$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft File: Nov7il7uSQgupijfJaSl1Q86qbM.mft (raw, json) Hash identifier: b33jIHSE39Dfb7JSZH78TW4wWT73TS/+SYB7KshZCPk= Subject key identifier: 3F:D8:1E:F1:42:02:34:3D:DA:58:78:D1:DB:CB:22:D4:47:F5:05:1A Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Certificate serial: 019D273B1728B44C652A575BF2653F245DDE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft Manifest number: 158A Signing time: Wed 25 Mar 2026 23:01:17 +0000 Manifest this update: Wed 25 Mar 2026 23:01:17 +0000 Manifest next update: Thu 26 Mar 2026 23:01:17 +0000 Files and hashes: 1: 0izJqNpwGrzqGY2KAPmDZhqZcDQ.roa (hash: kVpXKt5/uB6mnq98IPFI3mbG6Gzf/FsKpLdlNXsb0AU=) 2: 1-CaNO8_RMnpzKeMx-OMItczEl8.roa (hash: CCl7V5Ac7Zg0Z2Ogyr85g8hmFXorBL+LtY9lhKDMctg=) 3: 1-ODEklGOq8I3EAyPIiqwbAbefBQ.roa (hash: KaSR9/Fowi4ECU+VzMIBriqftQDKjqb9qhs07E3Bgkg=) 4: 1-wkOwoVcm2-zwVYhOI9Tfh_EWPY.roa (hash: sqyNSN/2mGi5Eya1/BldAt3EPeodNfFAQ5WsvWxud+s=) 5: 8GKAWQ23bVaOj62dghwbzfB4KBs.roa (hash: BrI+TdtguYxBn7MIHj7b5Fyu4yLPZopcndp3pThsJFk=) 6: 9v6zNDxWi4SZuzKdNsH0dUjcIqQ.roa (hash: 0yWtU5SRw7DUUJ7u77ckHQ8clv07UvrqSOWSgyzWW/4=) 7: B7U_PWJRbBPHyBYoJaj_TGN4-GE.roa (hash: apdlBMeSCN/dJUIXemLRlnwgD9xz8rjoE5psaqBe7no=) 8: FnVVoWa_UoNljszQfJN3s6N4Fg8.roa (hash: IhS3eAFrVeqpZBjkBUTGqO3m/IEt1w9kYZheoswil+8=) 9: HwgNT-WlslCb5z--PUmLTd8h3OY.roa (hash: 7PAd9LCcjyY7TVI0QFxAJoa17PGNVYAW7pBCdgtZI8U=) 10: Ko8NpcLG_AogYj3Bc2k5Nz4ZyyY.roa (hash: lf7aD0SYGRXlZhSRDl+oj2HhMH2HQGI1V2RHXtUwGww=) 11: M1lTEOUKJKB3wxU-Ufw3xwr2Bn4.roa (hash: 5L2OcxfFuv45Y2sgzqxSydPqsmcdId+rZQdxYTPEdZg=) 12: Nov7il7uSQgupijfJaSl1Q86qbM.crl (hash: Aw6Mgl8PVd3qhkzUKcxsQU2nw1xZI0Ypbs7jR3ObD+I=) 13: OJaCH_FRxKGvw45Z5gEomrY6by4.roa (hash: lnlTPPpLh0wuAEb6l4qCBAAloBz60wNJBIDMm24VjPc=) 14: RSezJsuJZgdORKHcBM299fPXKwc.roa (hash: GYwZ66RMn5oKRBEDAv6wIgybLrVMZhTJjGQgo04rKAo=) 15: VnSDETPGYr2c0RUCcCji6_4WgC4.roa (hash: BOWXNqL+Qdlre4gMlyUelDXLPYo8OQeW2qT705txKiQ=) 16: YPJDYVYIDjteAJ95vKZaIRYGL3g.roa (hash: sNPPgLJqMfMVLlDzJAa40Y0v1iOlKeP2KYVSWomo16Y=) 17: ZmbT7ckq9AWU7ftFPSy0_2aVcIQ.roa (hash: z4uFLh99ra2k+PrXJ8wTnzRsRakRgbEYF3GEsOcbjqE=) 18: bryZgTJJGS-FOz_HYLbqtaKw-po.roa (hash: aiINGCzxZNhxZwQ5hoSWV6CWBgjNkR1DWd3FkVokojQ=) 19: fJt5Doe5R4Pj15sL_bEFLsxVQu0.roa (hash: PAAc3aXzWoAAF0qb+ex/ps/wxwpBzPByQ0jG601T7Go=) 20: iS_IteKYOEO3aqQ6EFMAokejebE.roa (hash: QJNjPBPOKdt2Y0iNlpFoOGbtCBY3Zi1u+aqO17hBnjs=) 21: j20-Qg6Dllv24CgeMRfK9YqUFsA.roa (hash: +aqG4jVK8I02VVBJfDJU1hx8A09QKHjG0H2i0LdjW9Q=) 22: unQfyoMm3gJGcK6KVwPJMMwgAmE.roa (hash: dJwKOB7hLwrpnKolTbkDVLvsYmZrBaj//I+3Zr9dVQk=) 23: wpS5466WrfyGixagdXKkH56sESs.roa (hash: mif5lFotN45ot9LfakRYn/u5jNp6N1mLbVqWGc8M7pc=) 24: yV2oMTPDTm1TWEpu2kD5QAemRu0.roa (hash: sM2rCmqU4pO3UwoNbds8BRoQEXTCg3X6py2M7iBaZ3w=) 25: yfOWaWQMRst2xNQtvy2Y_lNwdUA.roa (hash: 8ibNwF/5VTzCu9MBNCfFWDY8eww+HMMEV12ydh8npoo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 23:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:27:3b:17:28:b4:4c:65:2a:57:5b:f2:65:3f:24:5d:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Validity Not Before: Mar 25 23:01:17 2026 GMT Not After : Mar 26 23:01:17 2026 GMT Subject: CN=3fd81ef14202343dda5878d1dbcb22d447f5051a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:72:83:d7:01:86:f8:98:fc:e6:1c:48:14:b5: fe:c8:48:c4:79:5c:a3:01:72:8c:05:27:14:77:5e: 0f:3e:1a:35:5e:da:ac:bd:0b:7c:20:18:7c:2c:a3: 1e:13:7e:c2:71:ea:b0:db:dc:0f:42:04:d8:26:ec: e8:0c:74:17:53:f6:b7:1e:cf:c7:e0:42:1d:7f:c0: aa:6d:e8:b8:0d:71:8e:0a:88:91:cb:29:d8:fe:73: bc:30:1f:a0:cb:26:33:54:36:0f:46:9f:ba:e1:40: a8:85:e2:40:e6:4e:49:60:79:46:e5:30:7d:cc:dd: 30:7e:be:4a:1d:58:e1:57:ef:7f:ba:57:6d:4c:2f: 8a:67:8a:f8:44:a0:40:5f:2a:cb:15:b5:03:ee:c3: 6f:79:b3:e9:ef:d4:66:15:8e:e6:26:ae:2f:96:f2: 71:98:b6:24:88:38:eb:75:fc:bf:88:0a:4b:67:fa: 57:3f:7a:10:50:9e:6b:c5:70:d3:71:b7:ec:f2:e5: 7c:c2:7b:5e:ad:d7:27:80:bb:18:83:14:13:73:75: 28:c5:d7:5f:41:58:96:8b:db:e6:9c:e7:5f:c1:e7: b5:ff:71:50:30:ac:cd:ea:4a:8a:42:8f:74:3e:47: 7e:d5:31:b3:e4:cd:3f:b2:a5:53:41:1c:c8:e9:0d: 5d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:D8:1E:F1:42:02:34:3D:DA:58:78:D1:DB:CB:22:D4:47:F5:05:1A X509v3 Authority Key Identifier: keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b8:b8:af:58:df:89:1b:94:ef:c4:41:f9:8d:11:16:b3:c8:f2: 1f:f5:d2:8b:c1:ba:a4:b6:07:f6:5b:20:ae:b7:ed:1b:f6:7a: cb:29:76:6e:83:e5:cd:21:15:b6:af:f3:ca:fb:18:24:25:01: da:0e:fb:19:8b:fe:2b:37:0f:41:a9:90:81:39:ed:cc:91:0a: e8:ab:a5:e0:ed:9e:dc:3d:0e:a5:3d:0b:0a:bc:2f:2f:37:af: 53:ee:5c:d2:2c:82:78:a4:de:fe:57:6d:85:27:d7:86:af:a1: 8c:a2:1d:5b:b7:d6:50:a7:74:bc:16:67:57:f7:c3:04:2a:b9: 89:be:6c:37:27:3e:6d:70:99:d7:6b:66:83:1b:b0:cf:ec:32: 7b:be:30:c5:43:fd:1e:5c:57:69:5a:36:16:6f:1e:c1:24:a9: 9c:45:30:7c:d1:8c:66:c4:52:c0:02:f9:d4:58:7f:89:80:f9: 01:e1:45:43:c6:3e:4f:24:83:e5:61:3c:ca:34:8c:df:3b:80: 4a:24:47:78:4e:12:c0:91:7a:1d:a8:e0:ff:18:44:2e:c8:5c: b3:30:d0:3d:fd:4c:e6:ed:df:b1:37:91:fe:5e:b0:98:a5:b7: c5:fa:8f:3d:1a:30:6d:dc:fb:84:8f:82:24:53:f0:6a:c6:7c: 45:53:c6:a7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0nOxcotExlKldb8mU/JF3eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz YWE5YjMwHhcNMjYwMzI1MjMwMTE3WhcNMjYwMzI2MjMwMTE3WjAzMTEwLwYDVQQD EygzZmQ4MWVmMTQyMDIzNDNkZGE1ODc4ZDFkYmNiMjJkNDQ3ZjUwNTFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmXKD1wGG+Jj85hxIFLX+yEjEeVyj AXKMBScUd14PPho1XtqsvQt8IBh8LKMeE37Cceqw29wPQgTYJuzoDHQXU/a3Hs/H 4EIdf8Cqbei4DXGOCoiRyynY/nO8MB+gyyYzVDYPRp+64UCoheJA5k5JYHlG5TB9 zN0wfr5KHVjhV+9/uldtTC+KZ4r4RKBAXyrLFbUD7sNvebPp79RmFY7mJq4vlvJx mLYkiDjrdfy/iApLZ/pXP3oQUJ5rxXDTcbfs8uV8wnterdcngLsYgxQTc3Uoxddf QViWi9vmnOdfwee1/3FQMKzN6kqKQo90Pkd+1TGz5M0/sqVTQRzI6Q1ddQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD/YHvFCAjQ92lh40dvLItRH9QUaMB8GA1UdIwQY MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt MGFlMmU5MjJhMjkyLzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuLivWN+J G5TvxEH5jREWs8jyH/XSi8G6pLYH9lsgrrftG/Z6yyl2boPlzSEVtq/zyvsYJCUB 2g77GYv+KzcPQamQgTntzJEK6Kul4O2e3D0OpT0LCrwvLzevU+5c0iyCeKTe/ldt hSfXhq+hjKIdW7fWUKd0vBZnV/fDBCq5ib5sNyc+bXCZ12tmgxuwz+wye74wxUP9 HlxXaVo2Fm8ewSSpnEUwfNGMZsRSwAL51Fh/iYD5AeFFQ8Y+TySD5WE8yjSM3zuA SiRHeE4SwJF6Hajg/xhELshcszDQPf1M5u3fsTeR/l6wmKW3xfqPPRowbdz7hI+C JFPwasZ8RVPGpw== -----END CERTIFICATE-----Generated at Thu Mar 26 06:15:04 2026 by rpki-client