$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft File: s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft (raw, json) Hash identifier: 2a5NsQlQcgdGXxGRO204FRz/PAHUMZHjvgWF1IaH5DM= Subject key identifier: E0:8B:16:A4:D1:61:87:45:13:65:1E:0D:93:36:C4:3F:AF:70:7B:E4 Authority key identifier: B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 Certificate issuer: /CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Certificate serial: 019EC0DBC0455D04C5A84349AB26550F7D20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft Manifest number: 1980 Signing time: Sat 13 Jun 2026 12:01:27 +0000 Manifest this update: Sat 13 Jun 2026 12:01:27 +0000 Manifest next update: Sun 14 Jun 2026 12:01:27 +0000 Files and hashes: 1: 3qg1KGc8omoslEG7jKlx4gx_LhQ.roa (hash: TnGs+EX2f9uQeebTem+/sfQFkc/zmqJQ5dURkVKi/n4=) 2: 4KsNQpqZCzqF5DWTGMqSZIdafk4.roa (hash: LOn9PMfVYWd9yqbUArMEkf8C7kjYf3BgWxcSoG8pKwI=) 3: 6JxXQsPP5HeOd-zrinJyzOvxbvk.roa (hash: avnYdM5iKLHNYRmn2VZGG+0Rulxb30BrgSNse/s1Stw=) 4: 8jnBDiXHCMLwoqK_MUEphtqond4.roa (hash: JQNWS1MN5qM+R+cOUByVeUtDUjjovKMpy1HfvZa5BDs=) 5: CIPqMceoslS6LHeUzahqX5ZpIbI.roa (hash: Mj/kOm8dtViy8eTI8+PFg8dlCnOVmLacRiUDOSj27Kc=) 6: N18aROBQ19Wj6Kdi3-iQ5c6OfeA.roa (hash: ezUkbSC7P3mO/d4z+5YndvD9aLmtqZ6KOctd3R4dOws=) 7: OUOP2IJYsVbNI_PTNHQ12RVMoDI.roa (hash: BnGONzncD2wwl5KKt6nDn2hcjBqGU1Umy1qq2TndNLU=) 8: X5qhIZ7xGCMvKQfZQrbeuOZ9uf8.roa (hash: i3DUL5+61b/Yr3dFWew0V6gv0s7RuSUIeTUfltYEFJs=) 9: Zjh5y2Kd8cSRzdszQnign9Lz3l4.roa (hash: TMEeISdGQlH/KULrec6oWy2p2scTUrKdaSvlMRJx3eE=) 10: iO24D_W0B1UjBwRFlQ8CdPgIqgs.roa (hash: VKTFC+1OrvrVs+DP4mHHKFLGZKyqteGaSW/b1eEAqMs=) 11: jytqbvPB7p4L3yG-M73X311CEZM.roa (hash: OoChTy3t+Ypl0/yoHt/yN9OFfFbQL1CiSDqOkSSFy9Y=) 12: s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl (hash: hxX+FMXTzjtiAXh5bFb0pjs7CyJeD/zrI3kRIuMfrvE=) 13: x3SzmyzLt8OYyGIP7YYKzeSx1t0.roa (hash: aW1SwGzhZKDv9vTg+ztGzAN+MHGjx+qNx1xNIM7zvvM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 08:43:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:c0:db:c0:45:5d:04:c5:a8:43:49:ab:26:55:0f:7d:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Validity Not Before: Jun 13 12:01:27 2026 GMT Not After : Jun 14 12:01:27 2026 GMT Subject: CN=e08b16a4d161874513651e0d9336c43faf707be4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:99:6b:ff:ed:82:1f:20:50:38:fd:32:b7:7c: 7e:b5:9b:2c:07:7b:66:cc:9e:91:99:7c:1a:98:93: 90:1a:2d:8b:c2:cc:76:e6:75:81:4a:62:2b:2a:c0: 6f:af:77:10:85:44:78:6f:8b:59:35:2e:0d:e0:4e: c4:21:ae:e2:2d:6a:fd:7d:be:34:82:f8:0c:13:1a: 3e:ca:05:82:74:5e:89:68:d0:39:87:a3:2c:31:44: 37:3b:1b:02:e1:3e:d5:37:45:9a:04:35:3c:5e:b9: 80:6d:30:a2:6c:c9:df:ae:b3:92:f7:65:88:76:8b: f3:d6:a7:39:95:3c:8a:51:0d:8a:21:aa:91:26:48: 82:26:96:04:6d:66:b4:11:7d:e0:c4:63:fd:04:ee: b6:77:11:c9:aa:b3:c9:ad:0f:3d:60:32:6d:88:5b: 62:ce:35:e0:6a:f5:a7:98:1c:9f:7e:37:a2:f5:9b: ad:08:94:ae:4e:27:9a:4c:e3:1a:dd:61:2f:b0:af: 34:dd:a9:82:96:44:43:79:a5:4f:7a:bf:ed:c5:89: 0c:8c:c4:a9:dd:33:92:58:ef:20:f4:af:16:13:ef: 23:54:2b:c3:0b:8b:57:dc:3d:8e:6a:cc:55:93:71: e6:48:31:4f:2a:da:ea:62:fd:55:43:35:e7:72:8d: fe:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:8B:16:A4:D1:61:87:45:13:65:1E:0D:93:36:C4:3F:AF:70:7B:E4 X509v3 Authority Key Identifier: keyid:B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:31:91:d7:75:28:ae:e9:ea:1d:9d:a2:38:31:2b:76:b2:eb: bc:ca:56:0a:3d:d9:1b:34:db:a8:6b:4c:60:e9:a8:dd:10:31: 3f:c7:41:52:a2:a9:c1:55:e5:91:be:49:f0:64:bf:f3:fa:c3: f4:db:b7:1c:76:87:70:31:26:59:6b:09:3e:02:bb:78:a8:4f: 46:5b:79:b7:8d:1e:c9:78:f2:2f:41:6b:e4:6f:18:e1:e8:1b: ab:80:df:0c:9d:10:72:7c:bc:a2:96:15:aa:ab:5a:01:0c:d7: fc:95:1d:f7:96:54:38:30:a4:ed:14:96:3c:dc:d8:d8:0e:ef: 2b:d6:99:7b:db:3a:19:66:ae:81:be:f7:73:bd:cb:c6:b3:3a: 0d:3d:81:fe:1f:ed:0f:05:5c:08:09:1c:26:0b:a7:0b:74:c6: 61:cc:96:58:c1:26:45:f3:ee:44:3c:6e:07:87:5d:94:ab:88: 18:06:da:46:eb:76:81:8b:88:e9:56:c4:db:ad:6a:cf:8c:45: 3e:9a:8c:b4:0d:00:f3:30:b3:84:26:9e:f9:2a:c2:43:e3:14: 3b:3c:1a:52:12:55:84:5e:ab:ca:e1:2d:96:0f:10:e7:2e:10: 31:98:bd:01:fe:04:8c:79:e9:c1:53:cd:9c:d2:7f:a3:1b:3d: f3:f4:5c:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ7A28BFXQTFqENJqyZVD30gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzYTVkOTk4NjNkYjJlNDliNDRmNmMzMjRlYjA0Mzg4ZmM3 NTE1ZDIwHhcNMjYwNjEzMTIwMTI3WhcNMjYwNjE0MTIwMTI3WjAzMTEwLwYDVQQD EyhlMDhiMTZhNGQxNjE4NzQ1MTM2NTFlMGQ5MzM2YzQzZmFmNzA3YmU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu5lr/+2CHyBQOP0yt3x+tZssB3tm zJ6RmXwamJOQGi2Lwsx25nWBSmIrKsBvr3cQhUR4b4tZNS4N4E7EIa7iLWr9fb40 gvgMExo+ygWCdF6JaNA5h6MsMUQ3OxsC4T7VN0WaBDU8XrmAbTCibMnfrrOS92WI dovz1qc5lTyKUQ2KIaqRJkiCJpYEbWa0EX3gxGP9BO62dxHJqrPJrQ89YDJtiFti zjXgavWnmByffjei9ZutCJSuTieaTOMa3WEvsK803amClkRDeaVPer/txYkMjMSp 3TOSWO8g9K8WE+8jVCvDC4tX3D2OasxVk3HmSDFPKtrqYv1VQzXnco3+8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOCLFqTRYYdFE2UeDZM2xD+vcHvkMB8GA1UdIwQY MBaAFLOl2Zhj2y5JtE9sMk6wQ4j8dRXSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAt ZWVjNWQ1MGVmYTk0LzEvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAtZWVjNWQ1MGVmYTk0 LzEvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXzGR13Uo runqHZ2iODErdrLrvMpWCj3ZGzTbqGtMYOmo3RAxP8dBUqKpwVXlkb5J8GS/8/rD 9Nu3HHaHcDEmWWsJPgK7eKhPRlt5t40eyXjyL0Fr5G8Y4egbq4DfDJ0Qcny8opYV qqtaAQzX/JUd95ZUODCk7RSWPNzY2A7vK9aZe9s6GWaugb73c73LxrM6DT2B/h/t DwVcCAkcJgunC3TGYcyWWMEmRfPuRDxuB4ddlKuIGAbaRut2gYuI6VbE261qz4xF PpqMtA0A8zCzhCae+SrCQ+MUOzwaUhJVhF6ryuEtlg8Q5y4QMZi9Af4EjHnpwVPN nNJ/oxs98/RcYw== -----END CERTIFICATE-----Generated at Sat Jun 13 16:54:11 2026 by rpki-client