: enYE37jQOciNrH4vp2_3FdUT0io.roa (hash: PoAlpwtftho9gluuF95P6FYOuD1hDRKv7R9Nta21XGo=) 20: fzJn3KF8bcdzSxxYVGgg9WhSu_Q.roa (hash: F8Y+icGMTI8B4xLO/6DQSh7tnQktMHf3JcYVYNoK3Qo=) 21: j6F5nKl7VxhTCPP7Z6aypppg1qg.roa (hash: b/KmdMBh7vGAQW3XZYIqLqb1iW1YZRpjzYx/XN6MR5Y=) 22: j6ZEfuBoBwoJsq_P8O7JAQCMW2w.roa (hash: SGo/KKeiXkzjoKtnxVRa/5ncyP+lv+PUCdh1kKaxLxc=) 23: j6h2wYXBGU0po-975zEbDRhXVP8.roa (hash: VuTt2+GtidZibv9WAUHaogEOazxD2GyG76InT6TAm6k=) 24: l7FVy9qV9r7TJi_Vr2KpMSypfts.roa (hash: BO7WgU3AlrlmLiXeaJCpacGRr3Q1uOzmvzOfD3QKH6s=) 25: nFU8l0SuNs4mLVgObqGXtp6gnoI.roa (hash: dp4PPf/CcvyLdCI3a30WQB7bcOJJ7sLxhjedTuWlcA0=) 26: oIuhu7p6aWmfRWyHDTYYujSpvBg.roa (hash: N6w5aijddF5a+28/lsfmW9lIDEzr9ob0acHLJcTeo5w=) 27: ol5o-VeacDxR8G56FJbb2bssCJU.roa (hash: HWf9NNfp469bQ5Wf7jn4TMJbz+S/ZW2Aq8n1tyLEU+8=) 28: qBWm7A0WS3zBN-JGFS-9sK_Eh6w.roa (hash: 4LBBNQp4gDvDBqUejc/thQ1e9DZu2ZKGjdRJpeYildA=) 29: qJ6pc4FQIOGrKblUrmzqpKhY1W8.roa (hash: h1N79r6IwikpSxLGbvCodpvdgy0jF1MGCYu94qAhjf4=) 30: s5_XzwQfnjREeGyxGEXKHTbuCec.roa (hash: f2LNPZwtscDHDTcGq3OeJusAQETPe2+DG2C2X0YawWI=) 31: t9VfVoic7D0Eb12yRbnLassyYY8.roa (hash: OIvXTMlAaBLVGYWH+/8UMptxQ45gYDbOsCNpVMjE62A=) 32: tEnzcmF181z_Fz4dFzQyfZ882o4.roa (hash: RBYNG12SzCTfXGwx/F5qbQVTQCBmyDYwNw6MWUM/ecc=) 33: txBk-VXH5xe4UoDume1p4XjQxe8.roa (hash: fvggVxYxk2NuJg8YSSyrCKqxJryG0wPDwlaCqOHmZFc=) 34: uBIYg6HBl9Jf8Kf0_1APF11RXj4.roa (hash: Cy62Nntc/tzkP5N8nJbuKZSP38j9mL0EAGyc0aabhl4=) 35: wTgQ6fCMDPpS81pwpnjiyHzyTpc.roa (hash: ixnoZEKtVyJai2PVSvQa52pLsUnTfY2h9ItkAule9hg=) 36: y6XyUstS_SjZUuRcmwKI2O2hK4g.roa (hash: 6KaNgtch9hdulImqbKsvBI0tlfN0LaRnEF0phbzSwYg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 22 Apr 2026 12:18:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:af:fa:42:65:0a:2c:32:20:6c:d5:9f:72:d5:59:b5:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6991c56f11a7171c6153239769f557beba10182d Validity Not Before: Apr 21 12:18:26 2026 GMT Not After : Apr 22 12:18:26 2026 GMT Subject: CN=c4b56cb9a3f20c8d7a85744bfb73b6c4a93e1d19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:66:af:0a:e0:6b:45:04:4a:d2:d6:25:bf:53: 40:ad:23:c7:6c:b4:6a:0d:7a:11:66:5c:80:45:d8: b0:80:a8:67:3a:18:29:1f:14:35:4b:1c:3b:ec:1c: 2d:bf:d1:05:88:07:e4:c7:c0:7d:ef:70:7c:d7:80: b1:f7:e3:ee:13:7c:47:56:c0:1d:9b:fb:4f:7d:95: b2:8e:85:9b:e5:52:3d:55:a8:41:5a:bd:c4:e6:98: 2b:ca:d8:9a:32:1e:97:87:f0:53:56:e2:8a:55:ee: a0:7f:28:4f:6b:30:52:ee:30:27:a4:16:44:31:ff: 28:92:0f:f4:56:39:b9:93:43:14:48:d5:f4:8c:93: f9:76:80:fd:6d:93:44:d9:99:0b:e4:94:20:7c:6a: 0c:1c:45:0a:66:63:30:be:4a:10:d8:2f:91:dd:64: 2f:ce:65:33:57:75:8e:c5:9c:35:24:92:c8:07:b3: 92:1b:3b:c9:5d:56:55:5c:01:b8:b1:26:a5:59:ee: 51:90:83:b9:f4:bc:46:4b:c0:04:96:ed:44:30:ff: 75:68:00:dd:ae:dc:b8:6f:9f:2e:53:c7:31:35:96: 9f:2d:54:1d:98:e9:d8:19:dc:d6:21:2d:9f:67:94: aa:89:82:a8:06:a1:87:fa:84:e6:b2:e7:d1:73:81: 37:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:B5:6C:B9:A3:F2:0C:8D:7A:85:74:4B:FB:73:B6:C4:A9:3E:1D:19 X509v3 Authority Key Identifier: keyid:69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:ca:da:df:cd:4d:a5:39:93:c6:28:bb:5f:28:bc:d7:91:1c: 58:8d:24:d8:25:c5:76:90:7f:6a:9c:75:c1:ad:25:69:e6:0a: 62:11:b1:e1:cd:d9:6d:ed:a9:8f:25:8c:b5:84:43:af:1e:c0: 68:5c:49:67:5a:e6:fb:58:77:ea:71:bc:5a:29:51:7c:8d:37: 5f:06:4d:a1:c9:37:d2:56:02:29:90:da:c8:01:a0:ca:28:60: a2:60:cb:41:0a:1e:4f:ba:52:03:70:d7:da:d4:4a:46:02:40: 08:90:60:52:29:9e:5f:bc:64:56:1f:b2:30:d6:29:c8:08:43: 2e:b7:17:e5:a1:3b:8d:8d:cf:c9:70:d0:73:a0:27:e9:38:44: 62:63:a1:4f:75:78:7c:fb:19:35:c3:12:fe:3f:f3:93:73:91: 30:8a:70:23:4e:e3:90:9c:8a:9b:41:93:ec:ca:13:24:0c:6d: c1:7e:4d:b5:18:e0:77:bd:bd:f1:29:f3:75:f5:26:98:42:21: 68:f2:de:2f:16:87:2f:e9:64:cd:50:77:bc:d2:c2:60:ff:6c: be:52:7d:5e:f7:5f:2a:14:e5:1e:7a:bf:8d:25:f0:1a:c6:59: a5:2a:74:2f:98:e9:a8:9e:5c:e4:1d:c5:99:d6:73:c4:74:26: 55:66:ff:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2v+kJlCiwyIGzVn3LVWbUaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5OTFjNTZmMTFhNzE3MWM2MTUzMjM5NzY5ZjU1N2JlYmEx MDE4MmQwHhcNMjYwNDIxMTIxODI2WhcNMjYwNDIyMTIxODI2WjAzMTEwLwYDVQQD EyhjNGI1NmNiOWEzZjIwYzhkN2E4NTc0NGJmYjczYjZjNGE5M2UxZDE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyWavCuBrRQRK0tYlv1NArSPHbLRq DXoRZlyARdiwgKhnOhgpHxQ1Sxw77Bwtv9EFiAfkx8B973B814Cx9+PuE3xHVsAd m/tPfZWyjoWb5VI9VahBWr3E5pgrytiaMh6Xh/BTVuKKVe6gfyhPazBS7jAnpBZE Mf8okg/0Vjm5k0MUSNX0jJP5doD9bZNE2ZkL5JQgfGoMHEUKZmMwvkoQ2C+R3WQv zmUzV3WOxZw1JJLIB7OSGzvJXVZVXAG4sSalWe5RkIO59LxGS8AElu1EMP91aADd rty4b58uU8cxNZafLVQdmOnYGdzWIS2fZ5SqiYKoBqGH+oTmsufRc4E3hQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMS1bLmj8gyNeoV0S/tztsSpPh0ZMB8GA1UdIwQY MBaAFGmRxW8RpxccYVMjl2n1V766EBgtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYt NjVkMTU2NzM0MGZkLzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYtNjVkMTU2NzM0MGZk LzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARsra381N pTmTxii7Xyi815EcWI0k2CXFdpB/apx1wa0laeYKYhGx4c3Zbe2pjyWMtYRDrx7A aFxJZ1rm+1h36nG8WilRfI03XwZNock30lYCKZDayAGgyihgomDLQQoeT7pSA3DX 2tRKRgJACJBgUimeX7xkVh+yMNYpyAhDLrcX5aE7jY3PyXDQc6An6ThEYmOhT3V4 fPsZNcMS/j/zk3ORMIpwI07jkJyKm0GT7MoTJAxtwX5NtRjgd7298SnzdfUmmEIh aPLeLxaHL+lkzVB3vNLCYP9svlJ9XvdfKhTlHnq/jSXwGsZZpSp0L5jpqJ5c5B3F mdZzxHQmVWb/Zw== -----END CERTIFICATE-----Generated at Tue Apr 21 22:33:39 2026 by rpki-client