$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft File: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft (raw, json) Hash identifier: 7OmcAH60bmh5Z6vBTPTRo6JtZOGCxHrm79Yolz1Jz9M= Subject key identifier: E4:FD:2B:21:94:47:02:CC:35:8B:C1:EE:84:43:80:CF:6F:48:5E:78 Authority key identifier: 23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62 Certificate issuer: /CN=23259da3b1b38ca0939f490fb9043fcd89cfd062 Certificate serial: 019EC06D40468D83E036F6BFF52229A9ADA6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft Manifest number: 1964 Signing time: Sat 13 Jun 2026 10:00:45 +0000 Manifest this update: Sat 13 Jun 2026 10:00:45 +0000 Manifest next update: Sun 14 Jun 2026 10:00:45 +0000 Files and hashes: 1: BNGMVvTZ1XawSMPOVaywEKgFz8w.roa (hash: WMt9Jn62xWAvsFJt6BLgLhIXnUKvtSHXK/jsLiQ9wc0=) 2: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl (hash: /9WTCNo18DkYneEu9J/u0ogT2iUfYNxJsPPK2Y8CMsE=) 3: J_k_uJydXhJKkAPBLn_Xr9EpYmw.roa (hash: bMaFsCf1Hj+guhXQdkk7ZJ24ZgANPSnkOncPj3CW1pQ=) 4: S9D_ZvZP7Y2SyyqdAWt1mGxtagE.roa (hash: hH6PHrAp3gX28fWUuJtWpjV+rB9bYio8w3wI6R4XHQI=) 5: YPhzzBUAAD8W6PxdQ8Eo6J_1Xlo.roa (hash: QJjVxTN7Kd8ed1QYD92fFHesTbkRe6gyeZIi3S6D0so=) 6: Z8UyJlJrz_tPx2Lzi2wtF6sRSoY.roa (hash: pZEmU7QBOi+LmI67NMxNilqE5KRHfsee+sRCVmykeWE=) 7: gw26QBwPzQF9bT3yyu20z1tgJyk.roa (hash: iuHp19gpWORmcmt7JfC/koJtOp0jpGQxA/LoBFKsFao=) 8: mdj55pZO6nRDbpPFsXBoK-GkNU8.roa (hash: JU7FZwf7hl0KcJAATQ/by5oF+/xX9ntEZw2LOkX+3S0=) 9: n70k782e6Gxq_-Hc2YO_idjOcAs.roa (hash: 9xPDUcAeeZeb+V1tJdiN4n6+fuVQh1F2hwH4+x4MOiQ=) 10: pX4-zHrOaGGZmLrFodKOqsDRVt8.roa (hash: oNNoPaGL9tiGcsnmh6pVkfSYR8zyTqJrDL9WChZzfdA=) 11: vqLY8AJRdwBNZp1vMAKBzj7hYMk.roa (hash: QScIVVTzvA87+g4pWqcXEROo6Uo1IppOyeJM8oSgj8s=) 12: xgHR7y7J0aGtYD0R9jhr6WJbZm8.roa (hash: CHXV05nQbB5KxwYkctbAeeyJMsjXN6ysG0w+cPnzH+Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 08:43:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:c0:6d:40:46:8d:83:e0:36:f6:bf:f5:22:29:a9:ad:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23259da3b1b38ca0939f490fb9043fcd89cfd062 Validity Not Before: Jun 13 10:00:45 2026 GMT Not After : Jun 14 10:00:45 2026 GMT Subject: CN=e4fd2b21944702cc358bc1ee844380cf6f485e78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:09:f9:72:18:01:50:02:ee:88:6b:4d:a3:4c: 10:5e:54:1f:50:52:27:f8:e0:05:06:92:78:fd:d2: c1:29:89:91:2b:23:9b:d0:33:ab:b0:08:34:2b:05: b5:38:28:c4:71:14:b7:28:2d:72:4a:54:6a:14:21: 80:c1:51:25:de:19:22:e5:2e:c5:1b:b5:19:71:b4: fa:5b:17:55:ec:5a:17:db:10:33:fb:39:d9:fc:5c: 4f:fb:98:a2:e4:f7:a2:a8:e1:11:ea:f7:c7:4f:cf: 84:85:59:9b:20:26:8f:9a:ef:4c:ef:15:70:9a:db: 53:a6:59:0d:d1:f0:96:ae:dd:e5:78:92:b3:e1:b3: f9:02:55:8c:b7:0e:ca:fd:91:6d:52:7d:94:50:6b: aa:12:9c:74:5a:a2:da:28:37:83:b8:3c:70:9a:cc: 39:26:3d:49:ff:43:6e:6e:80:28:0a:8b:12:c1:5b: b3:bc:fa:5a:8c:9c:28:5a:7b:51:59:15:bb:c3:15: b4:a8:88:19:55:37:ae:28:2d:03:7c:72:34:24:bf: 37:93:96:80:f5:75:ee:5d:1b:29:c8:b4:9d:62:bc: 42:b0:c3:8d:14:8f:23:bf:ad:84:b5:99:50:c7:ad: 14:40:7c:11:99:eb:82:b3:78:c3:12:ee:04:39:6d: 14:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:FD:2B:21:94:47:02:CC:35:8B:C1:EE:84:43:80:CF:6F:48:5E:78 X509v3 Authority Key Identifier: keyid:23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:65:ed:b7:73:f9:1f:d6:7a:19:f6:cc:b6:46:da:f3:56:14: 0a:d8:eb:6d:67:9f:d4:e4:30:2e:e9:47:58:a3:d6:97:d3:fd: 47:64:ce:b8:2d:83:18:b7:76:2c:38:95:95:ef:f7:c1:e9:08: 99:f6:25:d0:65:28:58:ec:45:b9:bc:0c:2e:65:1e:0e:04:ef: fb:8d:e3:34:51:ed:60:a6:b8:5d:f5:e3:e8:3b:12:d8:94:ce: 59:69:36:fc:f1:0d:df:a5:25:8c:27:f9:ca:8e:c3:09:2d:4d: 25:16:97:4f:59:9d:61:36:7b:b7:b6:97:c5:1d:c3:ac:d3:3f: c4:2e:36:6b:df:84:95:d1:d1:8f:8c:b1:a2:de:cd:e2:9c:77: 25:f6:57:01:fc:8b:d7:5d:1c:49:87:83:8f:89:1d:63:f9:66: 56:e2:7f:76:69:df:f6:ce:60:63:67:b5:01:89:bd:30:ff:8e: d7:b9:bf:a2:0a:c3:b4:66:74:f1:7c:12:4c:d5:8d:4c:e8:b2: 95:5d:9f:19:e2:f0:68:34:a7:f0:28:05:93:4e:7d:81:c8:f8: 00:67:ac:e9:76:19:25:74:de:98:df:57:9a:bb:d6:b8:fd:57: 8f:32:36:92:f1:66:ae:de:de:53:1f:4d:1b:8a:fa:48:e3:59: c0:68:dd:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ7AbUBGjYPgNva/9SIpqa2mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzMjU5ZGEzYjFiMzhjYTA5MzlmNDkwZmI5MDQzZmNkODlj ZmQwNjIwHhcNMjYwNjEzMTAwMDQ1WhcNMjYwNjE0MTAwMDQ1WjAzMTEwLwYDVQQD EyhlNGZkMmIyMTk0NDcwMmNjMzU4YmMxZWU4NDQzODBjZjZmNDg1ZTc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuAn5chgBUALuiGtNo0wQXlQfUFIn +OAFBpJ4/dLBKYmRKyOb0DOrsAg0KwW1OCjEcRS3KC1ySlRqFCGAwVEl3hki5S7F G7UZcbT6WxdV7FoX2xAz+znZ/FxP+5ii5PeiqOER6vfHT8+EhVmbICaPmu9M7xVw mttTplkN0fCWrt3leJKz4bP5AlWMtw7K/ZFtUn2UUGuqEpx0WqLaKDeDuDxwmsw5 Jj1J/0NuboAoCosSwVuzvPpajJwoWntRWRW7wxW0qIgZVTeuKC0DfHI0JL83k5aA 9XXuXRspyLSdYrxCsMONFI8jv62EtZlQx60UQHwRmeuCs3jDEu4EOW0UxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOT9KyGURwLMNYvB7oRDgM9vSF54MB8GA1UdIwQY MBaAFCMlnaOxs4ygk59JD7kEP82Jz9BiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUt NjU0ZGQ2NDQyY2U0LzEvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUtNjU0ZGQ2NDQyY2U0 LzEvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbWXtt3P5 H9Z6GfbMtkba81YUCtjrbWef1OQwLulHWKPWl9P9R2TOuC2DGLd2LDiVle/3wekI mfYl0GUoWOxFubwMLmUeDgTv+43jNFHtYKa4XfXj6DsS2JTOWWk2/PEN36UljCf5 yo7DCS1NJRaXT1mdYTZ7t7aXxR3DrNM/xC42a9+EldHRj4yxot7N4px3JfZXAfyL 110cSYeDj4kdY/lmVuJ/dmnf9s5gY2e1AYm9MP+O17m/ogrDtGZ08XwSTNWNTOiy lV2fGeLwaDSn8CgFk059gcj4AGes6XYZJXTemN9XmrvWuP1XjzI2kvFmrt7eUx9N G4r6SONZwGjdWA== -----END CERTIFICATE-----Generated at Sat Jun 13 15:41:10 2026 by rpki-client