$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft File: kdDHjDCaPpncmrdPLNwEhIWedTA.mft (raw, json) Hash identifier: JEWTHwEChpJGw9eqATK5oJiv7U5/O9Vc6saKD3nrkb4= Subject key identifier: E6:13:34:39:95:3F:29:E7:32:92:0F:73:2D:31:FC:B0:A1:C6:25:53 Authority key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30 Certificate issuer: /CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530 Certificate serial: 019D97E1E73E674A9D08593F0E7537643329 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft Manifest number: 13DD Signing time: Thu 16 Apr 2026 20:00:57 +0000 Manifest this update: Thu 16 Apr 2026 20:00:57 +0000 Manifest next update: Fri 17 Apr 2026 20:00:57 +0000 Files and hashes: 1: 9ThI9Z7soYxz8aK7SxBvxoPEOX4.roa (hash: 2FCnysFwLOl4zVeb97SHJ1QvBKVL+gw4QmS3UAORjFk=) 2: BsMfnzrxddpnmFQ8FtiqLN4hIRw.roa (hash: GbFN7H89aII0f8FiIff5RGaJGPYoV9OOEoYuPkHE93c=) 3: C67-QabxkPaVhoCKelfc7gJ1hK8.roa (hash: 0WW6NyrxV5VH4o1lj6kLTZOdEKPeDBs7ouwPQd+hBHw=) 4: F9-SxyIQIDP0T_L82XSaWh-dz-8.roa (hash: xq0esTvybmQE92rRBw7ldOk97wFXJ2Dn8bPKN1sbBN4=) 5: GXCfAVmuuL63Oe4dOVqYkc3Wuzg.roa (hash: L3MDEpVumA01FdWvikqD5sE8kkEXPwKtDKdz6KqfMnQ=) 6: RY0bArq-jZLzZUGQCt7VtVQ1eP8.roa (hash: nOIDnyfWMWKkEgKPjDc9li7leEEkKMO7ZYw+RINdMRI=) 7: WNwct_JeSUw9EGnGt5EMmHO1qnA.roa (hash: 8JESbBJVZwKNLtuuBYLAyN1yjWX+0RJfMcx4iiDnUQ0=) 8: br-MdcUGAgIJZ2jokAIrGgvBgVg.roa (hash: nAJrJwXFm0eNNJbUiUMkYMOpV3Mo7gqR8CqVePMN9SA=) 9: kdDHjDCaPpncmrdPLNwEhIWedTA.crl (hash: BCkvWwgOuzPZqqsyyyYJaim/BUgsUv6CYrbZEbbOlXo=) 10: p3gPfuFdg2rqrSBfl0UDEUdNbjM.roa (hash: bWC6ioqLuy3JQURX6TTBBncQtFn3EtAYrnrtm+JIq5g=) 11: qoJxh9RoMci9r1884qksasXONeQ.roa (hash: b1P5hF2MWBN0Il3GucTyqyanvw/mWve+jbkBZTYW4xQ=) 12: zByDWqzQes6Qf_5yruyAW6l4NA8.roa (hash: 4mGvD80bIUslVCK/Nf88S+YHOSjLonqjJpu89t+7Om0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 Apr 2026 20:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:97:e1:e7:3e:67:4a:9d:08:59:3f:0e:75:37:64:33:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530 Validity Not Before: Apr 16 20:00:57 2026 GMT Not After : Apr 17 20:00:57 2026 GMT Subject: CN=e6133439953f29e732920f732d31fcb0a1c62553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c7:3a:ce:52:a7:d7:e6:8c:a4:fc:cf:5b:50: 84:9e:d5:f0:c9:5b:72:06:e5:cf:88:35:21:a9:15: 88:bd:2e:d0:71:c8:dc:68:39:b8:ce:9c:07:bc:ba: cb:b4:b4:e0:21:16:43:12:d4:e3:85:58:ee:b7:29: 72:53:f1:3a:82:da:54:b9:10:94:d8:80:26:34:d9: ce:fa:a2:23:96:dc:c7:46:6d:00:56:d4:54:ce:e4: 6e:04:82:1c:62:59:15:f4:49:a3:45:cf:a3:3a:6b: 81:8f:62:72:09:6e:31:89:e7:ca:7d:25:fc:4b:8f: d1:5d:bb:e2:c6:28:8d:ca:d5:01:b7:2b:15:89:fd: 29:51:67:19:70:99:43:7d:3c:23:65:b4:52:eb:1d: f1:cd:ff:ad:4d:40:9a:41:f8:3a:8d:14:46:00:d6: 7b:63:75:ee:31:f4:01:e7:93:22:52:1f:56:74:8e: ab:28:75:e4:57:22:59:09:f4:7e:5c:37:57:a7:ff: 3b:b1:fe:48:04:d8:e4:eb:fc:42:2d:d1:1e:fd:44: 89:c9:1a:27:a5:bc:ad:13:a6:2d:d9:a1:15:e9:4d: db:f7:fa:8d:02:d1:04:90:ad:7b:42:12:a2:51:32: 23:72:66:2d:e5:16:39:41:bb:97:b4:f0:c9:1f:b6: 57:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:13:34:39:95:3F:29:E7:32:92:0F:73:2D:31:FC:B0:A1:C6:25:53 X509v3 Authority Key Identifier: keyid:91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:5f:ca:82:9d:59:20:de:1d:b3:68:30:ea:62:7b:c5:2b:de: 07:57:fa:8a:9b:1b:ca:77:0b:9c:be:e7:b4:56:13:3c:7d:b2: 91:d9:73:90:95:4f:fa:ca:e3:6e:9d:e5:50:f6:03:32:a0:83: 09:0b:d8:5f:02:02:8c:f3:e2:61:8e:39:a5:b5:37:e7:c9:4c: b3:ea:75:f3:65:f4:3e:81:2c:95:a1:3a:74:01:a2:f9:26:53: d2:a9:8d:2d:8f:90:8a:2b:86:09:2d:a2:26:7f:6f:a7:1d:4a: 1e:25:ed:7d:13:22:64:93:59:a1:96:46:c5:69:7c:b3:05:c8: 0b:f4:21:94:b9:2d:32:10:d9:ee:a6:3b:11:9e:27:d6:2e:e0: 73:71:0d:90:66:cb:60:7e:7b:5a:b9:27:a8:b9:9d:b6:9b:89: 86:85:37:7b:37:79:29:17:fa:e0:e3:a3:98:e6:f9:ff:a9:32: f0:21:29:85:47:5c:08:f2:fe:35:97:a5:72:07:b4:29:f2:8e: 23:b4:af:00:b3:f1:93:6d:e5:4e:df:38:7f:13:49:a2:50:c7: 2a:a2:a8:03:64:6c:8c:88:15:a1:98:9a:2a:a4:00:7d:07:d3: 65:fe:5e:48:ce:2f:dd:12:9e:5f:b6:8f:72:b2:75:bb:90:61: 7f:80:67:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2X4ec+Z0qdCFk/DnU3ZDMpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxZDBjNzhjMzA5YTNlOTlkYzlhYjc0ZjJjZGMwNDg0ODU5 ZTc1MzAwHhcNMjYwNDE2MjAwMDU3WhcNMjYwNDE3MjAwMDU3WjAzMTEwLwYDVQQD EyhlNjEzMzQzOTk1M2YyOWU3MzI5MjBmNzMyZDMxZmNiMGExYzYyNTUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvsc6zlKn1+aMpPzPW1CEntXwyVty BuXPiDUhqRWIvS7QccjcaDm4zpwHvLrLtLTgIRZDEtTjhVjutylyU/E6gtpUuRCU 2IAmNNnO+qIjltzHRm0AVtRUzuRuBIIcYlkV9EmjRc+jOmuBj2JyCW4xiefKfSX8 S4/RXbvixiiNytUBtysVif0pUWcZcJlDfTwjZbRS6x3xzf+tTUCaQfg6jRRGANZ7 Y3XuMfQB55MiUh9WdI6rKHXkVyJZCfR+XDdXp/87sf5IBNjk6/xCLdEe/USJyRon pbytE6Yt2aEV6U3b9/qNAtEEkK17QhKiUTIjcmYt5RY5QbuXtPDJH7ZXBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOYTNDmVPynnMpIPcy0x/LChxiVTMB8GA1UdIwQY MBaAFJHQx4wwmj6Z3Jq3TyzcBISFnnUwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEt NDg1MmM4ZmY4YWYyLzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEtNDg1MmM4ZmY4YWYy LzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADV/Kgp1Z IN4ds2gw6mJ7xSveB1f6ipsbyncLnL7ntFYTPH2ykdlzkJVP+srjbp3lUPYDMqCD CQvYXwICjPPiYY45pbU358lMs+p182X0PoEslaE6dAGi+SZT0qmNLY+QiiuGCS2i Jn9vpx1KHiXtfRMiZJNZoZZGxWl8swXIC/QhlLktMhDZ7qY7EZ4n1i7gc3ENkGbL YH57WrknqLmdtpuJhoU3ezd5KRf64OOjmOb5/6ky8CEphUdcCPL+NZelcge0KfKO I7SvALPxk23lTt84fxNJolDHKqKoA2RsjIgVoZiaKqQAfQfTZf5eSM4v3RKeX7aP crJ1u5Bhf4Bnfw== -----END CERTIFICATE-----Generated at Fri Apr 17 06:08:42 2026 by rpki-client