$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft File: ER1oFDdScdGjy9EhVdsR0r1BqNM.mft (raw, json) Hash identifier: NO9udNkuXHtWUMl4FdB57aFZKi90t5Gh9Mq5N8cZZU0= Subject key identifier: 9F:31:D0:9E:79:14:C3:E8:1C:EA:EF:E4:1B:74:2B:D2:AA:89:EF:3B Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Certificate serial: 019EBF917259872D208A99886DE5B6761F8B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft Manifest number: 181F Signing time: Sat 13 Jun 2026 06:00:40 +0000 Manifest this update: Sat 13 Jun 2026 06:00:40 +0000 Manifest next update: Sun 14 Jun 2026 06:00:40 +0000 Files and hashes: 1: 8ZTbVFN88ElJOvnxpynWkBywvcU.roa (hash: Zi7aMmYsFeMT6y4m/OMRvzAw9FlwVPNAsEeEWMyssQs=) 2: 9gyIdfYx-vxaH69AuzYIu8sS7ec.roa (hash: vsh4e/kwYxBt1mO0Ld2w2nU9VsbUvL0v+cSn3CZdKv4=) 3: D4HmthbydYoqExoa56VFIbe7J5A.roa (hash: 1gmVpoixHN/Zn+8HJ6YdrukA3JeRxcEeBWZ/2aGh+ps=) 4: DKZJyriLpkX0P03xQILHD2FwZEo.roa (hash: x6vx2AQsWgf7sMGXLXxiRwrb7PArAVgKRPBlJd4ah10=) 5: ER1oFDdScdGjy9EhVdsR0r1BqNM.crl (hash: o3NyCHPjh7qn2dud/NtDoSkXh53RCnjzmys63yzyTSs=) 6: HRwCntz8pHEtM7UJXh-KwEbXi3w.roa (hash: CKUDXMyXov9Gbf/ygH+HewYMwNtReJO+UQotN2JyBXQ=) 7: Haim4aY9ShmCS1epcJRa3-rRRmM.roa (hash: AQeMZQUR+w1eyhT+kYpVEnNYoo0tXgoBt1LUUZT+/W4=) 8: Ka2f0_rG4AuXnvi8TQgXMBJzKOE.roa (hash: HTLBGDTB6awokEWRy6DjReQvfOLjCmwPODXPDvHGn+A=) 9: LdJkopqk4m9ubmHzk4T29FnhG7o.roa (hash: Qx8FwqyP4Rxw7vIMwqfqa4V2zeYK7+dz+yeOugc8QVI=) 10: S3K9bo4j9NjF6L9mhwIsz-LYyHg.roa (hash: FX7C0FNczXeRPZms4zyJ1OukTZNK4zd0GhG7vBTsBvg=) 11: UWgtqXah3liJx-awsYUK3XIS54c.roa (hash: nisX/PCjG49hPGc2ySAUn3J0MxV+pv8+T78d4GdNMSs=) 12: _d7ohj2Ako_tiSFSE9-jnGs0uoI.roa (hash: mf32LDbJ2Su5F5H62P0/F/PId5oq7GFGgkD8WKRwmPw=) 13: f5svUnEK1n30wRVLtixbJDS7pZM.roa (hash: sILbepz7GhK0jGMQ48sIN5LBYx9eYZB9voFGWkXvx60=) 14: iK87eJg7y-_rcG1D3z4FzaXgRNE.roa (hash: uVYEVS9koySJoZQhAK0q3w5qAE9/nwHY2ro0Er3WEZY=) 15: mcS4SdpuWVbabfdpCB_tOwct_TA.roa (hash: hcfOoUJHvls1DL90VCIcUIUdeQTL2YjVgbYPY6TdJAA=) 16: nXrADfBP6wNtRforv4w6KFdo1Ns.roa (hash: PAoowx6zHYeOj9TxBp8LwY6JFAj6/p0gXZ/G0XMc/dg=) 17: tDoaGy6SLh3swARR-izxiYVQMmU.roa (hash: lZCnqmwKcNoIj9hNP0txhfT3ExuUcH8dWLkUpGjDKzc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:bf:91:72:59:87:2d:20:8a:99:88:6d:e5:b6:76:1f:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Validity Not Before: Jun 13 06:00:40 2026 GMT Not After : Jun 14 06:00:40 2026 GMT Subject: CN=9f31d09e7914c3e81ceaefe41b742bd2aa89ef3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d2:28:a4:f3:76:ee:09:bb:08:26:b3:58:cb: 4d:fd:48:de:06:00:ee:a9:09:8f:e0:0e:0a:41:4c: 22:c8:30:14:0f:86:73:ed:ed:8c:b1:10:45:54:b4: 08:70:a4:03:39:9f:2c:0c:4a:85:59:48:9c:29:44: 8a:2c:6f:c1:e7:5e:b8:dd:a0:92:10:ee:2d:c9:f5: d0:ab:05:ee:34:ce:37:f9:49:e5:a5:b4:3d:42:76: 8c:77:bd:68:d2:43:0f:af:d7:bb:02:bd:dc:ea:d0: 82:6b:da:af:3d:b4:9c:1d:5f:21:95:2f:3f:21:a2: 68:ef:b3:7b:63:ab:cd:4a:a0:3c:b6:2f:d1:db:29: d1:7f:e9:f6:86:c4:fa:d7:3e:2e:a4:94:0c:9b:7b: f6:f2:49:aa:54:a8:ad:3c:80:d3:98:76:b6:6e:97: 69:dc:15:b7:57:c6:98:6d:e3:ee:b8:a6:20:cd:c6: a9:0a:01:cf:75:a3:8d:cf:0c:d1:28:39:98:aa:0f: ac:b1:7f:3b:e2:1c:da:74:97:30:12:78:6a:7a:8a: 22:d3:0c:47:db:8e:7b:62:be:7a:d9:6e:18:8b:2f: b0:70:fe:79:06:c0:f0:a2:f3:b7:15:e6:c4:03:5b: 07:c7:cc:a1:bb:32:4a:df:2c:c1:81:4a:d7:63:33: 0e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:31:D0:9E:79:14:C3:E8:1C:EA:EF:E4:1B:74:2B:D2:AA:89:EF:3B X509v3 Authority Key Identifier: keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:6c:1c:7c:fc:f2:71:ba:c9:16:d8:eb:e5:64:18:8e:29:d6: 89:e7:5a:73:29:b2:b3:11:28:fe:b5:01:0d:27:7b:e6:51:8f: 8b:a9:e0:25:bf:e5:d0:78:25:e5:78:ae:41:94:f1:b4:07:2e: 9d:b8:fc:c2:ff:49:44:18:33:06:81:fb:98:81:bb:8f:eb:96: 90:18:f1:3b:77:03:05:f1:04:01:71:ab:64:77:a7:62:11:55: 1b:9a:b3:9f:da:e0:e4:4b:eb:c6:95:64:2d:82:27:bc:1c:f3: eb:45:3c:43:ae:e2:65:66:be:87:7c:1d:72:4f:1b:1f:02:56: c3:04:0e:72:06:bb:cb:0b:02:2e:73:5b:cb:c2:6d:cb:4e:e3: 43:13:57:da:d1:fc:c8:b7:c7:f4:9a:f1:a1:bf:6a:6c:07:e5: 6f:e8:ac:d9:50:26:34:93:30:c0:53:c1:e5:0a:24:f8:87:1c: 52:f3:26:19:09:30:a9:26:11:02:4f:4a:4f:8e:a3:6e:5a:00: 19:2b:67:a6:64:02:0a:df:a4:7a:07:ca:76:49:b6:42:38:b9: bf:2a:e8:6e:e8:c9:4f:91:6b:97:04:c5:d4:b0:e7:92:58:a1: dd:c0:25:06:bd:04:0d:8a:2c:28:8a:b1:8a:a7:43:df:fe:02: 12:a1:2e:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ6/kXJZhy0gipmIbeW2dh+LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMWQ2ODE0Mzc1MjcxZDFhM2NiZDEyMTU1ZGIxMWQyYmQ0 MWE4ZDMwHhcNMjYwNjEzMDYwMDQwWhcNMjYwNjE0MDYwMDQwWjAzMTEwLwYDVQQD Eyg5ZjMxZDA5ZTc5MTRjM2U4MWNlYWVmZTQxYjc0MmJkMmFhODllZjNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvNIopPN27gm7CCazWMtN/UjeBgDu qQmP4A4KQUwiyDAUD4Zz7e2MsRBFVLQIcKQDOZ8sDEqFWUicKUSKLG/B51643aCS EO4tyfXQqwXuNM43+UnlpbQ9QnaMd71o0kMPr9e7Ar3c6tCCa9qvPbScHV8hlS8/ IaJo77N7Y6vNSqA8ti/R2ynRf+n2hsT61z4upJQMm3v28kmqVKitPIDTmHa2bpdp 3BW3V8aYbePuuKYgzcapCgHPdaONzwzRKDmYqg+ssX874hzadJcwEnhqeooi0wxH 2457Yr562W4Yiy+wcP55BsDwovO3FebEA1sHx8yhuzJK3yzBgUrXYzMO6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ8x0J55FMPoHOrv5Bt0K9Kqie87MB8GA1UdIwQY MBaAFBEdaBQ3UnHRo8vRIVXbEdK9QajTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQt MjcxZDI1ZTIwNTc0LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQtMjcxZDI1ZTIwNTc0 LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhmwcfPzy cbrJFtjr5WQYjinWiedacymysxEo/rUBDSd75lGPi6ngJb/l0Hgl5XiuQZTxtAcu nbj8wv9JRBgzBoH7mIG7j+uWkBjxO3cDBfEEAXGrZHenYhFVG5qzn9rg5EvrxpVk LYInvBzz60U8Q67iZWa+h3wdck8bHwJWwwQOcga7ywsCLnNby8Jty07jQxNX2tH8 yLfH9Jrxob9qbAflb+is2VAmNJMwwFPB5Qok+IccUvMmGQkwqSYRAk9KT46jbloA GStnpmQCCt+kegfKdkm2Qji5vyrobujJT5FrlwTF1LDnklih3cAlBr0EDYosKIqx iqdD3/4CEqEuMQ== -----END CERTIFICATE-----Generated at Sat Jun 13 09:52:49 2026 by rpki-client