$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft File: SSFvXBZbgnp_1z2BB669L2PGPiQ.mft (raw, json) Hash identifier: 7A1qKS5KSpq7jUuhtslD2MN13oEnQsacp1kNckUPy/M= Subject key identifier: E0:44:A0:68:7E:05:DD:D9:56:12:82:38:5B:64:FD:25:DE:BF:78:0E Authority key identifier: 49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24 Certificate issuer: /CN=49216f5c165b827a7fd73d8107aebd2f63c63e24 Certificate serial: 019D29293780E7DE4B6B6F78872C7EB4C744 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft Manifest number: 09B9 Signing time: Thu 26 Mar 2026 08:01:00 +0000 Manifest this update: Thu 26 Mar 2026 08:01:00 +0000 Manifest next update: Fri 27 Mar 2026 08:01:00 +0000 Files and hashes: 1: 5cflrPSBczVw-y9CBdznGslTCz8.roa (hash: e3Ui7ThS6C0Gj8prOOjSxh7lUAWtygpEnNw9xX2dtRk=) 2: 6ikDq3uU-14xeZ06o1f5sBEku08.roa (hash: 14bAM4PQevceSeTCaULI+ouG0nOTQYIq9lETR/sCBX4=) 3: 6zmwiCnaR_RUV1zVvXd131O-Byk.roa (hash: wivF7cNRJAl3OyL7EJY6TuKfTwqgRld3+ZHQke6SRP8=) 4: 8lF-x6f7B2bwP5qOnFQwpxn9L0I.roa (hash: ciLzKnjSavNPyQD1IQHv/gt0vWyFhjCiKLjRitLPEkE=) 5: DJA8iYfOt3bjbbEH0sfO-Yzt5D0.roa (hash: dll+XV6deSG185dIKUE72K/Hgk2Qi2c2WRrfDucz8Pg=) 6: DPMVT21xt_FxJ1sn3UX-_U68dhM.roa (hash: W+9Q7HyRT/GtNJeWW1rH3dBewR4z6axBBAIPrMJ0PUU=) 7: DbbcNPtDfL7-gagtJ1a0Eyc1Z_A.roa (hash: MbxJlm+ziQoeXoBZ7l2IXv7uYhNPhhJgV3LLj54kjMg=) 8: HLY3yOfkVYAqEx3IXqQjGqSe60s.roa (hash: 89cRs5OEP6GzsmQJJPOS43nhrd5JryCvGoLQgmsG8Fk=) 9: QbspjSgom0qmdSedksWxw1y_dkI.roa (hash: eJ1YS4oVCoR1VNmiqp1NCkjDzMJ9GIvRJ3pjx5vZ9ic=) 10: SSFvXBZbgnp_1z2BB669L2PGPiQ.crl (hash: /G0/EKvQfW8WtK8u5hedVC1tJUbFm2eMAbBNS8VeDtk=) 11: TOVytZLtGiR_loWDvv77N1q9Wfs.roa (hash: Sv4e/TvtoYqQVyB6uh9qVYGBsdkIHsts6lbRC1DO+ec=) 12: UcQ1Ippcic9QsMq4m2D2gO9ZpIk.roa (hash: Y4z7KLj7vfcDesQxa00pP19sxOBjnRSBjEe98F7tXaU=) 13: bZJA4Zdk6OCETrYbfAEHSsuzwDE.roa (hash: IUm+Or+NvYeQ78zXKIY9OqKwxZRYHCF8Axsyp7t54Y8=) 14: q-kjvAzpx-ZYDXpOS_cviEYAaOc.roa (hash: 1g4myUSs6hufFOhffJJdUxf69ZM3/4EE4AG3+gn7wds=) 15: uLmKjHdh6xVL5Ct2SX4RrNBGZlY.roa (hash: M6ZErU+xYI38Ut27LDMzp6JcZbiEl5nEdPQAb8KQF+I=) 16: vEQzBYHoPzDXuty_rx-5GlAJtfQ.roa (hash: s7mP1EwT7gSUHcvBRHCBoQGsDjEPpmRpeu0/iQN+vMQ=) 17: yaioAwQqgstiMhVwqwEHasXnYDs.roa (hash: B1OftcLanWUv1RXMYsVOlCmHJWT10XchoJjDrQXqjiM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 08:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:29:29:37:80:e7:de:4b:6b:6f:78:87:2c:7e:b4:c7:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49216f5c165b827a7fd73d8107aebd2f63c63e24 Validity Not Before: Mar 26 08:01:00 2026 GMT Not After : Mar 27 08:01:00 2026 GMT Subject: CN=e044a0687e05ddd9561282385b64fd25debf780e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:fc:44:a3:ba:c4:ce:53:da:87:9c:de:74:37: ac:ca:f8:0d:22:69:01:c2:e6:73:14:ff:ae:24:9e: 5f:10:f5:89:2a:0a:dd:43:eb:93:6f:71:ec:24:d2: d0:82:2a:03:41:b8:27:78:b8:fa:30:67:fb:d0:ab: 11:5e:7a:ff:bc:c5:a9:bd:05:f1:3e:17:49:dc:df: 60:3d:f9:c1:63:6a:28:6c:ce:ef:a3:5f:1a:96:5f: 95:fd:a6:cb:7b:b7:8c:fe:69:70:a5:29:6b:ee:ac: 4b:38:0b:fc:81:a3:bd:ce:4b:19:82:db:ec:cc:07: fd:e5:c0:81:95:b4:29:35:50:1f:07:b0:82:1b:2e: 3d:03:c1:8d:8a:bd:79:89:bc:5c:a8:ec:c1:73:4e: 7d:92:0c:45:38:3c:35:4d:2d:ed:41:2f:f6:7a:c9: a7:c2:98:cd:3c:88:ba:e3:26:26:ed:aa:7a:d2:6d: 56:e5:c7:8a:4b:de:b4:f0:4e:4d:b5:4e:ff:f0:db: 6e:3f:12:3b:67:85:33:83:e8:70:10:2d:09:41:2f: 3d:b3:bf:f6:84:8c:f6:64:d0:92:9f:7e:d2:21:ca: 08:9d:87:ae:b7:f9:6c:ff:21:25:9a:2a:12:25:33: 48:1b:8a:6e:67:c3:29:99:4d:a5:ae:5f:89:ca:ef: 18:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:44:A0:68:7E:05:DD:D9:56:12:82:38:5B:64:FD:25:DE:BF:78:0E X509v3 Authority Key Identifier: keyid:49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:57:6b:45:13:be:6c:15:b4:08:a2:c2:80:d0:b4:1c:33:08: de:15:4f:5d:fe:a9:fc:37:1b:c8:ea:db:3e:94:c9:b3:2c:eb: 91:6d:5e:3f:ca:e5:bd:0d:ce:07:10:6b:32:8d:00:5e:63:db: d2:74:fc:cf:17:f5:a0:ef:ba:b7:82:45:21:63:13:b3:ca:d1: 9b:98:1c:b7:63:3a:44:25:c9:65:91:6a:58:8f:16:95:fb:fe: 8c:52:95:00:f5:3e:3e:23:28:a0:bd:30:ee:56:66:ac:47:83: 7a:0a:20:36:ab:52:6a:72:96:e0:0e:3b:77:76:a6:10:a0:88: 3c:ff:24:26:af:21:b3:66:d1:91:97:15:1b:37:be:15:43:62: 78:79:53:63:91:1e:6f:e8:cd:81:c3:0c:d5:03:77:eb:a5:84: 23:87:75:92:44:4d:ec:b8:21:af:d5:0b:d5:80:15:c7:ff:d6: f6:7d:44:f3:91:cf:ab:5b:09:e0:3a:e8:5c:a2:08:e1:fc:15: 71:1a:91:6a:e7:fc:46:de:34:5e:a3:64:fd:7b:56:d6:9f:9b: 00:78:38:e4:ce:c7:75:b0:40:99:72:34:55:aa:81:dc:cd:f8: 14:2c:06:40:44:28:77:24:6c:eb:0a:e4:68:2a:ee:fa:09:24: 20:5f:0d:dd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0pKTeA595La294hyx+tMdEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5MjE2ZjVjMTY1YjgyN2E3ZmQ3M2Q4MTA3YWViZDJmNjNj NjNlMjQwHhcNMjYwMzI2MDgwMTAwWhcNMjYwMzI3MDgwMTAwWjAzMTEwLwYDVQQD EyhlMDQ0YTA2ODdlMDVkZGQ5NTYxMjgyMzg1YjY0ZmQyNWRlYmY3ODBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/xEo7rEzlPah5zedDesyvgNImkB wuZzFP+uJJ5fEPWJKgrdQ+uTb3HsJNLQgioDQbgneLj6MGf70KsRXnr/vMWpvQXx PhdJ3N9gPfnBY2oobM7vo18all+V/abLe7eM/mlwpSlr7qxLOAv8gaO9zksZgtvs zAf95cCBlbQpNVAfB7CCGy49A8GNir15ibxcqOzBc059kgxFODw1TS3tQS/2esmn wpjNPIi64yYm7ap60m1W5ceKS9608E5NtU7/8NtuPxI7Z4Uzg+hwEC0JQS89s7/2 hIz2ZNCSn37SIcoInYeut/ls/yElmioSJTNIG4puZ8MpmU2lrl+Jyu8Y9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOBEoGh+Bd3ZVhKCOFtk/SXev3gOMB8GA1UdIwQY MBaAFEkhb1wWW4J6f9c9gQeuvS9jxj4kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU1NGdlhCWmJnbnBfMXoyQkI2NjlMMlBHUGlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi80ODQyYTktOWZjZC00YmI2LWJiMDQt MGRiYmMyNDllNjU3LzEvU1NGdlhCWmJnbnBfMXoyQkI2NjlMMlBHUGlRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi80ODQyYTktOWZjZC00YmI2LWJiMDQtMGRiYmMyNDllNjU3 LzEvU1NGdlhCWmJnbnBfMXoyQkI2NjlMMlBHUGlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaldrRRO+ bBW0CKLCgNC0HDMI3hVPXf6p/DcbyOrbPpTJsyzrkW1eP8rlvQ3OBxBrMo0AXmPb 0nT8zxf1oO+6t4JFIWMTs8rRm5gct2M6RCXJZZFqWI8Wlfv+jFKVAPU+PiMooL0w 7lZmrEeDegogNqtSanKW4A47d3amEKCIPP8kJq8hs2bRkZcVGze+FUNieHlTY5Ee b+jNgcMM1QN366WEI4d1kkRN7Lghr9UL1YAVx//W9n1E85HPq1sJ4DroXKII4fwV cRqRauf8Rt40XqNk/XtW1p+bAHg45M7HdbBAmXI0VaqB3M34FCwGQEQodyRs6wrk aCru+gkkIF8N3Q== -----END CERTIFICATE-----Generated at Thu Mar 26 12:34:38 2026 by rpki-client