$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft File: D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft (raw, json) Hash identifier: Eatj5LZse3OWdZmBeaui4q9Ij/Tbepmxtr5CNfCMifk= Subject key identifier: 86:DE:3D:60:52:D1:C7:E5:BC:5E:08:45:11:EB:34:19:A4:61:04:12 Authority key identifier: 0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5 Certificate issuer: /CN=0f6363d428b7915c108825f09706004b8ea3d4b5 Certificate serial: 019D9886441FEC14EA648C13B9B76EA2BA97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft Manifest number: 18E2 Signing time: Thu 16 Apr 2026 23:00:29 +0000 Manifest this update: Thu 16 Apr 2026 23:00:29 +0000 Manifest next update: Fri 17 Apr 2026 23:00:29 +0000 Files and hashes: 1: 2um_rS6WPk2IN6s5x2XbXkQen_M.roa (hash: B3h5JybIRNgVZgqeJwphCEgik9Z267VqHxwbsqTyFKg=) 2: 5du9oXm-5RnmJ8KX2xj_Zy0VqSw.roa (hash: Y1EwroZc2iGhdcqssdik2/Y5BQLLil5kyZQd3CFxooI=) 3: 8f-eDRc6_FXPO45wpxV1xiQ1HAI.roa (hash: qCD4Jc/TwmM8SzWErouUslVtMstyIPcxvXJzTBG565w=) 4: AQlhfGVcA8R2Bwt2uq11a9BJ3I8.roa (hash: ZpJgowIRgidE/63sx4+7oMD9312HUQ//RvFSY5dDQVE=) 5: D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl (hash: VogG7B6jO3Pryqk2wr1YoMxUyqWNeJK9znIL2gFVeUo=) 6: NRE_ExP25AUx8aw3isiH4EnLbWo.roa (hash: SKLRbqjSGl9WDWUOA+lP72kkE1542Czk3hD2WUZlOgE=) 7: WLsy-DnnYnQhVtIJoLpzduDgWrE.roa (hash: V18CJCRRVUNGPvZK+aRf70kDiLaxF9fIzOBbbor2Dw4=) 8: b1zJ7NbuL57-e0rkevnmNIo0USU.roa (hash: 6oXQKWkeIUo+oie2lp60DcRhSM6jyLL6Sog8QbpX/bA=) 9: mWfbcxQdC8J-VBP4j7EBWfW3Qb4.roa (hash: osYbMfspLkdv49SbR62yA1rUcvBEuqW1/Mq+AH8uZCU=) 10: pcZnUT88SN1u2R3xPf6LVW5AwuQ.roa (hash: ZB/G3ZNzs5uxcuPvRWlbNalCCRVbwpgrXGxyYOGJMA4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 Apr 2026 22:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:98:86:44:1f:ec:14:ea:64:8c:13:b9:b7:6e:a2:ba:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f6363d428b7915c108825f09706004b8ea3d4b5 Validity Not Before: Apr 16 23:00:29 2026 GMT Not After : Apr 17 23:00:29 2026 GMT Subject: CN=86de3d6052d1c7e5bc5e084511eb3419a4610412 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7a:fc:ed:8e:a3:0a:3b:45:bd:cf:6d:8d:ea: a4:e6:55:34:cb:22:5b:10:b2:fd:cd:a7:ef:87:e3: a4:56:ea:47:d8:5d:54:84:1b:7c:4a:27:99:14:80: 2d:8c:97:60:52:d7:53:00:4d:e4:61:21:a2:8b:ba: ed:38:ba:9a:86:c8:de:5f:c8:32:19:47:65:39:93: 52:2c:1f:df:53:03:6d:15:e8:19:f9:68:66:e4:2d: e2:cd:7d:5c:e6:04:94:7e:99:d6:b8:00:8e:48:fe: eb:d9:00:f4:bd:9a:e1:09:ca:2c:3f:42:7e:f5:7c: fe:13:1c:c1:de:8b:a9:a6:af:11:47:13:06:c8:9f: 41:69:38:cb:57:e0:58:2f:73:38:90:4b:bb:ae:bf: e1:ed:c0:17:97:f3:a9:4e:04:ef:0b:10:3f:8c:18: 5b:0d:13:3f:ef:01:99:f0:9d:7b:61:7e:6b:8f:70: 0e:6f:23:51:5a:36:19:7b:a7:e7:21:2c:6a:f4:1f: e6:52:65:1e:14:7e:a1:09:d5:ce:0c:66:2c:71:7a: 7c:5e:55:6a:1c:fb:14:ee:c8:23:fe:8c:b7:fe:08: f8:c8:04:5c:eb:87:3b:c3:bb:bb:f8:ac:44:50:9c: 6a:fe:cd:fe:19:7c:6b:f2:86:ee:cc:fa:b8:e6:fe: f2:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:DE:3D:60:52:D1:C7:E5:BC:5E:08:45:11:EB:34:19:A4:61:04:12 X509v3 Authority Key Identifier: keyid:0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:9c:05:87:32:2a:b3:c2:0f:d6:a9:c6:51:43:d8:c7:9e:2c: 91:de:92:3f:b9:49:8b:73:17:a6:0a:6d:2f:e9:fb:07:75:fd: aa:18:0d:3c:b9:57:54:9e:6e:d5:d3:64:02:a8:48:8d:2e:f1: e8:dc:47:9e:ca:4d:61:ad:49:5f:f6:b8:7c:80:85:91:06:aa: fc:fe:e8:be:f0:b8:cc:fe:9a:59:42:6a:2d:da:39:5f:c2:ae: cd:2f:f0:f7:6c:90:ef:d6:05:10:c8:f7:c4:90:de:d9:e5:11: f7:10:4a:f1:b5:ce:9b:33:48:5f:39:a9:6e:8f:9b:aa:b3:59: 58:71:69:f7:18:35:2e:0e:3d:79:aa:1f:86:37:ff:9d:99:36: 54:0f:2a:c0:53:a8:2b:a0:b0:dc:7b:ae:04:6a:4e:b1:db:ab: 90:b1:55:ce:ee:25:92:16:9f:76:bc:ea:cb:82:f7:40:fb:de: db:8f:5b:8e:1f:f3:57:03:ac:5b:e1:32:66:ba:94:82:db:a8: 3c:62:6d:17:33:e5:06:df:03:23:17:9d:11:84:ce:7c:25:20: ef:1e:70:fb:e7:0b:c6:66:b1:f4:6f:50:04:11:bb:15:5e:27: f9:4a:9e:7e:c8:06:d8:03:77:5b:fd:7d:dd:a8:39:b7:7d:8f: eb:ab:15:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2YhkQf7BTqZIwTubduorqXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmNjM2M2Q0MjhiNzkxNWMxMDg4MjVmMDk3MDYwMDRiOGVh M2Q0YjUwHhcNMjYwNDE2MjMwMDI5WhcNMjYwNDE3MjMwMDI5WjAzMTEwLwYDVQQD Eyg4NmRlM2Q2MDUyZDFjN2U1YmM1ZTA4NDUxMWViMzQxOWE0NjEwNDEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArHr87Y6jCjtFvc9tjeqk5lU0yyJb ELL9zafvh+OkVupH2F1UhBt8SieZFIAtjJdgUtdTAE3kYSGii7rtOLqahsjeX8gy GUdlOZNSLB/fUwNtFegZ+Whm5C3izX1c5gSUfpnWuACOSP7r2QD0vZrhCcosP0J+ 9Xz+ExzB3ouppq8RRxMGyJ9BaTjLV+BYL3M4kEu7rr/h7cAXl/OpTgTvCxA/jBhb DRM/7wGZ8J17YX5rj3AObyNRWjYZe6fnISxq9B/mUmUeFH6hCdXODGYscXp8XlVq HPsU7sgj/oy3/gj4yARc64c7w7u7+KxEUJxq/s3+GXxr8obuzPq45v7yYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIbePWBS0cflvF4IRRHrNBmkYQQSMB8GA1UdIwQY MBaAFA9jY9Qot5FcEIgl8JcGAEuOo9S1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDJOajFDaTNrVndRaUNYd2x3WUFTNDZqMUxVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy82YmVjYjAtMThmZC00YWRkLWJiNDEt MmUxYzBhZjRmYWE0LzEvRDJOajFDaTNrVndRaUNYd2x3WUFTNDZqMUxVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy82YmVjYjAtMThmZC00YWRkLWJiNDEtMmUxYzBhZjRmYWE0 LzEvRDJOajFDaTNrVndRaUNYd2x3WUFTNDZqMUxVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOpwFhzIq s8IP1qnGUUPYx54skd6SP7lJi3MXpgptL+n7B3X9qhgNPLlXVJ5u1dNkAqhIjS7x 6NxHnspNYa1JX/a4fICFkQaq/P7ovvC4zP6aWUJqLdo5X8KuzS/w92yQ79YFEMj3 xJDe2eUR9xBK8bXOmzNIXzmpbo+bqrNZWHFp9xg1Lg49eaofhjf/nZk2VA8qwFOo K6Cw3HuuBGpOsdurkLFVzu4lkhafdrzqy4L3QPve249bjh/zVwOsW+EyZrqUgtuo PGJtFzPlBt8DIxedEYTOfCUg7x5w++cLxmax9G9QBBG7FV4n+UqefsgG2AN3W/19 3ag5t32P66sV1A== -----END CERTIFICATE-----Generated at Fri Apr 17 06:49:26 2026 by rpki-client