$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.mft File: P-3YXB7Mtf9LqTARenMpCZwP8us.mft (raw, json) Hash identifier: v1cLH9icRoVSZHvbQF0ICHJgV4Ag1XDtYHa+aDtjP6w= Subject key identifier: BB:8F:78:BB:87:DD:10:CE:59:DA:87:03:C4:27:25:4F:90:C9:C3:83 Authority key identifier: 3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB Certificate issuer: /CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb Certificate serial: 019D2816749B825948E81C2D4CAC78453A1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.mft Manifest number: 18AE Signing time: Thu 26 Mar 2026 03:00:53 +0000 Manifest this update: Thu 26 Mar 2026 03:00:53 +0000 Manifest next update: Fri 27 Mar 2026 03:00:53 +0000 Files and hashes: 1: 14H-LNkPVbf1P9syu0gSDZX0QuA.roa (hash: 0sR139VBAEgTBXJuZQLHKc7RqftEBg36UvCit9+wB4Y=) 2: 6n_hkZcF-cF30EEk5-jd2IN_wO8.roa (hash: DcZmoLZGm/trptAiaEUhPRAyxAeOKtODy6lVi50yIeA=) 3: 7g4r1oWjvlSPhlhcBPNRGCxJbuM.roa (hash: f3W/aXX2oWLOcz8n9AblRDokKEiMNGrTfCRmoGI/Lgg=) 4: 8cJlsHm0dVDV2ACL1UhTAh_wZXg.roa (hash: LnF2FnCPrAFRzWaaVfy6M3SOCgPNybkqYgz2G8nzbvw=) 5: A_Limg3OLYd13ZlGUJbwD_dgooY.roa (hash: AheclwiuL8WgcNGkcsG2buEkjItkhZhagDjGjEY7ta8=) 6: GHgp5Vp47VKlbxndRXtEhJDYn_U.roa (hash: syIEb7iHu5Ey2FBT8ljIgEWQRJ42h5jOyIS+gGfr5AI=) 7: OXmdplbNmQib2l2reBSTrU4L_PA.roa (hash: vuEIsii+dFtqe9HP/V9IK24UtjZr6nf8P7Rlt1fMhoA=) 8: P-3YXB7Mtf9LqTARenMpCZwP8us.crl (hash: VBG/F42Xkehqav7fQx+rcOBoZDGE6+WllJYa32R/boc=) 9: VYo918jh-i7rJwHE82ZPQwc45P0.roa (hash: upWdBHigy6D1tAgLScglqnlFKHDlTGPxQKZWr5SD6eo=) 10: Vxa3gxIRBuzpvmC_LtYioiwPkS8.roa (hash: SmaXCWbuVQWDYA1WmhxKxyYko6Urx/bhXRz1ez20W+M=) 11: Y6ImGVFmS5obOGtb7VS-5RES8ds.roa (hash: 5dw889Z3clPV/mha7vYDDn4q7WZv7n9gkeTOdly28Rw=) 12: _2Ua11sWzPO5DBlFQv8tb1tAVlA.roa (hash: LUsDXZFiK9FtK6EnFC70rYFOjc6L5qWymh1S/jDGElE=) 13: nINyubjIu33geaoAM2ygk8-OXIM.roa (hash: teOxeh4o4zZnuTWriyDSWtH89vqt0w3l5G0p6/GrNok=) 14: pJUNLwWtEptjt5DB91VfVf1ogI0.roa (hash: oSeqIzwGYJ8PJBctq0lGeA6kcX9bfJwo5235nbRUPRA=) 15: rExjMR-P95Bzz5RS6p1JgM8JSNQ.roa (hash: 4LNpkWN8dEzxfyUg6mtreEZRcnf507vtfHeANuOXjg8=) 16: sowEHuyCg98-_nRKaQkJf-fVgEs.roa (hash: oeX4pQ1F7WFsfTOBD0YtMDT1xhl2JArmAYEp1mUoROI=) 17: u6WZ0gjUYg9KzTP7BRY9Du-KEb4.roa (hash: SMkvUlI2T5oc05LZlQuumKtLHa+vf18Pqccm9PimLVc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.crl rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.mft rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 00:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:28:16:74:9b:82:59:48:e8:1c:2d:4c:ac:78:45:3a:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb Validity Not Before: Mar 26 03:00:53 2026 GMT Not After : Mar 27 03:00:53 2026 GMT Subject: CN=bb8f78bb87dd10ce59da8703c427254f90c9c383 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a9:8b:b3:13:4a:af:c2:01:ea:f1:07:fa:01: 7e:02:9e:a1:bb:e3:25:8e:bf:ef:11:84:04:1c:64: 36:5f:5a:63:7f:78:99:6c:90:73:9a:51:11:60:74: 81:3d:35:a1:1f:45:dc:20:c8:d8:74:17:74:5d:ed: 60:99:8e:e4:d6:a6:98:e4:51:2b:b3:c8:60:2e:8d: 78:04:b1:d3:d3:fb:27:fb:bd:8c:9f:ff:ac:10:d4: 71:80:55:23:ad:8c:6d:09:81:aa:7f:32:14:ee:dd: 24:b6:4f:37:ff:53:15:49:69:03:b1:7b:71:8a:49: 9e:66:47:8c:4e:fc:8d:54:e7:a7:9b:81:da:f8:2a: 9b:20:21:58:f1:94:2e:fe:3c:32:f9:89:b6:33:0b: 49:30:f2:c7:d9:3a:83:92:03:6c:b1:1f:bc:58:b0: 9e:3b:f3:9d:54:54:cf:cd:2d:6e:92:7c:92:94:08: 87:80:69:07:4c:0b:47:66:00:82:02:bb:f6:2c:d1: 26:f6:8f:94:17:a0:8e:8d:40:6c:99:fc:65:da:a4: 80:ac:93:c6:2a:10:9d:fe:cb:4d:84:20:02:f1:e3: cd:1e:b9:48:96:6d:30:40:62:ae:eb:83:95:d5:4e: 60:72:07:08:5c:c2:8b:2a:bd:8c:3d:59:0e:c7:b4: 00:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:8F:78:BB:87:DD:10:CE:59:DA:87:03:C4:27:25:4F:90:C9:C3:83 X509v3 Authority Key Identifier: keyid:3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:75:75:80:2b:87:2f:2f:e9:52:af:72:0f:18:98:a5:b0:dc: f8:9c:82:c1:46:99:7c:82:99:69:b9:8d:0c:b1:28:ca:92:7e: bc:1f:7b:25:87:9a:7e:28:3f:e7:f2:dc:42:bd:ff:14:66:f5: 94:b8:0d:d2:d8:e7:1b:03:52:9b:90:74:58:5d:11:db:09:8d: 95:bd:d5:0f:e6:9a:d4:83:a6:71:d3:5d:7e:bf:cd:cf:5c:e0: 20:ce:cf:98:1a:09:56:29:8c:4e:6e:7b:4f:cb:30:74:c3:3a: c8:f1:b7:1e:19:72:83:52:ee:f4:32:68:3e:e4:3a:f0:53:ca: 29:c9:91:90:63:a9:77:36:be:92:aa:8b:fb:1f:31:06:40:f6: f3:5e:ea:ba:2c:23:3e:31:18:49:8a:40:92:38:de:ed:a6:43: 44:0c:77:06:e3:09:21:ba:e6:19:20:b3:90:06:1c:d6:da:51: 29:8b:1d:a6:ee:61:f2:0b:7b:ab:44:ef:56:83:f6:85:69:98: 6b:84:b0:9c:2d:8a:a9:9e:a1:83:c1:da:ae:b3:22:15:1a:5c: 64:dc:19:84:8b:07:2a:3d:15:b3:2c:04:65:e5:e6:47:30:bc: 59:0c:ae:82:39:8c:f7:8d:72:7d:7a:50:79:09:71:f6:fe:02: 01:a6:eb:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0oFnSbgllI6BwtTKx4RToaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmZWRkODVjMWVjY2I1ZmY0YmE5MzAxMTdhNzMyOTA5OWMw ZmYyZWIwHhcNMjYwMzI2MDMwMDUzWhcNMjYwMzI3MDMwMDUzWjAzMTEwLwYDVQQD EyhiYjhmNzhiYjg3ZGQxMGNlNTlkYTg3MDNjNDI3MjU0ZjkwYzljMzgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApqmLsxNKr8IB6vEH+gF+Ap6hu+Ml jr/vEYQEHGQ2X1pjf3iZbJBzmlERYHSBPTWhH0XcIMjYdBd0Xe1gmY7k1qaY5FEr s8hgLo14BLHT0/sn+72Mn/+sENRxgFUjrYxtCYGqfzIU7t0ktk83/1MVSWkDsXtx ikmeZkeMTvyNVOenm4Ha+CqbICFY8ZQu/jwy+Ym2MwtJMPLH2TqDkgNssR+8WLCe O/OdVFTPzS1uknySlAiHgGkHTAtHZgCCArv2LNEm9o+UF6COjUBsmfxl2qSArJPG KhCd/stNhCAC8ePNHrlIlm0wQGKu64OV1U5gcgcIXMKLKr2MPVkOx7QAFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLuPeLuH3RDOWdqHA8QnJU+QycODMB8GA1UdIwQY MBaAFD/t2FwezLX/S6kwEXpzKQmcD/LrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUC0zWVhCN010ZjlMcVRBUmVuTXBDWndQOHVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC80MWMzMjEtMzQ3ZS00YzNlLWFmZmQt ZTJiNTI3NzI4ZTk2LzEvUC0zWVhCN010ZjlMcVRBUmVuTXBDWndQOHVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC80MWMzMjEtMzQ3ZS00YzNlLWFmZmQtZTJiNTI3NzI4ZTk2 LzEvUC0zWVhCN010ZjlMcVRBUmVuTXBDWndQOHVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn3V1gCuH Ly/pUq9yDxiYpbDc+JyCwUaZfIKZabmNDLEoypJ+vB97JYeafig/5/LcQr3/FGb1 lLgN0tjnGwNSm5B0WF0R2wmNlb3VD+aa1IOmcdNdfr/Nz1zgIM7PmBoJVimMTm57 T8swdMM6yPG3Hhlyg1Lu9DJoPuQ68FPKKcmRkGOpdza+kqqL+x8xBkD2817quiwj PjEYSYpAkjje7aZDRAx3BuMJIbrmGSCzkAYc1tpRKYsdpu5h8gt7q0TvVoP2hWmY a4SwnC2KqZ6hg8HarrMiFRpcZNwZhIsHKj0VsywEZeXmRzC8WQyugjmM941yfXpQ eQlx9v4CAabrBw== -----END CERTIFICATE-----Generated at Thu Mar 26 08:27:59 2026 by rpki-client