$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft File: AOT2p3Not87P5nIgtDZXax4Aiuw.mft (raw, json) Hash identifier: hmUAsmZhRhzfP2B5ssU7ctqFwBDtjh4i3K5WRASTtIQ= Subject key identifier: 6B:7B:41:0F:6A:57:B6:38:A5:5A:38:5A:C4:0A:93:4E:55:93:F2:A7 Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec Certificate serial: 019EBF23BC46204CF4D173C452297A9A554C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft Manifest number: 1A65 Signing time: Sat 13 Jun 2026 04:00:50 +0000 Manifest this update: Sat 13 Jun 2026 04:00:50 +0000 Manifest next update: Sun 14 Jun 2026 04:00:50 +0000 Files and hashes: 1: 1-7-GRl1DpJL9MX_Eh7vVlgQAtds.roa (hash: qBQ+Yv34RT+76LqwEUvZMWK4vq87p/Tm5N2E03sJUtE=) 2: 1-WsLt9tKKbGh5bPdJYro7hdbfv4.roa (hash: bwEotLkWd6AAV2gsEIC8jHaD4DnocRPu1uFbzjdp2BY=) 3: AOT2p3Not87P5nIgtDZXax4Aiuw.crl (hash: dGNUjZN9KqhtCthrt4KWWhViZ/BTntuGj7HylyEFfdI=) 4: CP1700xQhoIo0eqZb96w49fwMZU.roa (hash: FhGMMmXWb4O7zbwANRuKCF/ES8PwzOmEkZV99iTN5xU=) 5: CSyj_w7-Q-f6pU0fjRihvITggRw.roa (hash: cT+B8H3i/X+Kn4FQ9SBZJZPvEtdYb5GUGwmBs+mDYDE=) 6: Iz8oQHvYY4N1cu4pgE3299ogM34.roa (hash: GTn6Y+DWEw4+IcATVORnDqgcpHWD0i8V9c7BBTnRM3U=) 7: MQ0e7OQgina0hHLbzkJJI7ocRMY.roa (hash: lYlPT7y2KTJ0qjKzQaLtDJlIn+M8xo18ZCJuzXN583Y=) 8: VcGOwSBLa8MeclenBwYCnJTkc6Q.roa (hash: ZpKqr8OOjlncepBvaT8KeQio9IThw68qGgH8coHhuVI=) 9: gF0x-IgTBvCJCERAByN93AH9MjM.roa (hash: f9L9sZ2MryoARd93KF5kcE6ImNuSL3mNiWJ8yZc3d58=) 10: hGF5HckbV_mO1zNnnUvLaxvGgg0.roa (hash: LswWVKDsb8V0ubfBEeUCi7BkiOP6J97pjosqCGNORUk=) 11: oPPgaBYxfthIjxyRNKKvuQhADcA.roa (hash: vJpx4imZl2f0ZsJVLjSi4WZMmzQUNNlQIXHfoEUu3/k=) 12: psdxNS9e9UAm4jnMurOBj_7r3SE.roa (hash: DmgbB+oJGANiMlAsSILkh1J4OQmbWXdSoCr006Xmwis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:bf:23:bc:46:20:4c:f4:d1:73:c4:52:29:7a:9a:55:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec Validity Not Before: Jun 13 04:00:50 2026 GMT Not After : Jun 14 04:00:50 2026 GMT Subject: CN=6b7b410f6a57b638a55a385ac40a934e5593f2a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:da:95:7c:61:b2:93:53:d4:65:08:d8:af:bd: 77:88:ae:8e:f3:82:97:84:82:56:6a:1f:ec:7f:1c: f2:50:04:3e:b5:60:54:44:94:f2:28:f8:56:d8:1f: 18:4c:fe:b3:f9:bb:c5:b2:7c:57:db:b9:86:55:78: dd:ec:4d:b9:1d:2f:ae:20:6b:b9:2b:fa:28:3f:e6: f8:82:eb:66:1e:9b:7c:87:e6:a4:90:eb:8f:e0:c7: 8f:ba:1f:40:1e:eb:7f:26:f2:71:80:5b:ee:b2:35: f7:da:ef:09:1a:1b:08:a9:06:78:60:49:cd:f5:c6: 2f:5a:fe:b6:03:5c:33:9a:e1:69:fa:56:30:d1:a6: d6:3e:3b:71:f7:41:d0:f1:0f:ca:47:9b:a1:b7:78: aa:76:f8:e3:d8:b1:11:5f:49:b4:81:0e:3f:88:42: 4a:26:0b:38:89:6f:b7:48:8a:f6:36:30:fa:86:be: e2:31:1e:b3:5d:47:c5:f7:91:c7:a0:79:6a:9d:5c: 56:b0:27:49:94:61:73:7b:e5:81:eb:a5:63:a0:94: 17:0c:b1:d8:fd:bd:67:83:61:47:d6:f8:67:81:1b: a8:73:e7:7a:80:62:c7:0c:0f:bc:20:f5:5d:57:8b: 50:ae:ca:f9:78:42:aa:36:39:9e:98:14:6a:70:08: 38:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:7B:41:0F:6A:57:B6:38:A5:5A:38:5A:C4:0A:93:4E:55:93:F2:A7 X509v3 Authority Key Identifier: keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:0d:74:ab:47:be:a7:c2:c2:d9:55:96:04:9b:0e:4e:ad:b8: 44:e9:ca:f2:c8:90:c5:de:a2:64:ff:31:c8:13:2e:62:6e:b2: 1c:96:26:87:df:23:42:47:3d:f2:b5:a4:37:db:37:f5:32:b9: 33:75:88:50:55:40:25:f5:3e:3c:e4:27:c1:ca:9a:39:83:9f: 49:97:47:1d:f9:1a:c8:2b:39:80:e4:ee:3b:cc:08:41:d0:dd: 45:75:09:b1:f5:9a:6a:97:ea:0f:06:7b:c9:6b:84:89:23:e6: a1:70:22:da:cd:e6:bb:20:5f:0f:e1:04:6d:c2:68:db:c3:86: 96:27:79:e0:5e:2d:3f:16:ca:9c:3c:d7:e7:e4:f6:d4:ad:75: 19:e7:3c:de:72:a2:2d:a5:6c:4d:b6:65:2b:b0:77:81:11:cd: 94:92:fe:09:bc:45:24:af:8c:d4:90:52:2d:59:e2:1a:37:95: e5:ff:30:ab:19:17:86:93:d9:f7:bb:8b:b3:77:ac:ec:07:f3: 2d:35:bc:b0:01:af:83:b9:6d:09:5c:9f:06:c9:35:46:4e:52: 38:73:fe:fa:5b:71:f5:5f:db:8f:37:23:e7:90:b1:1d:25:fa: 32:82:59:d7:fd:31:15:a6:cd:6f:6d:7a:9d:72:4c:1c:99:0d: 1b:9c:4f:eb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ6/I7xGIEz00XPEUil6mlVMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZTRmNmE3NzM2OGI3Y2VjZmU2NzIyMGI0MzY1NzZiMWUw MDhhZWMwHhcNMjYwNjEzMDQwMDUwWhcNMjYwNjE0MDQwMDUwWjAzMTEwLwYDVQQD Eyg2YjdiNDEwZjZhNTdiNjM4YTU1YTM4NWFjNDBhOTM0ZTU1OTNmMmE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzdqVfGGyk1PUZQjYr713iK6O84KX hIJWah/sfxzyUAQ+tWBURJTyKPhW2B8YTP6z+bvFsnxX27mGVXjd7E25HS+uIGu5 K/ooP+b4gutmHpt8h+akkOuP4MePuh9AHut/JvJxgFvusjX32u8JGhsIqQZ4YEnN 9cYvWv62A1wzmuFp+lYw0abWPjtx90HQ8Q/KR5uht3iqdvjj2LERX0m0gQ4/iEJK Jgs4iW+3SIr2NjD6hr7iMR6zXUfF95HHoHlqnVxWsCdJlGFze+WB66VjoJQXDLHY /b1ng2FH1vhngRuoc+d6gGLHDA+8IPVdV4tQrsr5eEKqNjmemBRqcAg43QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGt7QQ9qV7Y4pVo4WsQKk05Vk/KnMB8GA1UdIwQY MBaAFADk9qdzaLfOz+ZyILQ2V2seAIrsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMt YjA3ZDg0MTZhZTRhLzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMtYjA3ZDg0MTZhZTRh LzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbw10q0e+ p8LC2VWWBJsOTq24ROnK8siQxd6iZP8xyBMuYm6yHJYmh98jQkc98rWkN9s39TK5 M3WIUFVAJfU+POQnwcqaOYOfSZdHHfkayCs5gOTuO8wIQdDdRXUJsfWaapfqDwZ7 yWuEiSPmoXAi2s3muyBfD+EEbcJo28OGlid54F4tPxbKnDzX5+T21K11Gec83nKi LaVsTbZlK7B3gRHNlJL+CbxFJK+M1JBSLVniGjeV5f8wqxkXhpPZ97uLs3es7Afz LTW8sAGvg7ltCVyfBsk1Rk5SOHP++ltx9V/bjzcj55CxHSX6MoJZ1/0xFabNb216 nXJMHJkNG5xP6w== -----END CERTIFICATE-----Generated at Sat Jun 13 09:16:49 2026 by rpki-client