$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft File: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft (raw, json) Hash identifier: eVBi2XFW1UwCyeCbmaPo22+AuFDu7rlem2ekUZ/5pew= Subject key identifier: 29:91:F7:C7:14:33:E2:5A:9D:BE:7E:2D:BB:88:13:DF:B2:18:D1:BF Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Certificate serial: 019D29292D371DFDEEC98852431AAE6BA627 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft Manifest number: 18B2 Signing time: Thu 26 Mar 2026 08:00:57 +0000 Manifest this update: Thu 26 Mar 2026 08:00:57 +0000 Manifest next update: Fri 27 Mar 2026 08:00:57 +0000 Files and hashes: 1: 0ld9oICrjkM9PiOBYi7PkCMaP7g.roa (hash: 7pPoPeKMxfAld72vWaWuaU3WiGoLWbNKS8HJfbCj2GY=) 2: 1BFQM936y9WGcLJKwy60Wg2ag-8.roa (hash: NTbQFXMY5QSvW0BgWqBt3HeqiX8tXZPRJi0IS+SKq2s=) 3: DT8TXPB7Zoh4Y9JFFdsSZ2RIgLg.roa (hash: cdCtaCnFbbokb4IxB6SbsLXr+yswcQckTbmvZnS/sJA=) 4: H3d0QP653F6Jo-epVSXBiVH1h6k.roa (hash: B2NZF4jz4UwnLzA3KbDxjNp0EF7Qv4Th+B09WImKi2I=) 5: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl (hash: nAykruEEDb6DMd12XlPk0YQLad5FfykhNRelivyuXyk=) 6: O2mRnCNeDokP5q-PUWLd28D1SG8.roa (hash: XL7s2EUC28zeBKoJlmCFsu+5IjkYrbxfH3a9YMWon60=) 7: XPPuMgWRNY1QAnjWn2LftTc8cH4.roa (hash: LqWi3Xbli/jxxlx74n8O7L6EJtxaJ1UA0GYHmPMDyEU=) 8: ZRr2QwcqGgt_EOiTtMFoE-lkmow.roa (hash: SIg3ToChfd1+8YW/rxSI4oA419Stw5Sb9StcFL22beM=) 9: dY6eqUD4ykA92I5VKqHmYTX3q88.roa (hash: uvlx5CXBvfA8EWdxrFvclZnKJJH1HmhxtH5z6Fa+fBo=) 10: hCjWTJUhp9C-lxxCdRV4Jwzm4mk.roa (hash: ECwHPN5lxdIugX2ttk1L3l/uci2ps9CeCy1VAcBMeQs=) 11: lERL5Mrj2Bt3hRDr7br_N3d-JkE.roa (hash: /A5fyVRtCeR1gSok1lWq8T+wbRAaNz8PoEuYxSfdZSU=) 12: lWQXyxEJYv9OPJsRSSX1CCPbFb8.roa (hash: qyL/Gv6WkVcsE18337JVKs2VK9z6GTYDQ6GMJ2m3/WQ=) 13: whyP5FxoblHoIHhMTAeqWb1jp8w.roa (hash: a7SodNhSARcbHydA3wymHLN4IRqMOWIhBwT2PU/EoPc=) 14: zd2dqaKa6O4wz9TxJzSxhbKbteU.roa (hash: Sv1+bPBughIj/le0hfMKADppbA91Co/u0NeJGW/Uifs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 08:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:29:29:2d:37:1d:fd:ee:c9:88:52:43:1a:ae:6b:a6:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Validity Not Before: Mar 26 08:00:57 2026 GMT Not After : Mar 27 08:00:57 2026 GMT Subject: CN=2991f7c71433e25a9dbe7e2dbb8813dfb218d1bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:5c:99:2f:bc:86:ec:2d:14:96:18:6f:fc:9f: 4f:20:48:21:6e:ae:46:86:1f:e8:32:6d:fa:f6:5d: 4c:fc:82:f2:d3:66:49:71:20:3b:56:14:71:78:e7: 2b:f3:93:b0:c6:2b:dd:d5:37:db:b9:ca:5a:00:cb: 9e:e2:4b:11:fe:c5:ca:4e:7f:70:65:fa:d8:f8:95: 3c:94:89:7e:b2:50:40:ae:b8:f5:96:7f:fd:0e:73: ab:de:c7:51:57:7d:4c:d6:85:6e:ee:e8:45:86:d5: 2f:51:98:9c:38:87:a1:89:5c:a8:54:73:fb:45:86: 7e:24:33:7f:16:8a:b1:8f:a0:5e:f9:18:b4:c6:39: 4b:08:9c:6c:2a:e8:02:5e:73:f1:b8:99:34:d3:17: f3:83:64:31:62:8b:ed:fa:ef:1a:af:f7:3b:9a:12: 6e:d4:ac:c8:06:fb:bc:45:7e:4e:a9:3c:aa:71:7a: 89:ca:db:12:3f:91:b2:7c:27:63:91:45:5b:35:95: 10:59:35:4a:5c:82:85:70:76:11:66:03:5e:ee:99: 50:c9:66:2b:93:b7:40:28:42:e5:9d:75:4d:66:65: 95:a8:3b:23:ae:6c:85:6a:85:d3:5d:1f:e1:d9:11: a1:00:38:c6:2a:9f:01:0e:3a:b1:e3:27:a7:99:4f: 70:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:91:F7:C7:14:33:E2:5A:9D:BE:7E:2D:BB:88:13:DF:B2:18:D1:BF X509v3 Authority Key Identifier: keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:11:c3:3e:47:25:64:fb:08:c6:a3:b8:10:df:da:95:bc:ec: 27:fa:71:e6:8d:00:a6:24:f2:d5:76:b6:d2:f5:34:f2:fd:38: f3:02:1f:45:99:a2:3f:98:e7:c1:3d:d6:73:fb:e0:fd:36:ab: d5:ff:cc:6c:db:1c:39:1e:1d:9c:ba:39:0b:92:25:9e:40:f7: d4:6c:d2:35:78:0f:27:47:1a:43:85:27:01:20:2d:10:2a:77: 8d:43:23:b3:65:1f:3d:a5:52:0a:81:95:32:6a:7c:33:13:3e: 30:eb:6a:59:4c:7e:f9:00:b7:67:e8:1a:04:db:e3:a8:c0:ec: 87:cf:dc:2f:8b:c9:89:3a:92:dd:71:33:13:4c:cd:2a:9b:43: 01:8a:44:a2:11:ec:91:59:1e:55:cc:04:20:60:35:f1:c7:c6: 2a:63:5c:a2:a5:33:24:5f:23:9d:96:df:55:d2:fa:fd:48:03: 0c:0e:2c:41:9e:fc:f9:ae:bb:96:a0:e7:d6:43:f2:95:bc:4b: 9c:59:04:09:ed:08:b0:d6:dd:22:2f:85:88:d7:96:0e:83:6b: b4:f6:1d:ab:cb:48:de:53:f3:0b:35:f8:f9:48:f5:cf:cb:39: 3b:bf:ce:4e:5f:48:fb:d1:c8:f2:3a:d6:83:cc:8b:e2:14:ce: f7:5f:dd:ff -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0pKS03Hf3uyYhSQxqua6YnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNDc0YWM3Y2E4NWUwOWMyZDQ4YjMzZTdiZjY2ZjhlZDc2 NGRlMGYwHhcNMjYwMzI2MDgwMDU3WhcNMjYwMzI3MDgwMDU3WjAzMTEwLwYDVQQD EygyOTkxZjdjNzE0MzNlMjVhOWRiZTdlMmRiYjg4MTNkZmIyMThkMWJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3lyZL7yG7C0Ulhhv/J9PIEghbq5G hh/oMm369l1M/ILy02ZJcSA7VhRxeOcr85Owxivd1TfbucpaAMue4ksR/sXKTn9w ZfrY+JU8lIl+slBArrj1ln/9DnOr3sdRV31M1oVu7uhFhtUvUZicOIehiVyoVHP7 RYZ+JDN/Foqxj6Be+Ri0xjlLCJxsKugCXnPxuJk00xfzg2QxYovt+u8ar/c7mhJu 1KzIBvu8RX5OqTyqcXqJytsSP5GyfCdjkUVbNZUQWTVKXIKFcHYRZgNe7plQyWYr k7dAKELlnXVNZmWVqDsjrmyFaoXTXR/h2RGhADjGKp8BDjqx4yenmU9w5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCmR98cUM+Janb5+LbuIE9+yGNG/MB8GA1UdIwQY MBaAFDJHSsfKheCcLUizPnv2b47XZN4PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzkt MTJlYzIyYzljNWEyLzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzktMTJlYzIyYzljNWEy LzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPxHDPkcl ZPsIxqO4EN/albzsJ/px5o0ApiTy1Xa20vU08v048wIfRZmiP5jnwT3Wc/vg/Tar 1f/MbNscOR4dnLo5C5IlnkD31GzSNXgPJ0caQ4UnASAtECp3jUMjs2UfPaVSCoGV Mmp8MxM+MOtqWUx++QC3Z+gaBNvjqMDsh8/cL4vJiTqS3XEzE0zNKptDAYpEohHs kVkeVcwEIGA18cfGKmNcoqUzJF8jnZbfVdL6/UgDDA4sQZ78+a67lqDn1kPylbxL nFkECe0IsNbdIi+FiNeWDoNrtPYdq8tI3lPzCzX4+Uj1z8s5O7/OTl9I+9HI8jrW g8yL4hTO91/d/w== -----END CERTIFICATE-----Generated at Thu Mar 26 12:37:57 2026 by rpki-client