$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/hTPvRhFv2dIb-1M-RL3lF4kMJNw.mft File: hTPvRhFv2dIb-1M-RL3lF4kMJNw.mft (raw, json) Hash identifier: uMNZj2Xmsy+Hl5KoF/WP8m/V7aLPqgABRxKA7IOsTFQ= Subject key identifier: 2D:F4:8C:B4:A9:AD:73:C1:40:60:B4:8B:8C:B0:64:D0:E9:FB:F1:B8 Authority key identifier: 85:33:EF:46:11:6F:D9:D2:1B:FB:53:3E:44:BD:E5:17:89:0C:24:DC Certificate issuer: /CN=8533ef46116fd9d21bfb533e44bde517890c24dc Certificate serial: 019D984FE4678BC7EBEE31B27BDAA0380399 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hTPvRhFv2dIb-1M-RL3lF4kMJNw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/hTPvRhFv2dIb-1M-RL3lF4kMJNw.mft Manifest number: 1686 Signing time: Thu 16 Apr 2026 22:01:05 +0000 Manifest this update: Thu 16 Apr 2026 22:01:05 +0000 Manifest next update: Fri 17 Apr 2026 22:01:05 +0000 Files and hashes: 1: 1u23_XHmiJhjqy9S76sw3BzP9Ww.roa (hash: qDjQXmy6brh3hQItl8JxTdLVuqnZ3WF2FKz/Ualn8KI=) 2: 4KkUHNuHp_WUlcLV7ZmT-IELGLs.roa (hash: X02pU+wDvS97rZ0D42UQvqF9JhNnpzwkrnlhuhnewxY=) 3: An-h4kooPrBUGMT-6Nj0QudqGKE.roa (hash: 4VG1kUHyYf9yb01HKQwY97RZCAJU3VqeDAxr07wG4w0=) 4: DKJJrcnX3RnXlCDTnb0QnF9ph1c.roa (hash: FBpHgtUQjl2CKc1kAMv5YEG4ocTTbuqpzf8/LW2ex4k=) 5: GOgAejJFsLbsIoSjyXa89DsOln0.roa (hash: n61wmUPLOUsceRZoHaDl1wjd6NYSJP+7XllQ62IBWVA=) 6: JVIsfJ3DVyq9OG-AbEDRx8a3Bto.roa (hash: J8o+5Ee3eNiQKRGdXJdghD9ZXv8Izb9VeieBzPJF1ak=) 7: L3AHD1nIaJn-Qkxqjxi4waU1okM.roa (hash: MqsTHnRn4vzlkUHWrFaXq9Uo9UAjzsK7URiYSvcgf8k=) 8: NY2MX1mgk76QbEK78KfRCv9HXlc.roa (hash: n052UQO+ldLs19+3y0B7Wj4/DIUQ0nHDh3aGl0cSB9U=) 9: NgMsux-odmw_2otfxo6fwQPz6nk.roa (hash: acZbMbI5ZnLhauOT05TvSrJPxsUogE9hJcD3gMOAgYQ=) 10: SUe4J3Et3KgT01K3Zx9sbKaSGM0.roa (hash: LwIG+mDSylEHKB/dZoPmrJsG/6vCNLIoKeokQAgcByE=) 11: XdIic6TtMnHLSFKPt0NIgYA3BZE.roa (hash: Hz8Dp4xvPL6d1SZb+xVGL2Fnk7Ii6zPdDdS2xRff/c8=) 12: bFtTO9kUoK7V5nLLHjzqVj2iOcU.roa (hash: jJC/VOkqkEwdX7ejcOTbfcTesLG6OI5LMSL4JFJb9Ek=) 13: hTPvRhFv2dIb-1M-RL3lF4kMJNw.crl (hash: /j6wFk0xLCozBkdkHdFeMCrBRH8c1A3A8OGObclSGuQ=) 14: mDj4POXBo_BA8ao0TEZHTmOo46s.roa (hash: Y2b4Ei43NJZ9dDiKlYc7gN5osX878buWXGf115YzawI=) 15: nFYGg4ZIP1H9kzcY434jAerp2kU.roa (hash: Y/IgWysEh1nmKw0nLD81dJWu3QFpKM+9pnP+lyeoZXo=) 16: obFwaT_4MZtX-dKod3UGli-Mmuo.roa (hash: S1tcUGtkx7R83UYo2rACVKW3cgPV5XEnzrmsW37TA/Q=) 17: y2mTo6HHgH1hIKjXLEt22HvPvrw.roa (hash: YRXm/TWE2LnDq+SOmryX5rTG96P5ANXEnONR2xUrL80=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/hTPvRhFv2dIb-1M-RL3lF4kMJNw.crl rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/hTPvRhFv2dIb-1M-RL3lF4kMJNw.mft rsync://rpki.ripe.net/repository/DEFAULT/hTPvRhFv2dIb-1M-RL3lF4kMJNw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 Apr 2026 22:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:98:4f:e4:67:8b:c7:eb:ee:31:b2:7b:da:a0:38:03:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8533ef46116fd9d21bfb533e44bde517890c24dc Validity Not Before: Apr 16 22:01:05 2026 GMT Not After : Apr 17 22:01:05 2026 GMT Subject: CN=2df48cb4a9ad73c14060b48b8cb064d0e9fbf1b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d3:3b:c1:0e:2b:47:17:5b:fc:51:21:70:c5: ac:af:e5:24:b5:91:9f:1e:6e:42:14:6d:5e:6b:a4: 1c:4f:db:73:f4:7b:56:1d:da:49:78:85:90:47:f7: 7f:40:31:c3:8e:f1:3c:a8:b6:77:f8:ad:54:76:fa: ca:8d:1a:57:02:31:ab:a2:e2:90:7a:bf:9e:11:f1: 27:a8:2a:6f:66:a1:22:f9:7d:23:48:bc:cc:83:2d: cc:a6:6f:07:7d:7b:3b:72:f3:af:e7:dd:5c:3d:fc: 48:16:e1:8f:d4:0b:8a:92:bb:bf:95:b6:c8:0a:0b: 1f:46:3b:53:8c:4f:11:11:ac:cc:db:0f:d7:75:d5: 83:af:19:a9:6e:c2:e5:02:2d:85:ea:6d:f7:99:11: 9d:11:45:f0:e4:9b:e8:55:00:6a:5d:32:8a:9b:7e: d6:5a:99:a5:77:37:be:95:0a:bc:ca:a2:dd:59:0a: d1:9d:70:6b:46:94:36:03:1b:4c:f2:e7:80:78:8b: 82:62:65:ca:19:70:4f:93:75:df:b3:cd:75:be:85: 1e:45:5d:3f:f2:94:f4:77:3d:53:f1:c7:92:84:9c: a2:26:05:73:f1:1d:59:fa:04:f6:5f:48:65:7c:0e: 74:91:19:9c:93:d7:6c:d7:70:32:0e:b7:bd:90:13: b5:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F4:8C:B4:A9:AD:73:C1:40:60:B4:8B:8C:B0:64:D0:E9:FB:F1:B8 X509v3 Authority Key Identifier: keyid:85:33:EF:46:11:6F:D9:D2:1B:FB:53:3E:44:BD:E5:17:89:0C:24:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hTPvRhFv2dIb-1M-RL3lF4kMJNw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/hTPvRhFv2dIb-1M-RL3lF4kMJNw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/hTPvRhFv2dIb-1M-RL3lF4kMJNw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:f8:cd:c6:d0:ce:5d:a5:8e:bd:be:a6:da:7b:92:ed:4c:2a: 81:fe:37:09:3d:87:99:f5:57:c0:6f:75:1c:84:80:39:56:ad: 98:dd:ef:35:c2:fe:f9:de:05:25:a5:7e:ec:95:d5:bf:94:e3: f7:0b:15:7f:f0:f0:84:63:ea:e2:ee:7b:c5:c7:ee:a9:25:e2: dd:42:77:37:b6:a0:fd:93:80:69:b6:e6:16:47:c8:e1:d3:a4: 36:76:2a:24:b8:e9:66:29:b0:8a:c4:cb:b3:d6:55:85:e2:63: 5f:65:f4:b7:f4:6d:96:5e:c9:7a:cf:ff:13:60:75:54:ea:9a: ca:f0:08:aa:75:64:38:97:3e:03:4f:b0:98:f5:61:a9:f0:09: de:b2:36:6f:c8:6a:fd:50:d1:fc:0d:83:d0:ef:27:d3:18:ef: 3a:e9:d4:d0:fd:34:c8:06:0e:a3:9f:8f:ee:9c:16:de:79:44: ee:5a:8f:31:9d:89:12:f0:95:ca:60:2b:c3:af:90:c6:bd:d5: 7f:f8:e4:0d:02:5b:a9:e0:40:d1:bb:af:ab:fa:f6:b8:fb:3c: 71:87:e9:81:f7:4e:e0:f9:8c:ee:40:66:a2:74:1f:b9:86:44: 75:1d:37:f7:97:d5:29:36:71:9a:46:21:74:0c:64:90:4d:49: 19:cb:bf:29 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2YT+Rni8fr7jGye9qgOAOZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1MzNlZjQ2MTE2ZmQ5ZDIxYmZiNTMzZTQ0YmRlNTE3ODkw YzI0ZGMwHhcNMjYwNDE2MjIwMTA1WhcNMjYwNDE3MjIwMTA1WjAzMTEwLwYDVQQD EygyZGY0OGNiNGE5YWQ3M2MxNDA2MGI0OGI4Y2IwNjRkMGU5ZmJmMWI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAutM7wQ4rRxdb/FEhcMWsr+UktZGf Hm5CFG1ea6QcT9tz9HtWHdpJeIWQR/d/QDHDjvE8qLZ3+K1UdvrKjRpXAjGrouKQ er+eEfEnqCpvZqEi+X0jSLzMgy3Mpm8HfXs7cvOv591cPfxIFuGP1AuKkru/lbbI CgsfRjtTjE8REazM2w/XddWDrxmpbsLlAi2F6m33mRGdEUXw5JvoVQBqXTKKm37W Wpmldze+lQq8yqLdWQrRnXBrRpQ2AxtM8ueAeIuCYmXKGXBPk3Xfs811voUeRV0/ 8pT0dz1T8ceShJyiJgVz8R1Z+gT2X0hlfA50kRmck9ds13AyDre9kBO1KQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC30jLSprXPBQGC0i4ywZNDp+/G4MB8GA1UdIwQY MBaAFIUz70YRb9nSG/tTPkS95ReJDCTcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFRQdlJoRnYyZEliLTFNLVJMM2xGNGtNSk53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9lMDQ3MmEtM2FkZi00M2NkLWJmMzAt NzM5MjNkYWVmMTE0LzEvaFRQdlJoRnYyZEliLTFNLVJMM2xGNGtNSk53Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy9lMDQ3MmEtM2FkZi00M2NkLWJmMzAtNzM5MjNkYWVmMTE0 LzEvaFRQdlJoRnYyZEliLTFNLVJMM2xGNGtNSk53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcvjNxtDO XaWOvb6m2nuS7Uwqgf43CT2HmfVXwG91HISAOVatmN3vNcL++d4FJaV+7JXVv5Tj 9wsVf/DwhGPq4u57xcfuqSXi3UJ3N7ag/ZOAabbmFkfI4dOkNnYqJLjpZimwisTL s9ZVheJjX2X0t/Rtll7Jes//E2B1VOqayvAIqnVkOJc+A0+wmPVhqfAJ3rI2b8hq /VDR/A2D0O8n0xjvOunU0P00yAYOo5+P7pwW3nlE7lqPMZ2JEvCVymArw6+Qxr3V f/jkDQJbqeBA0buvq/r2uPs8cYfpgfdO4PmM7kBmonQfuYZEdR0395fVKTZxmkYh dAxkkE1JGcu/KQ== -----END CERTIFICATE-----Generated at Fri Apr 17 06:44:25 2026 by rpki-client