$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft File: aZHFbxGnFxxhUyOXafVXvroQGC0.mft (raw, json) Hash identifier: qhPuyn0OG4IxM1gqBs3XZkUS2zfIxX0GgfLpJWbmazI= Subject key identifier: FF:A7:4C:15:90:95:DE:B0:C2:71:AA:90:50:9B:B1:30:17:6F:06:DB Authority key identifier: 69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D Certificate issuer: /CN=6991c56f11a7171c6153239769f557beba10182d Certificate serial: 019D2973F721E165E31B977C1051AF686982 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft Manifest number: 0C0B Signing time: Thu 26 Mar 2026 09:22:38 +0000 Manifest this update: Thu 26 Mar 2026 09:22:38 +0000 Manifest next update: Fri 27 Mar 2026 09:22:38 +0000 Files and hashes: 1: 0z8pTI41iPuVrCQVQ1wuJedcLng.roa (hash: e+SXHoPepQrK1mT7vZuMdVv/Sb/mCHdwtmRTk5f2KY0=) 2: 1-1lvKVidMjz9SqtbPt81s0r7r0I.roa (hash: ZlBElaLY1A20NV3b70L3QV0eyy9Ku8m61r7maErkkKY=) 3: 2_-FI-AoJnOM9FRj9JIZ87TxIGU.roa (hash: fYqLfLAgXXv2j6Hlh2bmzcVErlr45q7qc3mJo6wcwjY=) 4: 38r2X0leHHTAmJ6zVJSwuzoD2E0.roa (hash: uyTAZ2GgNW9/wIH0EkQGQyRV3AY/RO2eHsNraGcFPPk=) 5: 3PUBNkz9FwV2NNGvr5c1xPHsrKs.roa (hash: Iue6j8hQXBufFHKI47UYN7vcS1Nx2fj3o4JuzfixAMQ=) 6: BK8IgDa2YWfH15KeQoypNaZ7M18.roa (hash: 6BpUvOIxTW0cg027WM/QNtn7tQ+zM4t80RnLiUv7sIs=) 7: CZCLA3Cj6YYp_k_a7y0b2rbgyzo.roa (hash: SaDoVmzs9e3hbWzh+uCnOLVQP2mnuXiNzqqPyyTBq2o=) 8: F0KEI4lW7Epb_3eoekIpwBqbc2E.roa (hash: UC+E/xpST3sk4LrjHrlkIcP31YMZn/3d6DZdEgG8Rdg=) 9: FQ6e3qLq07N7c6vb8xSdMPOMvJc.roa (hash: jL7hfr1fG9q8Db+UI2ObK7nG/hXNzIiR02v0n72Zs0Y=) 10: JrpsDD8G_9HrVRADrUGdVzpQ0GM.roa (hash: PfSJmHGRfRFt+GOTf/z8aUHtcRQ35VQoUt2Ubm4KDs4=) 11: JwqCrlYj4jWk0kjghd3nRJtx-EQ.roa (hash: C2FzGkWqusy1+L9+G5l/4MmyS4qSpGF23YAr4kNJZHQ=) 12: Latg5HfFxVV45cY_wXpQ9M7y2UM.roa (hash: AMl3v5ozRzV/5w1KglWOLAOe0okRBu64taR6MmvtD44=) 13: N0sDm-EFGV2amFYWHwErrX3Dbus.roa (hash: Xmo1dvVrCIWSNTaeVoMmKU+6tNLC/YtQosQjQwiD/3c=) 14: NcdnAUjF0ZmvIFIsYxSjccA1H5U.roa (hash: yrpUGMxgOjNevSVTIVpW6O91noTiRG2R4yZAODEyOJ0=) 15: UypHuJtN1zmqt0Zba9DljNJ2WgY.roa (hash: PFDshKDp/mzgsdaZsjSV8dCLT3xJ6p+HUpwQxcGrMuI=) 16: _opU9Zflr19Qgw9wxcT5CzBzFeE.roa (hash: hVBzTOs1aH7AxZYfWOOyLBurJardjc8RPMc3Hjjv5+g=) 17: aZHFbxGnFxxhUyOXafVXvroQGC0.crl (hash: RwPfav2Qpo76iy7D/JPn5Li7UoVS53AG+DgjjKYsJ0Q=) 18: aqPgWOakmp5fii05oBo6v_tlmAQ.roa (hash: 4j9frFtx7FlfahOenBDreDRrYBvvkfNPAcv1Ywz2/HM=) 19: cwRpfRdx6S5tnfB8Wn66txz0wg8.roa (hash: 3A3WuSQvzfBhTvlwJNEJAfi3/4HEkFaJ8AudfSUVWXg=) 20: enYE37jQOciNrH4vp2_3FdUT0io.roa (hash: PoAlpwtftho9gluuF95P6FYOuD1hDRKv7R9Nta21XGo=) 21: j6F5nKl7VxhTCPP7Z6aypppg1qg.roa (hash: b/KmdMBh7vGAQW3XZYIqLqb1iW1YZRpjzYx/XN6MR5Y=) 22: j6ZEfuBoBwoJsq_P8O7JAQCMW2w.roa (hash: SGo/KKeiXkzjoKtnxVRa/5ncyP+lv+PUCdh1kKaxLxc=) 23: j6h2wYXBGU0po-975zEbDRhXVP8.roa (hash: VuTt2+GtidZibv9WAUHaogEOazxD2GyG76InT6TAm6k=) 24: l7FVy9qV9r7TJi_Vr2KpMSypfts.roa (hash: BO7WgU3AlrlmLiXeaJCpacGRr3Q1uOzmvzOfD3QKH6s=) 25: nFU8l0SuNs4mLVgObqGXtp6gnoI.roa (hash: dp4PPf/CcvyLdCI3a30WQB7bcOJJ7sLxhjedTuWlcA0=) 26: ol5o-VeacDxR8G56FJbb2bssCJU.roa (hash: HWf9NNfp469bQ5Wf7jn4TMJbz+S/ZW2Aq8n1tyLEU+8=) 27: qJ6pc4FQIOGrKblUrmzqpKhY1W8.roa (hash: h1N79r6IwikpSxLGbvCodpvdgy0jF1MGCYu94qAhjf4=) 28: rSDqIuR1cJHDYk_CgTQlDEo5wnM.roa (hash: cMmP0GJ0C9u64d5AYK50Eq8q183lKIxZZUlFj+nmeqg=) 29: s5_XzwQfnjREeGyxGEXKHTbuCec.roa (hash: f2LNPZwtscDHDTcGq3OeJusAQETPe2+DG2C2X0YawWI=) 30: t9VfVoic7D0Eb12yRbnLassyYY8.roa (hash: OIvXTMlAaBLVGYWH+/8UMptxQ45gYDbOsCNpVMjE62A=) 31: tEnzcmF181z_Fz4dFzQyfZ882o4.roa (hash: RBYNG12SzCTfXGwx/F5qbQVTQCBmyDYwNw6MWUM/ecc=) 32: uBIYg6HBl9Jf8Kf0_1APF11RXj4.roa (hash: Cy62Nntc/tzkP5N8nJbuKZSP38j9mL0EAGyc0aabhl4=) 33: wTgQ6fCMDPpS81pwpnjiyHzyTpc.roa (hash: ixnoZEKtVyJai2PVSvQa52pLsUnTfY2h9ItkAule9hg=) 34: y6XyUstS_SjZUuRcmwKI2O2hK4g.roa (hash: 6KaNgtch9hdulImqbKsvBI0tlfN0LaRnEF0phbzSwYg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 09:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:29:73:f7:21:e1:65:e3:1b:97:7c:10:51:af:68:69:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6991c56f11a7171c6153239769f557beba10182d Validity Not Before: Mar 26 09:22:38 2026 GMT Not After : Mar 27 09:22:38 2026 GMT Subject: CN=ffa74c159095deb0c271aa90509bb130176f06db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a2:eb:bb:83:e2:8b:d9:d5:aa:7e:39:59:cc: 9c:aa:70:40:e3:e1:62:df:cc:bf:44:b9:e2:cc:bf: d3:5c:a4:01:6c:9c:78:49:49:88:a3:c6:f9:f5:d6: c6:2c:e5:17:bd:44:ba:94:4a:ec:85:ff:ad:50:8f: 4c:d0:2b:49:0c:35:47:9a:07:0a:31:ff:ff:5f:89: d9:28:2a:6c:3e:e0:e6:2d:78:27:2e:9b:5e:1e:c5: 9b:7f:84:80:c3:f6:f7:8b:f8:33:73:9b:33:09:83: ab:ac:43:63:75:c3:01:b2:f9:13:a2:f1:59:9a:e6: 11:af:ed:f4:43:bc:68:37:83:fa:4c:0d:f0:c2:77: 5f:4d:c2:b3:fe:a7:91:b1:02:5e:56:08:f5:63:23: 62:36:6d:d7:21:de:b7:44:06:43:d9:f8:9f:c1:d0: 26:25:89:b6:71:82:9c:32:6a:21:68:95:28:9d:1f: f1:3b:db:a9:fc:70:34:45:02:c5:fa:26:e9:35:8d: c1:44:7c:d0:a4:04:61:99:1f:2a:62:9d:14:fb:dc: 86:b4:52:8a:d6:06:8a:62:5b:a8:9f:40:40:30:3e: b0:95:a0:a3:42:4e:2d:72:ea:72:20:e1:bc:f1:18: bf:ce:a9:dd:60:3b:c9:76:d1:cc:f6:6d:76:46:3d: 28:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:A7:4C:15:90:95:DE:B0:C2:71:AA:90:50:9B:B1:30:17:6F:06:DB X509v3 Authority Key Identifier: keyid:69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:42:09:27:bc:5d:77:fd:bd:37:84:d0:64:37:c3:b6:15:ff: 07:0c:cf:d5:f8:9b:88:e1:16:d1:d0:d8:18:97:f0:1c:da:aa: a6:05:31:a9:77:a3:20:b7:52:e6:95:ab:3d:6c:59:bd:33:68: eb:bd:90:13:a8:1a:96:15:30:46:c5:9d:38:b9:ec:50:8c:c7: 33:36:9b:e4:9a:b0:09:56:4d:44:21:40:05:13:98:b9:34:64: 4b:4a:80:5c:a5:84:ea:0c:be:86:d2:16:33:50:99:91:42:d7: b8:80:a8:65:16:71:da:42:75:10:85:10:77:28:ad:18:0e:63: eb:e3:35:74:d0:fd:54:00:c4:8c:eb:5b:7d:ff:84:8e:92:4b: e5:af:0d:83:5d:3d:8a:9b:b1:ff:cb:46:f9:28:35:de:f0:b9: a8:5e:1b:60:95:69:f2:5f:68:45:70:a1:e3:e6:0d:9c:a2:d2: 49:ee:2b:22:cf:bd:89:fe:5a:67:6d:28:a6:ec:db:85:96:8d: 65:7f:23:fa:bc:1f:68:9a:70:15:ea:5e:75:9e:cc:a0:df:f9: 13:00:d7:f1:9b:50:a7:d4:21:3a:64:be:32:32:95:6c:7c:34: 72:ac:0b:fe:13:9f:50:f2:a2:6c:bd:15:cf:77:a5:2c:e3:71: 33:6c:22:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0pc/ch4WXjG5d8EFGvaGmCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5OTFjNTZmMTFhNzE3MWM2MTUzMjM5NzY5ZjU1N2JlYmEx MDE4MmQwHhcNMjYwMzI2MDkyMjM4WhcNMjYwMzI3MDkyMjM4WjAzMTEwLwYDVQQD EyhmZmE3NGMxNTkwOTVkZWIwYzI3MWFhOTA1MDliYjEzMDE3NmYwNmRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvqLru4Pii9nVqn45WcycqnBA4+Fi 38y/RLnizL/TXKQBbJx4SUmIo8b59dbGLOUXvUS6lErshf+tUI9M0CtJDDVHmgcK Mf//X4nZKCpsPuDmLXgnLpteHsWbf4SAw/b3i/gzc5szCYOrrENjdcMBsvkTovFZ muYRr+30Q7xoN4P6TA3wwndfTcKz/qeRsQJeVgj1YyNiNm3XId63RAZD2fifwdAm JYm2cYKcMmohaJUonR/xO9up/HA0RQLF+ibpNY3BRHzQpARhmR8qYp0U+9yGtFKK 1gaKYluon0BAMD6wlaCjQk4tcupyIOG88Ri/zqndYDvJdtHM9m12Rj0okQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP+nTBWQld6wwnGqkFCbsTAXbwbbMB8GA1UdIwQY MBaAFGmRxW8RpxccYVMjl2n1V766EBgtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYt NjVkMTU2NzM0MGZkLzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYtNjVkMTU2NzM0MGZk LzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT0IJJ7xd d/29N4TQZDfDthX/BwzP1fibiOEW0dDYGJfwHNqqpgUxqXejILdS5pWrPWxZvTNo 672QE6galhUwRsWdOLnsUIzHMzab5JqwCVZNRCFABROYuTRkS0qAXKWE6gy+htIW M1CZkULXuICoZRZx2kJ1EIUQdyitGA5j6+M1dND9VADEjOtbff+EjpJL5a8Ng109 ipux/8tG+Sg13vC5qF4bYJVp8l9oRXCh4+YNnKLSSe4rIs+9if5aZ20opuzbhZaN ZX8j+rwfaJpwFepedZ7MoN/5EwDX8ZtQp9QhOmS+MjKVbHw0cqwL/hOfUPKibL0V z3elLONxM2wiyw== -----END CERTIFICATE-----Generated at Thu Mar 26 16:10:19 2026 by rpki-client