$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft File: 2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft (raw, json) Hash identifier: S1BHxfEU61M5nKP1sPqUWngSr6DIXRSIBsxuzJ7dGMk= Subject key identifier: F7:22:76:40:31:50:EE:EC:A3:2F:A9:8B:2D:B1:5C:2A:0C:F5:DF:38 Authority key identifier: D8:D3:CA:2C:23:1A:FD:F3:B0:35:5C:77:A7:CB:B2:26:F8:1B:74:DE Certificate issuer: /CN=d8d3ca2c231afdf3b0355c77a7cbb226f81b74de Certificate serial: 019D9A74C1A808FCD8597FDC94C04245583C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft Manifest number: 04BF Signing time: Fri 17 Apr 2026 08:00:36 +0000 Manifest this update: Fri 17 Apr 2026 08:00:36 +0000 Manifest next update: Sat 18 Apr 2026 08:00:36 +0000 Files and hashes: 1: 1-lGH1nu7CvzHWYEiuO1j3MNSzJY.roa (hash: 9/b6BBId/Kn5DB9SmUCWKxBwcAQLvltddZcgBj268UQ=) 2: 2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl (hash: aUGOECX0YFeszabml7RUcXupy/xIWXpP7F5LoV6mVtw=) 3: 4vxZx7uBqQQ6FyEF2MVBFY1WSaQ.roa (hash: yT8MYmQtVQnTBHZPhbP/WPtpcUBRa3XEcKCSlPgpz98=) 4: AfpxLvj3BiyLwMcA6kKVrdFgW6Y.roa (hash: KKSEdsLLrws/RATwLIqwcq742JLEElRzqndIEau2IyI=) 5: H4L-qt_BxEvihq_o1Xaqz-fkvFE.roa (hash: VEe/jw2PB8S6n9CGD2VAh3zIwGdGkRNshlPXiJ7ysA0=) 6: QxbU9vvhcA75ENS1lZHkpNyfErk.roa (hash: yv8oGh8GGZWvW+9jiR8h6piajHrkuA5egN2MppGfk+w=) 7: R-5w2OhY85ahLOn9d9XARIf0WJE.roa (hash: ZrntMgUNbnCcVCqd80hEXtJhbHPgRihn20AF29/vEO8=) 8: SIVhfOqz4_ZwZRIWPrAs9TLD0QI.roa (hash: kRtJ8SNMjyDbUxu98aNT/p/eOM2tAQZf30u+RPiQ1f8=) 9: _msrPFl7j-h-scWfwUUyG5vmI0Q.roa (hash: C0U0oHsxASzeTthWbTeZAy4SqW+0azDdamHmVesAW1U=) 10: a_KDbooKgX9EfPLLdcA4IpITipg.roa (hash: RCQVZiZYnKBpMqhDAPS0QIUF6mLMkG55kiDCTl986CU=) 11: gA8K0uCGARt0iMHybj1fl0_l9iM.roa (hash: oF5vhF0FQd0hgOhUSqj7/e1FPt2MEHPpP+wGYckBTNY=) 12: koXw3LvEwrzn9qCWrcZnQPR8iMs.roa (hash: gNqdDH2AralOcsOhDuMpE5EfKzaR6A0T5YWUJwlNSmY=) 13: l8TSNwU2prw2gsntuaJ9QdkRHKw.roa (hash: gb+3/D4Y4zC34TYQcD7+qVWbJgAtu0xBM1r/dmFP8pw=) 14: lF-NQYjHwP7LXQFX0OJCARB0Jts.roa (hash: YQcmPFpdxVDION1toykp/aMiRv2UpsJ26lx7u41JNkI=) 15: mnp_uzPNuPiUK3TrUmFNgiNmNY8.roa (hash: 9S7aILwvPQVBbceAkPURmV9yU8Bufrpsa3/9WSfefOI=) 16: tUYOdiUxF4HxrSVOg847WMoBqws.roa (hash: N6nWp89HDr0pIhLLPi1oB+mkzKMLsBnFNGgdLRBYN30=) 17: tevOSAyMp-1DHWOc8A6PPAJZLUs.roa (hash: /4F2MJ2YCwSX6I/W4Ebbet4QyTAZ6jd4w/oq57g4Qcw=) 18: xOtKmGFOQ0Si4ry-DnEnpbMZzfw.roa (hash: uloNgiaPX4XD2hk6wXEnVMKHkzySU+UwLh3IKRIIyAY=) 19: xUHiwbmdxyG7zhauG_jIHmi1gno.roa (hash: 03dvwh0NeW2YpGtwR7ObeLzcikhW32DldU3aMDZzsfI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Apr 2026 07:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:9a:74:c1:a8:08:fc:d8:59:7f:dc:94:c0:42:45:58:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8d3ca2c231afdf3b0355c77a7cbb226f81b74de Validity Not Before: Apr 17 08:00:36 2026 GMT Not After : Apr 18 08:00:36 2026 GMT Subject: CN=f72276403150eeeca32fa98b2db15c2a0cf5df38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:45:a6:79:f4:89:d9:7a:20:95:8b:5a:dc:7d: e2:ec:c5:20:6e:49:a3:9e:83:27:2d:c2:c6:f1:a1: ce:d1:46:04:bd:d4:a4:27:78:ff:43:c8:d8:df:c1: e6:0f:41:8f:67:30:7d:a1:95:87:d6:f4:fb:f5:42: 6a:c5:ee:da:f4:7c:9f:d5:4f:94:5e:d5:0b:03:5c: 44:e4:ec:36:c8:6d:fe:24:d6:23:46:bd:3a:93:c4: ff:08:9b:94:93:f6:b8:98:6b:2d:73:17:1c:fe:91: a3:ee:9b:95:6c:24:7b:d3:98:5b:4d:2f:1e:6d:a7: 2b:3d:7b:eb:d3:8c:af:cf:e5:a4:6a:33:69:3e:82: ad:fd:b7:98:ac:0b:1e:a8:84:bb:64:d8:ed:11:a3: ee:94:0c:03:1c:fe:8c:cb:95:7b:4e:d4:40:aa:89: 53:62:39:11:9f:85:2a:95:3b:a7:57:17:c1:ce:94: 04:f5:d1:25:5c:03:8d:03:91:83:ca:d8:97:1b:75: 4c:e4:c8:49:05:6d:5b:55:dd:df:90:35:9a:b0:83: 17:a1:3c:30:25:c4:76:22:a5:ad:0b:a6:d8:5c:d6: 50:ef:c2:e7:f8:3d:b3:c1:f7:25:35:eb:af:85:cf: 62:16:3b:fa:73:76:e1:a7:db:d1:2a:03:ad:c7:42: 12:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:22:76:40:31:50:EE:EC:A3:2F:A9:8B:2D:B1:5C:2A:0C:F5:DF:38 X509v3 Authority Key Identifier: keyid:D8:D3:CA:2C:23:1A:FD:F3:B0:35:5C:77:A7:CB:B2:26:F8:1B:74:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:57:85:a2:c7:29:d1:d9:29:12:ce:bb:4e:da:48:db:2e:ed: b4:e6:66:46:07:56:51:62:af:33:96:5b:86:b7:05:cb:ae:19: 10:05:6f:2d:0e:98:58:45:72:b5:93:98:be:c5:7f:4a:49:23: 80:7b:2e:33:a1:95:2e:3e:87:ab:21:86:49:15:a2:9d:a2:d4: 6f:29:43:c3:5f:90:a9:21:23:5d:14:79:39:89:4c:4e:d8:36: 30:43:2f:93:12:1e:a7:e5:86:4f:8c:60:4f:39:f1:cc:06:44: 3e:7e:bd:66:58:5c:38:38:6f:aa:35:71:c7:3a:42:b9:40:5a: 8c:80:29:16:62:59:b3:a9:b6:4e:1a:3c:2d:9a:6c:ba:d7:8f: 42:b3:0a:e7:20:28:5e:1d:74:7e:83:90:48:26:31:bb:0f:70: d5:35:c0:6a:89:d4:f4:84:a7:70:b0:a1:95:d1:69:d9:b2:7e: b6:bd:cd:ce:af:0f:48:89:85:86:53:d7:1c:c5:88:1c:b1:12: 46:d9:4b:2c:03:04:9b:57:a5:be:fa:c2:00:99:6d:75:83:e2: 2c:56:01:eb:e5:88:0e:f5:9e:79:79:f8:18:c5:fa:14:f2:c0: e1:1f:42:df:c8:bd:0e:89:f5:b7:b0:dc:43:46:cd:6f:af:a9: 87:65:f8:54 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2adMGoCPzYWX/clMBCRVg8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4ZDNjYTJjMjMxYWZkZjNiMDM1NWM3N2E3Y2JiMjI2Zjgx Yjc0ZGUwHhcNMjYwNDE3MDgwMDM2WhcNMjYwNDE4MDgwMDM2WjAzMTEwLwYDVQQD EyhmNzIyNzY0MDMxNTBlZWVjYTMyZmE5OGIyZGIxNWMyYTBjZjVkZjM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0EWmefSJ2XoglYta3H3i7MUgbkmj noMnLcLG8aHO0UYEvdSkJ3j/Q8jY38HmD0GPZzB9oZWH1vT79UJqxe7a9Hyf1U+U XtULA1xE5Ow2yG3+JNYjRr06k8T/CJuUk/a4mGstcxcc/pGj7puVbCR705hbTS8e bacrPXvr04yvz+WkajNpPoKt/beYrAseqIS7ZNjtEaPulAwDHP6My5V7TtRAqolT YjkRn4UqlTunVxfBzpQE9dElXAONA5GDytiXG3VM5MhJBW1bVd3fkDWasIMXoTww JcR2IqWtC6bYXNZQ78Ln+D2zwfclNeuvhc9iFjv6c3bhp9vRKgOtx0ISYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPcidkAxUO7soy+piy2xXCoM9d84MB8GA1UdIwQY MBaAFNjTyiwjGv3zsDVcd6fLsib4G3TeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMk5QS0xDTWFfZk93TlZ4M3A4dXlKdmdiZE40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS8zYzA3NmItYWVhMS00YTMzLWE5ZTkt OTkxMjhiZjZhODQxLzEvMk5QS0xDTWFfZk93TlZ4M3A4dXlKdmdiZE40Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOS8zYzA3NmItYWVhMS00YTMzLWE5ZTktOTkxMjhiZjZhODQx LzEvMk5QS0xDTWFfZk93TlZ4M3A4dXlKdmdiZE40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP1eFoscp 0dkpEs67TtpI2y7ttOZmRgdWUWKvM5ZbhrcFy64ZEAVvLQ6YWEVytZOYvsV/Skkj gHsuM6GVLj6HqyGGSRWinaLUbylDw1+QqSEjXRR5OYlMTtg2MEMvkxIep+WGT4xg TznxzAZEPn69ZlhcODhvqjVxxzpCuUBajIApFmJZs6m2Tho8LZpsutePQrMK5yAo Xh10foOQSCYxuw9w1TXAaonU9ISncLChldFp2bJ+tr3Nzq8PSImFhlPXHMWIHLES RtlLLAMEm1elvvrCAJltdYPiLFYB6+WIDvWeeXn4GMX6FPLA4R9C38i9Don1t7Dc Q0bNb6+ph2X4VA== -----END CERTIFICATE-----Generated at Fri Apr 17 12:20:06 2026 by rpki-client