$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft File: Us2aZRLb8lpfGbgn16LH4iou6N0.mft (raw, json) Hash identifier: bj6WeaZVaN5bckF6s4KCf8SbobDLGDSoJK3j7Oh2Eb4= Subject key identifier: C0:21:5F:38:3E:82:CA:80:1C:A0:98:7E:FF:BD:C1:39:0B:EA:4B:D6 Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Certificate serial: 019EC06D68F3D318F7142ACBDB44850AA3A2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft Manifest number: 0C29 Signing time: Sat 13 Jun 2026 10:00:56 +0000 Manifest this update: Sat 13 Jun 2026 10:00:56 +0000 Manifest next update: Sun 14 Jun 2026 10:00:56 +0000 Files and hashes: 1: 3JNAFPmuRusA7_P1cHUrpNc8ZWQ.roa (hash: zKy+aXsrA8Z978tqaQi0ynXqJW9mllBBtqQYt4mz8gc=) 2: 3eP-ZYKR74zQteZxg-jYK68KuKU.roa (hash: rI+Q6O08EYSoWZw7Ks588qVsTWbvSuHUC1dp2GQPsEg=) 3: 7UCLvACKFL5zxr_yWrkJA3_2oMM.roa (hash: xfPkwGQHVQT9CzmP7+QJgRXdoTw3Rugce1r0GD7IvJ0=) 4: KWeUe8stEcRBCfK1V9M1OdEhYVo.roa (hash: 5db5SBY8xLjigcej1g8W2J/cv1YnUc8GiiKN3rxcM4Y=) 5: Px4XmExl2QONyqSP6s8-qLoIeoI.roa (hash: reA0XoIHBbZsGAjNzRWT9dW+9757Ms5dgcUGYfnrDi8=) 6: SY0oaouPknTSy2MmGqSQOcOco4Q.roa (hash: HRxdYO/Iechw+UCcupxpKvFHOwFwn4JRjC6eMfFT/dQ=) 7: Us2aZRLb8lpfGbgn16LH4iou6N0.crl (hash: WCIFCfpMtAdpevf6srQkvn52fSSaR9Ox5nMKiWvNifM=) 8: b4bnSjrxkGqwlr0zkoxcOijmFkc.roa (hash: fQuLS072q+zjmBm2EgGlUmemoEePNKD15HIZM6Eyfw4=) 9: cwwhcNpzOg_pmBszouIx8h2CHRU.roa (hash: vBJrQQ0ItgE86n69h/fkj396ErwZyqxGCsEUUVNAzdI=) 10: hJvXiDYNILPphLXJ6klAtCIjVVg.roa (hash: Z0y5PrNu8DqrxqixzwoCHqlYDEEnmvaNJYffWfN3fzo=) 11: hlAbpQnKYaIDHrjCT-1lNBwSXu0.roa (hash: BILz2oAMGgMF6vZP6W3jaxaaHIODVkHC+m/GaL33QlM=) 12: kPZtrooPlOyF8jQupuEU9Gy1bJQ.roa (hash: KtcI+6F6qPHzsOZYQ0EOD+pODuibLz2OAgS4M/a6Aq4=) 13: nsRheFAl5sYIf69ZA2-lEa1c2n4.roa (hash: BPp2XQ3t/tQYCMkRPS8euZvqtBQ4DmQCayxjZbw1wJY=) 14: oLlQgePRk9yvcOlL0Fl_a56u9H4.roa (hash: Wqock9cGRbZPQGtCkafIuYZm7FqajUuA17fJ83OGRks=) 15: otDdauzK1pDpIELnjnezw5Wgbks.roa (hash: PkYGbseDQrN+XnOme6deJeEpgE/JFmyzszNd7IeDEBs=) 16: qyLbFsRIe8Jd6sG2DI_BiTtP7io.roa (hash: yTz+vrd5+uJTzoZ6RiYw+CeRxkudUElCAIqfmUpkz54=) 17: xp9MuE3K7E-Sb2HgnwhKc3yErto.roa (hash: 9FJKEkYOHXVi/GiMh+ZQtwPZthuSJbC+u80wUEZ5uBo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 08:43:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:c0:6d:68:f3:d3:18:f7:14:2a:cb:db:44:85:0a:a3:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Validity Not Before: Jun 13 10:00:56 2026 GMT Not After : Jun 14 10:00:56 2026 GMT Subject: CN=c0215f383e82ca801ca0987effbdc1390bea4bd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:dd:36:87:fa:47:81:a5:6b:e6:0f:28:cb:2f: d4:ae:e8:9a:7a:81:9c:48:cd:4a:fb:b7:2c:ab:60: 03:42:0c:fb:0e:e4:ba:37:53:5f:42:d8:2c:b5:cb: 09:3f:2e:1b:a0:09:23:06:6e:a4:1d:09:ac:de:03: e9:5c:35:d4:76:69:69:90:26:6d:a1:f8:5e:00:09: 83:ab:bb:b3:90:4e:4c:0f:08:d3:d1:a5:de:b5:57: c2:5b:e3:f4:b2:a5:f7:dd:41:87:b6:bd:08:49:27: e0:98:d2:31:30:f1:06:9e:b3:fe:10:72:30:05:71: 10:db:d3:d7:79:a0:92:e7:1b:dc:97:58:4c:10:0f: 82:49:0a:57:a2:b4:e0:d3:d7:96:9c:69:4e:63:fe: f7:84:a6:1e:8e:ee:f6:9d:2b:74:64:cd:a9:76:17: 85:d2:fe:ab:36:dd:95:d9:1e:d0:db:57:b7:b5:c5: 3d:3b:67:40:d0:62:5c:38:a3:51:19:7c:ae:17:d0: 5b:1a:e0:34:4c:05:2e:05:1b:1f:92:cb:ed:3a:14: 81:b7:b6:b4:fc:5e:2e:b8:c2:4a:4c:c2:67:6f:86: 1d:b9:64:38:35:54:f7:fb:b4:47:84:91:d6:72:7b: 9f:a6:16:c5:43:9a:68:a1:86:b4:cf:6b:c1:26:e3: 9c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:21:5F:38:3E:82:CA:80:1C:A0:98:7E:FF:BD:C1:39:0B:EA:4B:D6 X509v3 Authority Key Identifier: keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:de:17:29:aa:4b:60:2f:6c:75:c1:43:de:b7:d2:99:8d:e5: 5d:62:59:e8:00:2a:d1:e9:06:2d:6b:41:af:71:0a:97:19:63: 08:70:b6:ef:83:99:74:89:61:c0:b8:37:ca:aa:9d:a3:3d:10: 52:fa:65:2c:86:41:29:83:73:cf:a5:e4:98:15:e1:52:fc:31: ee:c8:d4:2d:7c:1b:6a:c2:d6:13:cc:fc:2e:e3:6e:76:e1:fc: 44:59:15:ae:6d:9e:94:4a:68:3a:d8:4e:bd:77:68:8e:6e:41: 6c:74:89:f2:12:c5:aa:b3:37:29:e8:29:40:9a:8c:3c:7f:c2: e1:4c:d7:de:47:8d:8c:cf:f6:e3:75:e5:86:3c:91:73:07:39: be:48:74:63:e9:d5:4f:09:e4:35:b3:85:2c:98:ab:3e:7b:03: cb:d9:48:61:77:9a:ec:09:87:84:ae:31:55:02:bc:8f:f6:cf: 11:90:0d:d5:99:86:87:fb:5d:6a:bd:bb:5d:db:fc:bb:10:65: a5:47:9b:b5:53:59:cd:81:22:26:3d:af:fc:f5:6c:84:57:e3: ed:27:2d:8e:d3:8f:56:2b:b9:aa:c1:bb:b9:8a:94:4e:1d:68: aa:35:77:41:97:1d:ea:91:4e:ef:91:77:c5:01:ce:7b:a9:b8: 4b:c3:a4:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ7AbWjz0xj3FCrL20SFCqOiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyY2Q5YTY1MTJkYmYyNWE1ZjE5YjgyN2Q3YTJjN2UyMmEy ZWU4ZGQwHhcNMjYwNjEzMTAwMDU2WhcNMjYwNjE0MTAwMDU2WjAzMTEwLwYDVQQD EyhjMDIxNWYzODNlODJjYTgwMWNhMDk4N2VmZmJkYzEzOTBiZWE0YmQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7N02h/pHgaVr5g8oyy/UruiaeoGc SM1K+7csq2ADQgz7DuS6N1NfQtgstcsJPy4boAkjBm6kHQms3gPpXDXUdmlpkCZt ofheAAmDq7uzkE5MDwjT0aXetVfCW+P0sqX33UGHtr0ISSfgmNIxMPEGnrP+EHIw BXEQ29PXeaCS5xvcl1hMEA+CSQpXorTg09eWnGlOY/73hKYeju72nSt0ZM2pdheF 0v6rNt2V2R7Q21e3tcU9O2dA0GJcOKNRGXyuF9BbGuA0TAUuBRsfksvtOhSBt7a0 /F4uuMJKTMJnb4YduWQ4NVT3+7RHhJHWcnufphbFQ5pooYa0z2vBJuOcvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMAhXzg+gsqAHKCYfv+9wTkL6kvWMB8GA1UdIwQY MBaAFFLNmmUS2/JaXxm4J9eix+IqLujdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUt Y2NhMzc2MDZiZjE4LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUtY2NhMzc2MDZiZjE4 LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl94XKapL YC9sdcFD3rfSmY3lXWJZ6AAq0ekGLWtBr3EKlxljCHC274OZdIlhwLg3yqqdoz0Q UvplLIZBKYNzz6XkmBXhUvwx7sjULXwbasLWE8z8LuNuduH8RFkVrm2elEpoOthO vXdojm5BbHSJ8hLFqrM3KegpQJqMPH/C4UzX3keNjM/243XlhjyRcwc5vkh0Y+nV TwnkNbOFLJirPnsDy9lIYXea7AmHhK4xVQK8j/bPEZAN1ZmGh/tdar27Xdv8uxBl pUebtVNZzYEiJj2v/PVshFfj7SctjtOPViu5qsG7uYqUTh1oqjV3QZcd6pFO75F3 xQHOe6m4S8OknQ== -----END CERTIFICATE-----Generated at Sat Jun 13 13:09:50 2026 by rpki-client