$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.mft File: BVFgW2dezk4PznF1rjGpP6gnK6Y.mft (raw, json) Hash identifier: 8WBktj9VnRvzAYjkN2B3wuA0yIq6P1e3AE2pAM8JSh4= Subject key identifier: 6A:96:2A:C2:99:89:DD:2E:CE:59:88:A7:29:86:BF:B0:69:B3:09:38 Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6 Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6 Certificate serial: 019D2772D0CDA327682388E85B5F440EEF16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.mft Manifest number: 18BD Signing time: Thu 26 Mar 2026 00:02:09 +0000 Manifest this update: Thu 26 Mar 2026 00:02:09 +0000 Manifest next update: Fri 27 Mar 2026 00:02:09 +0000 Files and hashes: 1: 1mwQP2lzMEvGw5kmGSq2Q8zki4U.roa (hash: qQJpp5KgzZdIPG7oShddMej6G09vuXAjLCnl8RBdk+s=) 2: 4rApJRlRNhbsTXM3GNtTv_-FUaE.roa (hash: MLIFEUQfYL+dU3SVCCpJ59J8zRwtwP9iXKmocqpNGdw=) 3: 7blUbad0lyHYKT7BdmBvmq5380U.roa (hash: qY+U0bZ6/EBhOS0YQQ7vmCYh9mixFIWmdrvvPqY0Kxw=) 4: BVFgW2dezk4PznF1rjGpP6gnK6Y.crl (hash: j1fdy2pOMBpRkSyDkEe+iqJ71xOeSX9VjMdUMHXasTY=) 5: Ea-uq1265Ynaq0Tvr_bSxKKEoRA.roa (hash: VyyRwVBnaY4P+qhOH2Wi0cAjx6Up4dpdwhLbiAQ3CtY=) 6: Ep5McDs5t7WeZmyAgeWWCFiI58c.roa (hash: AOP9n/jwx2AwUV0sR9UZXO55UJCsgwtWlFLKT4Mnfww=) 7: IsNagTQeIBhCK_eEzJwts2JVNCw.roa (hash: 3EGVWuicI7zf/jhSqYDgo9FfBBbPEXmJZo6gLFFiDu0=) 8: UNcwmzZVzRQr8GbUBkJ92x7O5eE.roa (hash: meiM5bZ9UOA85hqFTKPoirVYKHNyJXm9Ra4fb/AWC3o=) 9: VOWlrP6uxrDIr-SPRswUzsamv9U.roa (hash: /dzp7Tx7zIjQ7oHAEiDUYqeue5FxJSSNt6hajAHSmwM=) 10: WQCrfzsax6n4r3v1hlQuR83C7do.roa (hash: /xxAd/ECrPZwq/l5JXhCScWy45/GJ5XDOGHFeVobafw=) 11: aa3gjPhQpHv-BaIkpsQYgGBQCPM.roa (hash: 8UFm1q7FERl7hmEhN4RSU3M8aef8QuPV/UHa7FsVID0=) 12: amFStnp6j-M9lkAATZthidSAqw0.roa (hash: 59Yb1hJ/qsJeQiwwAKrwKY2dgVW1ie3YqDOq9IPX2gA=) 13: c4rU82ROk5JHMuzWaUDAf2UpHuw.roa (hash: vdJbphjmJNk0M/0ecXI7N6QbpMoGR7yuaCxGZ6rARpE=) 14: hJcSMIo_XaCF0Or6myoUtWgtRXI.roa (hash: N1SDE1a07aO/mfcGYBo3p0KglE5WOqK+rZ9H6S+AsVs=) 15: o25brRT35PQQTxAbPaDAC1qCbs0.roa (hash: rJyPNW15ukUlAPAy2zm9lVpgff4++kMCrXKJIi7Zi3s=) 16: r7cKixH3TdWYvxaPAQWsrvQ0hGo.roa (hash: 32j+tbL6tHhdIao29pkYwJtz2jR2ax5EQIkmfU8MT1g=) 17: sYV0gC_bNED6JuRG9OZx6sd2sNM.roa (hash: QkoUdyv92zyYef/ePnPDsDyA2gvOpaAc95PPopYOtrE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.mft rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 00:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:27:72:d0:cd:a3:27:68:23:88:e8:5b:5f:44:0e:ef:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6 Validity Not Before: Mar 26 00:02:09 2026 GMT Not After : Mar 27 00:02:09 2026 GMT Subject: CN=6a962ac29989dd2ece5988a72986bfb069b30938 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:93:b7:d7:c8:73:67:5c:8c:7f:3f:33:bf:d6: 72:40:a5:3e:31:6a:81:2a:86:d9:25:79:65:9c:59: 54:63:30:19:6f:24:58:68:1c:1b:a8:b2:9d:17:ac: c9:87:df:fa:2d:3c:5a:dd:07:bd:95:3a:b9:e0:5c: ef:c0:44:a5:e6:f2:ea:ac:79:6e:4f:10:30:f7:41: 3e:4e:4b:c8:5b:4c:a8:3b:51:da:b0:40:cc:89:b6: d0:48:24:75:8e:e4:29:87:cd:94:40:9e:3f:55:3d: ca:24:d3:98:d8:41:ce:72:d4:48:78:aa:99:43:c8: 4e:f2:c8:d4:aa:0b:f4:5e:0b:e0:9f:f0:8e:91:26: e3:62:f3:df:f4:78:cd:3e:a8:0e:3f:fd:4c:00:73: 87:74:46:47:70:49:14:e2:6f:e9:02:e1:f5:be:7b: 0a:e7:62:bf:15:dc:5d:1e:93:c4:1b:44:4b:78:ba: 61:35:99:db:df:d4:95:d6:4f:cc:a8:02:2a:14:ce: a1:59:e7:74:7d:88:59:b3:ce:6e:5a:a4:95:b0:16: 32:d2:16:d2:d8:c6:79:2d:fa:27:4c:bf:ea:cf:61: 38:77:2a:c9:3a:dd:0a:36:4b:43:3a:b4:12:6f:71: e5:77:b0:8c:1a:f1:ad:1a:1e:f3:c5:d1:eb:dc:60: 45:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:96:2A:C2:99:89:DD:2E:CE:59:88:A7:29:86:BF:B0:69:B3:09:38 X509v3 Authority Key Identifier: keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:9a:41:ba:f2:17:aa:83:e7:e7:28:2d:bc:99:f0:90:e2:cf: 83:da:90:65:66:7e:44:e6:80:bf:d0:d5:93:21:ba:a3:0f:2e: 8b:0f:54:0f:29:5c:2b:e2:67:75:ae:31:0e:d5:87:48:c8:70: c7:73:75:fa:0f:63:16:8c:bc:89:28:b7:d2:10:a3:78:65:85: f0:33:ba:d9:62:16:fa:d8:aa:eb:5a:d0:ec:18:0b:9c:18:d5: 01:47:c8:2c:7e:cd:36:9e:05:6b:dc:a6:38:cc:18:12:7b:55: 74:f5:b6:54:74:c4:aa:ae:b3:16:23:26:8c:78:12:73:9c:5d: 0b:ee:10:be:7b:3e:0f:66:6b:41:02:cf:8c:ad:c3:aa:cc:52: 26:5d:23:5a:7e:db:d1:6e:36:9e:ee:e8:ba:98:5d:02:f8:bd: de:8e:ce:86:28:05:16:04:8f:50:eb:b8:fe:4b:5d:6c:41:e8: 36:1a:4b:e2:63:cb:da:2a:31:46:71:23:e2:ae:db:1f:8f:c5: 45:8f:55:67:d6:27:5b:e5:10:10:f0:89:9e:db:ef:bc:d9:0b: d5:88:b0:87:d8:47:e2:77:ac:c1:7d:f8:c5:f1:53:b9:55:6b: 88:87:cd:cb:d9:b7:dd:f8:94:5f:f0:01:b0:f6:af:48:76:83: 89:f0:70:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0nctDNoydoI4joW19EDu8WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1NTE2MDViNjc1ZWNlNGUwZmNlNzE3NWFlMzFhOTNmYTgy NzJiYTYwHhcNMjYwMzI2MDAwMjA5WhcNMjYwMzI3MDAwMjA5WjAzMTEwLwYDVQQD Eyg2YTk2MmFjMjk5ODlkZDJlY2U1OTg4YTcyOTg2YmZiMDY5YjMwOTM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsJO318hzZ1yMfz8zv9ZyQKU+MWqB KobZJXllnFlUYzAZbyRYaBwbqLKdF6zJh9/6LTxa3Qe9lTq54FzvwESl5vLqrHlu TxAw90E+TkvIW0yoO1HasEDMibbQSCR1juQph82UQJ4/VT3KJNOY2EHOctRIeKqZ Q8hO8sjUqgv0Xgvgn/COkSbjYvPf9HjNPqgOP/1MAHOHdEZHcEkU4m/pAuH1vnsK 52K/FdxdHpPEG0RLeLphNZnb39SV1k/MqAIqFM6hWed0fYhZs85uWqSVsBYy0hbS 2MZ5LfonTL/qz2E4dyrJOt0KNktDOrQSb3Hld7CMGvGtGh7zxdHr3GBF0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGqWKsKZid0uzlmIpymGv7Bpswk4MB8GA1UdIwQY MBaAFAVRYFtnXs5OD85xda4xqT+oJyumMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlZGZ1cyZGV6azRQem5GMXJqR3BQNmduSzZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8yOGVhNDUtN2QzMC00NmRmLThmMmEt MDc3OWY0OGVjZWEwLzEvQlZGZ1cyZGV6azRQem5GMXJqR3BQNmduSzZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC8yOGVhNDUtN2QzMC00NmRmLThmMmEtMDc3OWY0OGVjZWEw LzEvQlZGZ1cyZGV6azRQem5GMXJqR3BQNmduSzZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgZpBuvIX qoPn5ygtvJnwkOLPg9qQZWZ+ROaAv9DVkyG6ow8uiw9UDylcK+Jnda4xDtWHSMhw x3N1+g9jFoy8iSi30hCjeGWF8DO62WIW+tiq61rQ7BgLnBjVAUfILH7NNp4Fa9ym OMwYEntVdPW2VHTEqq6zFiMmjHgSc5xdC+4Qvns+D2ZrQQLPjK3DqsxSJl0jWn7b 0W42nu7ouphdAvi93o7OhigFFgSPUOu4/ktdbEHoNhpL4mPL2ioxRnEj4q7bH4/F RY9VZ9YnW+UQEPCJntvvvNkL1Yiwh9hH4neswX34xfFTuVVriIfNy9m33fiUX/AB sPavSHaDifBwWQ== -----END CERTIFICATE-----Generated at Thu Mar 26 07:14:52 2026 by rpki-client