$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft File: 520NqzR6OOK4e1oiovfJ4hwYybw.mft (raw, json) Hash identifier: kYCP9aNozKFIJLmh8/kzBbMfEUR+IBk4oXAvwqHl+JA= Subject key identifier: F6:DC:A0:13:D5:C4:30:C9:BA:7C:E6:00:84:AB:F8:24:C0:DD:D9:92 Authority key identifier: E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC Certificate issuer: /CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Certificate serial: 019D25F1BA2D6403F45A1B94BBCB824B61D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft Manifest number: 1373 Signing time: Wed 25 Mar 2026 17:01:31 +0000 Manifest this update: Wed 25 Mar 2026 17:01:31 +0000 Manifest next update: Thu 26 Mar 2026 17:01:31 +0000 Files and hashes: 1: 1dfOhFGT4Rz19mHWVabW0kWxTss.roa (hash: Rjg1gNguWYpEwGKvfk1H+hd0eMsqKT2A4N+C2/8Q+uQ=) 2: 520NqzR6OOK4e1oiovfJ4hwYybw.crl (hash: CzTR3XHTB2kcj7aWYZCJ4yxkohUzSAPg5NDJDAky8eM=) 3: 7EPxlfzuNdNfziGNw3Hj7EoZj1Q.roa (hash: fYUfx118C/cw672kHDWSH3DD1Ik9WuMEeaQ/qAV9tYE=) 4: 9EzrkfCb3685-QENXXhTIl2uZz4.roa (hash: 4o0MB77YQKRQiZHQrZxR1nkb/HsRFN1Kq0iR4K53WZA=) 5: DVIKLwP8b0UVJE_X0Zz4hLCMFmU.roa (hash: 2ROrixfhF0UtgJihhtThPaEztRX+VVHt8WTM1ZfZQ1o=) 6: Fn3txwFOnsHfJqp3dmOvAMcvgHc.roa (hash: 0tFPd6mFP89u9IcgrQmVyEuYoDxe9S4zwwRr4qndNks=) 7: RqZv9lI-beWajs98dICrEK2DwUM.roa (hash: z0DWSEDfb+oWc/lkT9R9ehjWWb2y0A0CPcHglnAYRf8=) 8: Ud0XI3ub85_CL2l55YZW3cXrctA.roa (hash: 2gMJyy7om8/uY1IqvCz0ubvDeUV63nAu6cUom48+3U0=) 9: ao5k8aMHz2Rr-UFohnKN0Vsy0ts.roa (hash: qeXz8tDdKItxGK8qtWsvUAbM0Ooz+MmMiDN8cvBIyTQ=) 10: bbXWGNkALy-ajnXnVwsq6VcslC8.roa (hash: lOmBCerqz+GglurufDI5e+15DQVwzjxcTvAfkACkLYE=) 11: jTMEUhkl6sKPDlW6gGgXZsH4VwQ.roa (hash: bLe2Zk8IquF+7aI/fXPQxZklmLIeFhH3W5DkdYCydQA=) 12: r-NoE_XHTABnwPRM9GdFHoEeHJo.roa (hash: qsD5Rt9CKRxXFQG5JSeN7cqv7sQvsG2HbFGsWmdhdi8=) 13: rIIpXZCn7E3HgJjpCaYYUR4k6ZI.roa (hash: Vvylnj2QqF4AFfq4GCTBxANmDk4TfXB5W5GNlTLI/Qw=) 14: rp3l1DRMo7bxNlcekPEumkx_Cu4.roa (hash: cvH000yVT30CU4NGwC5k2pFAaWGJcYLG4wfqKOyLWIU=) 15: s9E0mrs6RE5G3diI6qJ2dNaQlCY.roa (hash: ALHEFczsxrK3P9zm6czuHQOWsz9Vxib3j6fIwRLXdsA=) 16: smuPovOHBHHaIAv32qcc0ZyhNkQ.roa (hash: HcQ/8p3eoCWjnnKfMtVzm8focRBIq46dCnVV7vdjMxQ=) 17: v94LL-qGGgahldRNvzQc-ZVS3KI.roa (hash: a3YAXYAGQiNiI/eRCe9RKvTaP1hHvgR2d27wk4bq6Cw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 15:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:25:f1:ba:2d:64:03:f4:5a:1b:94:bb:cb:82:4b:61:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Validity Not Before: Mar 25 17:01:31 2026 GMT Not After : Mar 26 17:01:31 2026 GMT Subject: CN=f6dca013d5c430c9ba7ce60084abf824c0ddd992 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:32:cf:53:b0:84:06:44:84:58:3f:54:da:69: 0e:68:2d:aa:c6:b8:9b:54:7f:4a:e9:78:1f:c8:44: 92:dc:73:d6:ed:3a:fc:53:da:0d:a9:5b:85:25:fa: 05:ef:64:88:8e:32:13:9e:ce:15:a8:ea:1e:3b:3e: 20:8f:85:57:48:01:f3:44:da:50:48:4a:96:83:e7: 24:92:c8:44:3e:d7:b9:f9:60:9c:5c:fe:7b:c2:23: 95:9a:be:c7:c2:19:4c:6e:27:75:5a:b1:21:61:f5: 14:14:52:ac:3c:76:57:12:42:50:89:5d:48:61:92: e5:a4:87:c1:59:14:17:d0:af:6e:83:22:c7:4b:20: a1:0e:cc:a7:40:91:81:1d:c5:b7:1c:36:f6:dd:63: 0f:bc:65:36:32:a7:56:f3:75:6f:b5:ca:2d:3d:49: b8:f1:30:83:1d:9d:f3:3f:77:56:20:30:87:34:20: 02:85:5b:ca:1b:c7:c0:6d:c7:ac:55:22:3a:d1:e0: d4:22:e6:1a:9e:00:19:6e:af:de:5c:9d:ac:09:f6: 41:51:42:2e:f6:d1:3d:8f:ea:49:f2:a5:e8:29:c7: 3d:ac:5e:fc:03:8c:ea:72:f9:27:d3:14:f5:0a:6f: da:cb:3d:45:8d:75:cd:94:ad:f1:22:a6:0e:39:0c: 7d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:DC:A0:13:D5:C4:30:C9:BA:7C:E6:00:84:AB:F8:24:C0:DD:D9:92 X509v3 Authority Key Identifier: keyid:E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:f1:70:04:ef:73:71:49:62:9f:ee:31:13:a2:59:5c:9e:e8: 79:59:98:52:2e:ed:32:af:c5:42:e8:aa:f8:34:26:7d:ce:54: 1f:9c:70:c3:bd:6f:d1:fe:bb:3c:3f:9a:72:ef:3e:c6:e5:4e: 2d:df:ed:ae:d4:46:1d:40:39:81:d4:c3:a5:55:22:3b:fb:a1: d6:63:30:fe:1f:99:58:d1:ef:06:73:02:40:d8:ff:e3:1f:de: 16:13:0e:bb:f2:6e:3e:dd:d4:6e:ed:a9:c9:a0:f9:65:bc:95: a0:71:eb:17:a9:b8:49:90:20:39:a9:6d:d1:38:23:86:6f:e5: fc:dc:e5:68:d3:c3:be:9d:ae:e4:3a:cb:d7:71:84:ce:0d:4b: 41:13:6a:34:4c:a4:02:8f:ed:41:e3:7f:15:40:d8:ce:bc:1e: 01:e3:da:42:ab:a6:26:6c:50:b2:ab:dc:09:e1:83:b2:62:0f: df:3c:37:ee:2a:47:83:aa:2d:93:0a:78:70:9f:29:2d:5e:6a: 9d:52:af:e3:3c:87:e2:5a:87:db:fa:93:de:1c:0a:ee:7f:6b: 28:dc:41:f8:b8:31:d9:81:fb:8e:97:38:f3:81:b5:b4:49:7b: 6c:4b:62:d5:28:46:f7:d2:86:cf:69:11:0e:b8:f5:c3:32:94: 9c:af:7f:08 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0l8botZAP0WhuUu8uCS2HTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3NmQwZGFiMzQ3YTM4ZTJiODdiNWEyMmEyZjdjOWUyMWMx OGM5YmMwHhcNMjYwMzI1MTcwMTMxWhcNMjYwMzI2MTcwMTMxWjAzMTEwLwYDVQQD EyhmNmRjYTAxM2Q1YzQzMGM5YmE3Y2U2MDA4NGFiZjgyNGMwZGRkOTkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsTLPU7CEBkSEWD9U2mkOaC2qxrib VH9K6XgfyESS3HPW7Tr8U9oNqVuFJfoF72SIjjITns4VqOoeOz4gj4VXSAHzRNpQ SEqWg+ckkshEPte5+WCcXP57wiOVmr7HwhlMbid1WrEhYfUUFFKsPHZXEkJQiV1I YZLlpIfBWRQX0K9ugyLHSyChDsynQJGBHcW3HDb23WMPvGU2MqdW83VvtcotPUm4 8TCDHZ3zP3dWIDCHNCAChVvKG8fAbcesVSI60eDUIuYangAZbq/eXJ2sCfZBUUIu 9tE9j+pJ8qXoKcc9rF78A4zqcvkn0xT1Cm/ayz1FjXXNlK3xIqYOOQx9hwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPbcoBPVxDDJunzmAISr+CTA3dmSMB8GA1UdIwQY MBaAFOdtDas0ejjiuHtaIqL3yeIcGMm8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDkt YmQzYmZjOTliZGE5LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDktYmQzYmZjOTliZGE5 LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAavFwBO9z cUlin+4xE6JZXJ7oeVmYUi7tMq/FQuiq+DQmfc5UH5xww71v0f67PD+acu8+xuVO Ld/trtRGHUA5gdTDpVUiO/uh1mMw/h+ZWNHvBnMCQNj/4x/eFhMOu/JuPt3Ubu2p yaD5ZbyVoHHrF6m4SZAgOalt0Tgjhm/l/NzlaNPDvp2u5DrL13GEzg1LQRNqNEyk Ao/tQeN/FUDYzrweAePaQqumJmxQsqvcCeGDsmIP3zw37ipHg6otkwp4cJ8pLV5q nVKv4zyH4lqH2/qT3hwK7n9rKNxB+Lgx2YH7jpc484G1tEl7bEti1ShG99KGz2kR Drj1wzKUnK9/CA== -----END CERTIFICATE-----Generated at Thu Mar 26 02:38:25 2026 by rpki-client