$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft File: ER1oFDdScdGjy9EhVdsR0r1BqNM.mft (raw, json) Hash identifier: IBzK4jw35Z/z+06d9b4qHtw3wSuvLHKrb+IHPWoo5B4= Subject key identifier: 31:99:30:56:04:CE:6F:02:3C:64:D9:E6:F7:E2:ED:D5:B7:E8:87:3E Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Certificate serial: 019D9818532E9C79E0B17CA2BEF73D614C02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft Manifest number: 1786 Signing time: Thu 16 Apr 2026 21:00:24 +0000 Manifest this update: Thu 16 Apr 2026 21:00:24 +0000 Manifest next update: Fri 17 Apr 2026 21:00:24 +0000 Files and hashes: 1: 8ZTbVFN88ElJOvnxpynWkBywvcU.roa (hash: Zi7aMmYsFeMT6y4m/OMRvzAw9FlwVPNAsEeEWMyssQs=) 2: 9gyIdfYx-vxaH69AuzYIu8sS7ec.roa (hash: vsh4e/kwYxBt1mO0Ld2w2nU9VsbUvL0v+cSn3CZdKv4=) 3: D4HmthbydYoqExoa56VFIbe7J5A.roa (hash: 1gmVpoixHN/Zn+8HJ6YdrukA3JeRxcEeBWZ/2aGh+ps=) 4: DKZJyriLpkX0P03xQILHD2FwZEo.roa (hash: x6vx2AQsWgf7sMGXLXxiRwrb7PArAVgKRPBlJd4ah10=) 5: ER1oFDdScdGjy9EhVdsR0r1BqNM.crl (hash: igMhjoDS/TaL4/V8ZQqaFV/NiUxiDhKBQdzb7wDB3Z4=) 6: HRwCntz8pHEtM7UJXh-KwEbXi3w.roa (hash: CKUDXMyXov9Gbf/ygH+HewYMwNtReJO+UQotN2JyBXQ=) 7: Haim4aY9ShmCS1epcJRa3-rRRmM.roa (hash: AQeMZQUR+w1eyhT+kYpVEnNYoo0tXgoBt1LUUZT+/W4=) 8: Ka2f0_rG4AuXnvi8TQgXMBJzKOE.roa (hash: HTLBGDTB6awokEWRy6DjReQvfOLjCmwPODXPDvHGn+A=) 9: LdJkopqk4m9ubmHzk4T29FnhG7o.roa (hash: Qx8FwqyP4Rxw7vIMwqfqa4V2zeYK7+dz+yeOugc8QVI=) 10: S3K9bo4j9NjF6L9mhwIsz-LYyHg.roa (hash: FX7C0FNczXeRPZms4zyJ1OukTZNK4zd0GhG7vBTsBvg=) 11: UWgtqXah3liJx-awsYUK3XIS54c.roa (hash: nisX/PCjG49hPGc2ySAUn3J0MxV+pv8+T78d4GdNMSs=) 12: _d7ohj2Ako_tiSFSE9-jnGs0uoI.roa (hash: mf32LDbJ2Su5F5H62P0/F/PId5oq7GFGgkD8WKRwmPw=) 13: f5svUnEK1n30wRVLtixbJDS7pZM.roa (hash: sILbepz7GhK0jGMQ48sIN5LBYx9eYZB9voFGWkXvx60=) 14: iK87eJg7y-_rcG1D3z4FzaXgRNE.roa (hash: uVYEVS9koySJoZQhAK0q3w5qAE9/nwHY2ro0Er3WEZY=) 15: mcS4SdpuWVbabfdpCB_tOwct_TA.roa (hash: hcfOoUJHvls1DL90VCIcUIUdeQTL2YjVgbYPY6TdJAA=) 16: nXrADfBP6wNtRforv4w6KFdo1Ns.roa (hash: PAoowx6zHYeOj9TxBp8LwY6JFAj6/p0gXZ/G0XMc/dg=) 17: tDoaGy6SLh3swARR-izxiYVQMmU.roa (hash: lZCnqmwKcNoIj9hNP0txhfT3ExuUcH8dWLkUpGjDKzc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 Apr 2026 21:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:98:18:53:2e:9c:79:e0:b1:7c:a2:be:f7:3d:61:4c:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Validity Not Before: Apr 16 21:00:24 2026 GMT Not After : Apr 17 21:00:24 2026 GMT Subject: CN=3199305604ce6f023c64d9e6f7e2edd5b7e8873e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:4f:c2:0b:e8:24:90:2c:c9:b6:bd:3c:af:f6: 8b:7b:50:07:4e:44:d0:9a:2c:5e:93:93:3e:fe:f2: cc:f5:c2:b2:ba:25:87:5b:43:6e:b8:34:ca:90:de: 9c:b6:c1:52:6e:8f:74:f7:e7:d7:65:df:38:33:db: 52:e0:99:0b:b9:72:d7:13:fe:8e:ec:4a:03:2e:0c: 07:db:71:44:c9:5c:b8:61:0b:84:1d:be:cf:b5:3f: 3a:da:8d:43:ba:3b:f5:c2:2b:c8:59:2d:ac:c9:2a: d6:13:e2:65:fe:6f:28:46:81:81:69:e8:3b:04:c1: bc:c2:01:73:0e:1e:96:bd:34:00:ca:fa:e6:2d:4a: 10:a5:61:09:dd:e6:22:18:e0:0c:48:1d:c7:f7:27: ec:b6:2d:01:28:dd:17:b4:dd:b7:9c:8f:ad:56:cd: a6:55:5f:12:e9:5a:d9:b7:72:6a:96:8e:fc:b5:66: 15:a0:da:1f:45:08:35:45:cb:ff:ab:f3:d3:94:b3: 49:af:95:42:71:0a:5e:88:a0:b4:95:5e:ab:5a:d5: 36:e9:df:38:64:b2:07:e4:66:61:a3:e6:e1:d6:d1: 3e:6d:62:38:76:58:17:b1:9d:b1:2c:32:7d:53:1a: fd:2c:a0:6c:f8:c4:00:8a:e3:97:d6:da:c7:23:42: 0a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:99:30:56:04:CE:6F:02:3C:64:D9:E6:F7:E2:ED:D5:B7:E8:87:3E X509v3 Authority Key Identifier: keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:03:65:71:31:98:d9:1e:c8:02:d1:90:47:5f:3e:76:0d:43: 8c:a2:cc:21:c0:3d:ab:87:e9:82:73:12:54:a9:09:56:c2:3c: 37:b6:01:06:a8:70:8f:44:f7:55:91:e2:83:09:a9:d6:5c:25: 0b:8e:c5:01:33:69:2f:c8:56:4f:59:11:93:74:2d:dd:4d:fe: 4e:0e:67:a6:64:de:5c:31:c3:b7:4c:e5:a8:b2:3e:fc:f7:06: 39:05:92:a8:d5:71:a5:b4:f2:5d:bb:b4:d9:b4:1d:2b:12:66: 1d:21:7b:3d:5d:71:a0:e1:eb:6b:c4:00:e3:51:50:26:c3:e2: 35:d1:3c:0c:60:46:f0:de:de:05:38:67:47:b1:59:81:96:d5: 4c:c5:0f:0b:88:0c:c5:ea:1b:88:c4:cc:b4:54:39:8b:01:65: 0b:21:47:c1:fb:f1:64:37:dd:b5:f5:2a:c1:5f:43:e0:8f:28: 8e:24:8c:a5:bc:08:81:6b:f8:9c:3c:42:53:5b:38:da:91:a0: 4e:10:7e:0a:b4:66:58:9f:14:64:ac:f7:ad:8b:8a:ed:38:72: 2c:f1:23:51:75:a0:a5:bb:32:3c:1e:9a:22:f2:a3:bd:4d:fb: 4b:d9:db:fb:37:8c:db:1e:55:6e:a3:82:75:ec:57:b0:a4:14: 5c:d3:15:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2YGFMunHngsXyivvc9YUwCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMWQ2ODE0Mzc1MjcxZDFhM2NiZDEyMTU1ZGIxMWQyYmQ0 MWE4ZDMwHhcNMjYwNDE2MjEwMDI0WhcNMjYwNDE3MjEwMDI0WjAzMTEwLwYDVQQD EygzMTk5MzA1NjA0Y2U2ZjAyM2M2NGQ5ZTZmN2UyZWRkNWI3ZTg4NzNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0U/CC+gkkCzJtr08r/aLe1AHTkTQ mixek5M+/vLM9cKyuiWHW0NuuDTKkN6ctsFSbo909+fXZd84M9tS4JkLuXLXE/6O 7EoDLgwH23FEyVy4YQuEHb7PtT862o1Dujv1wivIWS2sySrWE+Jl/m8oRoGBaeg7 BMG8wgFzDh6WvTQAyvrmLUoQpWEJ3eYiGOAMSB3H9yfsti0BKN0XtN23nI+tVs2m VV8S6VrZt3Jqlo78tWYVoNofRQg1Rcv/q/PTlLNJr5VCcQpeiKC0lV6rWtU26d84 ZLIH5GZho+bh1tE+bWI4dlgXsZ2xLDJ9Uxr9LKBs+MQAiuOX1trHI0IKVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDGZMFYEzm8CPGTZ5vfi7dW36Ic+MB8GA1UdIwQY MBaAFBEdaBQ3UnHRo8vRIVXbEdK9QajTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQt MjcxZDI1ZTIwNTc0LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQtMjcxZDI1ZTIwNTc0 LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEgNlcTGY 2R7IAtGQR18+dg1DjKLMIcA9q4fpgnMSVKkJVsI8N7YBBqhwj0T3VZHigwmp1lwl C47FATNpL8hWT1kRk3Qt3U3+Tg5npmTeXDHDt0zlqLI+/PcGOQWSqNVxpbTyXbu0 2bQdKxJmHSF7PV1xoOHra8QA41FQJsPiNdE8DGBG8N7eBThnR7FZgZbVTMUPC4gM xeobiMTMtFQ5iwFlCyFHwfvxZDfdtfUqwV9D4I8ojiSMpbwIgWv4nDxCU1s42pGg ThB+CrRmWJ8UZKz3rYuK7ThyLPEjUXWgpbsyPB6aIvKjvU37S9nb+zeM2x5VbqOC dexXsKQUXNMVMQ== -----END CERTIFICATE-----Generated at Fri Apr 17 04:51:00 2026 by rpki-client