$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft File: IQIbJSIimXv-M7fksxWsjV4GeVQ.mft (raw, json) Hash identifier: Uwb+ENUbkEbIaTa1OXheuSRZNSeVbWejIo8Pgf4RNBo= Subject key identifier: B5:97:8E:C3:A7:A8:3B:35:D9:8E:4F:B6:5B:A9:1E:BF:32:6A:8E:A8 Authority key identifier: 21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 Certificate issuer: /CN=21021b252222997bfe33b7e4b315ac8d5e067954 Certificate serial: 019D992BA5C50755E5D941BBC7FE80F7B11C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft Manifest number: 1686 Signing time: Fri 17 Apr 2026 02:01:07 +0000 Manifest this update: Fri 17 Apr 2026 02:01:07 +0000 Manifest next update: Sat 18 Apr 2026 02:01:07 +0000 Files and hashes: 1: 1-bwPNRa4hIuOmCXigFym4QuSvEg.roa (hash: T8k2dmI9vUTRjZrs4X4YE5xctVuURXzRhcAJw5O14+A=) 2: 7BHrkta5DcfmRJ9QGXt7SrTu2Xs.roa (hash: WflkvzVUJUW28OrasYS+BvErnK7oO9Zw/lOlmQjDvko=) 3: AEHvPX3VoVo4sodyxxf_DiRnFFY.roa (hash: KS6uW53GHyfiX0chDSvonFb0kqW/+nyuaNMKCFyPh9o=) 4: GsdwkRswQwsiHVAvjxgs3y-ljcU.roa (hash: 8aBionJxUsPqiMFKG+K1+zKOrICiST94ZOL/Hw+ANhs=) 5: IQIbJSIimXv-M7fksxWsjV4GeVQ.crl (hash: rx+SsJQUqfOH4w7CHtmWX8y7LDlf/uDsZkQHmNDVdNM=) 6: J3IUrppUQEJ9AlNcJD-MFxypKxI.roa (hash: uezq13xnHYoK43g5cZL4HFTwsYHZzWtKo0PDmpYGYzc=) 7: Jgwn3B02uc3mfVfMOZv45UmGgtY.roa (hash: nMSpgFycYN/khqI7U1mF+BBHpG7nf5LdJdR+FjJMiU0=) 8: OYlH95cJwavdZvWPD2OKDHAiTLc.roa (hash: BWL9nE74GQlUmW8EmNYK3RjJ9VZYHqxaunAVG9GH6bg=) 9: SJwzlxfcwICTklf_s8R-67YCyso.roa (hash: DnW64AJKW4oEI9+a5JkKiYx8I8xhqSSHPF/uy8PPKlk=) 10: SSwmkO4bAa3Cf5CCG9FUvkP7lr0.roa (hash: Ha81Wfoc35Apd2MzoqOASambEnENvmJSJQLlpgCS2Bc=) 11: Tv21UJ7ytJOyOPKpUbJcsfcz7lg.roa (hash: R5S9kl+hHU1Moq3UfwZ59OY1nQwhi4UuliZUdnWHawA=) 12: USckjRPQ_sgN8RwnHK3U3VXM6gM.roa (hash: onchtlkk/ceaTRNFJVm1mVaJjKm5MQyUt2/lXHM/Vb0=) 13: V7t9HoQFq6tA2kgolQRcRfuRldU.roa (hash: hielByb8U0KHIxejo6mEN1esKRKu+XesjxBKkhAqRLc=) 14: YDHAFS5NL3nYDPhy4OA73C3z01M.roa (hash: G6APuYyI4RlimuK+4VqWE8moDRuBp8AeV+DrddKsYsY=) 15: _tIJodTF0tjZ2BRpzO06esyTMcc.roa (hash: klg/XfnwGn0Trf6tOz+sC9FOx5B+7q/m4bYYCvOzprs=) 16: bE94TCIYTfIl9kzaHRXzNiQoftE.roa (hash: 4j0TvOQTsGRxrK5ktDw/14Kxmma5Wvzi7ywS8WE8N44=) 17: c_cWOPcEQMft8Aer9o0bFFTuzpw.roa (hash: 3Xhi5i/L7JVUSZVPSdHXaHOfLiEna+V7BTZ9aCjfTKo=) 18: h96UmOpvP2IiuRa1zdcgkZqRdgo.roa (hash: RVWvN7ouN/57gofsCcbTG1pWvWa8tMFeSDqaezJgkLg=) 19: i_CapsG6EXIlo7hs2M2bjbUXRbE.roa (hash: +sXOWob0idLEKLvec5gYyEKYRnesgUnVyZvyzvC+SkU=) 20: jzn_75xItj3KyIJmhhPYTg2Y6PQ.roa (hash: ieKy1kXYNMahlm9LrSc0LnStC9m9sUgw5teAYjTCgaU=) 21: l6HrdleVhy2ogO9R43FSLGOYE-0.roa (hash: I66ExL815Wc0ZDz47aWr6Q06u4QEOdOCM1yWi8w7a+g=) 22: libApNypfBDQd2xwXgzAI8hwEYs.roa (hash: 85uC1OhXAH8nIsIB5OKlWaHMqc+2tP9WlO+RfiiV8sU=) 23: m1yBz4RNqu4HwIJUFHN9eMdiX7Y.roa (hash: BDic+DDp9D84u0MlugmEZf/EDqOwVo1Ck4FCtwm/eIw=) 24: pMQVecamDodQSmBw-UmLqkRzTyk.roa (hash: EmfM/FtUUlT/f5+MPBX6UPv6rg0dkI+I1HJgurEQFXU=) 25: tbdaBfEdC2g4j5awlEN4zMAkaHQ.roa (hash: do9qwHU9rPws34K9e7M1l81/QvXBkYAmJ01DjPdwuoA=) 26: trnZsePT4aG-KTCZxjcSxSR1ufY.roa (hash: /5+dzAAN+A0ooVs+3qzdB6EtpFGea8R5ILZY8ARUEc8=) 27: uEdKtSEqLX5Iz_4fkxgMbr53LUE.roa (hash: dz0TqFesDk6dPWKdMZqZb11QZzW0a5NzIkgvjFU9Kbs=) 28: v0rm7JAWFrDr-tQL6p44_xNGcu4.roa (hash: LVasldFT8mllppPTmEI8e2HsHPomDrXRhtUGEkEi680=) 29: vCZg6yHD3XsRPwy9TgcJflXSBXo.roa (hash: vYBjx1Yzv0s/R05C9GEaDFepYhC35vrqYzu3ZIjIJXI=) 30: vlgoPpdjqzPsej1q_cUrYrKNxps.roa (hash: qCakI2gGntoClWe4ikMHsxVjZenQkCcmSU97XWi2kw8=) 31: wyKENznEjqoTOu0kPDQ-ja6IOA0.roa (hash: XADEeG1QubSOLS5X6zAA6TQkPOdRj7Y6STFASKP2PIo=) 32: xUZt8DNQHiBefNBi4Ert7_QLSEI.roa (hash: oWYA1BCVHJtygn7rZSGc6Cdmnr0lvqfDo1gxsViQABk=) 33: yILg3Hndq5JGOi0ESwh1jw7vK90.roa (hash: s4Kkslyzo5Htl0fCNn5xAtDK8phfonhKQ/TLfEr43FA=) 34: zT9J5b2waWVY1frWgok6rDhDEkA.roa (hash: kG62AdWQmKbNQrIhDYZwVRIR364hCu8diTI8HvtbVqM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 Apr 2026 22:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:99:2b:a5:c5:07:55:e5:d9:41:bb:c7:fe:80:f7:b1:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21021b252222997bfe33b7e4b315ac8d5e067954 Validity Not Before: Apr 17 02:01:07 2026 GMT Not After : Apr 18 02:01:07 2026 GMT Subject: CN=b5978ec3a7a83b35d98e4fb65ba91ebf326a8ea8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:91:7b:c5:2c:b7:a7:d0:91:9a:70:67:7a:98: d5:29:6d:b9:02:11:35:80:08:d3:58:fc:b5:de:38: f1:ed:e0:7d:84:22:d1:e4:4e:eb:63:94:3c:f5:2a: 22:57:6f:dc:99:e4:a6:84:b5:be:64:a2:e7:5b:8e: f0:dd:57:5b:e7:36:de:1a:e4:fa:bf:84:30:38:88: fe:ad:4f:78:73:3b:53:ce:19:43:68:7b:dd:a0:ed: 2f:94:5a:a5:74:f7:fd:6d:5a:43:ee:88:7e:c9:ad: 5a:74:db:4b:f2:0b:7e:61:9e:78:83:5d:75:f5:d0: e8:fa:f2:00:cc:ce:d6:63:f9:d5:21:51:85:60:fb: 82:8d:03:d8:f6:27:6e:91:38:01:56:33:2d:c8:dd: 9a:49:f8:52:a9:ec:2e:45:cc:c8:80:fa:4c:d6:23: da:35:aa:bf:38:80:1f:8f:37:99:e1:96:91:2c:4f: 5b:b6:7a:ed:0b:65:63:86:67:f3:24:d6:9f:6d:b5: df:21:0b:bd:64:6d:16:1a:04:3f:1a:0c:7d:5a:40: b3:28:c0:96:7e:aa:0b:64:94:55:54:97:ae:29:a6: cb:7c:b7:33:d6:78:16:64:eb:15:46:b2:50:d2:a6: c8:c5:be:9c:5f:71:88:7f:f7:d2:59:c9:1b:d5:0a: 25:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:97:8E:C3:A7:A8:3B:35:D9:8E:4F:B6:5B:A9:1E:BF:32:6A:8E:A8 X509v3 Authority Key Identifier: keyid:21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:c2:c0:a2:3e:d0:24:37:04:fb:bf:9c:26:85:e8:51:de:af: 33:62:3c:c5:f0:16:b7:0f:9e:9c:9d:bd:92:17:79:4a:15:46: 92:76:e8:16:65:64:7f:2b:ff:75:af:5f:1e:07:92:34:d8:5f: fe:1d:3d:bc:52:a8:1b:54:92:4c:37:b2:28:3f:3a:f2:37:9d: 26:e9:9c:52:1c:ce:2c:81:20:e7:3d:90:72:e9:c3:a8:03:21: 76:cc:1a:23:4d:5c:35:a0:ee:03:0c:89:d5:e6:d4:4c:5f:fb: 6a:4e:00:c9:98:1d:1a:63:bb:f6:b3:b0:65:b1:37:1d:c9:09: 01:c3:9e:60:15:16:8c:64:e0:a6:e1:ba:99:01:78:2a:41:62: 8a:df:63:ee:52:2a:8f:ea:78:89:ec:09:61:18:e1:cd:4f:56: cc:de:53:b2:04:47:a3:76:61:6c:26:03:d5:1c:61:34:f7:36: 49:45:21:3f:52:52:8e:3f:b3:56:82:f3:28:9a:82:c7:45:7d: a4:50:94:aa:ec:3d:e2:b0:4d:bf:dd:95:b8:48:b4:64:f5:42: 10:43:48:27:12:03:4e:7b:00:1a:74:39:69:e4:be:3a:9b:52: 1f:e1:09:ff:8d:ad:33:21:29:e0:29:8c:85:fb:26:8b:34:17: 30:e7:eb:99 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2ZK6XFB1Xl2UG7x/6A97EcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMDIxYjI1MjIyMjk5N2JmZTMzYjdlNGIzMTVhYzhkNWUw Njc5NTQwHhcNMjYwNDE3MDIwMTA3WhcNMjYwNDE4MDIwMTA3WjAzMTEwLwYDVQQD EyhiNTk3OGVjM2E3YTgzYjM1ZDk4ZTRmYjY1YmE5MWViZjMyNmE4ZWE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnZF7xSy3p9CRmnBnepjVKW25AhE1 gAjTWPy13jjx7eB9hCLR5E7rY5Q89SoiV2/cmeSmhLW+ZKLnW47w3Vdb5zbeGuT6 v4QwOIj+rU94cztTzhlDaHvdoO0vlFqldPf9bVpD7oh+ya1adNtL8gt+YZ54g111 9dDo+vIAzM7WY/nVIVGFYPuCjQPY9idukTgBVjMtyN2aSfhSqewuRczIgPpM1iPa Naq/OIAfjzeZ4ZaRLE9btnrtC2VjhmfzJNafbbXfIQu9ZG0WGgQ/Ggx9WkCzKMCW fqoLZJRVVJeuKabLfLcz1ngWZOsVRrJQ0qbIxb6cX3GIf/fSWckb1Qol2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLWXjsOnqDs12Y5PtlupHr8yao6oMB8GA1UdIwQY MBaAFCECGyUiIpl7/jO35LMVrI1eBnlUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMt NmVhYzYyZTYwZGY3LzEvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMtNmVhYzYyZTYwZGY3 LzEvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmMLAoj7Q JDcE+7+cJoXoUd6vM2I8xfAWtw+enJ29khd5ShVGknboFmVkfyv/da9fHgeSNNhf /h09vFKoG1SSTDeyKD868jedJumcUhzOLIEg5z2QcunDqAMhdswaI01cNaDuAwyJ 1ebUTF/7ak4AyZgdGmO79rOwZbE3HckJAcOeYBUWjGTgpuG6mQF4KkFiit9j7lIq j+p4iewJYRjhzU9WzN5TsgRHo3ZhbCYD1RxhNPc2SUUhP1JSjj+zVoLzKJqCx0V9 pFCUquw94rBNv92VuEi0ZPVCEENIJxIDTnsAGnQ5aeS+OptSH+EJ/42tMyEp4CmM hfsmizQXMOfrmQ== -----END CERTIFICATE-----Generated at Fri Apr 17 06:56:00 2026 by rpki-client