$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft File: oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft (raw, json) Hash identifier: HBvWLFC9RnaxSWpmsBthBKpfSwwF193za9hEUmYey28= Subject key identifier: C9:3F:91:78:D5:36:D1:00:E0:5F:1B:C4:B2:D8:01:3E:8B:6D:21:EB Authority key identifier: A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7 Certificate issuer: /CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7 Certificate serial: 019D28844C8129C53A8FD83E72026E9774AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft Manifest number: 0815 Signing time: Thu 26 Mar 2026 05:00:52 +0000 Manifest this update: Thu 26 Mar 2026 05:00:52 +0000 Manifest next update: Fri 27 Mar 2026 05:00:52 +0000 Files and hashes: 1: 1-EbrvxNY7jUJJte1JMBcOC69EBk.roa (hash: /M4gkvV/7tnw4BlBdpuc1viYnL0XhtHAFXwLDGq3QCg=) 2: NjOJ8tUpqLJAAfHhfTTwUysAm7s.roa (hash: 3a42jEcgSU6c6ZDozj7GhmcER8SN0dScIEdBDzntTP4=) 3: OA81K4GFXKVrjD-M584jTyFYST8.roa (hash: C4S9fMtXlXuIFqggmB3QlimOTqdUpyywlGKQgdOtY5w=) 4: YpbC5jk8lzSJpred_IHkkCVUCKE.roa (hash: Zo4+zcIWbT83bhve20wlbO77GzQpKYPsD28KLD9jN8Y=) 5: YxQb53gzYd0iTmUe7A41D-2rnY8.roa (hash: q+Z1iMu62RV5K/wK7fU9JbtFm1jSO7NLnuxYy0Ettbk=) 6: h_aNMTHSod3zvEv_zlqSsdV20TQ.roa (hash: GccHbmvEFlhiHjnJ+i3nG2pD81e9dD/oLrnSrArj6ig=) 7: oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl (hash: vtnSG5UorebztM8MI6jyMwfbjSe7fXO/zSROgvhRc/U=) 8: oh53IB-aUH2plypNUq8_qw59tUU.roa (hash: k/rLC3QFD8nEmci+tQAmE7NOGPMxS4KDVOpLNqgFsg4=) 9: ondT0lA34VONX208YudOD0r79Fo.roa (hash: Q5xYjBiSMcwIIASL37DpTBEnCFikNHHBxM8KVMbJfYU=) 10: vyjCA1W9-6KFsgjaGvfzXuiMYLQ.roa (hash: 7JV7egLgY4Bzr/UvgYj0RPwIqhuXjEo3YWECD7QdwW0=) 11: wtolA6HMGVvPA6gYljfUXhGgO9w.roa (hash: 9lH1rM52hRaE2Kxe2ZgcgE2kAZOcfeGaiUJXArzl1qI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 00:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:28:84:4c:81:29:c5:3a:8f:d8:3e:72:02:6e:97:74:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7 Validity Not Before: Mar 26 05:00:52 2026 GMT Not After : Mar 27 05:00:52 2026 GMT Subject: CN=c93f9178d536d100e05f1bc4b2d8013e8b6d21eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a6:78:e8:87:33:08:3b:f3:57:53:43:ac:e8: 39:bf:6f:9c:50:f1:71:f7:33:de:ec:e0:10:72:72: 2c:11:a1:28:2d:78:8e:1c:98:d2:43:7e:95:6c:c6: 9b:3d:e1:c8:25:ed:f7:6c:7d:78:93:6b:02:07:ae: aa:f6:cf:1c:af:7f:3c:41:cd:ee:7f:c2:0a:23:19: 5a:41:d2:a3:e7:1d:58:ef:52:6f:0a:53:5b:e5:ab: 53:f9:50:99:b2:63:ea:6d:73:9b:34:0f:50:27:72: b1:60:62:04:cc:63:57:14:e0:26:1b:3b:72:1c:2b: af:55:85:5f:e5:d9:b6:60:3c:80:24:e0:73:e0:9d: f1:fe:07:cc:e9:58:96:b6:be:00:90:9a:89:60:86: da:c9:93:d5:e9:11:9f:14:9f:22:bb:7e:56:92:a7: f9:cd:ca:9a:d4:d5:4a:8a:18:0e:e8:f7:b0:ac:50: 83:ca:14:da:14:bb:b9:9e:14:68:4b:45:d2:a9:58: 68:30:a1:c5:92:6f:7e:8d:97:16:77:39:d2:81:8d: c3:f9:82:f4:83:47:81:f6:8f:6e:99:b4:3f:7e:a9: e4:1e:da:c4:a7:27:4f:75:53:f7:3f:9b:b3:6d:2f: a6:02:54:eb:44:ed:6f:08:e7:e4:40:39:89:e2:b2: 3a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:3F:91:78:D5:36:D1:00:E0:5F:1B:C4:B2:D8:01:3E:8B:6D:21:EB X509v3 Authority Key Identifier: keyid:A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:85:27:fb:c1:dc:2a:79:ef:43:72:8b:16:16:f5:9d:94:74: 81:63:f7:0e:a1:4c:80:dc:3a:fe:cd:a6:33:15:f6:d1:6b:99: 85:86:bc:e7:21:78:3e:8c:0d:ba:b2:22:3b:0f:d9:92:99:7b: 8c:35:7c:ab:5f:a9:57:aa:cc:a6:57:7b:92:11:7d:1c:47:d6: 44:77:ed:fd:53:22:ba:e8:15:02:fc:a5:e9:7f:28:9a:38:ed: 96:05:53:fd:cb:d9:c1:9f:cf:0b:fb:c4:1a:e7:28:75:41:24: 1d:6c:07:5d:37:f1:c7:1f:aa:5f:7a:2c:c4:1c:ab:fb:65:8b: 9e:d1:f6:f3:0f:7e:a9:1c:bf:c8:7e:51:13:9b:ea:2b:d5:e8: 59:78:bc:f9:24:51:76:ff:ad:14:00:2f:bd:96:06:9c:22:e3: 86:f6:0b:d5:d4:9d:98:26:ce:7a:de:40:bc:05:6a:e2:95:82: a9:aa:35:47:f4:5a:06:1b:af:b7:ab:20:0e:42:84:af:df:d4: 75:ec:95:fd:78:1c:8d:5a:5f:be:16:ed:aa:3f:c1:aa:9c:a3: a8:42:e6:44:d7:00:5a:59:23:1f:42:e9:17:65:db:3d:c8:bc: c0:3a:ea:f4:02:5d:3b:53:2d:e7:57:15:b7:71:90:f1:7c:72: ae:91:16:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0ohEyBKcU6j9g+cgJul3SvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExMjRjY2RkNzBmM2VjNzYyY2JkNjVlMDRkZDZmNzZiZTIz NmE4YTcwHhcNMjYwMzI2MDUwMDUyWhcNMjYwMzI3MDUwMDUyWjAzMTEwLwYDVQQD EyhjOTNmOTE3OGQ1MzZkMTAwZTA1ZjFiYzRiMmQ4MDEzZThiNmQyMWViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3KZ46IczCDvzV1NDrOg5v2+cUPFx 9zPe7OAQcnIsEaEoLXiOHJjSQ36VbMabPeHIJe33bH14k2sCB66q9s8cr388Qc3u f8IKIxlaQdKj5x1Y71JvClNb5atT+VCZsmPqbXObNA9QJ3KxYGIEzGNXFOAmGzty HCuvVYVf5dm2YDyAJOBz4J3x/gfM6ViWtr4AkJqJYIbayZPV6RGfFJ8iu35Wkqf5 zcqa1NVKihgO6PewrFCDyhTaFLu5nhRoS0XSqVhoMKHFkm9+jZcWdznSgY3D+YL0 g0eB9o9umbQ/fqnkHtrEpydPdVP3P5uzbS+mAlTrRO1vCOfkQDmJ4rI6fQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMk/kXjVNtEA4F8bxLLYAT6LbSHrMB8GA1UdIwQY MBaAFKEkzN1w8+x2LL1l4E3W92viNqinMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9iNjk0YjgtODIxMS00YzA2LTljODEt N2IzNTM5N2FmMmY3LzEvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni9iNjk0YjgtODIxMS00YzA2LTljODEtN2IzNTM5N2FmMmY3 LzEvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ4Un+8Hc KnnvQ3KLFhb1nZR0gWP3DqFMgNw6/s2mMxX20WuZhYa85yF4PowNurIiOw/Zkpl7 jDV8q1+pV6rMpld7khF9HEfWRHft/VMiuugVAvyl6X8omjjtlgVT/cvZwZ/PC/vE GucodUEkHWwHXTfxxx+qX3osxByr+2WLntH28w9+qRy/yH5RE5vqK9XoWXi8+SRR dv+tFAAvvZYGnCLjhvYL1dSdmCbOet5AvAVq4pWCqao1R/RaBhuvt6sgDkKEr9/U deyV/XgcjVpfvhbtqj/BqpyjqELmRNcAWlkjH0LpF2XbPci8wDrq9AJdO1Mt51cV t3GQ8XxyrpEWNQ== -----END CERTIFICATE-----Generated at Thu Mar 26 11:34:24 2026 by rpki-client