$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft File: hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft (raw, json) Hash identifier: eKSatMUz6VQsiaIZhMoa8CKopc7RL16yCFLEpHwiMf8= Subject key identifier: EA:AD:E1:C7:C6:01:7D:8E:73:52:F4:AD:FA:88:50:C5:5B:23:17:86 Authority key identifier: 84:52:B0:3E:1B:01:70:96:38:94:0D:95:92:98:3C:DE:77:EC:AB:77 Certificate issuer: /CN=8452b03e1b01709638940d9592983cde77ecab77 Certificate serial: 019D9A06F29B913D99E122D83992F224F936 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFKwPhsBcJY4lA2Vkpg83nfsq3c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft Manifest number: 18D1 Signing time: Fri 17 Apr 2026 06:00:39 +0000 Manifest this update: Fri 17 Apr 2026 06:00:39 +0000 Manifest next update: Sat 18 Apr 2026 06:00:39 +0000 Files and hashes: 1: 0kMqt-CPfgtjYdaZtK0l7K4Ure0.roa (hash: KGaaMrvGH34iblBGGLnwSzs+JaREEUUOumEoCywsnd8=) 2: 9XLB2pGNOPbljEVUBZRkKE3gDsg.roa (hash: yFaKRkjlVIE/J3Dt9Swl2M9fjwmRRjL86LSGNcqFa2o=) 3: FllgV1uq3gnfxzgcQ6YncIh4JMQ.roa (hash: xP/yiKvXIB14qyF8rqguFru71C1q8PJ2Qa43mcie0iQ=) 4: JNZkNs3RJOo2AnXmnTbKg_X2Nm8.roa (hash: +pMZwPRauFNHIAoy64TMZM699q7Sq6HNlbnD+XOQxn4=) 5: MZB1UqbipBpVhmhIAAIPCSUm9tE.roa (hash: zYMw6mBm4z/9+C34n4tABKKlDK/AXIGy+SsUTUFBU8w=) 6: TaW1xof2_FS-y1oMd64DHywlLM8.roa (hash: wpTtq6XsXybW5bFqRgDMjejQMJ2CiWnuwczXgfVlZ+M=) 7: fXpzmIEAnbtmNcx0rqptqG5QnQg.roa (hash: 5iU3booTwnLztG+lAWV3dZKWKwiQOKD5sGh5Wy5gwWk=) 8: hFKwPhsBcJY4lA2Vkpg83nfsq3c.crl (hash: S/n/5oIAbZQNEX0sjM2OqcVQRO8Ydz/2ZSoN/KT8tBE=) 9: hTBE-AfXHoIR0eXyurn7fldr3Uw.roa (hash: h5l8+NwGnElycHcZimGiomdSgVS5UzfYH7eaKNxeRxk=) 10: mTw_KV9L-hpI5Nu8b0XPe3ZJbgw.roa (hash: HG8VsquQ+FnSEapJw68ywW3TpFwS/T5f8VjxgSgr5P4=) 11: o1g6d4IpK0z2pKch2obiVEvKpo0.roa (hash: ogKpeh7KtOQ7CbX8yF/mDVAEfUbLY6d/B58Q/R7K4YE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft rsync://rpki.ripe.net/repository/DEFAULT/hFKwPhsBcJY4lA2Vkpg83nfsq3c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Apr 2026 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:9a:06:f2:9b:91:3d:99:e1:22:d8:39:92:f2:24:f9:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8452b03e1b01709638940d9592983cde77ecab77 Validity Not Before: Apr 17 06:00:39 2026 GMT Not After : Apr 18 06:00:39 2026 GMT Subject: CN=eaade1c7c6017d8e7352f4adfa8850c55b231786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0f:aa:79:ce:79:56:38:00:b2:70:8b:f2:5d: 2f:ef:76:79:e6:f9:82:95:8d:29:ad:21:99:79:c3: 35:d0:cb:b2:db:90:b3:22:aa:ed:c2:ed:3d:4b:62: 36:ec:82:03:6e:a2:b4:40:45:40:4f:a5:64:43:77: 30:84:bd:5c:20:7a:aa:b4:42:4b:33:5a:9f:e4:32: b7:e5:0f:ff:bb:5d:e2:f0:ba:e7:7b:3d:f9:e8:57: 11:48:48:48:51:77:a9:1b:87:00:d9:fe:2b:ea:33: 19:7e:ed:1c:d3:0f:69:39:bf:01:89:0b:3d:76:18: ea:53:9f:cb:a0:15:c6:2e:2e:f6:29:c2:82:a9:a1: 83:41:c0:d0:e3:f7:06:fb:69:19:b6:48:f0:03:c7: 8e:27:13:b3:80:33:03:65:bb:5f:d6:d8:29:cd:f1: c9:95:a5:61:20:ed:9d:b2:c9:f9:eb:36:ea:6a:c2: a0:fb:06:67:78:3e:e0:fe:66:fa:ee:52:02:fd:3a: 9e:1c:14:d2:3f:13:ec:79:1f:19:c1:08:0e:75:d2: 26:26:14:c1:f9:61:97:02:1d:f3:48:f4:96:c3:9d: 97:42:f1:f8:73:9a:ee:aa:15:05:b7:63:90:f5:cc: 9b:96:e7:41:8b:38:68:d7:de:0a:09:47:ba:10:3b: 26:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:AD:E1:C7:C6:01:7D:8E:73:52:F4:AD:FA:88:50:C5:5B:23:17:86 X509v3 Authority Key Identifier: keyid:84:52:B0:3E:1B:01:70:96:38:94:0D:95:92:98:3C:DE:77:EC:AB:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFKwPhsBcJY4lA2Vkpg83nfsq3c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:4d:7d:e9:fe:17:46:27:f9:85:a1:9e:21:55:1a:ad:d4:29: 90:6d:ac:6d:b7:c5:27:fb:62:4c:c4:2a:73:ab:e0:ee:85:d0: 4b:5c:b7:19:a3:e8:8b:44:cd:82:7e:fd:4d:ef:bd:bd:b5:6a: 6c:55:35:14:b1:b4:95:1f:63:6c:33:58:29:93:4b:3e:36:b9: 49:5f:f4:91:79:1b:3d:b1:e9:ff:f0:e1:cc:fc:f7:d9:d5:2f: 47:88:c6:a6:3a:ba:f0:fe:f4:15:4e:21:62:ef:e0:37:bb:a3: 3a:b6:99:4d:03:e0:f4:8f:8d:46:c2:96:f0:aa:68:2e:f4:e5: 66:a6:ae:da:bf:34:1d:3d:9f:53:ca:ec:44:be:91:f4:52:51: 03:f5:ab:f9:55:b2:24:16:8c:c7:86:55:88:4f:74:bc:49:07: d4:d2:4b:ed:57:0d:4e:1e:ae:2a:7c:bc:b0:38:c7:b7:55:c7: 07:b9:1d:6c:36:22:b6:86:4e:68:76:33:7f:8a:8f:73:dd:f9: 65:50:f8:60:68:e6:d8:17:5a:4a:9b:35:c4:87:73:57:dc:73: 31:a4:b4:3e:26:78:f9:c0:ee:13:f8:96:45:59:57:2f:67:1b: 84:16:6f:58:ed:b7:86:1e:b2:bf:16:d8:b6:72:f8:a9:d6:eb: e8:e7:67:ec -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2aBvKbkT2Z4SLYOZLyJPk2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0NTJiMDNlMWIwMTcwOTYzODk0MGQ5NTkyOTgzY2RlNzdl Y2FiNzcwHhcNMjYwNDE3MDYwMDM5WhcNMjYwNDE4MDYwMDM5WjAzMTEwLwYDVQQD EyhlYWFkZTFjN2M2MDE3ZDhlNzM1MmY0YWRmYTg4NTBjNTViMjMxNzg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqw+qec55VjgAsnCL8l0v73Z55vmC lY0prSGZecM10Muy25CzIqrtwu09S2I27IIDbqK0QEVAT6VkQ3cwhL1cIHqqtEJL M1qf5DK35Q//u13i8Lrnez356FcRSEhIUXepG4cA2f4r6jMZfu0c0w9pOb8BiQs9 dhjqU5/LoBXGLi72KcKCqaGDQcDQ4/cG+2kZtkjwA8eOJxOzgDMDZbtf1tgpzfHJ laVhIO2dssn56zbqasKg+wZneD7g/mb67lIC/TqeHBTSPxPseR8ZwQgOddImJhTB +WGXAh3zSPSWw52XQvH4c5ruqhUFt2OQ9cybludBizho194KCUe6EDsmowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOqt4cfGAX2Oc1L0rfqIUMVbIxeGMB8GA1UdIwQY MBaAFIRSsD4bAXCWOJQNlZKYPN537Kt3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEZLd1Boc0JjSlk0bEEyVmtwZzgzbmZzcTNjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC8wMTFmNmUtZTkyOC00ZjJiLWFhMjQt MjAwZmMyNzRjYjAxLzEvaEZLd1Boc0JjSlk0bEEyVmtwZzgzbmZzcTNjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC8wMTFmNmUtZTkyOC00ZjJiLWFhMjQtMjAwZmMyNzRjYjAx LzEvaEZLd1Boc0JjSlk0bEEyVmtwZzgzbmZzcTNjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArE196f4X Rif5haGeIVUardQpkG2sbbfFJ/tiTMQqc6vg7oXQS1y3GaPoi0TNgn79Te+9vbVq bFU1FLG0lR9jbDNYKZNLPja5SV/0kXkbPbHp//DhzPz32dUvR4jGpjq68P70FU4h Yu/gN7ujOraZTQPg9I+NRsKW8KpoLvTlZqau2r80HT2fU8rsRL6R9FJRA/Wr+VWy JBaMx4ZViE90vEkH1NJL7VcNTh6uKny8sDjHt1XHB7kdbDYitoZOaHYzf4qPc935 ZVD4YGjm2BdaSps1xIdzV9xzMaS0PiZ4+cDuE/iWRVlXL2cbhBZvWO23hh6yvxbY tnL4qdbr6Odn7A== -----END CERTIFICATE-----Generated at Fri Apr 17 09:41:06 2026 by rpki-client