$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft File: 2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft (raw, json) Hash identifier: 5NXXzi5FeKVxPq76hZHauDd7rI+UvgW00px/p0dlNAs= Subject key identifier: 2D:10:2F:DE:A7:28:C5:59:45:39:3A:71:4E:D2:9C:89:F3:CF:D7:61 Authority key identifier: D8:D3:CA:2C:23:1A:FD:F3:B0:35:5C:77:A7:CB:B2:26:F8:1B:74:DE Certificate issuer: /CN=d8d3ca2c231afdf3b0355c77a7cbb226f81b74de Certificate serial: 019EBD34D694DE60D8B643DCEA2DA83842D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft Manifest number: 0559 Signing time: Fri 12 Jun 2026 19:00:17 +0000 Manifest this update: Fri 12 Jun 2026 19:00:17 +0000 Manifest next update: Sat 13 Jun 2026 19:00:17 +0000 Files and hashes: 1: 1-lGH1nu7CvzHWYEiuO1j3MNSzJY.roa (hash: 9/b6BBId/Kn5DB9SmUCWKxBwcAQLvltddZcgBj268UQ=) 2: 2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl (hash: MnMpM4reFrP2Dwf8eG+0rWK8KeIFObmK4TvFeRT0+pg=) 3: 4vxZx7uBqQQ6FyEF2MVBFY1WSaQ.roa (hash: yT8MYmQtVQnTBHZPhbP/WPtpcUBRa3XEcKCSlPgpz98=) 4: AfpxLvj3BiyLwMcA6kKVrdFgW6Y.roa (hash: KKSEdsLLrws/RATwLIqwcq742JLEElRzqndIEau2IyI=) 5: QxbU9vvhcA75ENS1lZHkpNyfErk.roa (hash: yv8oGh8GGZWvW+9jiR8h6piajHrkuA5egN2MppGfk+w=) 6: SIVhfOqz4_ZwZRIWPrAs9TLD0QI.roa (hash: kRtJ8SNMjyDbUxu98aNT/p/eOM2tAQZf30u+RPiQ1f8=) 7: _msrPFl7j-h-scWfwUUyG5vmI0Q.roa (hash: C0U0oHsxASzeTthWbTeZAy4SqW+0azDdamHmVesAW1U=) 8: gA8K0uCGARt0iMHybj1fl0_l9iM.roa (hash: oF5vhF0FQd0hgOhUSqj7/e1FPt2MEHPpP+wGYckBTNY=) 9: koXw3LvEwrzn9qCWrcZnQPR8iMs.roa (hash: gNqdDH2AralOcsOhDuMpE5EfKzaR6A0T5YWUJwlNSmY=) 10: l8TSNwU2prw2gsntuaJ9QdkRHKw.roa (hash: gb+3/D4Y4zC34TYQcD7+qVWbJgAtu0xBM1r/dmFP8pw=) 11: mnp_uzPNuPiUK3TrUmFNgiNmNY8.roa (hash: 9S7aILwvPQVBbceAkPURmV9yU8Bufrpsa3/9WSfefOI=) 12: nmunvZ8NjUAQxyXLc7q3E6asADA.roa (hash: bcuDcNnBDq7F5VI75bQ3a3MYz4yXIjZXvHo8ZRs1H3g=) 13: qbUtGSmF4OJDy4q4dlRGp4OciDs.roa (hash: VVCFN7s9B67WrTXffUSFAE1mRjFGjdVcuJGLxmq/AY8=) 14: tUYOdiUxF4HxrSVOg847WMoBqws.roa (hash: N6nWp89HDr0pIhLLPi1oB+mkzKMLsBnFNGgdLRBYN30=) 15: tevOSAyMp-1DHWOc8A6PPAJZLUs.roa (hash: /4F2MJ2YCwSX6I/W4Ebbet4QyTAZ6jd4w/oq57g4Qcw=) 16: xOtKmGFOQ0Si4ry-DnEnpbMZzfw.roa (hash: uloNgiaPX4XD2hk6wXEnVMKHkzySU+UwLh3IKRIIyAY=) 17: xUHiwbmdxyG7zhauG_jIHmi1gno.roa (hash: 03dvwh0NeW2YpGtwR7ObeLzcikhW32DldU3aMDZzsfI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 19:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:bd:34:d6:94:de:60:d8:b6:43:dc:ea:2d:a8:38:42:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8d3ca2c231afdf3b0355c77a7cbb226f81b74de Validity Not Before: Jun 12 19:00:17 2026 GMT Not After : Jun 13 19:00:17 2026 GMT Subject: CN=2d102fdea728c55945393a714ed29c89f3cfd761 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:b8:d6:fa:88:7a:c1:9b:14:86:0b:2d:3d:a5: ce:ff:64:61:8a:10:54:2c:ab:80:10:f4:3f:73:63: ba:b6:cd:ca:5b:4d:a8:ea:b3:8e:f6:39:b1:1f:95: 2b:a0:c4:93:62:6c:2f:7e:bb:f3:50:4b:ae:ec:46: d9:97:1d:3f:89:a0:cc:45:69:11:b6:dc:8a:91:92: fd:53:8b:07:68:29:b1:cf:fc:32:c9:00:82:84:33: 4e:2d:43:eb:10:82:12:5b:b8:9c:65:7f:b7:e7:50: cf:39:a9:c0:ab:44:2d:18:ac:5a:3c:5c:4c:5b:74: bb:03:e1:d7:ba:c0:3e:76:b6:e0:2b:d1:0d:8f:14: 1a:b1:07:09:7e:9a:88:d3:b2:a6:9e:53:7d:fa:18: 20:20:97:4e:b8:6e:2a:5b:48:5e:e3:59:25:0e:f3: 10:7b:bb:78:14:e8:1d:ba:4a:c5:e2:50:6f:e9:b3: 4c:9f:9a:8b:c6:b4:d5:58:b8:9a:0f:30:3b:65:8d: 82:81:f7:48:b3:8a:f4:bb:30:b5:a5:6e:a0:31:13: aa:16:6b:5f:5d:f1:6b:9b:a5:31:8d:61:22:17:e0: ba:10:b4:1f:a0:d1:0d:f1:45:ff:b4:1d:56:c5:86: a9:37:97:13:ea:cc:af:65:86:40:10:1b:15:1e:a4: d7:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:10:2F:DE:A7:28:C5:59:45:39:3A:71:4E:D2:9C:89:F3:CF:D7:61 X509v3 Authority Key Identifier: keyid:D8:D3:CA:2C:23:1A:FD:F3:B0:35:5C:77:A7:CB:B2:26:F8:1B:74:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cb:b3:f9:d3:a6:9b:82:9c:cd:4a:7a:f8:19:db:4d:9e:ff:7d: 52:fc:4a:44:a8:14:48:e9:9d:ef:e1:e2:70:e7:24:36:88:2a: 6c:9d:cb:b0:6b:23:91:10:25:b4:e6:7d:c4:eb:0f:bf:4b:03: 0b:4a:7b:3c:43:7c:80:04:91:64:4d:19:df:58:29:3a:6b:48: dd:94:12:d9:7b:af:9f:00:2a:f9:a5:5a:3e:eb:ed:bb:b0:a8: 6d:a5:16:1b:73:fe:4b:6e:34:df:d3:2f:3c:2c:3e:f3:3c:25: 34:d9:fb:68:f6:fe:32:a0:8b:21:ac:a6:6d:2c:97:6a:56:1e: f2:49:e8:ec:90:61:98:de:a7:a9:ae:d7:77:9d:7b:e7:0e:79: 6a:79:18:b9:e8:79:db:fe:4d:51:d7:62:cc:36:fd:62:36:46: b3:cb:09:d4:da:7c:98:83:b4:53:60:81:77:f9:22:ff:c2:56: d0:e5:97:76:27:41:3d:b8:8b:03:1a:e7:8d:bf:bb:8c:c1:6f: 71:73:99:d7:89:ba:62:fe:f4:67:32:3d:74:4f:5a:39:f8:da: 01:10:b3:c3:33:f2:3c:a7:28:d8:b8:20:19:4a:ac:6e:6d:59: 95:c1:37:24:d7:f0:77:6a:78:f4:92:56:01:95:76:4c:07:a5: 49:08:ac:15 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ69NNaU3mDYtkPc6i2oOELRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4ZDNjYTJjMjMxYWZkZjNiMDM1NWM3N2E3Y2JiMjI2Zjgx Yjc0ZGUwHhcNMjYwNjEyMTkwMDE3WhcNMjYwNjEzMTkwMDE3WjAzMTEwLwYDVQQD EygyZDEwMmZkZWE3MjhjNTU5NDUzOTNhNzE0ZWQyOWM4OWYzY2ZkNzYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj7jW+oh6wZsUhgstPaXO/2RhihBU LKuAEPQ/c2O6ts3KW02o6rOO9jmxH5UroMSTYmwvfrvzUEuu7EbZlx0/iaDMRWkR ttyKkZL9U4sHaCmxz/wyyQCChDNOLUPrEIISW7icZX+351DPOanAq0QtGKxaPFxM W3S7A+HXusA+drbgK9ENjxQasQcJfpqI07KmnlN9+hggIJdOuG4qW0he41klDvMQ e7t4FOgdukrF4lBv6bNMn5qLxrTVWLiaDzA7ZY2CgfdIs4r0uzC1pW6gMROqFmtf XfFrm6UxjWEiF+C6ELQfoNEN8UX/tB1WxYapN5cT6syvZYZAEBsVHqTXHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC0QL96nKMVZRTk6cU7SnInzz9dhMB8GA1UdIwQY MBaAFNjTyiwjGv3zsDVcd6fLsib4G3TeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMk5QS0xDTWFfZk93TlZ4M3A4dXlKdmdiZE40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS8zYzA3NmItYWVhMS00YTMzLWE5ZTkt OTkxMjhiZjZhODQxLzEvMk5QS0xDTWFfZk93TlZ4M3A4dXlKdmdiZE40Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOS8zYzA3NmItYWVhMS00YTMzLWE5ZTktOTkxMjhiZjZhODQx LzEvMk5QS0xDTWFfZk93TlZ4M3A4dXlKdmdiZE40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAy7P506ab gpzNSnr4GdtNnv99UvxKRKgUSOmd7+HicOckNogqbJ3LsGsjkRAltOZ9xOsPv0sD C0p7PEN8gASRZE0Z31gpOmtI3ZQS2XuvnwAq+aVaPuvtu7CobaUWG3P+S24039Mv PCw+8zwlNNn7aPb+MqCLIaymbSyXalYe8kno7JBhmN6nqa7Xd5175w55ankYueh5 2/5NUddizDb9YjZGs8sJ1Np8mIO0U2CBd/ki/8JW0OWXdidBPbiLAxrnjb+7jMFv cXOZ14m6Yv70ZzI9dE9aOfjaARCzwzPyPKco2LggGUqsbm1ZlcE3JNfwd2p49JJW AZV2TAelSQisFQ== -----END CERTIFICATE-----Generated at Sat Jun 13 06:58:42 2026 by rpki-client