$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft File: Kb4C3qCghumID1ZMhocrvFl8xnI.mft (raw, json) Hash identifier: 2qYYlYRyg5VjmAff4DwbUIIQdTjSn/JhSanlMy9kdwI= Subject key identifier: 2A:50:B6:4F:B0:9A:A7:E4:0A:32:24:27:A8:12:55:44:8B:49:D8:39 Authority key identifier: 29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72 Certificate issuer: /CN=29be02dea0a086e9880f564c86872bbc597cc672 Certificate serial: 019D281654AFEB7B22A4BD9E03498067A75D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft Manifest number: 1678 Signing time: Thu 26 Mar 2026 03:00:45 +0000 Manifest this update: Thu 26 Mar 2026 03:00:45 +0000 Manifest next update: Fri 27 Mar 2026 03:00:45 +0000 Files and hashes: 1: 1-W964s-KtZyiNamSbJ6IP1jbFT4.roa (hash: tyUpzznYouv+Rmk3/StqHsUEFXC/JRLOGyGTS4NNP4Y=) 2: GStnKDxU2VExQ_xcPN4egFEKjLo.roa (hash: siSBOiPXXJh3GCU5grMPMkb/iUn8KcQ7coKcPhWce6E=) 3: Kb4C3qCghumID1ZMhocrvFl8xnI.crl (hash: CNuw/moiTdcEMm63/FDCaAPoolG9wm+gnqIxBSbw4QQ=) 4: KzDc8QsMTzvMJxQ96GJ3yCoLi_U.roa (hash: Xkhd86uGm3VF/evalHU0tYC3SzwGKBs1H4sASP/73Pg=) 5: RKeJP9iEvuDf3LggtuJwNO7uQEk.roa (hash: +VIR5z/XQ5Qx7TTNzGJldp0pk9LFlEUwye6JlD69ltQ=) 6: RMWLa9nYNadgqj8fRvJ7gt0vmRY.roa (hash: YPSVWQ4p2Yzt69XO4XRgEZdOa23MUm2U51FrUJbQeG0=) 7: VSrC1QP0T_UaXaaEFdbsOmUjBh0.roa (hash: zTpZ/xLPhwOsaGOqgGhoR4AJouaTmVoH7QdVIfFBLJc=) 8: WkDZDOXBWr9x5TExAfjLxWKxbkU.roa (hash: YkRBfAeJDTqNqtEqsLxdtIzJ8woFGgTRSv1hmR+uNQ4=) 9: mju1GTQPLsJiestxJWXcq-E1Bo0.roa (hash: 95gpW7g+cVKJk4QbRN0p3aXkVNHoQsAxKOBXvYSCcxk=) 10: qJD08TGqbLXdbWVjPMA7B5pGkPI.roa (hash: Kx7++AsdN5bNJwCWFiOZcN26zdxHM+ZF2tTRAsBHsXQ=) 11: rg80XbUJLJkTb5OEL1rZgHZ1y6U.roa (hash: vhHXEQRDhmmcuNgaQBq7IXJimIzM9H1G1xvHCsunoqk=) 12: xewkVdgaX0V36_1yEpoUi8m7v6c.roa (hash: kF/BrgELi4+Am7OL4A+u/VI4R7I6POdHlx4gpQyUi6M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 00:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:28:16:54:af:eb:7b:22:a4:bd:9e:03:49:80:67:a7:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29be02dea0a086e9880f564c86872bbc597cc672 Validity Not Before: Mar 26 03:00:45 2026 GMT Not After : Mar 27 03:00:45 2026 GMT Subject: CN=2a50b64fb09aa7e40a322427a81255448b49d839 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bd:1d:d7:a0:f8:4a:0d:e5:a6:c7:28:36:21: 04:26:20:01:82:f4:53:2a:55:a9:18:63:e4:48:b7: 85:11:5d:2b:16:c7:12:2a:da:59:a6:ce:36:3b:dc: 7d:09:70:ed:4d:39:23:d3:86:d1:a5:19:1c:15:a4: 5b:5f:99:97:42:1a:1b:26:6d:81:b8:77:79:98:48: 59:b5:16:f4:53:21:28:5c:e7:b1:cf:7c:98:3b:96: dc:35:9e:0f:b2:1b:19:55:9a:60:70:71:f0:d2:5e: a8:78:4c:93:f5:84:2c:3e:c7:6f:f8:4d:13:d9:0b: ea:00:26:23:ac:8a:7f:93:5f:69:56:39:43:14:7e: 05:c0:25:e2:66:f4:0e:78:e6:cd:d5:4d:55:e2:69: 05:8e:5e:84:5b:b2:77:61:0b:95:33:ed:fd:74:5f: 74:43:43:74:95:6b:ab:62:ec:aa:d1:0f:b6:25:70: 55:04:cf:f0:ae:66:7c:df:b7:05:05:b8:93:4c:c1: b7:5f:6c:7d:b2:19:a7:5b:b3:1b:33:83:4b:9a:bc: df:9f:31:4e:ec:d8:32:68:4a:a6:ee:ba:7c:fd:8f: 0c:57:ff:df:b2:e0:1c:6f:f1:d0:19:96:65:fe:43: b3:86:1e:fc:45:db:29:1d:e7:8d:d2:e3:8c:4c:00: 0a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:50:B6:4F:B0:9A:A7:E4:0A:32:24:27:A8:12:55:44:8B:49:D8:39 X509v3 Authority Key Identifier: keyid:29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:a5:e7:57:94:33:a9:86:9f:8d:95:d0:9d:5f:27:04:af:21: b8:01:32:55:14:b8:94:01:f8:06:10:3e:26:46:94:80:19:a9: b2:4a:c6:bc:61:b7:9f:9e:9d:8e:98:1e:00:a8:a2:e5:d3:53: 93:bb:eb:e4:4e:8d:8c:ae:28:3c:e5:0f:65:fa:cf:c7:46:9d: 65:c8:18:c3:22:1c:11:4a:d5:11:1f:c0:24:ce:f0:e9:de:b7: 9f:13:e3:6d:e2:f7:15:0b:6c:8f:52:d6:03:92:b8:00:b0:55: 9f:ea:10:ba:f1:5a:49:e3:66:d4:5e:f7:d0:49:59:9f:e2:23: 06:35:ae:e7:4e:63:86:3e:77:ba:70:8c:35:74:86:56:43:34: 2a:26:02:2d:f7:f3:c0:13:f9:9e:27:a2:c1:1d:bf:bf:b6:29: 25:ea:96:5a:8c:21:24:5f:41:90:e0:e8:0f:88:32:96:1b:43: 37:76:78:09:be:29:93:77:a3:28:a4:90:86:6e:b0:f3:d6:cb: 95:60:61:25:8e:aa:3f:0e:56:5a:c2:9d:db:30:8b:fa:67:8a: 71:78:fe:e2:c0:59:ab:3c:32:1f:90:86:f3:b0:fc:f3:d7:96: 13:b7:ee:1a:a2:28:2d:c7:cd:3c:57:39:8f:21:4a:0d:8e:18: 62:c5:87:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0oFlSv63sipL2eA0mAZ6ddMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5YmUwMmRlYTBhMDg2ZTk4ODBmNTY0Yzg2ODcyYmJjNTk3 Y2M2NzIwHhcNMjYwMzI2MDMwMDQ1WhcNMjYwMzI3MDMwMDQ1WjAzMTEwLwYDVQQD EygyYTUwYjY0ZmIwOWFhN2U0MGEzMjI0MjdhODEyNTU0NDhiNDlkODM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz70d16D4Sg3lpscoNiEEJiABgvRT KlWpGGPkSLeFEV0rFscSKtpZps42O9x9CXDtTTkj04bRpRkcFaRbX5mXQhobJm2B uHd5mEhZtRb0UyEoXOexz3yYO5bcNZ4PshsZVZpgcHHw0l6oeEyT9YQsPsdv+E0T 2QvqACYjrIp/k19pVjlDFH4FwCXiZvQOeObN1U1V4mkFjl6EW7J3YQuVM+39dF90 Q0N0lWurYuyq0Q+2JXBVBM/wrmZ837cFBbiTTMG3X2x9shmnW7MbM4NLmrzfnzFO 7NgyaEqm7rp8/Y8MV//fsuAcb/HQGZZl/kOzhh78RdspHeeN0uOMTAAKyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCpQtk+wmqfkCjIkJ6gSVUSLSdg5MB8GA1UdIwQY MBaAFCm+At6goIbpiA9WTIaHK7xZfMZyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9lYTFjZmYtYWU4Zi00NzE5LTg5YjMt MDAzYTE1NjhiZjNmLzEvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS9lYTFjZmYtYWU4Zi00NzE5LTg5YjMtMDAzYTE1NjhiZjNm LzEvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl6XnV5Qz qYafjZXQnV8nBK8huAEyVRS4lAH4BhA+JkaUgBmpskrGvGG3n56djpgeAKii5dNT k7vr5E6NjK4oPOUPZfrPx0adZcgYwyIcEUrVER/AJM7w6d63nxPjbeL3FQtsj1LW A5K4ALBVn+oQuvFaSeNm1F730ElZn+IjBjWu505jhj53unCMNXSGVkM0KiYCLffz wBP5nieiwR2/v7YpJeqWWowhJF9BkODoD4gylhtDN3Z4Cb4pk3ejKKSQhm6w89bL lWBhJY6qPw5WWsKd2zCL+meKcXj+4sBZqzwyH5CG87D889eWE7fuGqIoLcfNPFc5 jyFKDY4YYsWHCw== -----END CERTIFICATE-----Generated at Thu Mar 26 11:10:50 2026 by rpki-client