$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft File: TKZvPA8ld05pbSpGcjJ365YRKMM.mft (raw, json) Hash identifier: nDOp9wMn/A5aPUuhQt0S2Cmpy+c2GoR+o6NyMfd09hg= Subject key identifier: 9A:97:81:BB:6A:73:9A:E1:A7:00:EA:92:4D:C6:0E:F1:FB:F8:3E:7E Authority key identifier: 4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3 Certificate issuer: /CN=4ca66f3c0f25774e696d2a46723277eb961128c3 Certificate serial: 019D3262A10E82D2E35F67057B85FF41E2B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft Manifest number: 18B1 Signing time: Sat 28 Mar 2026 03:00:17 +0000 Manifest this update: Sat 28 Mar 2026 03:00:17 +0000 Manifest next update: Sun 29 Mar 2026 03:00:17 +0000 Files and hashes: 1: 0IrKb4Ocom_z-8cWO6ogho_9Ejs.roa (hash: tjdt9PHspdzPY29Lxc8zvyVdheALBUo0bapCnScWepo=) 2: 1-mot6mikLp_MDl0b7kmHUwF8vnM.roa (hash: XgWK76sOAKa1F05WWdrvMpLFcLfu8IIa8P7y+0SOUIQ=) 3: 2hev3Ozu25IR4V2dL7dAcH9H-38.roa (hash: JMnA8s2ygn9eCJpbiMUYRSb0p9eo/efu/ihrpcvOxF0=) 4: 5CBz7J_rxqKIErWJdNCTyxWORk4.roa (hash: NgQqsHixRjLE1PxJ9k04+GOCbvcPmM6kd6jLKzVPJ4A=) 5: 9d-_5920bjCdAX8N09u8neSsl3o.roa (hash: o8FIziw32GpKzwaDWACsYaXRfvH+eTcW8yYR9DZRp+c=) 6: CxwFpKnVRB1YipI_w1rOdL2Rr_0.roa (hash: Sqj7uyxBPWvN499fr3Zl2IE3H+X3USQ46cvMPtYbWbI=) 7: TKZvPA8ld05pbSpGcjJ365YRKMM.crl (hash: Bv7ctAIvIQ5YKRIbW/+zAPEQdSmk3bc2rQa/dI8UD5k=) 8: bEXar_PDdc_u4-EMnGh7tX0LHVg.roa (hash: tWOJsXIwz8NLZyOMtnHMC60APgOJn7JZ0y3xyIP4Gu4=) 9: k4d-Grd6fMOD6ch95iLC_D9xAmI.roa (hash: FpQzQlajcmhliY2oa1dKiB0yjFo7oTmcDQa2iboX4UE=) 10: o4wjR8pZMB50VMWQpLsPi-iVTDE.roa (hash: ATIz3XapJ04NxEJg4iAdFVY462a3mfpQBCW4sSM6kew=) 11: oQUSrEROqxA0JRpbiStP3_G82GM.roa (hash: XUh60Rhyc+lm/VBx4kH4IarcFH4VCmn/oycmnKA5p14=) 12: oW0C-k4390azUSS_-13XzI_AVfY.roa (hash: rzcyrGergvNW2GLz+g1GX+/P72a2swYsTQgABXmO4lQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Mar 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:32:62:a1:0e:82:d2:e3:5f:67:05:7b:85:ff:41:e2:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ca66f3c0f25774e696d2a46723277eb961128c3 Validity Not Before: Mar 28 03:00:17 2026 GMT Not After : Mar 29 03:00:17 2026 GMT Subject: CN=9a9781bb6a739ae1a700ea924dc60ef1fbf83e7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c7:34:dd:d7:2b:c4:5d:95:78:cd:40:02:ff: f0:72:ab:94:e7:7e:3c:f5:4c:ed:56:71:69:96:c0: 2f:a6:6d:58:57:62:4f:30:d6:e2:6e:28:dd:bc:3c: 3b:5a:50:96:c2:26:b1:4c:12:cd:bb:d3:f2:9a:60: 23:e3:49:12:d1:0e:fc:9c:4a:55:ce:44:f8:bd:37: ea:55:2b:df:f2:86:4b:8a:2b:34:e2:c3:91:12:e6: f5:f8:43:90:b1:47:eb:c2:38:24:4a:b9:c9:e4:09: d0:67:13:b9:81:6a:98:b1:fe:59:46:d9:df:0f:e2: 3b:e5:2d:4f:2a:56:d9:22:81:3c:0a:8e:e9:2b:7d: 2c:9d:ec:2e:a1:02:e7:4d:21:1f:b8:c9:d0:9b:b0: de:ad:49:ae:e2:14:eb:ca:e9:25:54:47:fa:9a:98: a0:32:1f:0f:62:2a:07:32:1b:a4:c4:29:52:9f:13: 38:71:8b:30:8b:ea:20:af:ae:d9:04:77:d3:b4:3b: be:95:99:14:58:52:6e:66:60:e5:9f:44:d1:03:f2: 17:7e:97:ed:74:a8:2d:21:e0:9e:80:f9:77:79:78: 5f:f0:3e:2a:34:bc:79:28:e9:56:35:12:df:da:1c: 2f:60:eb:72:11:73:c7:b2:00:03:5b:8f:a4:1e:78: f1:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:97:81:BB:6A:73:9A:E1:A7:00:EA:92:4D:C6:0E:F1:FB:F8:3E:7E X509v3 Authority Key Identifier: keyid:4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:94:99:ef:21:72:42:91:fb:96:46:63:9c:db:42:cb:c7:26: 64:86:a3:00:7c:49:a6:2e:bb:83:96:bd:3b:b1:a3:f6:83:ac: c0:a2:41:f0:78:2a:d7:4f:87:40:58:ec:de:9d:55:99:de:58: 08:01:4d:6e:da:71:a0:d6:92:67:b0:9e:4a:78:81:2d:2e:d2: 0a:a9:1f:23:a7:71:bf:f7:69:d8:38:14:b3:54:69:8c:8c:6e: 98:ff:16:6c:32:27:30:02:ad:57:c7:91:da:9b:13:b1:e3:30: 33:95:aa:77:0b:29:d9:f9:27:e9:19:f1:17:b1:5c:f6:cc:fd: 86:43:03:a2:38:44:0c:7c:1e:ea:aa:f5:f6:eb:6f:47:28:18: 0a:6b:6d:9f:2d:72:7d:68:7d:21:2f:a5:31:73:84:7b:de:db: 8d:94:af:d4:93:6f:d5:f9:76:56:bd:21:8c:b9:19:ac:48:a3: b8:1e:5d:17:46:0d:ea:7c:c2:2d:13:cc:eb:e6:1b:0d:4d:61: fa:9a:7b:6a:c9:cd:ed:c9:d7:02:32:76:ef:dc:76:09:f3:4c: 45:67:e7:6e:62:95:05:ee:a8:86:2d:a1:56:3d:14:38:ff:f7: 42:53:fe:73:90:e5:46:f2:bb:bd:63:54:1f:ff:80:c7:a6:a3: 51:bb:3b:0c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0yYqEOgtLjX2cFe4X/QeKzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjYTY2ZjNjMGYyNTc3NGU2OTZkMmE0NjcyMzI3N2ViOTYx MTI4YzMwHhcNMjYwMzI4MDMwMDE3WhcNMjYwMzI5MDMwMDE3WjAzMTEwLwYDVQQD Eyg5YTk3ODFiYjZhNzM5YWUxYTcwMGVhOTI0ZGM2MGVmMWZiZjgzZTdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxsc03dcrxF2VeM1AAv/wcquU5348 9UztVnFplsAvpm1YV2JPMNbibijdvDw7WlCWwiaxTBLNu9PymmAj40kS0Q78nEpV zkT4vTfqVSvf8oZLiis04sOREub1+EOQsUfrwjgkSrnJ5AnQZxO5gWqYsf5ZRtnf D+I75S1PKlbZIoE8Co7pK30snewuoQLnTSEfuMnQm7DerUmu4hTryuklVEf6mpig Mh8PYioHMhukxClSnxM4cYswi+ogr67ZBHfTtDu+lZkUWFJuZmDln0TRA/IXfpft dKgtIeCegPl3eXhf8D4qNLx5KOlWNRLf2hwvYOtyEXPHsgADW4+kHnjxiQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJqXgbtqc5rhpwDqkk3GDvH7+D5+MB8GA1UdIwQY MBaAFEymbzwPJXdOaW0qRnIyd+uWESjDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8yMDQwMTctZjA0Ni00YjY5LWIzZTUt MzE5YjBjODc0NDQwLzEvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy8yMDQwMTctZjA0Ni00YjY5LWIzZTUtMzE5YjBjODc0NDQw LzEvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXZSZ7yFy QpH7lkZjnNtCy8cmZIajAHxJpi67g5a9O7Gj9oOswKJB8Hgq10+HQFjs3p1Vmd5Y CAFNbtpxoNaSZ7CeSniBLS7SCqkfI6dxv/dp2DgUs1RpjIxumP8WbDInMAKtV8eR 2psTseMwM5Wqdwsp2fkn6RnxF7Fc9sz9hkMDojhEDHwe6qr19utvRygYCmttny1y fWh9IS+lMXOEe97bjZSv1JNv1fl2Vr0hjLkZrEijuB5dF0YN6nzCLRPM6+YbDU1h +pp7asnN7cnXAjJ279x2CfNMRWfnbmKVBe6ohi2hVj0UOP/3QlP+c5DlRvK7vWNU H/+Ax6ajUbs7DA== -----END CERTIFICATE-----Generated at Sat Mar 28 13:43:15 2026 by rpki-client