$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.mft File: xqJJoOrNiry-oNgu9xAW04bo75Q.mft (raw, json) Hash identifier: 9oSLOnmH04xwIpRG5ZAI8jlOpfqVe+GkgyVcbcYXopA= Subject key identifier: D3:F0:58:09:4A:56:75:12:BA:FA:34:5F:A0:C2:D0:11:1A:87:CF:BA Authority key identifier: C6:A2:49:A0:EA:CD:8A:BC:BE:A0:D8:2E:F7:10:16:D3:86:E8:EF:94 Certificate issuer: /CN=c6a249a0eacd8abcbea0d82ef71016d386e8ef94 Certificate serial: 019E2AD32B432AE042A82C71932CC9239429 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.mft Manifest number: 1997 Signing time: Fri 15 May 2026 08:49:02 +0000 Manifest this update: Fri 15 May 2026 08:49:02 +0000 Manifest next update: Sat 16 May 2026 08:49:02 +0000 Files and hashes: 1: 2c-E5BZdiwqZ2Q-DnytRU90rLWI.roa (hash: +KiT1wYNU4xT/dbPCwls8LNvm2nJx4GyHtaKqzRjkQI=) 2: 2g3YqagtveoXivlimUOijGK4Sw4.roa (hash: ygC6oN+dOsYHf4Cjh6O/E1qqcFKMCRFPzFyAC5l12yw=) 3: 3PGjkw7toxO4JJo4L20eAEq8JCk.roa (hash: XGIyqoiQ99ZkxkY7UPrLmpo2Qa1aQBqIQ0vjwczRkOk=) 4: 5B28Ei4KPuBfMPCYz_CdjunmzfA.roa (hash: Fh0fY9vBoWA1h/GgmdDXwKoDcv0YIku/VzyUipmtScY=) 5: 65v9LHi_MDiJFfxsRpTQKZGQtKQ.roa (hash: AD4zC7meiWbh1Y7ei46GISC0uTS4fKqWlAroEgp7qMg=) 6: AT7FQLG2UUjyo3d4e6IRvENj5-w.roa (hash: gZF293cO6fOokcvSru3HZunk3gWSY7f3PELfdlKOb8E=) 7: DeLLhmnL8UGopy5KKmx7aJEcegM.roa (hash: MiHnbQkuo0f/Ih4buFqhTcosJDlqA6PQQ++HZPqmd5w=) 8: ElfbXSGIDiSMTPPlbo6V-o0SRuY.roa (hash: lKK5rdzCjZE0+7rICMxRWAfKpw9HWxpCs96nQPbHzso=) 9: F3V6NHBiFLHYH9kCeJ_cphI6VuI.roa (hash: S7WFcWfal2pVRy/GM+kUJ9lEuF9xQr0ct0tz3YBvyhU=) 10: GzFILLIkAaT9aB9CvnWDZTFwbdY.roa (hash: Wm6rCP0d9sgkyPeTHrd7psMD7wjPvGW5jHpasqKACzk=) 11: Hzswp8TTjFLBLtq_0yz3CxRyH5I.roa (hash: MP4gqKAVDOE83sn9DN5h59teDQEElcryGm3TvZLWgnM=) 12: JKIHwL24wYeRbIQkMf1HZ6STLiI.roa (hash: sDMrJ8+x30BMRZ/quC856/uc/e00xr9A8ozSxWzFDVw=) 13: Oznd7O4v0fl0yKCvpuYhUuQ7204.roa (hash: ldWUtJPO/Fk5ou2pZE7B4or/0nqqkTNzZKegpBoxYyE=) 14: PS9MTZzdBifx0im1Vrq3VgjsS5s.roa (hash: 0ux5UJNrhxWM198AZ/GNCpoKgSg8gWm9eiQUOhAki7I=) 15: TpP8go9gxjsA4n1kC2kuJQbokBE.roa (hash: 7lExTFrNOgtfm66T9jsBGx9Cjl+c6H6zYjBrnH5qrXg=) 16: Vrmk2bULiTNAA5JeOQZ33ec3wXc.roa (hash: l2T4AkC8bheD2TY5DDvz9/5pBIbrm/A780nuw41Lr6Y=) 17: dANCF-_ELvUXZe_N9iPSiuIBUYs.roa (hash: L7tV/7qxxRlCHwy6Cmc9dl/HlJ9PPDTVkduSLInAUZ0=) 18: gMYRXePhXBj5QEchP90fA4n6PTI.roa (hash: n3t3ay/80ZRLXPkmrmKkNg7PYGv+vXmzByKb6p1QvZ8=) 19: hbdbuaRvg2tTLKp10GziAeSgyRU.roa (hash: H+cM7/5ALMd58f/dYxV/Q5+dv/fO2eB8PR2xGdT8ZXc=) 20: iE31HcpgdKKrdPMldO0jIS93Go4.roa (hash: q2vi84j7Hjeqqy/+pd9xsj/QdQIOk9oRPO1utxPcNqU=) 21: llmpvsJp6iJllq8aPzCHiXy7pDI.roa (hash: DANl4OSIWpehyMk+CpY4YG/h/rDOrMDg4VQVT2cFg7g=) 22: mccO93c7K5NtlXGtNCpYDCBgqEo.roa (hash: DZ0UFzP9xfuYksTTPV2SFmxQJ2jKhIpRMqx1kEHoKiQ=) 23: ms0wuT7v6-h1UgnL6n_jgWkOkVU.roa (hash: QBEq8rCcXKzWf4ULJs+y+Nad4kF1AXFNATRKBuEGesA=) 24: nm-KZislIGz6wosxLU6C90OgEBY.roa (hash: eiBhQ/2d82wkJoJ8lwkynR/qT2+hnESyOr9AACLRf+E=) 25: ugtI-QyWNOjJ59RgJ8WbbnFfW4U.roa (hash: aT3mMJhpwKfI0RkCBtFq/BKu85xA6+3aVTdjvSvqPZQ=) 26: uyP_T_ZNO5QRKpx11_xHu9AQ3vA.roa (hash: 4MPXntavfi6oMCmbe9KLHapS2+uyKRzkwiw4RYfiFvY=) 27: w6gmNc7f_bvjPNIJjuhS3RSIpZQ.roa (hash: GdBjwBkJ4iGW3k1Xd7AiPym4634yoaPZu5TSA3ZGyx8=) 28: xqJJoOrNiry-oNgu9xAW04bo75Q.crl (hash: 8ZEeBpS3HZv+UGSGZwgxUM0Z5FI7n7KfIfCfzjoJo2w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.mft rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 16 May 2026 02:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:2a:d3:2b:43:2a:e0:42:a8:2c:71:93:2c:c9:23:94:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c6a249a0eacd8abcbea0d82ef71016d386e8ef94 Validity Not Before: May 15 08:49:02 2026 GMT Not After : May 16 08:49:02 2026 GMT Subject: CN=d3f058094a567512bafa345fa0c2d0111a87cfba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d3:8b:b5:b3:07:68:d2:6f:37:92:b1:da:bd: 0c:43:dc:22:33:69:60:5b:46:ba:f5:d2:bc:99:17: f3:f1:88:be:56:1c:ed:d7:0a:df:d0:05:82:35:ba: 8b:78:a2:90:e3:a2:a0:7d:fc:0e:06:4e:be:4f:ca: e7:23:94:ed:cc:55:4f:4e:c4:8c:ce:0e:59:75:0c: 29:02:eb:e2:d9:8c:0c:47:d7:27:ed:31:34:66:84: eb:a9:81:e8:6b:21:66:d2:8a:f3:41:5f:d6:65:6f: 45:70:ae:42:f0:06:8d:66:3a:04:f3:fc:a3:0a:83: d7:95:59:4e:6a:01:ae:7e:a8:0a:32:5a:5d:2a:13: f7:49:fc:9f:45:bd:bb:2e:54:8c:b5:98:0d:e5:5d: 35:66:17:c2:6a:ae:a0:65:9c:bd:43:91:f5:84:98: a8:06:5d:8b:09:56:a0:32:cc:01:09:b6:c4:6c:94: e6:8e:34:17:e1:2e:7e:82:c9:6c:d4:d4:48:22:b7: 47:78:ed:71:d3:a4:04:c5:35:42:db:cc:aa:9f:e8: f9:a3:e3:e9:9a:a1:b9:33:e7:cf:b8:eb:1f:68:cc: 41:99:57:ab:6b:cb:f9:1a:0e:f9:47:bd:48:45:18: ca:96:95:fb:7f:1d:9a:6f:ea:29:0e:68:2a:69:62: 00:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:F0:58:09:4A:56:75:12:BA:FA:34:5F:A0:C2:D0:11:1A:87:CF:BA X509v3 Authority Key Identifier: keyid:C6:A2:49:A0:EA:CD:8A:BC:BE:A0:D8:2E:F7:10:16:D3:86:E8:EF:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:10:9d:af:8f:67:f9:18:70:03:0f:7c:4a:24:f0:59:a0:64: fc:23:b5:21:1d:a1:df:5e:51:b6:52:cf:28:25:42:e2:27:44: 85:13:72:14:a4:26:b9:a6:74:9c:ed:a5:f4:ca:4d:bb:cb:b0: 4a:de:c4:4f:bd:d8:41:ff:0a:a6:91:68:59:40:b6:04:f8:1c: 62:2b:07:42:d8:75:47:fa:db:39:10:ce:fc:4c:3a:df:e3:49: ae:ac:65:77:ff:19:db:2c:d9:e4:d9:32:1e:f1:2e:ec:dc:96: e8:08:bb:e8:b2:39:b0:1d:11:c7:ea:ba:99:20:78:87:2c:c3: 44:21:b1:ed:96:16:49:b1:e8:7f:67:6a:74:66:85:5a:45:73: a3:b3:c9:27:28:b0:5f:88:8b:46:5c:93:6d:1b:1a:d8:d0:3e: e9:8e:a3:f8:83:86:d8:0a:99:43:2c:c4:a7:d9:16:2a:88:9b: e2:9a:c0:29:55:ca:87:7d:05:3c:fd:24:a1:1f:e5:08:84:26: 33:b9:8d:de:26:e2:fe:ce:0b:73:72:b1:f0:7e:5f:eb:4e:4a: 89:77:c7:e9:f3:2f:8e:66:3c:2f:f1:67:30:18:f9:2b:da:c8: b1:6e:22:c4:5b:d1:75:e7:86:b7:f8:19:61:f5:0d:61:e9:5a: bb:ac:a4:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4q0ytDKuBCqCxxkyzJI5QpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2YTI0OWEwZWFjZDhhYmNiZWEwZDgyZWY3MTAxNmQzODZl OGVmOTQwHhcNMjYwNTE1MDg0OTAyWhcNMjYwNTE2MDg0OTAyWjAzMTEwLwYDVQQD EyhkM2YwNTgwOTRhNTY3NTEyYmFmYTM0NWZhMGMyZDAxMTFhODdjZmJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxNOLtbMHaNJvN5Kx2r0MQ9wiM2lg W0a69dK8mRfz8Yi+Vhzt1wrf0AWCNbqLeKKQ46KgffwOBk6+T8rnI5TtzFVPTsSM zg5ZdQwpAuvi2YwMR9cn7TE0ZoTrqYHoayFm0orzQV/WZW9FcK5C8AaNZjoE8/yj CoPXlVlOagGufqgKMlpdKhP3SfyfRb27LlSMtZgN5V01ZhfCaq6gZZy9Q5H1hJio Bl2LCVagMswBCbbEbJTmjjQX4S5+gsls1NRIIrdHeO1x06QExTVC28yqn+j5o+Pp mqG5M+fPuOsfaMxBmVera8v5Gg75R71IRRjKlpX7fx2ab+opDmgqaWIADQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNPwWAlKVnUSuvo0X6DC0BEah8+6MB8GA1UdIwQY MBaAFMaiSaDqzYq8vqDYLvcQFtOG6O+UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveHFKSm9Pck5pcnktb05ndTl4QVcwNGJvNzVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC8zMGYxODYtOTBlMi00Y2E2LTkxN2Ut MjEwNTdkMjI4ZDA1LzEveHFKSm9Pck5pcnktb05ndTl4QVcwNGJvNzVRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC8zMGYxODYtOTBlMi00Y2E2LTkxN2UtMjEwNTdkMjI4ZDA1 LzEveHFKSm9Pck5pcnktb05ndTl4QVcwNGJvNzVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfhCdr49n +RhwAw98SiTwWaBk/CO1IR2h315RtlLPKCVC4idEhRNyFKQmuaZ0nO2l9MpNu8uw St7ET73YQf8KppFoWUC2BPgcYisHQth1R/rbORDO/Ew63+NJrqxld/8Z2yzZ5Nky HvEu7NyW6Ai76LI5sB0Rx+q6mSB4hyzDRCGx7ZYWSbHof2dqdGaFWkVzo7PJJyiw X4iLRlyTbRsa2NA+6Y6j+IOG2AqZQyzEp9kWKoib4prAKVXKh30FPP0koR/lCIQm M7mN3ibi/s4Lc3Kx8H5f605KiXfH6fMvjmY8L/FnMBj5K9rIsW4ixFvRdeeGt/gZ YfUNYelau6ykoQ== -----END CERTIFICATE-----Generated at Fri May 15 11:18:41 2026 by rpki-client