$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft File: 520NqzR6OOK4e1oiovfJ4hwYybw.mft (raw, json) Hash identifier: M+FCaDI2fjvBoHeV68jhyeimN7R/XLLx4qDpGUxXKfY= Subject key identifier: D9:96:B2:A4:CB:16:3B:21:78:93:2D:9A:1E:4B:5B:38:FC:30:E3:7F Authority key identifier: E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC Certificate issuer: /CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Certificate serial: 019EBF5A6D98B0B99BCF58B3C113A6499313 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft Manifest number: 1447 Signing time: Sat 13 Jun 2026 05:00:34 +0000 Manifest this update: Sat 13 Jun 2026 05:00:34 +0000 Manifest next update: Sun 14 Jun 2026 05:00:34 +0000 Files and hashes: 1: 1dfOhFGT4Rz19mHWVabW0kWxTss.roa (hash: Rjg1gNguWYpEwGKvfk1H+hd0eMsqKT2A4N+C2/8Q+uQ=) 2: 520NqzR6OOK4e1oiovfJ4hwYybw.crl (hash: o0eCjcACxnh9cvo0+Iys0u3EIxHhB5icZjBLpLY+Qr0=) 3: 7EPxlfzuNdNfziGNw3Hj7EoZj1Q.roa (hash: fYUfx118C/cw672kHDWSH3DD1Ik9WuMEeaQ/qAV9tYE=) 4: 9EzrkfCb3685-QENXXhTIl2uZz4.roa (hash: 4o0MB77YQKRQiZHQrZxR1nkb/HsRFN1Kq0iR4K53WZA=) 5: DVIKLwP8b0UVJE_X0Zz4hLCMFmU.roa (hash: 2ROrixfhF0UtgJihhtThPaEztRX+VVHt8WTM1ZfZQ1o=) 6: Fn3txwFOnsHfJqp3dmOvAMcvgHc.roa (hash: 0tFPd6mFP89u9IcgrQmVyEuYoDxe9S4zwwRr4qndNks=) 7: RqZv9lI-beWajs98dICrEK2DwUM.roa (hash: z0DWSEDfb+oWc/lkT9R9ehjWWb2y0A0CPcHglnAYRf8=) 8: Ud0XI3ub85_CL2l55YZW3cXrctA.roa (hash: 2gMJyy7om8/uY1IqvCz0ubvDeUV63nAu6cUom48+3U0=) 9: ao5k8aMHz2Rr-UFohnKN0Vsy0ts.roa (hash: qeXz8tDdKItxGK8qtWsvUAbM0Ooz+MmMiDN8cvBIyTQ=) 10: bbXWGNkALy-ajnXnVwsq6VcslC8.roa (hash: lOmBCerqz+GglurufDI5e+15DQVwzjxcTvAfkACkLYE=) 11: jTMEUhkl6sKPDlW6gGgXZsH4VwQ.roa (hash: bLe2Zk8IquF+7aI/fXPQxZklmLIeFhH3W5DkdYCydQA=) 12: r-NoE_XHTABnwPRM9GdFHoEeHJo.roa (hash: qsD5Rt9CKRxXFQG5JSeN7cqv7sQvsG2HbFGsWmdhdi8=) 13: rIIpXZCn7E3HgJjpCaYYUR4k6ZI.roa (hash: Vvylnj2QqF4AFfq4GCTBxANmDk4TfXB5W5GNlTLI/Qw=) 14: rp3l1DRMo7bxNlcekPEumkx_Cu4.roa (hash: cvH000yVT30CU4NGwC5k2pFAaWGJcYLG4wfqKOyLWIU=) 15: s9E0mrs6RE5G3diI6qJ2dNaQlCY.roa (hash: ALHEFczsxrK3P9zm6czuHQOWsz9Vxib3j6fIwRLXdsA=) 16: smuPovOHBHHaIAv32qcc0ZyhNkQ.roa (hash: HcQ/8p3eoCWjnnKfMtVzm8focRBIq46dCnVV7vdjMxQ=) 17: v94LL-qGGgahldRNvzQc-ZVS3KI.roa (hash: a3YAXYAGQiNiI/eRCe9RKvTaP1hHvgR2d27wk4bq6Cw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:bf:5a:6d:98:b0:b9:9b:cf:58:b3:c1:13:a6:49:93:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Validity Not Before: Jun 13 05:00:34 2026 GMT Not After : Jun 14 05:00:34 2026 GMT Subject: CN=d996b2a4cb163b2178932d9a1e4b5b38fc30e37f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:49:55:68:5a:f9:11:c1:c6:5a:df:a3:9c:67: c8:c3:6b:53:33:74:91:83:c5:81:b9:0d:12:4f:76: 0d:84:91:ae:d9:49:a0:97:2b:4b:4e:d2:af:f4:aa: a8:c7:b7:33:03:be:e3:6c:5f:29:66:98:33:c4:b7: 81:a9:04:28:49:8f:77:1f:e6:5f:a8:bc:cd:b3:7b: cc:39:e6:f7:66:38:2b:ae:c8:32:af:a1:6f:a9:e2: a7:3b:9e:69:56:23:83:bb:f6:3c:0a:b0:2e:59:01: 55:c6:f3:c1:04:c0:4b:40:3e:cd:54:a6:c2:b9:15: 61:f4:16:e7:9f:3e:ce:30:54:3f:e1:6f:a7:d4:48: 12:1b:f6:7d:de:fb:b7:e2:9d:68:cf:54:b4:59:12: 32:1b:60:7e:03:9c:fe:96:18:26:19:5e:0c:0c:cf: a4:75:6f:f4:76:c6:32:17:d6:08:d5:cb:e3:d5:01: a9:8b:11:bd:fb:71:12:72:6e:9b:90:d9:43:9c:4d: 74:e6:cc:2d:90:39:18:ef:45:b2:8e:3e:cd:83:96: 66:d6:51:65:38:16:6b:cf:9c:d3:52:76:40:21:77: 6a:51:9a:7f:af:c7:7d:51:d7:97:97:1c:38:bf:c8: 73:9e:94:45:f3:4c:7f:5d:10:1f:06:3a:23:33:85: ae:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:96:B2:A4:CB:16:3B:21:78:93:2D:9A:1E:4B:5B:38:FC:30:E3:7F X509v3 Authority Key Identifier: keyid:E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:01:8f:16:ab:41:9d:5a:19:09:1d:cf:d2:8a:70:b3:00:37: de:2a:d5:d0:fb:1e:7b:e1:cb:ed:07:11:4f:57:c4:20:bd:9f: e9:c6:35:10:b5:e4:9b:c0:15:67:b9:3a:51:87:56:0d:51:37: 47:4a:91:00:d5:01:9a:89:e0:2d:5f:8e:33:e2:3f:d8:db:32: 70:4e:a9:51:16:8e:aa:b4:28:0f:cb:b0:1f:7c:4f:8d:d3:71: 78:db:f1:4f:09:9a:66:a8:bf:2e:48:d6:f7:29:29:43:6c:04: e9:ed:51:68:93:e2:90:ca:77:de:91:e0:dc:f5:46:8d:72:a5: 8b:ad:c3:a3:6e:0f:d9:f6:0e:63:3c:24:0c:a3:48:f0:38:1c: 4d:e6:b4:20:3b:a0:c7:e2:5e:b0:d3:79:4d:e2:60:c5:6a:4b: 1f:eb:89:f0:44:f3:a6:9d:72:d9:7e:31:cf:6a:6b:a5:83:b6: 89:5c:c4:02:68:97:b7:79:3c:68:86:f1:b6:fe:1c:24:a5:9e: f8:35:4a:a3:6d:df:a8:62:de:03:e5:9a:83:d2:a0:ec:2f:83: d9:90:b1:b5:ec:3a:99:f2:8d:aa:50:4c:a3:4b:e8:57:b7:cd: fb:7a:b5:fd:da:18:fb:2d:bb:f4:05:e5:e8:1c:e2:eb:64:01: 18:4e:d1:f1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ6/Wm2YsLmbz1izwROmSZMTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3NmQwZGFiMzQ3YTM4ZTJiODdiNWEyMmEyZjdjOWUyMWMx OGM5YmMwHhcNMjYwNjEzMDUwMDM0WhcNMjYwNjE0MDUwMDM0WjAzMTEwLwYDVQQD EyhkOTk2YjJhNGNiMTYzYjIxNzg5MzJkOWExZTRiNWIzOGZjMzBlMzdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzUlVaFr5EcHGWt+jnGfIw2tTM3SR g8WBuQ0ST3YNhJGu2UmglytLTtKv9Kqox7czA77jbF8pZpgzxLeBqQQoSY93H+Zf qLzNs3vMOeb3Zjgrrsgyr6FvqeKnO55pViODu/Y8CrAuWQFVxvPBBMBLQD7NVKbC uRVh9Bbnnz7OMFQ/4W+n1EgSG/Z93vu34p1oz1S0WRIyG2B+A5z+lhgmGV4MDM+k dW/0dsYyF9YI1cvj1QGpixG9+3EScm6bkNlDnE105swtkDkY70Wyjj7Ng5Zm1lFl OBZrz5zTUnZAIXdqUZp/r8d9UdeXlxw4v8hznpRF80x/XRAfBjojM4WuUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNmWsqTLFjsheJMtmh5LWzj8MON/MB8GA1UdIwQY MBaAFOdtDas0ejjiuHtaIqL3yeIcGMm8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDkt YmQzYmZjOTliZGE5LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDktYmQzYmZjOTliZGE5 LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHgGPFqtB nVoZCR3P0opwswA33irV0Psee+HL7QcRT1fEIL2f6cY1ELXkm8AVZ7k6UYdWDVE3 R0qRANUBmongLV+OM+I/2NsycE6pURaOqrQoD8uwH3xPjdNxeNvxTwmaZqi/LkjW 9ykpQ2wE6e1RaJPikMp33pHg3PVGjXKli63Do24P2fYOYzwkDKNI8DgcTea0IDug x+JesNN5TeJgxWpLH+uJ8ETzpp1y2X4xz2prpYO2iVzEAmiXt3k8aIbxtv4cJKWe +DVKo23fqGLeA+Wag9Kg7C+D2ZCxtew6mfKNqlBMo0voV7fN+3q1/doY+y279AXl 6Bzi62QBGE7R8Q== -----END CERTIFICATE-----Generated at Sat Jun 13 10:13:49 2026 by rpki-client