$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft File: oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft (raw, json) Hash identifier: M31gr7Etfqc0hGUBtGo08bz9mvnBdp6KgUvfpnuZFXc= Subject key identifier: 28:38:38:A4:6D:63:35:61:CA:AE:1D:49:0C:34:E1:E4:95:C4:CA:5F Authority key identifier: A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7 Certificate issuer: /CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7 Certificate serial: 019D2695F56B746DC902C4B73F4BDAD2385A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft Manifest number: 0814 Signing time: Wed 25 Mar 2026 20:00:55 +0000 Manifest this update: Wed 25 Mar 2026 20:00:55 +0000 Manifest next update: Thu 26 Mar 2026 20:00:55 +0000 Files and hashes: 1: 1-EbrvxNY7jUJJte1JMBcOC69EBk.roa (hash: /M4gkvV/7tnw4BlBdpuc1viYnL0XhtHAFXwLDGq3QCg=) 2: NjOJ8tUpqLJAAfHhfTTwUysAm7s.roa (hash: 3a42jEcgSU6c6ZDozj7GhmcER8SN0dScIEdBDzntTP4=) 3: OA81K4GFXKVrjD-M584jTyFYST8.roa (hash: C4S9fMtXlXuIFqggmB3QlimOTqdUpyywlGKQgdOtY5w=) 4: YpbC5jk8lzSJpred_IHkkCVUCKE.roa (hash: Zo4+zcIWbT83bhve20wlbO77GzQpKYPsD28KLD9jN8Y=) 5: YxQb53gzYd0iTmUe7A41D-2rnY8.roa (hash: q+Z1iMu62RV5K/wK7fU9JbtFm1jSO7NLnuxYy0Ettbk=) 6: h_aNMTHSod3zvEv_zlqSsdV20TQ.roa (hash: GccHbmvEFlhiHjnJ+i3nG2pD81e9dD/oLrnSrArj6ig=) 7: oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl (hash: KhpY2N/6ie+Juxl11GDwcdVYAXBHNUUNz/74YQbjj18=) 8: oh53IB-aUH2plypNUq8_qw59tUU.roa (hash: k/rLC3QFD8nEmci+tQAmE7NOGPMxS4KDVOpLNqgFsg4=) 9: ondT0lA34VONX208YudOD0r79Fo.roa (hash: Q5xYjBiSMcwIIASL37DpTBEnCFikNHHBxM8KVMbJfYU=) 10: vyjCA1W9-6KFsgjaGvfzXuiMYLQ.roa (hash: 7JV7egLgY4Bzr/UvgYj0RPwIqhuXjEo3YWECD7QdwW0=) 11: wtolA6HMGVvPA6gYljfUXhGgO9w.roa (hash: 9lH1rM52hRaE2Kxe2ZgcgE2kAZOcfeGaiUJXArzl1qI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 20:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:26:95:f5:6b:74:6d:c9:02:c4:b7:3f:4b:da:d2:38:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7 Validity Not Before: Mar 25 20:00:55 2026 GMT Not After : Mar 26 20:00:55 2026 GMT Subject: CN=283838a46d633561caae1d490c34e1e495c4ca5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:0b:2c:f0:fb:85:f4:14:32:4c:54:fb:00:44: d2:7a:d8:43:ab:0c:0a:ac:22:be:df:2b:d1:1e:30: 94:bd:e0:8f:24:a9:a6:81:df:41:0c:be:c3:ef:e9: d5:41:c0:9e:64:9b:6d:17:be:1a:fa:33:74:8c:16: d0:62:ef:9a:7f:4d:ea:21:b6:a1:ee:20:3a:11:6a: 65:69:8d:c8:d5:c7:c0:b0:ff:e7:be:de:e4:1e:a9: 79:47:80:76:b9:c7:7b:68:44:59:a8:c2:3f:67:13: b0:51:5e:55:01:e3:59:8f:3d:92:9d:21:04:c1:ae: 2a:02:2c:56:fd:4e:c6:6d:14:c3:8d:62:1a:d7:9f: cb:1c:8c:1a:b2:37:95:94:c7:c1:6e:8e:c3:2a:9c: 18:a1:62:fc:60:b7:d9:db:7e:7e:f5:46:5e:7f:d0: 0d:a7:b9:06:42:f9:49:e2:07:77:0d:26:d5:e6:f4: 91:1b:25:f8:43:b4:68:32:0b:a7:9e:a0:06:49:87: e3:33:9a:35:c8:c3:5a:36:7c:80:28:57:91:df:8f: 6d:1c:09:60:e9:54:cd:f1:2b:4d:38:33:ca:47:19: 97:5e:41:94:ba:84:cc:64:22:f6:62:37:14:37:79: ba:6a:28:a8:5c:f7:da:51:84:c7:90:6d:a8:70:46: be:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:38:38:A4:6D:63:35:61:CA:AE:1D:49:0C:34:E1:E4:95:C4:CA:5F X509v3 Authority Key Identifier: keyid:A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:db:cd:b9:99:84:27:2d:a7:fa:3d:e1:20:d5:17:81:b4:48: b3:fe:d8:70:8e:f8:53:36:9b:71:2e:b4:2c:39:f9:1a:97:ba: 52:75:9b:da:26:f2:86:fa:3b:64:ae:6d:cb:b0:17:30:cd:ab: a4:59:b6:d9:83:b5:60:07:02:6d:3e:ca:63:76:22:00:23:a5: b6:52:f3:85:a7:fa:9d:bc:89:e4:6c:57:a0:2b:a0:0e:df:5b: ed:34:b4:d0:82:ca:c0:8d:ff:ef:42:43:93:fd:23:0b:58:34: 53:7f:74:90:89:b5:01:21:cb:f9:61:ee:e7:dc:da:25:a1:d6: dd:43:a0:ff:a3:4b:c3:fe:cb:cb:d4:65:b2:ba:01:71:dc:2f: 86:2f:95:cb:8e:ae:7e:7e:ec:94:f3:04:61:9a:d1:0f:30:8a: 50:0f:54:09:e6:14:05:d9:fa:7c:02:0d:cd:8e:a4:b7:45:d7: 16:07:ec:a7:77:ed:80:f3:46:8c:30:77:b9:5f:31:b7:9d:1d: c9:15:be:3d:8b:11:77:f6:18:ba:de:05:cd:c7:6b:e2:5e:97: 17:fa:d6:83:67:df:6c:f3:d6:e6:04:56:95:d2:36:b3:bf:ce: cf:17:86:b2:e2:05:c9:ad:33:d7:41:0a:4b:94:ef:59:86:f5: c9:56:9e:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0mlfVrdG3JAsS3P0va0jhaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExMjRjY2RkNzBmM2VjNzYyY2JkNjVlMDRkZDZmNzZiZTIz NmE4YTcwHhcNMjYwMzI1MjAwMDU1WhcNMjYwMzI2MjAwMDU1WjAzMTEwLwYDVQQD EygyODM4MzhhNDZkNjMzNTYxY2FhZTFkNDkwYzM0ZTFlNDk1YzRjYTVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Qss8PuF9BQyTFT7AETSethDqwwK rCK+3yvRHjCUveCPJKmmgd9BDL7D7+nVQcCeZJttF74a+jN0jBbQYu+af03qIbah 7iA6EWplaY3I1cfAsP/nvt7kHql5R4B2ucd7aERZqMI/ZxOwUV5VAeNZjz2SnSEE wa4qAixW/U7GbRTDjWIa15/LHIwasjeVlMfBbo7DKpwYoWL8YLfZ235+9UZef9AN p7kGQvlJ4gd3DSbV5vSRGyX4Q7RoMgunnqAGSYfjM5o1yMNaNnyAKFeR349tHAlg 6VTN8StNODPKRxmXXkGUuoTMZCL2YjcUN3m6aiioXPfaUYTHkG2ocEa+3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCg4OKRtYzVhyq4dSQw04eSVxMpfMB8GA1UdIwQY MBaAFKEkzN1w8+x2LL1l4E3W92viNqinMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9iNjk0YjgtODIxMS00YzA2LTljODEt N2IzNTM5N2FmMmY3LzEvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni9iNjk0YjgtODIxMS00YzA2LTljODEtN2IzNTM5N2FmMmY3 LzEvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOtvNuZmE Jy2n+j3hINUXgbRIs/7YcI74UzabcS60LDn5Gpe6UnWb2ibyhvo7ZK5ty7AXMM2r pFm22YO1YAcCbT7KY3YiACOltlLzhaf6nbyJ5GxXoCugDt9b7TS00ILKwI3/70JD k/0jC1g0U390kIm1ASHL+WHu59zaJaHW3UOg/6NLw/7Ly9RlsroBcdwvhi+Vy46u fn7slPMEYZrRDzCKUA9UCeYUBdn6fAINzY6kt0XXFgfsp3ftgPNGjDB3uV8xt50d yRW+PYsRd/YYut4Fzcdr4l6XF/rWg2ffbPPW5gRWldI2s7/OzxeGsuIFya0z10EK S5TvWYb1yVaexw== -----END CERTIFICATE-----Generated at Thu Mar 26 05:04:16 2026 by rpki-client