$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft File: TKZvPA8ld05pbSpGcjJ365YRKMM.mft (raw, json) Hash identifier: m8NxBS0fSBRybv0bxHpdeGRhEcIUPbEPvtC/652yfFU= Subject key identifier: 4F:E5:1A:A8:48:F3:19:91:7A:A4:22:4E:A4:0C:24:67:FC:86:D0:9E Authority key identifier: 4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3 Certificate issuer: /CN=4ca66f3c0f25774e696d2a46723277eb961128c3 Certificate serial: 019D9AAB7BFEBBCD4927655A22058FB06D45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft Manifest number: 18E7 Signing time: Fri 17 Apr 2026 09:00:22 +0000 Manifest this update: Fri 17 Apr 2026 09:00:22 +0000 Manifest next update: Sat 18 Apr 2026 09:00:22 +0000 Files and hashes: 1: 0IrKb4Ocom_z-8cWO6ogho_9Ejs.roa (hash: tjdt9PHspdzPY29Lxc8zvyVdheALBUo0bapCnScWepo=) 2: 1-mot6mikLp_MDl0b7kmHUwF8vnM.roa (hash: XgWK76sOAKa1F05WWdrvMpLFcLfu8IIa8P7y+0SOUIQ=) 3: 2hev3Ozu25IR4V2dL7dAcH9H-38.roa (hash: JMnA8s2ygn9eCJpbiMUYRSb0p9eo/efu/ihrpcvOxF0=) 4: 5CBz7J_rxqKIErWJdNCTyxWORk4.roa (hash: NgQqsHixRjLE1PxJ9k04+GOCbvcPmM6kd6jLKzVPJ4A=) 5: 9d-_5920bjCdAX8N09u8neSsl3o.roa (hash: o8FIziw32GpKzwaDWACsYaXRfvH+eTcW8yYR9DZRp+c=) 6: CxwFpKnVRB1YipI_w1rOdL2Rr_0.roa (hash: Sqj7uyxBPWvN499fr3Zl2IE3H+X3USQ46cvMPtYbWbI=) 7: TKZvPA8ld05pbSpGcjJ365YRKMM.crl (hash: egW87bnV4B4JqwXsVSLp9H5ymk1MFALjKdPDzt6mM3o=) 8: bEXar_PDdc_u4-EMnGh7tX0LHVg.roa (hash: tWOJsXIwz8NLZyOMtnHMC60APgOJn7JZ0y3xyIP4Gu4=) 9: k4d-Grd6fMOD6ch95iLC_D9xAmI.roa (hash: FpQzQlajcmhliY2oa1dKiB0yjFo7oTmcDQa2iboX4UE=) 10: o4wjR8pZMB50VMWQpLsPi-iVTDE.roa (hash: ATIz3XapJ04NxEJg4iAdFVY462a3mfpQBCW4sSM6kew=) 11: oQUSrEROqxA0JRpbiStP3_G82GM.roa (hash: XUh60Rhyc+lm/VBx4kH4IarcFH4VCmn/oycmnKA5p14=) 12: oW0C-k4390azUSS_-13XzI_AVfY.roa (hash: rzcyrGergvNW2GLz+g1GX+/P72a2swYsTQgABXmO4lQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Apr 2026 09:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:9a:ab:7b:fe:bb:cd:49:27:65:5a:22:05:8f:b0:6d:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ca66f3c0f25774e696d2a46723277eb961128c3 Validity Not Before: Apr 17 09:00:22 2026 GMT Not After : Apr 18 09:00:22 2026 GMT Subject: CN=4fe51aa848f319917aa4224ea40c2467fc86d09e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:74:a4:0d:55:1e:9b:91:07:39:bd:6b:c7:e6: e2:14:21:ee:6c:ab:aa:af:cf:f9:e1:f0:18:74:7a: de:4d:78:e2:cc:90:76:93:1d:1d:e9:68:5d:9e:9d: fe:41:83:9f:a9:49:72:53:69:eb:45:c6:aa:0f:93: 8d:39:4b:35:ce:c9:33:71:be:07:09:7d:9c:2e:92: 7c:7b:18:c0:b4:81:aa:e8:df:c3:d5:f3:ac:85:ed: 0d:3b:c4:32:41:34:aa:3a:de:61:90:65:94:a3:39: 74:eb:f5:bf:1f:6d:82:97:64:08:06:25:79:a9:31: a2:3f:4e:8b:c3:3f:5c:de:65:d6:fc:6f:10:fa:e3: 1b:da:bd:cc:15:91:08:99:67:9f:6c:7f:57:68:8e: 4a:8a:09:60:dc:b4:29:6a:e2:0b:fc:6f:a9:21:68: 34:63:8f:e8:de:5c:8d:a7:19:1a:0f:29:32:74:c9: 14:9e:d5:26:b8:19:92:45:99:54:85:c6:19:09:cc: 84:50:b1:88:88:b6:3b:e3:3f:ba:76:94:11:52:87: 50:26:d7:d2:6b:61:71:25:82:8e:8a:4b:4f:4e:5c: 2a:16:9a:c5:16:73:d0:cd:f5:bf:62:b3:76:eb:34: 8c:d0:7c:48:92:55:65:c5:5f:67:d7:2e:5e:9b:a7: 64:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:E5:1A:A8:48:F3:19:91:7A:A4:22:4E:A4:0C:24:67:FC:86:D0:9E X509v3 Authority Key Identifier: keyid:4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:1f:6f:45:f4:f2:3f:b8:84:bb:28:b6:c7:ae:f8:47:3d:31: b3:75:91:b3:56:59:87:57:e2:07:5c:ff:a0:05:b3:20:fd:d8: ff:6a:21:ef:86:3f:0f:d9:6a:52:dc:59:c7:c0:05:fc:32:a9: 83:a5:33:27:ef:d0:78:f4:42:60:85:ec:f3:41:cb:14:72:e2: de:d1:7b:5e:2a:ab:a7:69:ce:77:9f:42:51:ed:73:b6:79:26: 81:82:9f:f1:c7:e5:b5:c4:f0:34:d4:5c:77:fb:50:1a:4a:6a: 24:fb:a5:68:b0:23:12:ce:48:a5:61:37:cf:8c:38:e4:2c:d0: f6:f2:71:65:48:a6:28:24:44:8b:07:e9:9f:65:e3:a8:6e:e8: 26:bf:c1:fb:f2:7d:f1:3c:58:04:42:eb:21:00:0f:a7:b0:08: 80:92:fa:b8:5f:bb:fc:ea:25:8b:b9:3a:0e:56:c3:95:14:3c: b6:f0:46:2c:51:dc:4d:99:11:dd:ec:fa:ff:cf:ca:f6:55:dc: e7:c0:c7:a6:2d:9a:c7:50:fe:35:9f:36:72:10:7a:10:2f:21: 88:f2:cd:e3:4b:81:3c:d4:20:9b:59:1e:16:aa:b8:e4:13:51: db:a2:08:9f:17:b9:00:a4:b6:a7:d8:b7:8f:81:b8:8f:d0:95: 4e:d9:63:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2aq3v+u81JJ2VaIgWPsG1FMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjYTY2ZjNjMGYyNTc3NGU2OTZkMmE0NjcyMzI3N2ViOTYx MTI4YzMwHhcNMjYwNDE3MDkwMDIyWhcNMjYwNDE4MDkwMDIyWjAzMTEwLwYDVQQD Eyg0ZmU1MWFhODQ4ZjMxOTkxN2FhNDIyNGVhNDBjMjQ2N2ZjODZkMDllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnXSkDVUem5EHOb1rx+biFCHubKuq r8/54fAYdHreTXjizJB2kx0d6Whdnp3+QYOfqUlyU2nrRcaqD5ONOUs1zskzcb4H CX2cLpJ8exjAtIGq6N/D1fOshe0NO8QyQTSqOt5hkGWUozl06/W/H22Cl2QIBiV5 qTGiP06Lwz9c3mXW/G8Q+uMb2r3MFZEImWefbH9XaI5Kiglg3LQpauIL/G+pIWg0 Y4/o3lyNpxkaDykydMkUntUmuBmSRZlUhcYZCcyEULGIiLY74z+6dpQRUodQJtfS a2FxJYKOiktPTlwqFprFFnPQzfW/YrN26zSM0HxIklVlxV9n1y5em6dkjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE/lGqhI8xmReqQiTqQMJGf8htCeMB8GA1UdIwQY MBaAFEymbzwPJXdOaW0qRnIyd+uWESjDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8yMDQwMTctZjA0Ni00YjY5LWIzZTUt MzE5YjBjODc0NDQwLzEvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy8yMDQwMTctZjA0Ni00YjY5LWIzZTUtMzE5YjBjODc0NDQw LzEvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJR9vRfTy P7iEuyi2x674Rz0xs3WRs1ZZh1fiB1z/oAWzIP3Y/2oh74Y/D9lqUtxZx8AF/DKp g6UzJ+/QePRCYIXs80HLFHLi3tF7Xiqrp2nOd59CUe1ztnkmgYKf8cfltcTwNNRc d/tQGkpqJPulaLAjEs5IpWE3z4w45CzQ9vJxZUimKCREiwfpn2XjqG7oJr/B+/J9 8TxYBELrIQAPp7AIgJL6uF+7/Ooli7k6DlbDlRQ8tvBGLFHcTZkR3ez6/8/K9lXc 58DHpi2ax1D+NZ82chB6EC8hiPLN40uBPNQgm1keFqq45BNR26IInxe5AKS2p9i3 j4G4j9CVTtljOw== -----END CERTIFICATE-----Generated at Fri Apr 17 19:50:45 2026 by rpki-client