$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.mft File: O_pmNv5kQKzyk7dXBaeh3K2oQgs.mft (raw, json) Hash identifier: 7/dtvU5dcA1B9FqOaZLU/AJCwF4xu40zaL4/KEomjIU= Subject key identifier: 42:4B:24:A2:5B:C2:92:84:D7:8A:5D:9B:B7:1E:89:2B:8F:E3:F9:1E Authority key identifier: 3B:FA:66:36:FE:64:40:AC:F2:93:B7:57:05:A7:A1:DC:AD:A8:42:0B Certificate issuer: /CN=3bfa6636fe6440acf293b75705a7a1dcada8420b Certificate serial: 019DA340C307DE6994056C21298C32609A69 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_pmNv5kQKzyk7dXBaeh3K2oQgs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.mft Manifest number: 18CF Signing time: Sun 19 Apr 2026 01:00:23 +0000 Manifest this update: Sun 19 Apr 2026 01:00:23 +0000 Manifest next update: Mon 20 Apr 2026 01:00:23 +0000 Files and hashes: 1: 1-ehuABryUVINj2W3NK-g46DB49o.roa (hash: YXDM1cCPDyh4BpBxko9niqIGoA4Nx7Wm0bIxDril5ZU=) 2: 49TpBZIbyHobsWcoh4oSwqHHj24.roa (hash: H3ZabpGlNw6ABVIQ/nTAsG4jZDJmHYwqGcghd6J47mU=) 3: CJMQtEYFaJCIAob5YTIM33reer0.roa (hash: 2fmW/5EjPlZQDHVPyDvXpi5tn/bBcbJ02R3RN2NWWE8=) 4: GhJdnyWj9py61uVvaxvqFfy0V7c.roa (hash: ljlh5bK4up2SZeKlCTioJwKwERt/6WFEKI2x/h9hHl8=) 5: O_pmNv5kQKzyk7dXBaeh3K2oQgs.crl (hash: zHxlUJPWxfCZcax3rDaZyrpnHyvZ96S+qdL27bPceHU=) 6: YTSwtqCla-KMN-KojPP7ZcEJhCI.roa (hash: ucZ995yNrK5VHoaXITb+Y7tbONn7bL9sNblRcrvwpcQ=) 7: eSL82eEcvzSK2dkw6o4hr1h_hm0.roa (hash: iOpyDBpoorKPMwT1bNhIwY8hNcyUZXYXJpDFE6NQs9Q=) 8: gLrTd-tF6YKwKPVyN-B9kSozUjE.roa (hash: TmnCSJykitabQj5d7T0dn/Ydx5URkDDijEKhCVoUSe8=) 9: nKmF1TZGqw4Rl01o8Upo8B1uARg.roa (hash: jsNr28qDsooPsLwTF7PUY4RAqfXcXlMffZUWeSf+lRc=) 10: y2kC-JHxws7OdlKjntbmzAIGoYo.roa (hash: LqoUkGt/W9j9zMAyvyXO0TzR2hTHbWsAzvz5pfbOIEo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.mft rsync://rpki.ripe.net/repository/DEFAULT/O_pmNv5kQKzyk7dXBaeh3K2oQgs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Apr 2026 01:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:a3:40:c3:07:de:69:94:05:6c:21:29:8c:32:60:9a:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3bfa6636fe6440acf293b75705a7a1dcada8420b Validity Not Before: Apr 19 01:00:23 2026 GMT Not After : Apr 20 01:00:23 2026 GMT Subject: CN=424b24a25bc29284d78a5d9bb71e892b8fe3f91e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:20:81:2a:b9:53:99:93:7e:ba:8c:e9:f7:c1: 2c:fd:17:66:16:87:b8:fa:50:f8:a4:e3:6a:a7:78: 5d:f3:e9:8e:48:5d:16:f3:ef:7c:c1:a5:77:ce:39: 00:4c:ed:76:a4:84:b9:b2:7b:9c:21:1d:c7:9e:a3: 2f:d9:71:8b:be:19:dd:a2:fc:25:4f:5a:02:b9:c3: 63:22:fb:14:21:e0:52:a8:96:1b:ba:20:1a:3e:13: 03:88:af:94:7b:e3:a2:4c:e7:9c:c7:27:c5:2c:c8: 6f:a3:9d:72:70:55:1d:45:52:6f:b2:9b:e3:0b:3f: e8:aa:6a:64:9d:a8:9e:1b:d1:4b:91:b6:70:a8:aa: e6:c5:13:e2:d4:ce:a7:b3:23:49:75:75:b2:82:f3: f8:4f:99:1a:05:e3:47:34:e6:30:07:a3:2f:7e:c3: d8:32:4c:da:39:d5:fa:91:73:7c:9c:8e:bb:f8:d0: 1d:73:04:70:3b:25:b5:42:99:25:7a:9a:95:78:b0: bb:7a:4c:4e:5b:4b:01:6d:f9:43:98:0a:14:3f:ba: d4:27:0f:40:5c:9b:fd:2f:cb:5c:4c:28:a8:9d:e3: b9:64:0e:68:aa:d2:83:43:0a:08:e9:5e:4e:e0:3b: 9b:a0:62:c4:60:81:1e:e7:a0:c4:ee:f7:93:3a:52: 6f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:4B:24:A2:5B:C2:92:84:D7:8A:5D:9B:B7:1E:89:2B:8F:E3:F9:1E X509v3 Authority Key Identifier: keyid:3B:FA:66:36:FE:64:40:AC:F2:93:B7:57:05:A7:A1:DC:AD:A8:42:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_pmNv5kQKzyk7dXBaeh3K2oQgs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a47cdf-d21b-4f1d-8901-92ec515c595a/1/O_pmNv5kQKzyk7dXBaeh3K2oQgs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:0a:da:bd:ed:06:72:5a:c4:02:e4:8d:a3:60:b4:fb:db:a5: 52:69:e9:26:f3:d5:c3:ea:db:32:1b:f4:72:e7:97:67:70:b9: 52:b8:ea:35:a2:18:d5:e4:3a:35:6a:e8:87:c0:7e:fd:a2:79: d8:40:2b:be:78:0e:ae:6b:dc:26:91:f1:73:65:db:1f:1d:ed: 7e:61:e6:aa:f4:f4:c3:7b:b7:3a:20:1e:b4:59:6c:e3:9f:e9: 58:9c:97:70:e0:e6:0f:4b:ee:d6:4b:3c:7a:50:a4:2d:da:16: e2:46:5b:7a:16:25:88:1d:9e:d4:f3:4e:90:84:3e:02:37:92: d4:d9:4a:89:7e:40:1a:9d:22:28:1e:20:5f:eb:2c:ff:b5:e4: f2:fb:80:d9:31:06:e4:62:58:3b:58:65:73:a0:23:82:7e:f9: 88:81:59:92:10:8e:80:f3:f8:37:db:2a:56:85:e3:dc:ba:a3: 0e:06:47:2d:e8:b1:77:ea:45:bd:e8:44:18:09:73:8f:d0:e3: 95:02:d3:78:e5:a4:dd:c3:c8:32:10:6c:ff:00:51:99:02:c9: e8:1b:ce:c5:28:88:3b:3c:9f:8c:2a:98:97:a8:9d:be:2e:3c: 91:ff:d2:e9:69:f9:99:5a:ed:af:ea:f4:89:1b:0e:4a:bc:03: 33:1c:50:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2jQMMH3mmUBWwhKYwyYJppMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiZmE2NjM2ZmU2NDQwYWNmMjkzYjc1NzA1YTdhMWRjYWRh ODQyMGIwHhcNMjYwNDE5MDEwMDIzWhcNMjYwNDIwMDEwMDIzWjAzMTEwLwYDVQQD Eyg0MjRiMjRhMjViYzI5Mjg0ZDc4YTVkOWJiNzFlODkyYjhmZTNmOTFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtyCBKrlTmZN+uozp98Es/RdmFoe4 +lD4pONqp3hd8+mOSF0W8+98waV3zjkATO12pIS5snucIR3HnqMv2XGLvhndovwl T1oCucNjIvsUIeBSqJYbuiAaPhMDiK+Ue+OiTOecxyfFLMhvo51ycFUdRVJvspvj Cz/oqmpknaieG9FLkbZwqKrmxRPi1M6nsyNJdXWygvP4T5kaBeNHNOYwB6MvfsPY MkzaOdX6kXN8nI67+NAdcwRwOyW1QpklepqVeLC7ekxOW0sBbflDmAoUP7rUJw9A XJv9L8tcTCioneO5ZA5oqtKDQwoI6V5O4DuboGLEYIEe56DE7veTOlJvvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEJLJKJbwpKE14pdm7ceiSuP4/keMB8GA1UdIwQY MBaAFDv6Zjb+ZECs8pO3VwWnodytqEILMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT19wbU52NWtRS3p5azdkWEJhZWgzSzJvUWdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi9hNDdjZGYtZDIxYi00ZjFkLTg5MDEt OTJlYzUxNWM1OTVhLzEvT19wbU52NWtRS3p5azdkWEJhZWgzSzJvUWdzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi9hNDdjZGYtZDIxYi00ZjFkLTg5MDEtOTJlYzUxNWM1OTVh LzEvT19wbU52NWtRS3p5azdkWEJhZWgzSzJvUWdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAgrave0G clrEAuSNo2C0+9ulUmnpJvPVw+rbMhv0cueXZ3C5UrjqNaIY1eQ6NWroh8B+/aJ5 2EArvngOrmvcJpHxc2XbHx3tfmHmqvT0w3u3OiAetFls45/pWJyXcODmD0vu1ks8 elCkLdoW4kZbehYliB2e1PNOkIQ+AjeS1NlKiX5AGp0iKB4gX+ss/7Xk8vuA2TEG 5GJYO1hlc6Ajgn75iIFZkhCOgPP4N9sqVoXj3LqjDgZHLeixd+pFvehEGAlzj9Dj lQLTeOWk3cPIMhBs/wBRmQLJ6BvOxSiIOzyfjCqYl6idvi48kf/S6Wn5mVrtr+r0 iRsOSrwDMxxQ4A== -----END CERTIFICATE-----Generated at Sun Apr 19 08:48:57 2026 by rpki-client