$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft File: bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft (raw, json) Hash identifier: vk7f7thyUmcBsefHHZSBtz5wFp+AXYpBbDZxTpvLwtA= Subject key identifier: 26:E9:F5:25:B9:3F:5B:4E:C8:7B:9B:4B:5E:86:1A:B7:F0:84:AA:9F Authority key identifier: 6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 Certificate issuer: /CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Certificate serial: 019EBFC8F76792CDB4540573FAACDB369E3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft Manifest number: 19E1 Signing time: Sat 13 Jun 2026 07:01:19 +0000 Manifest this update: Sat 13 Jun 2026 07:01:19 +0000 Manifest next update: Sun 14 Jun 2026 07:01:19 +0000 Files and hashes: 1: PwuSIA0hAOdkPMZ2quzEU3bQAQ0.roa (hash: Ac1mXvYNWfR081H3woPMQ2jUftr1kB/8KT2lgRMPVQ4=) 2: TjYcJALyGbmW-x31ry7QsUvdQtQ.roa (hash: knhLPKVdJjwTBCuKiy0BNSL8TQGPgiu2tFYYWRO2204=) 3: baEkayAg80jmYDBU-ExaHSLpuaI.roa (hash: nAErtQy9uElHFQjfJS5ckQ4epiwL6hvpsQEYN9BEeqw=) 4: bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl (hash: XC+RqZu7c1fXg/rk3lR6mrtF881i6o+jgyB6IcX+rTM=) 5: cGs3UaDvGLQ1Q_TQpZAPaINt4Es.roa (hash: W7uHnT9KoPvCIjHy/wyMQaAb03AUeFyxBB7Do1XvIvI=) 6: ebSZBecc7df92SgP59-y12trz8Y.roa (hash: eWLHCXv7jbIrxX4dZcu1pV/1wCL3MzIiRwN/vf2jitQ=) 7: nmGtGkrhBfqxDaqozTHEU7woU_8.roa (hash: myNlScXFtUNhqDOYxLDED2mEeSRwem2M2mluAw2qbGU=) 8: oRALtbh2nuCRd23sDYqfy35X5z0.roa (hash: jC6NP1kM59PVY3etFPE/j9NV0XqouvnOb2E4RPSGrX4=) 9: pI2S2lg5Mevtnr1gNuhTMLXlTZk.roa (hash: 5cp4WqQX2Fq4/2gG8NNXNJQnzkTkhV+uz8kgPR8ik8M=) 10: pUi-gLSXqZ0JaQPDBRSSYpMiavg.roa (hash: BVbd5i0a2oHy3QrO+gV4ifjJEQxi06QcvV9UBgsyx9E=) 11: rWySjgHmxws3lM6jmie75S8CDBw.roa (hash: At0oBHsNt1VyqDJTW3hMzgCfUrv9SJ/hPxisShjHIa0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 07:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:bf:c8:f7:67:92:cd:b4:54:05:73:fa:ac:db:36:9e:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Validity Not Before: Jun 13 07:01:19 2026 GMT Not After : Jun 14 07:01:19 2026 GMT Subject: CN=26e9f525b93f5b4ec87b9b4b5e861ab7f084aa9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e1:17:5d:3c:70:d1:1d:a1:fb:8c:20:9b:d7: 28:b6:9a:71:b9:5a:ad:0c:1c:12:0e:b6:a0:c5:61: 06:94:f9:34:59:f3:b2:22:6a:97:1b:cb:df:94:4a: 68:8d:62:ae:82:1c:96:94:cd:a6:52:f2:c7:2d:fa: 61:86:57:d5:9e:71:9c:75:65:57:9a:63:68:8c:d5: be:a1:62:df:d7:65:40:2b:5b:35:8e:96:83:1c:95: 6e:10:a2:5a:93:96:0e:db:6a:bf:26:92:fe:a6:c5: 56:db:d7:48:51:63:2e:0d:0f:99:43:47:52:2d:d2: 34:c5:bd:62:8a:41:d9:c5:7d:0b:ae:84:2e:25:45: 23:95:49:d6:1f:8a:fa:cb:67:87:38:62:a4:45:3d: 8e:4e:e5:bd:66:b0:39:68:d2:26:e1:2e:dc:c8:56: e0:8b:e3:fc:b6:52:a4:39:6e:0a:7e:11:a1:7c:0c: f0:62:31:0c:58:e4:41:61:be:ff:62:e0:e9:4f:47: 46:77:68:62:ee:11:99:58:61:2a:9f:f6:f0:a6:e0: 4d:97:00:dd:20:b2:51:57:18:46:41:79:97:e3:91: 88:33:11:f5:65:cb:d9:2e:f4:d1:b2:aa:7a:13:01: 5b:09:31:cc:6a:ff:e0:d2:0e:e3:1d:59:ff:15:28: 25:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:E9:F5:25:B9:3F:5B:4E:C8:7B:9B:4B:5E:86:1A:B7:F0:84:AA:9F X509v3 Authority Key Identifier: keyid:6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:16:ee:bc:f9:92:b1:5a:6d:db:c4:c1:eb:4a:96:c2:4a:46: 9a:6a:80:b7:e8:d3:ba:ef:ed:94:fb:eb:3d:67:c4:7f:bd:e3: e4:a6:67:25:66:1e:e7:d7:0b:77:2b:57:90:c9:d6:43:2d:61: 0c:ee:19:d7:2a:3c:5a:11:9e:fd:01:9c:39:76:00:da:8d:e0: a1:7d:b5:45:14:52:e8:4c:46:53:00:63:1f:97:84:4d:5e:fe: 4a:31:12:77:f0:0f:0e:30:a4:54:fa:2d:c9:cf:57:29:62:9f: 0e:93:54:c8:7b:58:35:65:6d:d0:ad:be:59:8a:fc:1d:9e:90: 62:b9:f0:08:46:ae:71:f8:91:d7:0a:b5:7e:c4:f1:ba:60:d5: a1:ed:99:3d:cd:0d:05:70:c9:52:40:69:07:4b:0b:e3:99:95: 40:d1:e4:55:30:3e:13:47:9a:95:7e:4c:aa:f9:4f:39:01:64: 87:da:9b:96:dd:c4:8f:8b:f6:22:16:fb:91:2f:10:3e:f5:96: 74:2f:4a:a8:b6:4c:7f:ce:88:88:2c:9d:d6:10:0c:d8:0c:c8: 81:95:cf:0e:95:5f:af:34:38:d6:e2:59:76:24:5e:15:5f:34: 08:b0:33:e4:c1:b1:7c:8d:81:aa:35:dc:da:83:31:55:6d:05: 1e:03:40:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ6/yPdnks20VAVz+qzbNp48MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMzAzMGE0YjY3Zjk1YzJmZWQ5MDJkNTY2NTdmYWEyNDk0 YjUxMjkwHhcNMjYwNjEzMDcwMTE5WhcNMjYwNjE0MDcwMTE5WjAzMTEwLwYDVQQD EygyNmU5ZjUyNWI5M2Y1YjRlYzg3YjliNGI1ZTg2MWFiN2YwODRhYTlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAueEXXTxw0R2h+4wgm9cotppxuVqt DBwSDragxWEGlPk0WfOyImqXG8vflEpojWKughyWlM2mUvLHLfphhlfVnnGcdWVX mmNojNW+oWLf12VAK1s1jpaDHJVuEKJak5YO22q/JpL+psVW29dIUWMuDQ+ZQ0dS LdI0xb1iikHZxX0LroQuJUUjlUnWH4r6y2eHOGKkRT2OTuW9ZrA5aNIm4S7cyFbg i+P8tlKkOW4KfhGhfAzwYjEMWORBYb7/YuDpT0dGd2hi7hGZWGEqn/bwpuBNlwDd ILJRVxhGQXmX45GIMxH1ZcvZLvTRsqp6EwFbCTHMav/g0g7jHVn/FSglMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCbp9SW5P1tOyHubS16GGrfwhKqfMB8GA1UdIwQY MBaAFG8wMKS2f5XC/tkC1WZX+qJJS1EpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYt YmYzYjIxYTI3MGYyLzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYtYmYzYjIxYTI3MGYy LzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIxbuvPmS sVpt28TB60qWwkpGmmqAt+jTuu/tlPvrPWfEf73j5KZnJWYe59cLdytXkMnWQy1h DO4Z1yo8WhGe/QGcOXYA2o3goX21RRRS6ExGUwBjH5eETV7+SjESd/APDjCkVPot yc9XKWKfDpNUyHtYNWVt0K2+WYr8HZ6QYrnwCEaucfiR1wq1fsTxumDVoe2ZPc0N BXDJUkBpB0sL45mVQNHkVTA+E0ealX5MqvlPOQFkh9qblt3Ej4v2Ihb7kS8QPvWW dC9KqLZMf86IiCyd1hAM2AzIgZXPDpVfrzQ41uJZdiReFV80CLAz5MGxfI2BqjXc 2oMxVW0FHgNAzA== -----END CERTIFICATE-----Generated at Sat Jun 13 15:58:14 2026 by rpki-client