$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.mft File: bXQ-1j6GjvUPbYTAADqDSD_GKgM.mft (raw, json) Hash identifier: J5ycjnM1nCzQnUYi+YZ97c5hy33+3JwUZYImTQoDykE= Subject key identifier: BF:B4:70:8B:D3:E4:F9:BA:53:15:3A:5D:C1:8F:53:AD:DB:F8:4C:E2 Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03 Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03 Certificate serial: 019D2695FFB58717DAD992845F2548806D45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.mft Manifest number: 13EE Signing time: Wed 25 Mar 2026 20:00:57 +0000 Manifest this update: Wed 25 Mar 2026 20:00:57 +0000 Manifest next update: Thu 26 Mar 2026 20:00:57 +0000 Files and hashes: 1: 5Tkq8wpHcpeGz-f1egqNaUaEly4.roa (hash: UEQegGsLWicDIfmpSCpj13D1XKHb5j/U85IT8bxJWfc=) 2: 9CTRikFmDfftuulzmE7oVg4SrXo.roa (hash: QetHPa6rhiOmzCiHhKi65+JEz8i5R3+PHpMQcXOELTs=) 3: CGlwaarm8XPHSfd_sN3ULyqaKUg.roa (hash: WkoSqWTtOvdRK1F0sTVTQcYIqle5HqEUONAxF4fdu+0=) 4: DWJLSkrTBQVA1mKPBHJjQ0UYwUo.roa (hash: YlvXpp8OBX054sUjgr0G/E8Fj1hyn6n9+pikSmik/yw=) 5: K-Snqx_g_sH4OkoyUvNFtlxX6dY.roa (hash: UtI+N3jVMIi1MfArZauCcNJH+3Px9d37UixMPUZOoTo=) 6: _yP2m6cl8cRwC6MErd0OYqhk9uw.roa (hash: KC1xdvTrCnL148MmuC/CmRUv6swh9y2uLjAWg/EyWgo=) 7: bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl (hash: 33NDekYOrG0Ii6FJ360Zwx7ppyXaIm7Gao1nGL2FmNk=) 8: jQ9RMCpwNTwYfimV7ID_rUCi6Jo.roa (hash: epRbU/bf6HhhyAdmIE7JEgeJXVkXi3sclBBNp0SAlwg=) 9: nr9k1CgFTONdLf6R9QxhHnNqn0s.roa (hash: p4nvZA3enPe2lQ5RM8LvTtTA0KKajVqsnKOLaWopgI8=) 10: tdnQohzHZr8uW9f2J4849lgRnNs.roa (hash: R/F7DsXRI6l5OyjK0XOgTrIjrxtiZQtQIcujVHWYsus=) 11: wFfaatQDGVsMpN2fH-zvzPesV3g.roa (hash: 3ZM6HdXkNcqvPo4Y/liQTynJdayCJYTJLnDaTRRsnVI=) 12: wLx0CVIubWTYoCjwsL2Po__MQUM.roa (hash: F8k0Jt+fxP76purtLa3GdhBDmrpeFIZqPR/m/8/wT2Y=) 13: x5Qwhv7R0VHh2__9bUe3MfdsZS8.roa (hash: DGtjPXc9IfmH8Lv2uA77Pdq/vDMpd2Jc/ZwXsO4TcZ0=) 14: yz9kj_FWQhCmpskN-2MCDdY5uBw.roa (hash: cgLL1yo6vIv8E9t7kQH/ixztHSmNjb1gmVnvmFzrVfo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.mft rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 20:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:26:95:ff:b5:87:17:da:d9:92:84:5f:25:48:80:6d:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03 Validity Not Before: Mar 25 20:00:57 2026 GMT Not After : Mar 26 20:00:57 2026 GMT Subject: CN=bfb4708bd3e4f9ba53153a5dc18f53addbf84ce2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ee:0b:b2:3f:ec:f2:ae:ee:ea:99:3f:74:41: 1b:1b:96:e3:28:9a:d7:ed:a4:db:43:4b:57:e5:36: 0a:bc:b2:5d:eb:60:0a:db:00:9d:84:52:57:fd:e3: 88:83:ce:27:c5:ff:5b:68:36:d7:29:e3:e9:8f:3b: 8d:a0:31:27:7a:0e:a6:8b:73:5b:43:e6:89:7e:a2: 4c:4b:1b:58:e8:9f:7b:a4:8d:5d:76:4c:6b:0e:60: 89:a7:3a:5d:4a:01:c7:6a:a2:81:dc:e3:c1:1e:83: 9f:be:f1:5f:8e:7d:06:1e:d7:7e:83:99:f7:ff:76: a8:19:31:3a:08:b8:2e:d2:9b:b4:03:ed:91:1e:b6: 3c:ad:8d:c2:51:5f:ff:de:03:03:b1:e5:12:7c:35: f2:97:ed:94:c6:db:e1:e9:fa:84:c3:21:8c:22:61: 82:b4:82:20:69:1b:62:d9:00:b5:4f:3f:7c:e1:e2: d8:33:fe:0f:76:13:dc:60:0c:70:93:b3:46:62:ea: c7:83:ab:0c:57:6b:2f:33:25:3a:8f:67:b4:b1:a0: 5e:4a:9a:78:9b:16:61:5a:b6:54:81:17:0a:ad:49: 1c:3d:2e:b7:16:47:4f:6b:eb:70:1f:90:d9:d4:a3: 45:51:c2:46:13:87:ae:79:c7:dc:49:c2:d6:91:5f: be:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:B4:70:8B:D3:E4:F9:BA:53:15:3A:5D:C1:8F:53:AD:DB:F8:4C:E2 X509v3 Authority Key Identifier: keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:9b:40:6f:4e:84:a3:53:94:fa:dc:c3:70:f5:48:e9:46:49: dd:f1:46:2e:66:91:30:1a:4a:33:8f:fa:61:03:24:00:08:82: c2:40:44:3c:c6:76:a7:9b:05:09:8b:d4:78:48:24:0d:e5:21: 96:ab:0e:ed:b9:f1:0b:6b:af:8f:62:ce:0f:1f:c6:a7:f1:bc: aa:d4:48:b7:cf:fd:39:22:e5:76:ec:ef:e2:6c:22:07:fd:7a: 68:97:ee:f7:ee:29:e8:f7:82:e4:5e:c1:e2:43:1a:15:71:92: 0b:1c:18:77:65:38:63:d9:71:ab:11:32:dc:a5:d9:46:e9:fd: 19:0a:92:76:34:4a:00:7c:36:4a:66:34:66:fe:8a:c9:51:49: 7e:af:27:84:be:14:ef:9a:e9:e3:ef:2a:ba:b4:6e:af:7b:1f: 70:76:c8:8b:0d:01:8a:5c:ff:2b:24:82:f0:b6:16:a2:ff:7a: 6b:08:6d:ef:8f:90:a2:e6:e0:44:c5:4e:8c:61:70:a3:28:29: e6:1e:0c:ce:39:55:25:c6:69:fb:ad:11:32:54:b2:4e:9e:a5: fa:d0:fc:b5:61:76:c6:7d:d7:72:28:99:76:ae:d3:b8:fb:d8: dd:7e:ea:f3:2f:57:21:41:1c:88:5a:30:ac:53:55:12:cf:7c: 54:2d:0b:e7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0mlf+1hxfa2ZKEXyVIgG1FMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkNzQzZWQ2M2U4NjhlZjUwZjZkODRjMDAwM2E4MzQ4M2Zj NjJhMDMwHhcNMjYwMzI1MjAwMDU3WhcNMjYwMzI2MjAwMDU3WjAzMTEwLwYDVQQD EyhiZmI0NzA4YmQzZTRmOWJhNTMxNTNhNWRjMThmNTNhZGRiZjg0Y2UyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2O4Lsj/s8q7u6pk/dEEbG5bjKJrX 7aTbQ0tX5TYKvLJd62AK2wCdhFJX/eOIg84nxf9baDbXKePpjzuNoDEneg6mi3Nb Q+aJfqJMSxtY6J97pI1ddkxrDmCJpzpdSgHHaqKB3OPBHoOfvvFfjn0GHtd+g5n3 /3aoGTE6CLgu0pu0A+2RHrY8rY3CUV//3gMDseUSfDXyl+2Uxtvh6fqEwyGMImGC tIIgaRti2QC1Tz984eLYM/4PdhPcYAxwk7NGYurHg6sMV2svMyU6j2e0saBeSpp4 mxZhWrZUgRcKrUkcPS63FkdPa+twH5DZ1KNFUcJGE4euecfcScLWkV++MwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL+0cIvT5Pm6UxU6XcGPU63b+EziMB8GA1UdIwQY MBaAFG10PtY+ho71D22EwAA6g0g/xioDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlhRLTFqNkdqdlVQYllUQUFEcURTRF9HS2dNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9lMDUzNTItZjE0OC00MGEwLTg3YTQt ZTk3MjRhN2E2YmM4LzEvYlhRLTFqNkdqdlVQYllUQUFEcURTRF9HS2dNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC9lMDUzNTItZjE0OC00MGEwLTg3YTQtZTk3MjRhN2E2YmM4 LzEvYlhRLTFqNkdqdlVQYllUQUFEcURTRF9HS2dNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIptAb06E o1OU+tzDcPVI6UZJ3fFGLmaRMBpKM4/6YQMkAAiCwkBEPMZ2p5sFCYvUeEgkDeUh lqsO7bnxC2uvj2LODx/Gp/G8qtRIt8/9OSLlduzv4mwiB/16aJfu9+4p6PeC5F7B 4kMaFXGSCxwYd2U4Y9lxqxEy3KXZRun9GQqSdjRKAHw2SmY0Zv6KyVFJfq8nhL4U 75rp4+8qurRur3sfcHbIiw0Bilz/KySC8LYWov96awht74+QoubgRMVOjGFwoygp 5h4MzjlVJcZp+60RMlSyTp6l+tD8tWF2xn3XciiZdq7TuPvY3X7q8y9XIUEciFow rFNVEs98VC0L5w== -----END CERTIFICATE-----Generated at Thu Mar 26 05:38:09 2026 by rpki-client