$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft File: XPMa_DbLaVUAf-l-1KXjGF0icbo.mft (raw, json) Hash identifier: wp/KYsLSAJM1Fy5nH3b4P2yeLjIV0cMaIe/tO+0nJHk= Subject key identifier: 43:4C:D1:14:78:C0:80:51:F0:BD:62:25:50:07:BD:CE:02:7A:58:00 Authority key identifier: 5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA Certificate issuer: /CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba Certificate serial: 019EBF5A3473975C66DAA914E4D31E7573D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft Manifest number: 1972 Signing time: Sat 13 Jun 2026 05:00:20 +0000 Manifest this update: Sat 13 Jun 2026 05:00:20 +0000 Manifest next update: Sun 14 Jun 2026 05:00:20 +0000 Files and hashes: 1: 1-dAYLfzEcuSnLWMiLXXSdIwT4rU.roa (hash: WhA4jtvtbE79AQa3IJODloRRuW4QHZIWAX/A32JL7m4=) 2: GOmV_75Dv1jwn9wiVioc2BSPZTo.roa (hash: pRTwblvRoqzlcA6ZsWJlwN1cr9uhPXOkl31rFqoTMf8=) 3: NklSIVNcNIWeMyDnmkM31BBhz1c.roa (hash: UKSW2BDTyMNTJDzhPRFU+Wzj1R5uLkgmHOPWx5CWEqQ=) 4: W4UHRrBQAt50eiIa0aXkDS2q-jI.roa (hash: wJtHrvfPjqzoQaYOzEJ/TBfUCsO/TaG3P+SEUHqq3Ig=) 5: XPMa_DbLaVUAf-l-1KXjGF0icbo.crl (hash: GQkzR4O1LYuqmz9YjK/MVHgHmImBEYZQw/euW84oZ44=) 6: _5CTbNuX6fLN7jDqdj1oQp0kARc.roa (hash: Ha0LgykvjQP+9qGPn28IFIuJ0yQRLEpHe1bDMbGiuiE=) 7: _YOXL7ZxwGLyAFtXgmbGoGmsxw0.roa (hash: oYcEDHMjBaLjLdS2+cnHZQVD1ORy9f2L160BSTCgJ4c=) 8: itgrIp1NxpdNbAgMEeQKpbEmf5o.roa (hash: Js4lM2igXS9YqpQe0RjS4UXqcJs8/ISJx7M/fH+77eg=) 9: lxIA5T6ig6P82Z6FpI76sa5r9Hk.roa (hash: 3LHUUi612Oq28/k9MVav0SeJK2Lmj7BOxrV2xdjlDis=) 10: szXceV_8JO0f_7ooL6S8iduW9xI.roa (hash: xeJBYCAXDOSNVRxdgWGAZ1ipDc3y7H3KXIsJs1D2FK4=) 11: xnSiVa_Qi8Hl5xGaTydyCAcB4Q4.roa (hash: SWwZIzY753Ls9csZNqAI1seyxm1jJEeEibvAi3lb+6E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:bf:5a:34:73:97:5c:66:da:a9:14:e4:d3:1e:75:73:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba Validity Not Before: Jun 13 05:00:20 2026 GMT Not After : Jun 14 05:00:20 2026 GMT Subject: CN=434cd11478c08051f0bd62255007bdce027a5800 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5f:42:92:d7:91:ee:e7:0d:13:33:e9:d4:ba: 4e:e8:f3:aa:cc:34:47:ca:f7:8a:b2:f4:9f:2c:e7: 87:c9:8f:24:1f:4e:cc:e2:7f:ee:2d:8a:03:1a:58: 6f:6c:e5:ca:e7:02:59:ae:45:62:bd:c4:ba:9c:47: fb:da:36:d3:33:ad:16:4a:90:6d:f7:59:a8:2e:79: 17:8b:56:ae:40:88:93:78:f3:2a:f4:1e:c7:79:1c: 80:0b:33:ae:a9:ee:70:10:79:c8:ac:36:f9:e6:bc: 71:db:12:8c:bd:8d:e9:14:e1:39:cb:d1:2e:2f:2b: 06:cf:76:84:4e:8f:fa:09:84:a7:43:d2:10:57:96: 32:be:8d:61:b1:5e:88:f2:3b:1f:97:af:e1:89:0e: 32:78:53:84:a3:d6:5c:b7:61:1b:bf:38:09:39:5f: 96:a7:4d:b1:18:d9:85:f9:2e:53:7d:f3:73:43:f3: 75:ba:f1:79:b5:42:c8:ee:c3:89:f3:8c:4c:c1:47: 1d:87:e9:7d:de:4c:0f:1c:5b:f3:1a:53:b7:d1:6d: 74:5d:4a:d2:fb:fd:8e:26:37:05:6c:70:ed:36:c0: 08:59:31:f0:4b:78:a9:ed:37:15:7f:06:78:34:d6: fb:a9:aa:ab:c0:ab:75:2d:05:36:b4:39:d1:23:26: 48:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:4C:D1:14:78:C0:80:51:F0:BD:62:25:50:07:BD:CE:02:7A:58:00 X509v3 Authority Key Identifier: keyid:5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:e9:d3:99:8d:0f:56:d9:0a:b9:4a:9a:39:66:73:04:3b:dc: e2:b9:f9:8e:b5:df:41:c6:d1:1b:54:0d:a0:8b:dc:49:1d:41: 80:66:f9:09:bf:0d:95:61:4d:f9:76:b7:4b:5d:fc:55:f4:ff: b3:1d:75:83:d5:4b:41:48:03:52:39:ff:4c:92:db:c2:11:25: 6e:d2:44:47:dd:e6:e5:26:a6:dd:9a:0d:f4:d3:94:1f:8c:ca: d4:38:db:e3:d8:2c:0b:90:6c:97:d5:31:00:d5:85:ed:52:85: c5:86:55:50:04:51:d1:07:d0:7f:5f:4a:9b:26:72:58:13:cb: 02:3c:73:65:e8:d7:30:85:2c:5d:7e:03:ef:95:f1:12:08:43: f1:98:e8:bc:5f:6e:dc:cc:85:9e:67:84:bf:fa:e7:83:1d:11: 16:0f:10:19:cb:ad:6f:07:e5:26:52:e0:81:53:71:61:21:f8: 1a:47:33:6a:f1:3e:05:1a:2e:7a:f6:e6:84:cd:24:60:66:00: 8b:c0:fc:72:1f:a6:d9:46:8e:9f:a2:79:ed:2d:47:34:10:7a: f5:50:a4:19:29:d3:ff:56:d1:4d:06:2c:f9:7a:9b:35:9a:8a: 78:d5:ea:52:58:22:ae:23:99:8e:85:7b:40:48:6b:f1:3d:83: 9e:84:3a:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ6/WjRzl1xm2qkU5NMedXPTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjZjMxYWZjMzZjYjY5NTUwMDdmZTk3ZWQ0YTVlMzE4NWQy MjcxYmEwHhcNMjYwNjEzMDUwMDIwWhcNMjYwNjE0MDUwMDIwWjAzMTEwLwYDVQQD Eyg0MzRjZDExNDc4YzA4MDUxZjBiZDYyMjU1MDA3YmRjZTAyN2E1ODAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArV9CkteR7ucNEzPp1LpO6POqzDRH yveKsvSfLOeHyY8kH07M4n/uLYoDGlhvbOXK5wJZrkVivcS6nEf72jbTM60WSpBt 91moLnkXi1auQIiTePMq9B7HeRyACzOuqe5wEHnIrDb55rxx2xKMvY3pFOE5y9Eu LysGz3aETo/6CYSnQ9IQV5Yyvo1hsV6I8jsfl6/hiQ4yeFOEo9Zct2EbvzgJOV+W p02xGNmF+S5TffNzQ/N1uvF5tULI7sOJ84xMwUcdh+l93kwPHFvzGlO30W10XUrS +/2OJjcFbHDtNsAIWTHwS3ip7TcVfwZ4NNb7qaqrwKt1LQU2tDnRIyZIiQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFENM0RR4wIBR8L1iJVAHvc4CelgAMB8GA1UdIwQY MBaAFFzzGvw2y2lVAH/pftSl4xhdInG6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFBNYV9EYkxhVlVBZi1sLTFLWGpHRjBpY2JvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy80NThlYzMtMDQ1MS00ZTQxLTlhMzQt NzM2ZDEyODg4Y2E4LzEvWFBNYV9EYkxhVlVBZi1sLTFLWGpHRjBpY2JvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy80NThlYzMtMDQ1MS00ZTQxLTlhMzQtNzM2ZDEyODg4Y2E4 LzEvWFBNYV9EYkxhVlVBZi1sLTFLWGpHRjBpY2JvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAROnTmY0P VtkKuUqaOWZzBDvc4rn5jrXfQcbRG1QNoIvcSR1BgGb5Cb8NlWFN+Xa3S138VfT/ sx11g9VLQUgDUjn/TJLbwhElbtJER93m5Sam3ZoN9NOUH4zK1Djb49gsC5Bsl9Ux ANWF7VKFxYZVUARR0QfQf19KmyZyWBPLAjxzZejXMIUsXX4D75XxEghD8ZjovF9u 3MyFnmeEv/rngx0RFg8QGcutbwflJlLggVNxYSH4GkczavE+BRouevbmhM0kYGYA i8D8ch+m2UaOn6J57S1HNBB69VCkGSnT/1bRTQYs+XqbNZqKeNXqUlgiriOZjoV7 QEhr8T2DnoQ6Og== -----END CERTIFICATE-----Generated at Sat Jun 13 08:23:02 2026 by rpki-client