$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft File: bSDd05jayPYswSUmMl8YIftyT3U.mft (raw, json) Hash identifier: wsV2OOXwQp8z3AGzi/pF1Kxfy4xnYzmHyhk+sbs6PxY= Subject key identifier: 20:C1:E9:B3:BF:BD:1D:51:EF:B1:65:B4:88:91:D6:89:B5:4E:BF:66 Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Certificate serial: 019D999927D3378221E92CF23E0418FEBD63 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft Manifest number: 17DB Signing time: Fri 17 Apr 2026 04:00:44 +0000 Manifest this update: Fri 17 Apr 2026 04:00:44 +0000 Manifest next update: Sat 18 Apr 2026 04:00:44 +0000 Files and hashes: 1: 9xgiRaoDHZpfEWCuWGLVozZH1gk.roa (hash: v8wEhG7uE5X+Pic34dsR8NNSQFk/2P4s8T0Y6bprmWQ=) 2: Aq5wESOUolAkTosvnE7ETStDfyU.roa (hash: yfEBzyPkUQCnnTcx22tGTzIIsK+Ma5c/+X+c6Yry/fU=) 3: B3ZlbL4gU6mGNdfE7GNgbCqsduM.roa (hash: 0PhXlz7OHulz176DWbBx9T4BxrFfJgZd9rJZ8KuMZgo=) 4: BGTIebFN8Np0NsQtF_avGDoUny4.roa (hash: NPCQmuapy/fWkxHdwPSPdnEK1QY4KGIX45+Q8l7yby0=) 5: BVAbby4n4nfVJfXWrR5Zl8eKCNw.roa (hash: 9h5dLOvIi1c2+opBBUG4urPF6XN2qAHfeKjpbM4tCxM=) 6: Dbdu-sAYIxR5QPvvVrRAhYH105w.roa (hash: fWwOPydmpUe+IsyFRDNgiL4cigw5qNtOrAk6xHxF7LI=) 7: HeSSKy0hpbFZwXpL4wRARD7sBKI.roa (hash: QjJUiqYDK9L1FM50J7fBEzbh41rsVg1rLGSgPBSUCpc=) 8: MJgiLKofa3--UVTFUoDMYpkd14E.roa (hash: H6wYuGz0ahIxYTCSRji68dw9L5rj0iVmY7ULRmePIqo=) 9: OGG1AN9r1K7fCCBDdkuKp2YurRc.roa (hash: uKPYBtL6H7NRJR1/TrQfck1LuVNFXIVWB3lTB8Q9nkM=) 10: SXe4L80C6NNAi8_Z_r_OzYlFJMc.roa (hash: rvAKW+Jnjq6JcXJuZTuezh3N37RsgK/dxB2hqkABN5g=) 11: Yi_0sb2Cd1tYZiiWIymmt_L8-nc.roa (hash: ZfN0GVzt124vq1vIJ26ojNWgsCUqMSJ0wE5cCnsN3gQ=) 12: bSDd05jayPYswSUmMl8YIftyT3U.crl (hash: gONL2i9G8wuc95d8VO+8HaGNPz+RzVNHAlQXuHPJik0=) 13: bYiLveRsDlX78OsxGY3h5GANwkU.roa (hash: 7RIU6dRlDTBOGvkvNbaGxFh//l+X7XqnppaYQdzpO8E=) 14: iuRgfu21PTYsbZmCXChlKNQrvwY.roa (hash: bBVTlacYWROGx5pT6t29eLcMFfwpCwecFakjUlLqFkQ=) 15: lQ5I1RQhBLo7oEEMwItGQL1D4co.roa (hash: JsbTSCE7CBEzvAaKOwDU8edPgIOKQAAWgiGQC/UlKpg=) 16: sxM1hppwo8IA3sUIRWSmuh2DulM.roa (hash: d0rCe3Bx8Ky5qROI9ax/UnPDyR2WjD1W4X7Y8WVQZls=) 17: tXOl2ubuLkmi5Hms7cr2oOrONy4.roa (hash: /mpuqbpXTMSqEVxHEhqKLpXW3WVDEqBZMvkdGp9RQuk=) 18: uPXsHfVse8rlnzUbj2UoRMWOq8g.roa (hash: SCLabx4GN4AnmWRb1f32gO5dZZyqhDCGfjhfHlPlGlM=) 19: x4pQf17vDFkXV3GUtqmWbktS3Fo.roa (hash: TF4r3ErV+VPSElRBLhwHiJMcDMk0C1SKhfdxBMi4KUM=) 20: zw3H3DTpeUhcqqHWXtBf0WnIJoM.roa (hash: 6GByi9aIOsCybNHah1sj3rggT+SfOktCNujJlbLQbPg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 Apr 2026 22:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:99:99:27:d3:37:82:21:e9:2c:f2:3e:04:18:fe:bd:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Validity Not Before: Apr 17 04:00:44 2026 GMT Not After : Apr 18 04:00:44 2026 GMT Subject: CN=20c1e9b3bfbd1d51efb165b48891d689b54ebf66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c0:f9:01:5f:2d:a5:8d:c6:5f:9a:49:fb:68: fc:48:44:f7:51:35:9b:78:8b:d9:8c:75:ac:94:96: a4:79:69:4e:b4:62:e4:2f:f0:67:7d:33:4e:e8:af: 12:e4:2a:7c:1b:1a:3d:e0:56:41:bc:ae:b7:14:64: c6:f0:20:0e:a2:52:22:e8:70:33:3d:ad:36:c2:a7: 08:ba:af:17:fe:e4:e7:f8:46:8b:ff:8e:07:dd:d8: 2c:72:b2:5a:5f:42:e5:45:4c:34:65:32:87:db:ae: 1b:9d:16:bb:5a:bd:99:24:37:ab:0f:42:94:35:c5: 2e:20:49:42:46:41:4e:c1:5e:04:e3:e2:e6:85:bc: 19:ff:ec:84:04:99:f5:e4:ec:2a:07:84:d2:74:4b: 81:db:e7:83:a4:fd:98:67:e3:4b:0a:4d:35:92:68: 9a:25:39:4a:f7:7d:f2:32:b0:bc:cd:86:1b:15:7d: f7:8f:f2:b2:99:dc:cf:3f:23:69:b5:2c:4d:99:a4: 54:58:e5:ec:93:1f:72:e3:37:73:bb:af:18:e8:93: c9:a1:f6:9a:1e:50:e1:bd:cb:d9:37:c0:78:4e:73: c0:a7:00:f0:30:43:41:36:f7:81:61:46:ce:6f:e9: 85:52:45:05:95:63:aa:7d:da:1a:d8:d4:c2:e9:8b: 92:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:C1:E9:B3:BF:BD:1D:51:EF:B1:65:B4:88:91:D6:89:B5:4E:BF:66 X509v3 Authority Key Identifier: keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:70:45:2e:60:74:55:37:78:65:5f:eb:49:83:ba:68:33:e5: 5f:21:30:3c:79:5c:56:fe:ae:ca:c7:02:0b:58:34:5e:9d:d8: 1c:4c:e2:dc:39:3e:db:57:e3:09:1e:fd:54:d6:4e:fa:c2:2c: 35:e1:49:2a:8a:f7:39:0c:2a:bd:77:9b:c8:7f:8f:42:94:ca: 52:2f:66:4b:f7:27:3c:c3:60:1d:57:bb:0d:9d:e4:47:89:f2: b9:fa:fa:11:61:b4:57:a2:cd:d7:f4:f9:b8:e7:53:97:1f:d5: d8:9e:ff:70:d4:38:b7:99:9f:c9:82:e6:88:36:f3:02:d5:7c: ca:19:1f:fa:d1:e7:a7:c0:3f:b9:c0:ce:c5:fc:b4:31:4d:74: 4f:26:f3:ec:75:ac:2d:01:e8:94:0d:38:fe:4b:92:80:a7:44: a1:68:df:64:52:62:b0:f6:f8:ed:8a:5b:e6:41:d1:43:6a:57: 32:22:62:a9:36:e9:e8:9b:0b:62:c7:f8:d1:9f:72:e3:cd:bc: 84:d4:6c:54:93:92:cf:f2:34:fb:a3:52:07:1a:c4:74:7d:c6: a3:32:94:a8:85:b2:a1:1b:c5:00:d0:bc:f4:be:18:ac:38:2a: 16:67:19:9b:d4:0b:c2:a6:04:47:77:b6:52:d4:dc:be:66:38: 82:be:3c:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2ZmSfTN4Ih6SzyPgQY/r1jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMjBkZGQzOThkYWM4ZjYyY2MxMjUyNjMyNWYxODIxZmI3 MjRmNzUwHhcNMjYwNDE3MDQwMDQ0WhcNMjYwNDE4MDQwMDQ0WjAzMTEwLwYDVQQD EygyMGMxZTliM2JmYmQxZDUxZWZiMTY1YjQ4ODkxZDY4OWI1NGViZjY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArMD5AV8tpY3GX5pJ+2j8SET3UTWb eIvZjHWslJakeWlOtGLkL/BnfTNO6K8S5Cp8Gxo94FZBvK63FGTG8CAOolIi6HAz Pa02wqcIuq8X/uTn+EaL/44H3dgscrJaX0LlRUw0ZTKH264bnRa7Wr2ZJDerD0KU NcUuIElCRkFOwV4E4+LmhbwZ/+yEBJn15OwqB4TSdEuB2+eDpP2YZ+NLCk01kmia JTlK933yMrC8zYYbFX33j/KymdzPPyNptSxNmaRUWOXskx9y4zdzu68Y6JPJofaa HlDhvcvZN8B4TnPApwDwMENBNveBYUbOb+mFUkUFlWOqfdoa2NTC6YuSOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCDB6bO/vR1R77FltIiR1om1Tr9mMB8GA1UdIwQY MBaAFG0g3dOY2sj2LMElJjJfGCH7ck91MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmIt MzZkZTY1NzIzMmJlLzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmItMzZkZTY1NzIzMmJl LzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX3BFLmB0 VTd4ZV/rSYO6aDPlXyEwPHlcVv6uyscCC1g0Xp3YHEzi3Dk+21fjCR79VNZO+sIs NeFJKor3OQwqvXebyH+PQpTKUi9mS/cnPMNgHVe7DZ3kR4nyufr6EWG0V6LN1/T5 uOdTlx/V2J7/cNQ4t5mfyYLmiDbzAtV8yhkf+tHnp8A/ucDOxfy0MU10Tybz7HWs LQHolA04/kuSgKdEoWjfZFJisPb47Ypb5kHRQ2pXMiJiqTbp6JsLYsf40Z9y4828 hNRsVJOSz/I0+6NSBxrEdH3GozKUqIWyoRvFANC89L4YrDgqFmcZm9QLwqYER3e2 UtTcvmY4gr48fw== -----END CERTIFICATE-----Generated at Fri Apr 17 06:59:47 2026 by rpki-client