$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft File: D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft (raw, json) Hash identifier: I1naziA9a7ydcX6mlHFW0oEizdXFbPZDEXflFbAmh1w= Subject key identifier: A4:EF:73:AC:8B:2C:BA:66:1A:AE:26:27:11:4F:93:41:E0:04:77:22 Authority key identifier: 0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5 Certificate issuer: /CN=0f6363d428b7915c108825f09706004b8ea3d4b5 Certificate serial: 019D322C3FC7707D197664E8BA3F9D79B1E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft Manifest number: 18AD Signing time: Sat 28 Mar 2026 02:00:53 +0000 Manifest this update: Sat 28 Mar 2026 02:00:53 +0000 Manifest next update: Sun 29 Mar 2026 02:00:53 +0000 Files and hashes: 1: 2um_rS6WPk2IN6s5x2XbXkQen_M.roa (hash: B3h5JybIRNgVZgqeJwphCEgik9Z267VqHxwbsqTyFKg=) 2: 5du9oXm-5RnmJ8KX2xj_Zy0VqSw.roa (hash: Y1EwroZc2iGhdcqssdik2/Y5BQLLil5kyZQd3CFxooI=) 3: 8f-eDRc6_FXPO45wpxV1xiQ1HAI.roa (hash: qCD4Jc/TwmM8SzWErouUslVtMstyIPcxvXJzTBG565w=) 4: AQlhfGVcA8R2Bwt2uq11a9BJ3I8.roa (hash: ZpJgowIRgidE/63sx4+7oMD9312HUQ//RvFSY5dDQVE=) 5: D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl (hash: 72D4cTXxSQz7HL9V+3NsyMdlHOzatcxNHKehhXWcL1g=) 6: NRE_ExP25AUx8aw3isiH4EnLbWo.roa (hash: SKLRbqjSGl9WDWUOA+lP72kkE1542Czk3hD2WUZlOgE=) 7: WLsy-DnnYnQhVtIJoLpzduDgWrE.roa (hash: V18CJCRRVUNGPvZK+aRf70kDiLaxF9fIzOBbbor2Dw4=) 8: b1zJ7NbuL57-e0rkevnmNIo0USU.roa (hash: 6oXQKWkeIUo+oie2lp60DcRhSM6jyLL6Sog8QbpX/bA=) 9: mWfbcxQdC8J-VBP4j7EBWfW3Qb4.roa (hash: osYbMfspLkdv49SbR62yA1rUcvBEuqW1/Mq+AH8uZCU=) 10: pcZnUT88SN1u2R3xPf6LVW5AwuQ.roa (hash: ZB/G3ZNzs5uxcuPvRWlbNalCCRVbwpgrXGxyYOGJMA4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Mar 2026 00:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:32:2c:3f:c7:70:7d:19:76:64:e8:ba:3f:9d:79:b1:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f6363d428b7915c108825f09706004b8ea3d4b5 Validity Not Before: Mar 28 02:00:53 2026 GMT Not After : Mar 29 02:00:53 2026 GMT Subject: CN=a4ef73ac8b2cba661aae2627114f9341e0047722 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3c:21:7a:f0:46:9c:ba:cd:ab:57:66:e0:b7: 26:4e:fd:08:ce:b8:d2:05:19:ef:68:26:0d:ba:20: cd:b7:77:7e:c5:d7:51:94:f1:0c:29:1f:90:a7:ea: 30:36:cd:8b:c3:c7:28:10:73:f2:9c:b0:c2:65:83: 86:0f:10:d8:a5:7b:07:31:fa:7d:55:41:77:13:f6: 3f:5d:3e:65:af:49:b8:5a:a3:cf:5d:1d:ac:d3:6a: 42:15:f5:9f:18:9f:56:bf:a5:47:a7:cd:9b:27:29: fe:67:18:e2:74:11:fe:89:fa:c8:ef:58:f5:11:53: 09:c2:a0:ea:36:3c:fb:32:88:4a:44:ab:f9:d1:75: 8c:e7:ec:5f:b8:d8:76:e4:62:86:15:97:9f:d6:c5: 20:d4:98:46:a2:e4:e2:87:c5:03:2d:09:62:b1:15: fe:29:5d:38:59:c7:7a:8e:3b:b7:81:85:56:fe:64: 23:98:06:69:f7:17:73:54:9e:bb:9b:66:81:fa:55: 3d:15:c4:0d:66:ff:8e:bd:1f:a7:be:c2:bd:3f:41: 1a:a4:e2:77:6a:75:0f:1a:a6:cd:a5:ac:ab:4d:27: b3:36:a3:0e:5b:a2:b6:41:54:75:03:8b:9b:49:e0: d5:6e:24:11:d5:7c:0d:95:cc:43:3b:de:18:57:43: 86:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:EF:73:AC:8B:2C:BA:66:1A:AE:26:27:11:4F:93:41:E0:04:77:22 X509v3 Authority Key Identifier: keyid:0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c4:4e:04:c1:c6:e0:35:7d:1f:26:73:6c:eb:3f:05:d4:d7:d7: bd:cb:ef:37:f7:90:28:74:5c:7c:c3:01:8d:49:5e:92:fb:7f: 74:ca:57:2a:6b:4d:47:aa:5d:11:d2:a6:ae:1d:16:5a:80:62: cf:e3:b4:ac:7f:15:36:89:59:06:a2:ff:48:47:d0:ce:f1:ee: 11:9c:dd:da:de:09:15:3b:01:1b:f4:b3:5e:1a:ff:75:75:27: f7:c8:9e:ad:5a:b3:23:53:2f:a5:c4:97:51:9f:a8:97:45:dd: 86:5e:ba:43:84:31:2c:65:47:83:1e:91:df:6a:91:17:27:81: b4:3c:db:cc:68:bb:18:95:00:cf:1a:5a:c4:0e:1d:f8:3b:20: 0f:7b:ac:e4:84:ca:44:55:fa:2c:bc:ea:cd:a3:cd:1d:10:5c: fb:bd:df:37:dc:15:70:65:7e:82:c2:63:d2:69:40:e4:39:05: 83:ae:c0:e8:8d:f3:c1:fe:30:ee:3b:af:7f:c7:69:39:85:39: bd:a6:37:07:89:06:87:1c:ee:ee:76:12:ce:c0:0f:3d:72:84: d5:f5:b1:56:93:3f:e2:de:ad:35:07:56:cc:70:4a:ef:1b:74: 83:f6:16:7a:9c:46:55:30:4e:a9:42:2a:ab:fc:49:b2:42:63: 26:72:4e:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0yLD/HcH0ZdmTouj+debHpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmNjM2M2Q0MjhiNzkxNWMxMDg4MjVmMDk3MDYwMDRiOGVh M2Q0YjUwHhcNMjYwMzI4MDIwMDUzWhcNMjYwMzI5MDIwMDUzWjAzMTEwLwYDVQQD EyhhNGVmNzNhYzhiMmNiYTY2MWFhZTI2MjcxMTRmOTM0MWUwMDQ3NzIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyTwhevBGnLrNq1dm4LcmTv0IzrjS BRnvaCYNuiDNt3d+xddRlPEMKR+Qp+owNs2Lw8coEHPynLDCZYOGDxDYpXsHMfp9 VUF3E/Y/XT5lr0m4WqPPXR2s02pCFfWfGJ9Wv6VHp82bJyn+ZxjidBH+ifrI71j1 EVMJwqDqNjz7MohKRKv50XWM5+xfuNh25GKGFZef1sUg1JhGouTih8UDLQlisRX+ KV04Wcd6jju3gYVW/mQjmAZp9xdzVJ67m2aB+lU9FcQNZv+OvR+nvsK9P0EapOJ3 anUPGqbNpayrTSezNqMOW6K2QVR1A4ubSeDVbiQR1XwNlcxDO94YV0OGwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKTvc6yLLLpmGq4mJxFPk0HgBHciMB8GA1UdIwQY MBaAFA9jY9Qot5FcEIgl8JcGAEuOo9S1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDJOajFDaTNrVndRaUNYd2x3WUFTNDZqMUxVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy82YmVjYjAtMThmZC00YWRkLWJiNDEt MmUxYzBhZjRmYWE0LzEvRDJOajFDaTNrVndRaUNYd2x3WUFTNDZqMUxVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy82YmVjYjAtMThmZC00YWRkLWJiNDEtMmUxYzBhZjRmYWE0 LzEvRDJOajFDaTNrVndRaUNYd2x3WUFTNDZqMUxVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxE4Ewcbg NX0fJnNs6z8F1NfXvcvvN/eQKHRcfMMBjUlekvt/dMpXKmtNR6pdEdKmrh0WWoBi z+O0rH8VNolZBqL/SEfQzvHuEZzd2t4JFTsBG/SzXhr/dXUn98ierVqzI1MvpcSX UZ+ol0Xdhl66Q4QxLGVHgx6R32qRFyeBtDzbzGi7GJUAzxpaxA4d+DsgD3us5ITK RFX6LLzqzaPNHRBc+73fN9wVcGV+gsJj0mlA5DkFg67A6I3zwf4w7juvf8dpOYU5 vaY3B4kGhxzu7nYSzsAPPXKE1fWxVpM/4t6tNQdWzHBK7xt0g/YWepxGVTBOqUIq q/xJskJjJnJO+w== -----END CERTIFICATE-----Generated at Sat Mar 28 10:35:12 2026 by rpki-client