$ rpki-client -vvf krill.rg.net/repo/rpki-beacons-ca/0/656E4422ABF129649200EB019A815F2B12236E92.mft File: 656E4422ABF129649200EB019A815F2B12236E92.mft (raw, json) Hash identifier: IHQ/6bnih/FgeOSJalySN2e07mD7em3apEwSY7r5h7Q= Subject key identifier: 9C:DB:A1:BC:27:C0:6D:23:0B:FD:A8:0D:E5:3B:99:59:4D:DD:2A:CF Authority key identifier: 65:6E:44:22:AB:F1:29:64:92:00:EB:01:9A:81:5F:2B:12:23:6E:92 Certificate issuer: /CN=656E4422ABF129649200EB019A815F2B12236E92 Certificate serial: 4C6174D969EEB02902293D41C8D47942D35C0D69 Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/ZW5EIqvxKWSSAOsBmoFfKxIjbpI.cer Subject info access: rsync://krill.rg.net/repo/rpki-beacons-ca/0/656E4422ABF129649200EB019A815F2B12236E92.mft Manifest number: 02AB Signing time: Wed 17 Jun 2026 04:02:29 +0000 Manifest this update: Wed 17 Jun 2026 03:57:29 +0000 Manifest next update: Thu 18 Jun 2026 06:54:29 +0000 Files and hashes: 1: 34352e3133322e3139302e302f32342d3234203d3e2030.roa (hash: BZJT8EbwRaDxjL7KKjabnaQJK3brt6+TkqqK548Wl2g=) 2: 656E4422ABF129649200EB019A815F2B12236E92.crl (hash: RTUoSOQ0HKnTPJgD+U06d1WzIQ6lwPMdF+Os2deFpxg=) 3: 34352e3133322e3139312e302f32342d3234203d3e2033393730.roa (hash: Oy1mSyisXYrn3vcoOGy6axMtnSIX1xCofVEIpBbtceA=) 4: 3134372e32382e31302e302f32332d3234203d3e203437303635.roa (hash: +6IGfj4KE5Fon357Mz4hY46Lj0lkrQVIhXV3Upqg2+Y=) 5: 3134372e32382e31302e302f32332d3234203d3e2039343334.roa (hash: JX8MZMidVpDvMl1kvP+85ppT/iMcv1vVMBW6voLjwXs=) Validation: OK Signature path: rsync://krill.rg.net/repo/rpki-beacons-ca/0/656E4422ABF129649200EB019A815F2B12236E92.crl rsync://krill.rg.net/repo/rpki-beacons-ca/0/656E4422ABF129649200EB019A815F2B12236E92.mft rsync://ca.rg.net/rpki/RGnet-OU/ZW5EIqvxKWSSAOsBmoFfKxIjbpI.cer rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.crl rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.mft rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Jun 2026 12:18:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:61:74:d9:69:ee:b0:29:02:29:3d:41:c8:d4:79:42:d3:5c:0d:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=656E4422ABF129649200EB019A815F2B12236E92 Validity Not Before: Jun 17 03:57:29 2026 GMT Not After : Jun 18 06:54:29 2026 GMT Subject: CN=9CDBA1BC27C06D230BFDA80DE53B99594DDD2ACF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5d:11:ca:b0:fa:95:0c:40:25:8c:e0:74:8c: bd:d8:c4:02:7a:bf:22:81:0a:89:9d:b5:a8:ba:19: 18:d1:8b:d2:9e:ff:25:e3:1a:b6:55:0f:6e:e7:cb: 44:9e:2b:b2:d9:e1:f9:9d:a6:d1:36:5b:42:60:85: c7:a2:80:12:d9:22:88:7b:4b:4d:c5:e1:9e:37:53: 1c:62:e8:b0:a6:82:e8:c1:56:8e:ba:f6:e5:13:09: eb:a5:6a:f4:b8:78:61:f1:ee:ad:72:92:a9:40:99: a9:43:68:f5:f8:a6:5b:26:68:66:e2:2b:20:13:b8: 37:26:9c:6e:7e:8f:e0:cb:1e:ae:67:ce:d1:f1:d7: 61:8e:10:5b:62:37:91:be:c5:e4:57:d4:9d:a8:04: f2:90:e6:83:2a:46:84:e8:84:01:e8:a2:39:ad:46: 69:bb:72:15:0c:5d:9b:59:65:f3:1c:dc:94:ba:b0: 88:d4:24:66:38:06:d2:1b:28:db:34:e6:e2:c9:ed: 05:9c:01:b4:da:b0:eb:1c:75:a5:37:79:1e:cc:3a: ff:76:95:6c:3c:e3:80:cf:cd:e0:4c:40:a2:cc:c6: e6:83:51:62:26:f4:b7:ff:03:01:46:1f:e9:4d:b8: ab:b2:60:83:0e:72:5c:e4:f0:84:da:5a:c8:e8:24: f6:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:DB:A1:BC:27:C0:6D:23:0B:FD:A8:0D:E5:3B:99:59:4D:DD:2A:CF X509v3 Authority Key Identifier: keyid:65:6E:44:22:AB:F1:29:64:92:00:EB:01:9A:81:5F:2B:12:23:6E:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.rg.net/repo/rpki-beacons-ca/0/656E4422ABF129649200EB019A815F2B12236E92.crl Authority Information Access: CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/ZW5EIqvxKWSSAOsBmoFfKxIjbpI.cer Subject Information Access: Signed Object - URI:rsync://krill.rg.net/repo/rpki-beacons-ca/0/656E4422ABF129649200EB019A815F2B12236E92.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:44:85:ab:29:bd:0b:a0:ea:cd:40:e5:20:75:3d:3b:c3:40: 99:dd:c5:68:e1:31:81:ae:af:78:44:30:63:1e:b1:ac:b4:b4: 7c:3d:f8:80:0a:25:e4:34:8b:b8:25:31:69:07:60:c4:d7:43: de:24:33:8d:43:56:88:39:43:a2:7d:ff:cf:0d:16:81:2b:2e: 76:d3:9f:d1:75:5b:06:f7:53:93:cf:82:3a:bc:a3:c5:7f:2a: 18:04:9b:bd:47:d4:65:6c:87:eb:ee:b6:e9:ae:ee:52:61:2c: b8:2d:e9:14:99:9c:8c:62:da:f9:99:f1:24:18:9a:36:b9:22: 14:51:8c:c1:df:28:9d:b2:ee:69:30:61:76:bb:c7:8d:d5:76: 7e:c1:d3:88:e8:59:23:84:bc:b9:bc:6b:a0:e7:e9:e8:f1:d8: a6:b3:5b:ac:f7:ba:c9:81:4d:2e:56:27:48:bc:98:be:f8:6b: c1:e0:fd:32:27:fd:91:82:b6:31:31:e7:f1:5a:30:a4:d7:d3: 29:b7:6f:f3:82:f3:23:7f:c3:50:a7:fc:c7:fa:36:42:68:97: 04:cc:a6:41:f6:09:77:fd:63:dd:d9:d8:06:5e:f2:2d:cf:97: a0:e1:c4:5e:75:b1:99:cf:83:61:01:85:42:76:36:a9:36:ce: 79:03:6f:f2 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUTGF02WnusCkCKT1ByNR5QtNcDWkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU2RTQ0MjJBQkYxMjk2NDkyMDBFQjAxOUE4MTVGMkIx MjIzNkU5MjAeFw0yNjA2MTcwMzU3MjlaFw0yNjA2MTgwNjU0MjlaMDMxMTAvBgNV BAMTKDlDREJBMUJDMjdDMDZEMjMwQkZEQTgwREU1M0I5OTU5NERERDJBQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKXRHKsPqVDEAljOB0jL3YxAJ6 vyKBComdtai6GRjRi9Ke/yXjGrZVD27ny0SeK7LZ4fmdptE2W0JghceigBLZIoh7 S03F4Z43Uxxi6LCmgujBVo669uUTCeulavS4eGHx7q1ykqlAmalDaPX4plsmaGbi KyATuDcmnG5+j+DLHq5nztHx12GOEFtiN5G+xeRX1J2oBPKQ5oMqRoTohAHoojmt Rmm7chUMXZtZZfMc3JS6sIjUJGY4BtIbKNs05uLJ7QWcAbTasOscdaU3eR7MOv92 lWw844DPzeBMQKLMxuaDUWIm9Lf/AwFGH+lNuKuyYIMOclzk8ITaWsjoJPaDAgMB AAGjggHmMIIB4jAdBgNVHQ4EFgQUnNuhvCfAbSML/agN5TuZWU3dKs8wHwYDVR0j BBgwFoAUZW5EIqvxKWSSAOsBmoFfKxIjbpIwDgYDVR0PAQH/BAQDAgeAMGkGA1Ud HwRiMGAwXqBcoFqGWHJzeW5jOi8va3JpbGwucmcubmV0L3JlcG8vcnBraS1iZWFj b25zLWNhLzAvNjU2RTQ0MjJBQkYxMjk2NDkyMDBFQjAxOUE4MTVGMkIxMjIzNkU5 Mi5jcmwwWwYIKwYBBQUHAQEETzBNMEsGCCsGAQUFBzAChj9yc3luYzovL2NhLnJn Lm5ldC9ycGtpL1JHbmV0LU9VL1pXNUVJcXZ4S1dTU0FPc0Jtb0ZmS3hJamJwSS5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL2tyaWxsLnJn Lm5ldC9yZXBvL3Jwa2ktYmVhY29ucy1jYS8wLzY1NkU0NDIyQUJGMTI5NjQ5MjAw RUIwMTlBODE1RjJCMTIyMzZFOTIubWZ0MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADAVBggrBgEFBQcB CAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCkRIWrKb0LoOrNQOUgdT07 w0CZ3cVo4TGBrq94RDBjHrGstLR8PfiACiXkNIu4JTFpB2DE10PeJDONQ1aIOUOi ff/PDRaBKy5205/RdVsG91OTz4I6vKPFfyoYBJu9R9RlbIfr7rbpru5SYSy4LekU mZyMYtr5mfEkGJo2uSIUUYzB3yidsu5pMGF2u8eN1XZ+wdOI6FkjhLy5vGug5+no 8dims1us97rJgU0uVidIvJi++GvB4P0yJ/2RgrYxMefxWjCk19Mpt2/zgvMjf8NQ p/zH+jZCaJcEzKZB9gl3/WPd2dgGXvItz5eg4cRedbGZz4NhAYVCdjapNs55A2/y -----END CERTIFICATE-----Generated at Wed Jun 17 08:58:17 2026 by rpki-client