$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft File: 3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft (raw, json) Hash identifier: KbqTb979aMUYFNynFQ3t2Uo5HuGtk85kzEZaZzPEPek= Subject key identifier: E5:52:6B:A0:78:F6:B9:89:0B:15:3F:8C:D0:45:28:97:61:2D:F9:75 Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89 Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589 Certificate serial: 019D27724CC876D994350E76CA3F00E12D6C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft Manifest number: 17F9 Signing time: Thu 26 Mar 2026 00:01:35 +0000 Manifest this update: Thu 26 Mar 2026 00:01:35 +0000 Manifest next update: Fri 27 Mar 2026 00:01:35 +0000 Files and hashes: 1: 1-gX6qbETIIttBQf3NGjlhSo5a40.roa (hash: UW2uFSR1KC4UlPwX8F178+KvKc01uMjxgEJ5QQoAtmc=) 2: 1-sLuOUAWdw4gGuyAdDDNO5R3knY.roa (hash: UwJHgy6hiFG+CS5eWBzCb6KdVKW08xdJRDA4sajHgnA=) 3: 28w3148cO6lb1X7ebO0uJL6_jSA.roa (hash: /RvdIaEAOvXEUcZ/8C4+ae+9cR72KRnISKVr0yoxpuM=) 4: 3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl (hash: njXHx+agp3iJoAWPqKqqdPk/cYsfcIXiKUUW09Ufz9g=) 5: 3nWcd2m6s6bBzM_QYoygo0Ze6w0.roa (hash: htxDxHlHgU8dQkoVd6zcmNYRmFdbpmcNklfsUpe9Ix0=) 6: 78EB01J4WgTKHPdcf3EVHTeuc8s.roa (hash: AEd0Bl1EvO9i526KOfk+4Yr0kpyHuNMccILjVfMb8ds=) 7: 7u4rgz4l09r-eJqaQbI2EBriaRA.roa (hash: zlTV4eAW718JNR0mXym0vLWTb030NL8qDVFSJoistdw=) 8: BHSiCUrFc-TEdSEPwjcFCNQnGR8.roa (hash: hkVbYU9rreHO+iPmRQJ/E53L6MLfLKmzXEGQtgni27o=) 9: CHNXC3Z7q99hc7adVoxJZxDHWcQ.roa (hash: J59ogE/mSWqNwSaq5zDJFpLck2CQta+up20YJBmZqb0=) 10: FxInXR4DyqQT6DlyBPj_QGb3Tac.roa (hash: IFL+h0KaA01oNLzGyeAHHUWDYmIL4MN6R8/eqH6wmqo=) 11: MP6MyJ6JGT0Qd4fuNuAz8iDFiNo.roa (hash: JCKZg5aviqvu7Z76Faoxn9dtcsunUKEMHmwZGg/KRw0=) 12: MPnt1Ig40nuVBqADsEn8dObr5rE.roa (hash: LN3oJQmX/zwIzND61FwWanHfUPQZt6FmbQdO3LMJ4oI=) 13: NmTQqlVS4gvcDPcirwbd6QLOVW8.roa (hash: LMiHoX5P+lxgXfAq1o1ofUm+DKjY+GVzWYYvknBSyow=) 14: P89VxKlNGfRRMcSuDRi9zH0r-u4.roa (hash: m3Eb7tBEhi4jXpT2iac2bbRuZRo0+dNZTqs68H5Q/F8=) 15: QE4mWlynJcIb4WilZerciyCNIrM.roa (hash: O9hvkcBv0v7y2K1dBWJ4Vo0JgVG4Safg6I/3GHzMudQ=) 16: TTJbmeKN4OVpmVuz_9sVlDJ2-Qo.roa (hash: 9sn1cXj9PO9ABZhQTgF9fcIiZgMJttBAVbmqJSaXZvE=) 17: bGv-g5_Nq1lLtgwZjdzPyrknk9w.roa (hash: tFnnk/Nq81EttMG2a3kvMmGtdurbGz3xRmf1Xa0yg94=) 18: fH8Dmn4VQed_Qx1Vb_WAZiWK9No.roa (hash: jS9yGbolsVVkM6D04tMpgm8DxgjSbem+4eIOd9cAi6g=) 19: fmkJzH3NkUCcJph7bWlPwTvK1as.roa (hash: 5sVDquLqlQZjsrPg0UHa9viYVxRAjcZdLVAKXAnlaOQ=) 20: lVZUPTWkrcD9zWV0d6GRZgTVVtY.roa (hash: wqHHRXTgzV5U05gKB+m5zqGdaleWNQFqgG+iBB1QzNE=) 21: n2yklqPTbZScECuvP8sdtw1dqJs.roa (hash: XUl4EOZ0ACrcilwccYybYvigPaj+N+oRT70pMBR6/n4=) 22: nN_vAAZMEXdGpiLTZSquGYgk0ks.roa (hash: kiwSwAJEtUNKm6ywQc/ev4K8fjQGdo+U4PEggQj3XM4=) 23: r-BZPpfjArLuq-BQOY_DpWlcEMI.roa (hash: TJP0L3M3YkBnX+yCeWtuHnSFQJHToZMzD9dO3r+rF7Q=) 24: shInVxnETptNhYG5ctgG1wBa_IE.roa (hash: b14rKwCriv8+d3rzjVPCL7UyXFm3J/o38M8wbLSbZig=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 00:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:27:72:4c:c8:76:d9:94:35:0e:76:ca:3f:00:e1:2d:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589 Validity Not Before: Mar 26 00:01:35 2026 GMT Not After : Mar 27 00:01:35 2026 GMT Subject: CN=e5526ba078f6b9890b153f8cd0452897612df975 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:37:36:07:e5:6d:18:3b:15:2e:da:a5:19:40: de:ea:cc:f1:43:00:23:e7:20:cf:e1:7f:75:d7:bb: 34:0c:b5:65:3a:4b:08:34:9d:6e:0a:b5:c8:ea:e1: ba:d6:9f:64:42:8c:06:87:7b:a2:54:0f:97:9c:80: 1b:73:8e:d9:e6:d9:7a:39:47:3a:c7:66:48:a3:95: 36:5d:1a:de:16:3d:5a:b3:c4:da:2b:a1:e0:23:68: 0b:5a:85:ef:11:f4:9f:e2:89:4a:d4:8b:15:3f:e5: 10:c0:b9:83:9f:71:f6:f7:5d:1d:bf:98:4c:fd:2c: 3e:e3:50:03:9a:de:aa:bb:45:0c:27:1e:13:82:57: 0b:06:bb:91:45:95:c6:ab:cb:53:01:60:10:be:89: 57:65:29:66:03:77:f7:65:b3:85:8d:80:d4:99:cf: 71:9c:ea:f7:ce:81:0b:09:66:2e:f2:a3:9b:d6:69: 71:35:14:04:7a:b5:2c:6e:3e:0e:75:e6:00:3f:ca: 37:8e:a5:cf:8c:e1:ba:52:a3:55:a7:1e:84:4e:15: 93:2b:20:94:5b:a5:ef:22:53:5f:00:af:38:1c:3a: 1f:e9:a9:81:a8:aa:85:13:d7:cd:48:b5:ad:29:22: 99:9d:17:43:69:26:d2:a2:63:87:31:a0:83:b2:ac: f3:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:52:6B:A0:78:F6:B9:89:0B:15:3F:8C:D0:45:28:97:61:2D:F9:75 X509v3 Authority Key Identifier: keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:21:7f:63:a3:12:81:c0:84:d3:20:35:a0:41:d6:d8:59:c9: 8e:92:63:28:6e:27:83:a3:1a:75:0a:b9:b6:3f:6c:d4:59:e5: d9:56:1d:f1:5e:d1:8f:4a:19:e4:c5:42:08:2d:15:cd:3e:5a: 90:75:79:7c:ae:41:63:a8:68:61:4d:7e:2b:88:25:88:e8:da: a0:70:a2:8d:0f:21:5f:6b:e1:c2:3d:a8:2b:87:8f:9d:a5:e7: 44:d3:bb:5b:8d:d0:ca:da:a2:52:48:fe:87:da:a4:03:5a:79: 5b:99:57:25:96:97:10:0d:d7:c8:a7:3a:e7:91:01:df:4e:aa: 20:19:c9:0b:00:2d:5e:35:01:75:c3:f3:db:3d:25:c7:4f:b2: d1:1a:a7:2e:e4:f0:d9:ed:67:65:8d:a1:4e:6d:67:1e:62:64: 8c:f8:c5:ec:fc:43:b1:19:ab:66:a0:b9:cf:76:8f:ad:9c:8f: f7:17:6a:4c:43:7a:4b:f7:cd:06:4f:f9:f0:5e:03:28:51:b0: 7e:a8:06:aa:2d:e5:6f:50:f9:29:8b:fc:29:b0:e9:2f:d0:3f: 2d:b1:17:d0:07:7a:45:53:fc:68:11:b7:23:5c:95:f1:bb:15: 93:08:44:28:92:da:0d:eb:5d:ea:58:88:72:f1:b7:07:58:bc: fc:15:28:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0nckzIdtmUNQ52yj8A4S1sMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjZWY1OGQ0Y2ZhMzU1NDNmODQ4OGEyNzU2ZTY5MjRlNjQ3 YjQ1ODkwHhcNMjYwMzI2MDAwMTM1WhcNMjYwMzI3MDAwMTM1WjAzMTEwLwYDVQQD EyhlNTUyNmJhMDc4ZjZiOTg5MGIxNTNmOGNkMDQ1Mjg5NzYxMmRmOTc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAizc2B+VtGDsVLtqlGUDe6szxQwAj 5yDP4X9117s0DLVlOksINJ1uCrXI6uG61p9kQowGh3uiVA+XnIAbc47Z5tl6OUc6 x2ZIo5U2XRreFj1as8TaK6HgI2gLWoXvEfSf4olK1IsVP+UQwLmDn3H2910dv5hM /Sw+41ADmt6qu0UMJx4TglcLBruRRZXGq8tTAWAQvolXZSlmA3f3ZbOFjYDUmc9x nOr3zoELCWYu8qOb1mlxNRQEerUsbj4OdeYAP8o3jqXPjOG6UqNVpx6EThWTKyCU W6XvIlNfAK84HDof6amBqKqFE9fNSLWtKSKZnRdDaSbSomOHMaCDsqzzZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOVSa6B49rmJCxU/jNBFKJdhLfl1MB8GA1UdIwQY MBaAFNzvWNTPo1VD+EiKJ1bmkk5ke0WJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9lYTQ0NTUtNzgzNi00NGM0LWIyYTMt MmVjZTA0ZTE4NWMyLzEvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS9lYTQ0NTUtNzgzNi00NGM0LWIyYTMtMmVjZTA0ZTE4NWMy LzEvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATyF/Y6MS gcCE0yA1oEHW2FnJjpJjKG4ng6MadQq5tj9s1Fnl2VYd8V7Rj0oZ5MVCCC0VzT5a kHV5fK5BY6hoYU1+K4gliOjaoHCijQ8hX2vhwj2oK4ePnaXnRNO7W43QytqiUkj+ h9qkA1p5W5lXJZaXEA3XyKc655EB306qIBnJCwAtXjUBdcPz2z0lx0+y0RqnLuTw 2e1nZY2hTm1nHmJkjPjF7PxDsRmrZqC5z3aPrZyP9xdqTEN6S/fNBk/58F4DKFGw fqgGqi3lb1D5KYv8KbDpL9A/LbEX0Ad6RVP8aBG3I1yV8bsVkwhEKJLaDetd6liI cvG3B1i8/BUoHg== -----END CERTIFICATE-----Generated at Thu Mar 26 04:59:05 2026 by rpki-client