$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft File: TKZvPA8ld05pbSpGcjJ365YRKMM.mft (raw, json) Hash identifier: c3b4i8dwQ3wo/z/1RHB7ZIbyB9ykd2QJe9yUfVUGX14= Subject key identifier: 6A:2C:4B:C2:6D:B5:C8:BB:A6:CF:E3:FE:06:DD:71:E2:87:A8:1E:9C Authority key identifier: 4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3 Certificate issuer: /CN=4ca66f3c0f25774e696d2a46723277eb961128c3 Certificate serial: 019EC224C0BE3F43C6419C1EB82E2C47A6BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft Manifest number: 1982 Signing time: Sat 13 Jun 2026 18:00:48 +0000 Manifest this update: Sat 13 Jun 2026 18:00:48 +0000 Manifest next update: Sun 14 Jun 2026 18:00:48 +0000 Files and hashes: 1: 0IrKb4Ocom_z-8cWO6ogho_9Ejs.roa (hash: tjdt9PHspdzPY29Lxc8zvyVdheALBUo0bapCnScWepo=) 2: 2hev3Ozu25IR4V2dL7dAcH9H-38.roa (hash: JMnA8s2ygn9eCJpbiMUYRSb0p9eo/efu/ihrpcvOxF0=) 3: 5CBz7J_rxqKIErWJdNCTyxWORk4.roa (hash: NgQqsHixRjLE1PxJ9k04+GOCbvcPmM6kd6jLKzVPJ4A=) 4: 9d-_5920bjCdAX8N09u8neSsl3o.roa (hash: o8FIziw32GpKzwaDWACsYaXRfvH+eTcW8yYR9DZRp+c=) 5: Ck8M77HakpPGYwHWR3tKMn6oX5I.roa (hash: /KHOK0banE/sW4SbVXZMrQo7GnXfsS39k2T0rCWRPJY=) 6: CxwFpKnVRB1YipI_w1rOdL2Rr_0.roa (hash: Sqj7uyxBPWvN499fr3Zl2IE3H+X3USQ46cvMPtYbWbI=) 7: Sy1XXaKv9JrEyY29f5xuY6WPTZ4.roa (hash: QzQzh3Bmon/hK1H7MVc4u0jpNg3xapgmcfibGio31+E=) 8: TKZvPA8ld05pbSpGcjJ365YRKMM.crl (hash: HlzlHN7nxcRtzz9JKrpwU/KHYFhNOTawvcTyzmno1cw=) 9: bEXar_PDdc_u4-EMnGh7tX0LHVg.roa (hash: tWOJsXIwz8NLZyOMtnHMC60APgOJn7JZ0y3xyIP4Gu4=) 10: k4d-Grd6fMOD6ch95iLC_D9xAmI.roa (hash: FpQzQlajcmhliY2oa1dKiB0yjFo7oTmcDQa2iboX4UE=) 11: kTrZwWya8vKsPzaTCCVly2aeBF0.roa (hash: GYxaPQmLs3qRxZhpYVXS6A4uk/iHpf3iWjyGg7/VHF4=) 12: oQUSrEROqxA0JRpbiStP3_G82GM.roa (hash: XUh60Rhyc+lm/VBx4kH4IarcFH4VCmn/oycmnKA5p14=) 13: uEnRng83DMivtU9u64kgfGid_Hs.roa (hash: vmYhF39wCahPYTq1VZ0x6GUk7X7pQ26ryeKoN/cfjf4=) 14: ulevrjdG84PyAEw2XIVUVcPHCk8.roa (hash: 3Q60+cTrF0CLxyPchKTvHU+bYI4wsJGncyWLEGOrjTs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 17:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:c2:24:c0:be:3f:43:c6:41:9c:1e:b8:2e:2c:47:a6:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ca66f3c0f25774e696d2a46723277eb961128c3 Validity Not Before: Jun 13 18:00:48 2026 GMT Not After : Jun 14 18:00:48 2026 GMT Subject: CN=6a2c4bc26db5c8bba6cfe3fe06dd71e287a81e9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7c:29:84:92:70:ec:e6:03:71:c6:e2:a2:b5: 02:db:14:21:26:81:1b:19:e1:78:24:20:cf:71:8b: 81:b4:41:7d:f5:65:74:b7:88:e9:5f:86:9a:a5:cb: 77:5c:59:bc:88:96:99:e6:5f:b4:8c:f5:cb:9e:c9: 94:40:b0:96:ee:db:55:c4:9a:52:5c:ad:58:eb:3b: eb:9a:9c:58:fa:58:50:fb:8e:bc:8c:a3:2f:00:a7: a7:7e:54:b5:40:bd:11:e5:5b:2f:35:c3:7d:7e:80: eb:3a:22:02:70:74:f7:c8:bc:36:e6:25:75:5c:18: 6b:4d:1d:fd:a7:98:b7:b6:59:53:ca:78:08:db:a6: 1a:0f:92:cd:e4:17:60:ba:f4:8a:5b:89:03:f7:b1: 02:ca:57:e0:c7:83:f7:60:9b:fd:5d:e5:f3:7a:5b: cf:3a:0a:0f:d0:45:e9:6e:ba:41:2e:20:af:d0:bd: a8:cf:bb:4e:db:e5:e1:da:fa:d9:a3:bd:8f:c9:bf: 3b:c5:b3:f5:89:d5:1c:85:24:c0:81:33:21:5b:d3: 30:43:04:9f:c1:c4:86:51:b9:d8:45:bf:38:73:c2: 6b:c8:f5:14:f8:d6:83:1b:f1:3b:90:be:46:a3:c4: c4:a5:10:a3:2a:01:42:3c:d2:8f:f9:54:5b:99:2a: a3:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:2C:4B:C2:6D:B5:C8:BB:A6:CF:E3:FE:06:DD:71:E2:87:A8:1E:9C X509v3 Authority Key Identifier: keyid:4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:dd:66:e9:64:0a:33:08:28:97:e1:31:4d:9b:3c:9e:13:3f: 33:cf:9c:33:56:7e:05:7e:b5:d1:00:44:02:72:74:8e:06:3d: 6e:99:c9:cd:93:92:b1:f2:57:98:f7:1e:4f:c3:bd:f6:47:8a: e0:e8:f9:f2:27:75:1b:70:cf:cb:95:3c:93:2a:8b:b0:e2:e7: 00:ea:82:44:e6:60:44:86:e7:69:79:e4:f0:5a:b3:80:54:1f: 3d:e8:f1:38:81:6b:65:7f:ec:11:f2:47:8e:00:ef:04:4d:cf: b9:b7:38:7a:29:ad:99:4d:40:82:db:09:5b:4b:06:57:14:04: 86:ea:c2:34:d6:6a:d9:a8:f2:f0:d0:87:fd:51:86:fa:ff:d4: 20:88:1d:a0:c5:54:6c:5c:25:47:cb:41:86:90:70:c2:52:be: b0:2b:6c:ae:f7:b0:f0:30:b8:ca:81:09:16:30:4b:16:b8:92: e9:1c:ab:92:b0:8a:01:c3:a8:28:0b:0a:2b:85:46:74:25:4f: 8b:69:21:32:86:60:b1:90:2b:9f:82:47:b0:6f:6c:d1:38:5a: c5:57:cc:22:ed:62:1d:6c:dc:4e:a7:de:f3:38:bc:a5:d4:e3: 5a:2e:3a:bd:77:c5:01:f2:1a:5c:b4:20:06:68:3c:40:ca:f9: c3:d0:eb:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ7CJMC+P0PGQZweuC4sR6a+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjYTY2ZjNjMGYyNTc3NGU2OTZkMmE0NjcyMzI3N2ViOTYx MTI4YzMwHhcNMjYwNjEzMTgwMDQ4WhcNMjYwNjE0MTgwMDQ4WjAzMTEwLwYDVQQD Eyg2YTJjNGJjMjZkYjVjOGJiYTZjZmUzZmUwNmRkNzFlMjg3YTgxZTljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx3wphJJw7OYDccbiorUC2xQhJoEb GeF4JCDPcYuBtEF99WV0t4jpX4aapct3XFm8iJaZ5l+0jPXLnsmUQLCW7ttVxJpS XK1Y6zvrmpxY+lhQ+468jKMvAKenflS1QL0R5VsvNcN9foDrOiICcHT3yLw25iV1 XBhrTR39p5i3tllTyngI26YaD5LN5BdguvSKW4kD97ECylfgx4P3YJv9XeXzelvP OgoP0EXpbrpBLiCv0L2oz7tO2+Xh2vrZo72Pyb87xbP1idUchSTAgTMhW9MwQwSf wcSGUbnYRb84c8JryPUU+NaDG/E7kL5Go8TEpRCjKgFCPNKP+VRbmSqjRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGosS8Jttci7ps/j/gbdceKHqB6cMB8GA1UdIwQY MBaAFEymbzwPJXdOaW0qRnIyd+uWESjDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8yMDQwMTctZjA0Ni00YjY5LWIzZTUt MzE5YjBjODc0NDQwLzEvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy8yMDQwMTctZjA0Ni00YjY5LWIzZTUtMzE5YjBjODc0NDQw LzEvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK91m6WQK Mwgol+ExTZs8nhM/M8+cM1Z+BX610QBEAnJ0jgY9bpnJzZOSsfJXmPceT8O99keK 4Oj58id1G3DPy5U8kyqLsOLnAOqCROZgRIbnaXnk8FqzgFQfPejxOIFrZX/sEfJH jgDvBE3Pubc4eimtmU1AgtsJW0sGVxQEhurCNNZq2ajy8NCH/VGG+v/UIIgdoMVU bFwlR8tBhpBwwlK+sCtsrvew8DC4yoEJFjBLFriS6RyrkrCKAcOoKAsKK4VGdCVP i2khMoZgsZArn4JHsG9s0ThaxVfMIu1iHWzcTqfe8zi8pdTjWi46vXfFAfIaXLQg Bmg8QMr5w9Dr7Q== -----END CERTIFICATE-----Generated at Sun Jun 14 03:41:50 2026 by rpki-client