$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft File: bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft (raw, json) Hash identifier: 8gJutEiG79lisdl9X54KuM47iKqnBJ/CKIKsNWxeeiU= Subject key identifier: 2D:50:AA:00:14:2E:F2:D3:C6:47:8A:A5:71:83:95:B8:D1:54:F1:DF Authority key identifier: 6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 Certificate issuer: /CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Certificate serial: 019D98BD49375DF3B8040DFEAFA451787AC3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft Manifest number: 1948 Signing time: Fri 17 Apr 2026 00:00:34 +0000 Manifest this update: Fri 17 Apr 2026 00:00:34 +0000 Manifest next update: Sat 18 Apr 2026 00:00:34 +0000 Files and hashes: 1: TjYcJALyGbmW-x31ry7QsUvdQtQ.roa (hash: knhLPKVdJjwTBCuKiy0BNSL8TQGPgiu2tFYYWRO2204=) 2: baEkayAg80jmYDBU-ExaHSLpuaI.roa (hash: nAErtQy9uElHFQjfJS5ckQ4epiwL6hvpsQEYN9BEeqw=) 3: bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl (hash: X7xNv2W1Gmkd7lsQUx7C5dQv6VwXShHvdvKmiZPd1fw=) 4: cGs3UaDvGLQ1Q_TQpZAPaINt4Es.roa (hash: W7uHnT9KoPvCIjHy/wyMQaAb03AUeFyxBB7Do1XvIvI=) 5: ebSZBecc7df92SgP59-y12trz8Y.roa (hash: eWLHCXv7jbIrxX4dZcu1pV/1wCL3MzIiRwN/vf2jitQ=) 6: nmGtGkrhBfqxDaqozTHEU7woU_8.roa (hash: myNlScXFtUNhqDOYxLDED2mEeSRwem2M2mluAw2qbGU=) 7: oRALtbh2nuCRd23sDYqfy35X5z0.roa (hash: jC6NP1kM59PVY3etFPE/j9NV0XqouvnOb2E4RPSGrX4=) 8: pI2S2lg5Mevtnr1gNuhTMLXlTZk.roa (hash: 5cp4WqQX2Fq4/2gG8NNXNJQnzkTkhV+uz8kgPR8ik8M=) 9: pUi-gLSXqZ0JaQPDBRSSYpMiavg.roa (hash: BVbd5i0a2oHy3QrO+gV4ifjJEQxi06QcvV9UBgsyx9E=) 10: rWySjgHmxws3lM6jmie75S8CDBw.roa (hash: At0oBHsNt1VyqDJTW3hMzgCfUrv9SJ/hPxisShjHIa0=) 11: yYjK6TLqyOsG3tmiBYFMP1Aoexg.roa (hash: 3ZWyZKdoBkHem28rqJLRhRuGSLJ2oX1IHJZHOWmP0p0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 Apr 2026 22:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:98:bd:49:37:5d:f3:b8:04:0d:fe:af:a4:51:78:7a:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Validity Not Before: Apr 17 00:00:34 2026 GMT Not After : Apr 18 00:00:34 2026 GMT Subject: CN=2d50aa00142ef2d3c6478aa5718395b8d154f1df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:a0:9e:a5:9a:e2:b5:6b:e8:98:02:c1:8f:ac: 07:6a:e2:82:0e:e2:77:a9:5d:bd:37:c2:48:ab:78: 18:99:d4:d2:a8:1c:02:31:0f:65:66:7a:3f:70:c9: c0:d8:76:d0:f0:3c:a0:9a:80:45:1f:96:81:76:4e: da:9f:62:b5:3a:8b:fd:ac:43:b6:7b:1f:22:c6:e9: ec:ec:81:e7:1b:ab:be:15:36:5a:5b:52:21:6c:d9: 01:a2:a7:7e:05:54:56:2d:69:40:b8:6b:f5:c9:2a: 29:a3:f4:1e:14:5c:8d:be:4d:5e:76:c5:3a:52:bd: 08:68:48:1f:d1:6c:2a:1f:1d:0a:b5:61:28:ca:0e: ae:b1:07:dc:e6:1e:c9:63:bd:dc:98:86:12:c5:c9: 7d:10:38:b5:9c:a2:05:f8:20:0f:7c:5d:ae:50:99: 8c:f4:92:4b:eb:89:42:30:85:21:5f:f8:cd:ec:5b: 2a:4d:76:ee:e4:b7:f3:d8:d1:80:08:7d:c0:bd:c1: 84:29:da:ee:db:b9:a5:28:66:13:6a:02:08:4d:dc: ad:2c:cc:50:12:54:b2:58:ba:5c:ca:2e:4e:9a:4d: 64:c7:fd:e2:29:19:54:82:d1:a1:00:e9:34:1c:45: a6:c8:92:90:e5:36:90:fc:24:7a:92:fb:7a:63:3c: 87:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:50:AA:00:14:2E:F2:D3:C6:47:8A:A5:71:83:95:B8:D1:54:F1:DF X509v3 Authority Key Identifier: keyid:6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:cd:4a:29:24:3d:a8:66:fd:59:b4:8b:42:53:3c:ae:ac:a4: ac:43:68:bf:63:bd:f0:54:48:fd:f2:a1:aa:9f:14:37:1d:9e: 4f:56:b2:50:47:67:a6:76:b4:a9:79:03:c5:3e:ca:22:c1:e9: 6c:9b:5e:0b:fa:40:a5:df:30:14:ec:b0:c6:0b:3f:18:60:90: aa:88:eb:03:4a:61:d5:76:32:12:2c:d5:55:db:69:38:fa:09: 12:70:8c:a1:6b:ca:c9:5e:8b:81:74:6a:0b:be:80:42:54:3e: 01:ff:15:6a:b6:c2:48:ff:28:bd:7e:11:76:68:4c:cd:17:f1: 61:59:3d:a3:d8:5f:82:c9:ff:97:cf:dc:b7:ee:3b:cd:fc:98: 5e:d9:2b:84:02:bd:4d:66:60:64:63:7d:b7:c9:7a:ea:70:71: 91:21:e6:ab:2b:8f:10:04:67:ce:c8:a3:be:5e:40:ef:9e:84: 96:94:a8:37:12:7b:9c:d6:9d:a0:44:66:a9:d0:79:12:d2:49: 51:2b:17:e4:c2:dd:c5:95:35:40:a0:83:ea:8f:d6:00:6f:70: f6:65:83:75:f5:bc:61:fe:c4:15:07:f3:de:5c:ad:d2:18:42: fd:55:c2:0c:1c:55:a5:54:f4:48:be:fc:62:9a:c9:d5:5f:09: 73:3e:0b:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2YvUk3XfO4BA3+r6RReHrDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMzAzMGE0YjY3Zjk1YzJmZWQ5MDJkNTY2NTdmYWEyNDk0 YjUxMjkwHhcNMjYwNDE3MDAwMDM0WhcNMjYwNDE4MDAwMDM0WjAzMTEwLwYDVQQD EygyZDUwYWEwMDE0MmVmMmQzYzY0NzhhYTU3MTgzOTViOGQxNTRmMWRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA96CepZritWvomALBj6wHauKCDuJ3 qV29N8JIq3gYmdTSqBwCMQ9lZno/cMnA2HbQ8DygmoBFH5aBdk7an2K1Oov9rEO2 ex8ixuns7IHnG6u+FTZaW1IhbNkBoqd+BVRWLWlAuGv1ySopo/QeFFyNvk1edsU6 Ur0IaEgf0WwqHx0KtWEoyg6usQfc5h7JY73cmIYSxcl9EDi1nKIF+CAPfF2uUJmM 9JJL64lCMIUhX/jN7FsqTXbu5Lfz2NGACH3AvcGEKdru27mlKGYTagIITdytLMxQ ElSyWLpcyi5Omk1kx/3iKRlUgtGhAOk0HEWmyJKQ5TaQ/CR6kvt6YzyHgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC1QqgAULvLTxkeKpXGDlbjRVPHfMB8GA1UdIwQY MBaAFG8wMKS2f5XC/tkC1WZX+qJJS1EpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYt YmYzYjIxYTI3MGYyLzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYtYmYzYjIxYTI3MGYy LzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQs1KKSQ9 qGb9WbSLQlM8rqykrENov2O98FRI/fKhqp8UNx2eT1ayUEdnpna0qXkDxT7KIsHp bJteC/pApd8wFOywxgs/GGCQqojrA0ph1XYyEizVVdtpOPoJEnCMoWvKyV6LgXRq C76AQlQ+Af8VarbCSP8ovX4RdmhMzRfxYVk9o9hfgsn/l8/ct+47zfyYXtkrhAK9 TWZgZGN9t8l66nBxkSHmqyuPEARnzsijvl5A756ElpSoNxJ7nNadoERmqdB5EtJJ USsX5MLdxZU1QKCD6o/WAG9w9mWDdfW8Yf7EFQfz3lyt0hhC/VXCDBxVpVT0SL78 YprJ1V8Jcz4LYQ== -----END CERTIFICATE-----Generated at Fri Apr 17 06:29:02 2026 by rpki-client