$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft File: Kfp91j8uLYe194UAk8dDu_vhTkQ.mft (raw, json) Hash identifier: VqG1IOtkoDMWqh9/7ZBqoRpPlbcO5cZGVZDa3C0xrjU= Subject key identifier: 07:A4:44:0E:BF:AB:2D:D3:03:93:88:8C:2E:3B:77:47:98:44:18:69 Authority key identifier: 29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 Certificate issuer: /CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Certificate serial: 019D31BEB93087E87ACF66C5D14AEB47BFB0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft Manifest number: 073D Signing time: Sat 28 Mar 2026 00:01:15 +0000 Manifest this update: Sat 28 Mar 2026 00:01:15 +0000 Manifest next update: Sun 29 Mar 2026 00:01:15 +0000 Files and hashes: 1: 1FTeokhUADkYbgvOTwGp40m_BPE.roa (hash: PPoy3S4bKc1j/djL6NTv+eGLXSL7GZ17YwI5tAXRtDM=) 2: 59s8eNqYwVH5ydf7xyV2eJR3_TU.roa (hash: xFhHztukLroKSICySsgp6ifCMDIbrBfwaaKjTAvv1Gw=) 3: 9c4kttevmySnfkQUW_qfNzaHphg.roa (hash: /cAqDalO1CeZ8c8IzYLpRoSc0JDQhBthLLFNZ86hRlw=) 4: FZeGgU2IawBK8YA4BwTM_e6x5Mo.roa (hash: 4nQMnYqmNvBAGhwCS2lyqUc1bPr2XdXqGh923cUp0bQ=) 5: FhQiMY_Y2B9WuZvyCd_uaF0M5dI.roa (hash: fZfKiY8vxqzWF+WGF85vLsOO0yrQwq1azfxlL3m6ht4=) 6: GrgWTPWfiMj8FwdKYhn8zJ6Z7e8.roa (hash: IO94toPK6/Wits1irHXbrZl6wNHfS6p+U483COk6R2Y=) 7: KNWwGCklL3zKbMsgIOCdcNGo2tI.roa (hash: 5rF454gnBcOMqEez62ErUsCgENLRW0isAHz0go80+Fs=) 8: Kfp91j8uLYe194UAk8dDu_vhTkQ.crl (hash: HPvchB/3hUR4NB4QbHLyARp1Hm3TH5ChjhgKs0gOesk=) 9: Pjq2usg2Ddr0jCim-rnljjUP2xg.roa (hash: 5RL0lX+XVqmkdynoA/ZI5Ffknvw/dGR/1FpAcrG1JiE=) 10: WrWpDNw0abEoNedClZIQXtxLaNM.roa (hash: gCZS2khmjJiGzLXjdqtdk6eKzbLBYpiu89Bi9tphMq4=) 11: aSoz0nTSHVKxl1w-_tXDaUBfI_U.roa (hash: 3H/725peI0ylJlXSnX6sTF3RBFyOHCBWf0zA//LWaS4=) 12: aqUiuM7FSwO0jQrVAdkkACyulNU.roa (hash: QJoSdYm5s8mfEJjbCj5VhQz2H0KAbaPDRRmLmgZWht0=) 13: hTJEftSpqDKpAn62ncVILyiUIA4.roa (hash: CgeSiN+wMYpnSUEh7oWmMa8OtknjA6ZGJ6sq3RGzTFw=) 14: nBxToIyQbLD03aHgRpkeeNieOPw.roa (hash: +npXv56cRJNf6jJA2m2/8FRk/EXL/cvT8hUJka5s2Lk=) 15: yBrC20joWzPYJC2p3ASrdCZ0wzk.roa (hash: xZei5bNpfbVHrnCyo7DX6ea+rnn9Va9LPl3q+efKuDg=) 16: yINiCi-fcEAzzbT8ry3F24_HnBw.roa (hash: DTnC3s+dTYZX9VNSoLxZjlybV3sMyllGW6D2HGEmUQ8=) 17: y_Cp0Ost5PqmlG4Hk_lC2iR2YZ8.roa (hash: x+U/bdDPmhe7n+Wg1yqeuhWGZvsQ5Fcm1ldpfk9dBgs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Mar 2026 00:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:31:be:b9:30:87:e8:7a:cf:66:c5:d1:4a:eb:47:bf:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Validity Not Before: Mar 28 00:01:15 2026 GMT Not After : Mar 29 00:01:15 2026 GMT Subject: CN=07a4440ebfab2dd30393888c2e3b774798441869 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3b:6b:ad:75:21:f4:92:dd:1e:87:9b:ca:02: 24:9c:16:d6:63:19:36:59:04:09:a3:e7:26:de:e2: 90:9c:96:d1:88:3b:e1:f6:dd:c7:7d:2a:ae:98:d5: 34:fd:15:c7:0f:aa:ad:f4:78:58:a4:8f:17:3b:fe: f0:b4:86:df:2a:4d:6a:94:15:ab:cf:9d:61:64:76: cb:c4:49:56:5a:e7:f2:b6:86:52:aa:71:d2:39:5d: 60:44:d9:22:47:ba:90:2e:12:32:0f:85:79:7d:52: 62:95:22:18:84:c6:a7:96:dd:1b:5b:64:db:7d:01: a5:df:94:0c:41:cf:49:3b:15:ff:43:74:c7:a6:c5: 36:85:9a:8b:02:06:19:d0:af:55:f6:d6:8e:8c:75: 54:1a:a1:75:a5:d5:2d:f6:7d:75:64:9b:83:e4:e7: 16:3e:fc:c5:aa:85:53:ab:0b:b0:a2:78:76:4e:ed: 19:e6:7b:a1:b4:85:fe:4c:ad:18:ef:32:40:77:59: a0:1d:08:3c:ee:07:52:5b:0e:20:66:54:e7:5d:29: 88:dd:90:2d:a3:2d:02:5d:af:5b:50:8d:0f:1b:f8: 70:39:4b:d1:7b:4f:37:8e:35:06:77:92:69:7d:2e: 44:e3:cf:35:b5:60:1b:b4:99:45:cb:c9:6e:c1:f2: 12:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:A4:44:0E:BF:AB:2D:D3:03:93:88:8C:2E:3B:77:47:98:44:18:69 X509v3 Authority Key Identifier: keyid:29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:79:92:80:90:46:f2:d8:bc:50:77:35:a5:88:91:11:5a:8c: 9c:dc:97:9a:2a:79:61:ce:ea:5f:b0:91:77:0f:77:73:60:8e: 93:32:9e:9f:7d:ea:19:4d:d3:83:60:d6:5d:4d:20:6c:29:04: 60:17:0e:ca:ee:ed:3f:5b:ae:67:db:7a:8e:86:f2:af:1e:5f: af:84:c7:94:b9:1a:6c:22:34:fa:8a:37:7c:85:2a:97:b2:92: 85:5b:41:6d:94:b9:3c:6a:85:7a:58:c7:05:61:11:68:2a:82: 18:78:7e:a9:86:8f:e4:21:25:c1:f1:f8:cc:4d:ed:f5:e3:51: 38:f5:32:70:fb:9a:ed:40:a4:27:83:65:01:a6:9b:d4:ca:a1: de:2f:47:ee:60:15:50:2b:f7:06:ff:5d:53:0f:62:8a:c2:2e: 9a:ec:aa:58:cc:aa:2d:de:f1:1c:78:6c:bf:5d:d3:16:8f:a2: ff:06:af:90:84:b4:74:55:93:13:36:8d:a2:19:4a:01:11:9f: e6:c6:0f:a1:1e:69:30:7c:e3:4b:d2:d7:01:21:86:03:22:87: bb:50:85:2c:85:ed:c8:01:6f:3b:3d:11:b2:be:3d:70:d2:93: 70:32:21:25:1c:e9:8f:79:04:85:36:26:89:0f:65:8f:c2:f1: 8a:d1:c9:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0xvrkwh+h6z2bF0UrrR7+wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZmE3ZGQ2M2YyZTJkODdiNWY3ODUwMDkzYzc0M2JiZmJl MTRlNDQwHhcNMjYwMzI4MDAwMTE1WhcNMjYwMzI5MDAwMTE1WjAzMTEwLwYDVQQD EygwN2E0NDQwZWJmYWIyZGQzMDM5Mzg4OGMyZTNiNzc0Nzk4NDQxODY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0DtrrXUh9JLdHoebygIknBbWYxk2 WQQJo+cm3uKQnJbRiDvh9t3HfSqumNU0/RXHD6qt9HhYpI8XO/7wtIbfKk1qlBWr z51hZHbLxElWWufytoZSqnHSOV1gRNkiR7qQLhIyD4V5fVJilSIYhManlt0bW2Tb fQGl35QMQc9JOxX/Q3THpsU2hZqLAgYZ0K9V9taOjHVUGqF1pdUt9n11ZJuD5OcW PvzFqoVTqwuwonh2Tu0Z5nuhtIX+TK0Y7zJAd1mgHQg87gdSWw4gZlTnXSmI3ZAt oy0CXa9bUI0PG/hwOUvRe083jjUGd5JpfS5E4881tWAbtJlFy8luwfISZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAekRA6/qy3TA5OIjC47d0eYRBhpMB8GA1UdIwQY MBaAFCn6fdY/Li2HtfeFAJPHQ7v74U5EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUt NzlmN2I2ZWE3YzE0LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUtNzlmN2I2ZWE3YzE0 LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfXmSgJBG 8ti8UHc1pYiREVqMnNyXmip5Yc7qX7CRdw93c2COkzKen33qGU3Tg2DWXU0gbCkE YBcOyu7tP1uuZ9t6jobyrx5fr4THlLkabCI0+oo3fIUql7KShVtBbZS5PGqFeljH BWERaCqCGHh+qYaP5CElwfH4zE3t9eNROPUycPua7UCkJ4NlAaab1Mqh3i9H7mAV UCv3Bv9dUw9iisIumuyqWMyqLd7xHHhsv13TFo+i/wavkIS0dFWTEzaNohlKARGf 5sYPoR5pMHzjS9LXASGGAyKHu1CFLIXtyAFvOz0Rsr49cNKTcDIhJRzpj3kEhTYm iQ9lj8LxitHJEA== -----END CERTIFICATE-----Generated at Sat Mar 28 10:22:45 2026 by rpki-client