$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.mft File: h3itgWjgnPktTgSYJX-OnOq_BpI.mft (raw, json) Hash identifier: 7aRlWi3pdEDLcMlpFLBjqPDBggTbRF5ldhtN30qQ/lQ= Subject key identifier: 1F:B9:9B:0C:2C:A6:80:B3:B1:99:28:F2:3F:53:64:F9:4A:75:6F:29 Authority key identifier: 87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92 Certificate issuer: /CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692 Certificate serial: 019D26963997A530F9AC7708E03A1764E679 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.mft Manifest number: 18A7 Signing time: Wed 25 Mar 2026 20:01:12 +0000 Manifest this update: Wed 25 Mar 2026 20:01:12 +0000 Manifest next update: Thu 26 Mar 2026 20:01:12 +0000 Files and hashes: 1: 1-cQy_siX062tFLZkeCmyCEUYxQs.roa (hash: M1tvA2BwBUz9tHkqC8JXVgPLd87OHSLvHcZQsEKJENI=) 2: 1DvNK1UEfocldcVoSCDz4-rQCu0.roa (hash: W9AE3etelZntnhp0Syb26y14LnYuyubNeRnjY+KTeic=) 3: 2osfvL67DJoldSiDF4PR7UDb-Fk.asa (hash: pYfpBcJ4cmAcBPsCiYsmdDQ6g93wwl6UaITv0MdLIHE=) 4: 8Q_WyzdZiQckSphgAZIR0v5tHg0.roa (hash: 4fsTe8wbJQmrMv3rGh5NswgG+t+NcVBW7ToId469YgA=) 5: Dt3MJu0uPuH3qq0XGW7lqKsKInY.roa (hash: R0j8gqdXiZr3Lr8QUwpYhsHJ5zeSfVefNgsAEnI0AMw=) 6: FqNQkwV2PkUHvMVmXxQ_4Xh4Z4A.asa (hash: hkpJ0WmcrDsxGzzWcZrOMxEr2e+VC3Rb+eENHFvnu7o=) 7: MmIYb8wrP1LfxhIufZ51w4snAKI.roa (hash: e/pt+I42So6GjGCNLA7r6mnp1Eja3WS/XZO4IhLmB8E=) 8: PzoJn7JmNA7HLgDJj3qABg4rdIg.roa (hash: Pu8elV3ASkAhzzlLq5cnqoeSEZGr98s46wDdEgSzMVE=) 9: Rs1lwHsOhORTbpOYC0DdvHoRuG4.roa (hash: 2ldj5+OjHEBz42EYRxs+dDbaX+fxjP+Yz7ZHeTr6lGA=) 10: SeUVAtbk1hrN2JyKOxE8q4V1UTY.roa (hash: lPG+lMbFgVTXYsR4V2gK2L1a28JoQEgQzgLbi/Qank4=) 11: VBhBA4HiRVMlJSOniY0KYh9CTd0.roa (hash: HSJ8X00wLW6S9kJDTwwCoC+4KhX2XIDhiS0S4EkH16Y=) 12: eLLgkJY0LUjDQzm5GuuyzsHUdO8.roa (hash: 5HseyNnROV3cBPGdpH59V7rf9Io+o9Vye7FV9A2XVfo=) 13: h3itgWjgnPktTgSYJX-OnOq_BpI.crl (hash: lmCjpurfaaqzvuvJJwL9c2aRNRRX1Xfty+m1OeYGJmo=) 14: ohXc6oE7ElG-Ajtu7o45-cHtKak.roa (hash: g5o8dbjGn0yFQ7IxAtC49wzuYTWKouvuonHavYlfl2k=) 15: qJ3niIVK-kPpD_FGpR52CMp181s.roa (hash: Y2wZT3A9wJBPyVW0IAHlhorwA/qR0rpoglN3HNURHyM=) 16: qi7DumYqOb_2Ji68qci3HXVuXwA.roa (hash: LWnpe3rZCe4uDNXUTaaSpU6AS5hw8Cx+t5qYkabhaNM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.mft rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 20:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:26:96:39:97:a5:30:f9:ac:77:08:e0:3a:17:64:e6:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692 Validity Not Before: Mar 25 20:01:12 2026 GMT Not After : Mar 26 20:01:12 2026 GMT Subject: CN=1fb99b0c2ca680b3b19928f23f5364f94a756f29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b3:96:a2:5e:fe:bc:98:ba:66:e4:89:9c:f1: 99:5b:a5:67:d5:f1:5e:cd:2c:4b:58:87:43:f7:ab: 5d:15:f8:38:4a:26:7d:bc:a5:de:a0:c2:0f:51:bb: 35:72:fc:1d:af:8f:91:3c:5c:35:f7:8c:79:46:31: ca:b3:5a:8f:7e:ef:e8:a3:b4:ce:b8:69:ba:5d:40: 20:8f:93:41:f3:1b:79:cd:b3:cc:b6:7b:1d:7b:a6: 9a:d0:fb:2a:4f:1e:f8:8e:57:d0:e3:60:dd:27:57: af:e7:0d:30:d3:40:e2:24:51:00:33:9e:22:e9:03: a3:17:d1:4b:3e:07:89:24:1f:2f:29:e7:80:eb:d3: f6:28:7f:63:3c:b1:84:f6:01:5e:91:6e:d2:34:bf: 75:46:c5:92:45:86:ab:f0:2b:cf:7c:44:e6:e0:3d: bf:f1:b7:f7:92:22:9b:75:91:1b:63:89:b5:9e:71: 02:b4:9c:1b:49:41:65:69:e1:5d:c6:fe:f6:f0:a6: b6:bf:0c:90:0a:77:ae:14:5a:c4:5f:7d:be:13:c1: 53:db:05:8a:6c:17:df:28:af:d7:e0:35:a5:3e:44: 09:9e:e7:64:31:1d:0e:a3:0b:46:1c:05:98:15:53: 23:63:db:3a:b5:3e:cb:9f:09:96:28:f0:ae:29:d8: fa:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:B9:9B:0C:2C:A6:80:B3:B1:99:28:F2:3F:53:64:F9:4A:75:6F:29 X509v3 Authority Key Identifier: keyid:87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:1c:82:52:f1:71:fc:8b:90:fd:4c:0c:ee:fe:4f:10:d1:e2: 50:9c:5e:b4:2c:f3:13:dc:3a:34:0c:7d:35:3a:0c:f6:12:34: ed:e4:28:eb:c4:53:43:51:5d:c7:e4:a7:5b:4c:f6:8a:45:3a: 74:42:ba:26:a1:27:d2:48:67:95:3f:47:c7:52:6b:97:67:e3: 66:3f:4e:70:ab:e3:02:82:36:32:6a:f1:ed:f1:7a:5b:ef:89: e3:e3:af:a2:3f:c9:ad:ba:1b:6b:40:ca:3b:85:87:ac:38:56: ee:c7:a8:fb:fe:17:d8:e6:9c:17:75:54:42:ee:78:1a:ed:42: db:7b:7b:cf:84:6c:e0:5e:a1:5f:d5:49:38:95:69:80:e9:68: 43:c6:8e:9d:70:8f:fa:f6:8e:33:e2:70:c8:9a:94:c3:1f:82: 85:20:e6:e4:eb:a1:0f:1f:3a:e2:33:7b:4d:87:97:52:d8:6b: ca:10:6e:97:e0:92:e3:b1:29:eb:37:a7:89:e2:fb:af:ec:95: 86:85:da:39:58:e5:df:05:b7:88:33:33:e7:af:95:cc:9f:08: 16:48:fd:5d:02:75:03:97:3f:e6:72:1f:34:a4:62:cf:23:72: 8d:93:3d:23:51:1a:9a:d9:84:c4:cd:b3:9c:62:e2:76:0d:0f: 71:19:70:a4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0mljmXpTD5rHcI4DoXZOZ5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3NzhhZDgxNjhlMDljZjkyZDRlMDQ5ODI1N2Y4ZTljZWFi ZjA2OTIwHhcNMjYwMzI1MjAwMTEyWhcNMjYwMzI2MjAwMTEyWjAzMTEwLwYDVQQD EygxZmI5OWIwYzJjYTY4MGIzYjE5OTI4ZjIzZjUzNjRmOTRhNzU2ZjI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA37OWol7+vJi6ZuSJnPGZW6Vn1fFe zSxLWIdD96tdFfg4SiZ9vKXeoMIPUbs1cvwdr4+RPFw194x5RjHKs1qPfu/oo7TO uGm6XUAgj5NB8xt5zbPMtnsde6aa0PsqTx74jlfQ42DdJ1ev5w0w00DiJFEAM54i 6QOjF9FLPgeJJB8vKeeA69P2KH9jPLGE9gFekW7SNL91RsWSRYar8CvPfETm4D2/ 8bf3kiKbdZEbY4m1nnECtJwbSUFlaeFdxv728Ka2vwyQCneuFFrEX32+E8FT2wWK bBffKK/X4DWlPkQJnudkMR0OowtGHAWYFVMjY9s6tT7LnwmWKPCuKdj6XQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB+5mwwspoCzsZko8j9TZPlKdW8pMB8GA1UdIwQY MBaAFId4rYFo4Jz5LU4EmCV/jpzqvwaSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDNpdGdXamduUGt0VGdTWUpYLU9uT3FfQnBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9mMDdmOGQtOWRmMC00OWM2LWIyZjAt YWE5ZDY5MTgxMWU3LzEvaDNpdGdXamduUGt0VGdTWUpYLU9uT3FfQnBJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi9mMDdmOGQtOWRmMC00OWM2LWIyZjAtYWE5ZDY5MTgxMWU3 LzEvaDNpdGdXamduUGt0VGdTWUpYLU9uT3FfQnBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcRyCUvFx /IuQ/UwM7v5PENHiUJxetCzzE9w6NAx9NToM9hI07eQo68RTQ1Fdx+SnW0z2ikU6 dEK6JqEn0khnlT9Hx1Jrl2fjZj9OcKvjAoI2Mmrx7fF6W++J4+Ovoj/Jrboba0DK O4WHrDhW7seo+/4X2OacF3VUQu54Gu1C23t7z4Rs4F6hX9VJOJVpgOloQ8aOnXCP +vaOM+JwyJqUwx+ChSDm5OuhDx864jN7TYeXUthryhBul+CS47Ep6zenieL7r+yV hoXaOVjl3wW3iDMz56+VzJ8IFkj9XQJ1A5c/5nIfNKRizyNyjZM9I1EamtmExM2z nGLidg0PcRlwpA== -----END CERTIFICATE-----Generated at Thu Mar 26 06:53:21 2026 by rpki-client