$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft File: kdDHjDCaPpncmrdPLNwEhIWedTA.mft (raw, json) Hash identifier: Mu6mE+Rfimf71rSZsS+Leh2sCc0D6EnxC2Rsj6GsUGs= Subject key identifier: 1F:21:70:6D:FD:CE:BB:18:F0:27:44:79:74:15:FF:4C:73:4F:09:29 Authority key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30 Certificate issuer: /CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530 Certificate serial: 019EBF91C337C6513B1DFD4F17355727287D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft Manifest number: 1477 Signing time: Sat 13 Jun 2026 06:01:01 +0000 Manifest this update: Sat 13 Jun 2026 06:01:01 +0000 Manifest next update: Sun 14 Jun 2026 06:01:01 +0000 Files and hashes: 1: 4VmR_FihzyMKRVwNqS1q32ma_4w.roa (hash: 8llGmDSPV1S8WvDmecxyGu8AsVkz9E7OwToEbm9Afi8=) 2: 9ThI9Z7soYxz8aK7SxBvxoPEOX4.roa (hash: 2FCnysFwLOl4zVeb97SHJ1QvBKVL+gw4QmS3UAORjFk=) 3: BsMfnzrxddpnmFQ8FtiqLN4hIRw.roa (hash: GbFN7H89aII0f8FiIff5RGaJGPYoV9OOEoYuPkHE93c=) 4: C67-QabxkPaVhoCKelfc7gJ1hK8.roa (hash: 0WW6NyrxV5VH4o1lj6kLTZOdEKPeDBs7ouwPQd+hBHw=) 5: GXCfAVmuuL63Oe4dOVqYkc3Wuzg.roa (hash: L3MDEpVumA01FdWvikqD5sE8kkEXPwKtDKdz6KqfMnQ=) 6: RY0bArq-jZLzZUGQCt7VtVQ1eP8.roa (hash: nOIDnyfWMWKkEgKPjDc9li7leEEkKMO7ZYw+RINdMRI=) 7: WNwct_JeSUw9EGnGt5EMmHO1qnA.roa (hash: 8JESbBJVZwKNLtuuBYLAyN1yjWX+0RJfMcx4iiDnUQ0=) 8: br-MdcUGAgIJZ2jokAIrGgvBgVg.roa (hash: nAJrJwXFm0eNNJbUiUMkYMOpV3Mo7gqR8CqVePMN9SA=) 9: kdDHjDCaPpncmrdPLNwEhIWedTA.crl (hash: siBSVSPfw3EJoupVNSwVEOvcC+Lko7l4jx71rdYrLJ0=) 10: p3gPfuFdg2rqrSBfl0UDEUdNbjM.roa (hash: bWC6ioqLuy3JQURX6TTBBncQtFn3EtAYrnrtm+JIq5g=) 11: qoJxh9RoMci9r1884qksasXONeQ.roa (hash: b1P5hF2MWBN0Il3GucTyqyanvw/mWve+jbkBZTYW4xQ=) 12: rUMTx45HXhT_MTA8guO-8T9IUPs.roa (hash: yK8AP3UaROn7J6m+AMP74llGEVQg0fy8g5ZS+T2U/tk=) 13: zByDWqzQes6Qf_5yruyAW6l4NA8.roa (hash: 4mGvD80bIUslVCK/Nf88S+YHOSjLonqjJpu89t+7Om0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:bf:91:c3:37:c6:51:3b:1d:fd:4f:17:35:57:27:28:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530 Validity Not Before: Jun 13 06:01:01 2026 GMT Not After : Jun 14 06:01:01 2026 GMT Subject: CN=1f21706dfdcebb18f02744797415ff4c734f0929 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f9:2b:5d:3d:e7:c5:a2:79:c4:07:8b:28:43: a6:2a:6e:ed:ce:81:41:1b:1f:27:4d:58:9f:bd:21: 56:9d:29:96:7d:66:b3:06:d4:ea:c1:86:56:96:04: d0:e2:ed:f3:a2:8a:e4:47:c1:aa:ce:8c:db:53:4e: 8a:75:13:0c:69:bd:1a:3d:d6:74:50:a8:e4:29:51: 55:80:35:d0:17:c4:37:6b:66:60:32:27:42:28:e3: 39:be:17:bc:16:4a:76:cc:d2:53:db:f0:ff:c3:b7: da:c3:7d:27:5b:85:95:87:7f:4c:ee:b6:c7:8f:c3: 63:83:9e:43:bd:ea:67:5c:3c:c2:88:7a:1f:50:ca: 5b:ae:0b:2f:1b:87:96:94:e9:9d:5b:5f:0c:72:cc: 2c:ae:8a:d9:7c:1f:94:f4:7f:5e:ce:78:26:22:62: bd:71:a8:01:e3:79:86:5f:8a:04:8f:65:a7:d6:c0: 01:42:c0:2c:6d:05:04:21:b5:90:72:e3:8f:96:1a: ba:ee:03:b8:7a:94:1b:91:40:6f:e3:13:eb:ee:91: df:71:9e:cf:32:0a:b6:80:4e:ff:ff:ec:01:42:0a: bc:cb:77:a5:b8:b4:ff:2b:fa:6c:a1:9f:7c:15:a0: dc:d2:e2:d0:88:b4:a4:f8:48:52:fa:b5:65:dc:c8: 22:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:21:70:6D:FD:CE:BB:18:F0:27:44:79:74:15:FF:4C:73:4F:09:29 X509v3 Authority Key Identifier: keyid:91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:25:6c:1a:d2:aa:8b:79:e1:cb:d8:97:c3:63:f4:f0:77:e7: f8:38:2c:cb:8b:51:fa:c7:1f:73:db:72:f9:e2:a4:25:b4:49: 8a:68:34:c4:d3:03:ae:60:f5:0d:ae:dd:19:1a:d3:58:b0:cd: 7b:75:c5:4a:4d:b4:fe:03:11:70:0c:62:34:02:4c:2f:73:de: 95:97:26:f2:68:50:63:fd:6a:6f:cc:cb:67:01:e0:2b:d1:b4: 6a:f0:2a:df:7e:50:a2:33:be:d8:e4:ce:3c:8f:fa:09:cc:a2: 10:9b:f0:e0:2c:b5:2f:4b:55:91:0c:a2:0e:40:52:a4:ff:84: ac:b5:ed:3a:bd:4d:ba:26:bb:f0:7a:4a:2f:3d:a6:a9:88:d1: a4:cd:6a:c3:3e:d7:f0:b3:b4:09:b7:0c:b2:09:35:4e:24:bd: e0:8b:47:71:ec:a5:1b:15:32:9d:02:31:19:6f:6e:85:88:66: 95:5b:64:58:a3:31:a3:80:80:43:ee:8b:0c:c5:dd:fc:e0:ad: 66:06:34:cf:fd:72:ee:20:80:0d:58:11:77:0d:c1:44:06:4c: 81:55:8d:86:5a:23:71:07:1c:50:8c:4c:ea:e5:bf:f3:cf:f8: 21:ba:4c:b6:16:de:13:de:ee:90:2c:b3:ba:d5:52:4f:d4:71: c8:02:7d:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ6/kcM3xlE7Hf1PFzVXJyh9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxZDBjNzhjMzA5YTNlOTlkYzlhYjc0ZjJjZGMwNDg0ODU5 ZTc1MzAwHhcNMjYwNjEzMDYwMTAxWhcNMjYwNjE0MDYwMTAxWjAzMTEwLwYDVQQD EygxZjIxNzA2ZGZkY2ViYjE4ZjAyNzQ0Nzk3NDE1ZmY0YzczNGYwOTI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnfkrXT3nxaJ5xAeLKEOmKm7tzoFB Gx8nTVifvSFWnSmWfWazBtTqwYZWlgTQ4u3zoorkR8GqzozbU06KdRMMab0aPdZ0 UKjkKVFVgDXQF8Q3a2ZgMidCKOM5vhe8Fkp2zNJT2/D/w7faw30nW4WVh39M7rbH j8Njg55DvepnXDzCiHofUMpbrgsvG4eWlOmdW18McswsrorZfB+U9H9ezngmImK9 cagB43mGX4oEj2Wn1sABQsAsbQUEIbWQcuOPlhq67gO4epQbkUBv4xPr7pHfcZ7P Mgq2gE7//+wBQgq8y3eluLT/K/psoZ98FaDc0uLQiLSk+EhS+rVl3MgilQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB8hcG39zrsY8CdEeXQV/0xzTwkpMB8GA1UdIwQY MBaAFJHQx4wwmj6Z3Jq3TyzcBISFnnUwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEt NDg1MmM4ZmY4YWYyLzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEtNDg1MmM4ZmY4YWYy LzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADSVsGtKq i3nhy9iXw2P08Hfn+Dgsy4tR+scfc9ty+eKkJbRJimg0xNMDrmD1Da7dGRrTWLDN e3XFSk20/gMRcAxiNAJML3PelZcm8mhQY/1qb8zLZwHgK9G0avAq335QojO+2OTO PI/6CcyiEJvw4Cy1L0tVkQyiDkBSpP+ErLXtOr1Nuia78HpKLz2mqYjRpM1qwz7X 8LO0CbcMsgk1TiS94ItHceylGxUynQIxGW9uhYhmlVtkWKMxo4CAQ+6LDMXd/OCt ZgY0z/1y7iCADVgRdw3BRAZMgVWNhlojcQccUIxM6uW/88/4IbpMthbeE97ukCyz utVST9RxyAJ9+Q== -----END CERTIFICATE-----Generated at Sat Jun 13 10:26:10 2026 by rpki-client