$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft File: 3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft (raw, json) Hash identifier: bSjfVKC3Oog/KoqQWIf4gnAIIesi9d5vJrjVUj8w8pE= Subject key identifier: 3B:84:A7:6E:A3:21:6B:48:A1:F6:82:9B:07:D2:63:3F:1D:1D:E4:10 Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 Certificate issuer: /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Certificate serial: 11E3A97FD2F786726CA19AB3AD24285BC600BA2C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft Manifest number: 0335 Signing time: Wed 29 Apr 2026 23:52:09 +0000 Manifest this update: Wed 29 Apr 2026 23:47:09 +0000 Manifest next update: Fri 01 May 2026 01:21:09 +0000 Files and hashes: 1: 3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl (hash: r8QUOU9l7GUmNAVn3x7G73FVht4a4rh+Lqry4LpejVs=) 2: 326131313a663263303a666664633a3a2f34382d3438203d3e20323135303639.roa (hash: fW3/1bM6uuAVh4/BqcyWFGfZeggD1zO77SW4GWfaw4U=) 3: 326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa (hash: onhCLB3gV3HdQhsHYazqCSyNdZ/2h865cbuFqj2YlvA=) 4: 326131313a663263303a666664343a3a2f34362d3436203d3e20323135303639.roa (hash: b4lO7qQITmIuTe+1DZpcfLD2H0yGfI8Xz4qwvBeBNzo=) 5: 326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa (hash: Kgbp0+Zk4p3tpOkyAtCJ3HEWdnZBbzm3NgMcGrByxQs=) 6: 326131313a663263303a666664653a3a2f34382d3438203d3e20323135303639.roa (hash: scCBjh8HfhV3GwKDOrHZF1YXj718at6+uNm0y/KBmOw=) 7: 326131313a663263303a666664643a3a2f34382d3438203d3e20323135303639.roa (hash: pRpvcvkpUIjn6KDjm+Ywf0niLgvvVoNWrBKMV64s3Gs=) Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 01 May 2026 01:21:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:e3:a9:7f:d2:f7:86:72:6c:a1:9a:b3:ad:24:28:5b:c6:00:ba:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Validity Not Before: Apr 29 23:47:09 2026 GMT Not After : May 1 01:21:09 2026 GMT Subject: CN=3B84A76EA3216B48A1F6829B07D2633F1D1DE410 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1e:5c:18:aa:c7:4d:cf:aa:bc:06:26:c3:68: fe:7c:de:b8:34:1f:12:9a:4a:b6:77:e0:f3:38:cd: 44:d5:24:5e:36:2b:4f:1d:11:0d:9c:9d:a8:dc:bf: 87:0d:38:ae:81:f2:20:bd:39:c1:cf:e9:2f:27:f0: 30:8c:5b:a1:35:3b:4d:e1:c8:35:05:b1:95:61:39: 97:44:d8:85:24:d4:08:70:27:86:8a:80:61:4d:91: 93:ce:e8:33:2c:12:73:37:f1:42:5c:77:9e:e0:93: a6:6b:eb:14:5a:64:55:28:a3:d3:0e:22:89:67:dd: 1c:7f:db:5b:98:1d:41:42:68:c7:38:9b:a6:b6:22: 13:bb:82:e8:91:5f:e9:5b:25:cf:c0:77:17:de:e9: 42:9b:5d:21:ed:a1:12:fb:ba:e8:98:01:b7:99:7a: 74:db:ed:85:ec:7c:55:52:bf:9d:0f:fe:8d:2a:f9: b9:5e:b6:f5:ed:25:e6:2c:9d:fb:09:d4:9c:5d:c1: 82:be:c2:56:6b:a6:59:75:83:ad:11:50:ea:cd:1b: 83:4e:5e:dd:e3:f4:fb:95:8f:35:af:d8:63:2e:4f: 6f:b2:b5:0a:6e:59:2a:f4:c7:22:07:12:c1:2b:e0: ef:ce:35:6b:fb:d3:d7:7f:ab:66:e2:f9:5f:f4:12: a6:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:84:A7:6E:A3:21:6B:48:A1:F6:82:9B:07:D2:63:3F:1D:1D:E4:10 X509v3 Authority Key Identifier: keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:04:86:7e:e8:08:79:3c:47:cc:7a:87:51:9f:a5:fc:e0:d6: e5:aa:c7:63:bb:ce:2a:1a:d2:11:66:73:c1:a8:f6:5b:fc:9b: b1:b8:8c:0e:06:94:a7:3a:df:7c:69:fb:e8:a8:bc:cf:18:7f: 7c:8b:b8:cf:ac:b3:df:c8:1e:2b:45:a7:b8:cf:18:87:cb:e1: 14:e0:d5:16:8e:42:e1:e2:de:45:cb:a4:94:4b:10:67:24:b4: f6:a2:98:46:35:af:de:cc:23:f5:16:66:30:63:92:98:1a:d4: b6:d3:18:ca:c0:67:dd:71:9a:ee:82:21:7d:58:a0:69:83:44: 12:87:0e:42:50:0c:dd:71:de:6d:13:5f:29:7b:73:4c:4a:97: 71:ea:51:99:38:54:b9:a3:ac:63:1a:d9:85:8f:7b:a8:d3:54: cf:6c:24:02:34:f4:9c:ea:53:2e:4b:3f:fe:e5:02:94:17:0c: 19:65:01:fc:c8:b0:bb:1b:19:a0:31:77:bf:28:0a:f2:36:05: 2e:d0:e5:a3:1e:cb:a4:23:00:2e:b6:a0:dc:fb:0b:5d:e1:29: 50:f6:aa:f4:70:c1:a7:7f:73:fc:af:34:5b:e0:3a:ad:65:86: 4c:d2:81:76:79:ba:28:90:ad:7f:f6:d0:ac:9d:a3:2d:40:2d: 8a:d5:b3:2e -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUEeOpf9L3hnJsoZqzrSQoW8YAuiwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYx MkQwQTU3ODAeFw0yNjA0MjkyMzQ3MDlaFw0yNjA1MDEwMTIxMDlaMDMxMTAvBgNV BAMTKDNCODRBNzZFQTMyMTZCNDhBMUY2ODI5QjA3RDI2MzNGMUQxREU0MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/HlwYqsdNz6q8BibDaP583rg0 HxKaSrZ34PM4zUTVJF42K08dEQ2cnajcv4cNOK6B8iC9OcHP6S8n8DCMW6E1O03h yDUFsZVhOZdE2IUk1AhwJ4aKgGFNkZPO6DMsEnM38UJcd57gk6Zr6xRaZFUoo9MO Ioln3Rx/21uYHUFCaMc4m6a2IhO7guiRX+lbJc/Adxfe6UKbXSHtoRL7uuiYAbeZ enTb7YXsfFVSv50P/o0q+bletvXtJeYsnfsJ1JxdwYK+wlZrpll1g60RUOrNG4NO Xt3j9PuVjzWv2GMuT2+ytQpuWSr0xyIHEsEr4O/ONWv709d/q2bi+V/0EqY/AgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQUO4SnbqMha0ih9oKbB9JjPx0d5BAwHwYDVR0j BBgwFoAUO4akpFOAxtRVzeWA3tG8VhLQpXgwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzI1NDA1Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAv M0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8zQjg2QTRBNDUzODBDNkQ0NTVDREU1ODBERUQxQkM1 NjEyRDBBNTc4LmNlcjCBmgYIKwYBBQUHAQsEgY0wgYowgYcGCCsGAQUFBzALhnty c3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQvcmVwby9ycGtpX2NhXzI1NDA1 Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAvM0I4NkE0QTQ1MzgwQzZENDU1 Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAD8Ehn7oCHk8R8x6h1Gf pfzg1uWqx2O7zioa0hFmc8Go9lv8m7G4jA4GlKc633xp++iovM8Yf3yLuM+ss9/I HitFp7jPGIfL4RTg1RaOQuHi3kXLpJRLEGcktPaimEY1r97MI/UWZjBjkpga1LbT GMrAZ91xmu6CIX1YoGmDRBKHDkJQDN1x3m0TXyl7c0xKl3HqUZk4VLmjrGMa2YWP e6jTVM9sJAI09JzqUy5LP/7lApQXDBllAfzIsLsbGaAxd78oCvI2BS7Q5aMey6Qj AC62oNz7C13hKVD2qvRwwad/c/yvNFvgOq1lhkzSgXZ5uiiQrX/20Kydoy1ALYrV sy4= -----END CERTIFICATE-----Generated at Thu Apr 30 14:54:21 2026 by rpki-client