$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft File: JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft (raw, json) Hash identifier: C4wW4O8ZcIksYLVvXkg+RIel3TzVprm+duoGY4L/250= Subject key identifier: B4:3F:78:3B:7A:9F:69:B6:C0:6B:28:2D:EF:C5:EC:9C:76:C3:64:AB Authority key identifier: 25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04 Certificate issuer: /CN=255876412d20fbb6cab823481782ac47703b4404 Certificate serial: 019CE3DA4D80295D0D1047167942B7C753C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft Manifest number: 0539 Signing time: Thu 12 Mar 2026 21:01:00 +0000 Manifest this update: Thu 12 Mar 2026 21:01:00 +0000 Manifest next update: Fri 13 Mar 2026 21:01:00 +0000 Files and hashes: 1: 3ni1lXz0xo-b4HoXI3wRu6vJL-c.roa (hash: 7b3P7fNZC5J3JcfQvJqiC/2neHH6f8kadDw6/l3P8/Y=) 2: AmdO1jA2vkBtxkn2vv7Y1wu4dFM.roa (hash: wY1LZtovvbzyHM2W8YhMwLuam5z9V3nwmwDqM8gEEF4=) 3: BYtnuImtTGdi14Pvw9xlRKAL65k.roa (hash: hUoeJXbJ5fZg7WKvqap5HxU1pLmROBa7LXCxisf4SP4=) 4: HrFuB2F4P326FdIKDHmR_z_oGqs.roa (hash: d1+J0bs8Jd4Tmg8E7c67C6CZ18CYNi+0jZ3ouxTsd3M=) 5: JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl (hash: VeaWBiEzM1m0n93ayeGyyZMxnPIr4jHui8nJLbR7HXA=) 6: RlmY2epIKRhq-2nW5GPMGi-42ho.roa (hash: P+PIwilqQ8xdGydeEaJcPqihgDM4ZC5j7iY8+NEd9i0=) 7: YlYX0-EwdZ0RjwlcesbIkWVsVTo.roa (hash: 12tzR601qVt1Vj7EME9V9wBl6cqsNdP8VmiHIJgAu5Q=) 8: cNqycsZxVsHcATCP8JWqqaoM9SI.roa (hash: CX+xOUuMFEXPOxevDnRNct6cRUm/jc1q9b58M6PTWZo=) 9: gE3k0i8jHZvr5aE-wjNKPwzJxvE.roa (hash: CuCVWX3Bl6EYyE6nnbYJN+zyPfahHe62RUo//GoIy9o=) 10: lBlo6PUCc6IqER-nFwmpK7D7yqo.roa (hash: Z5uCFtdD3Jko3O/Znx9FA924V5ua0wn5UjLkJKE8KyE=) 11: qbksFEEwSTb2bBOnvyMaaJhR7Ss.roa (hash: qH3mt9TzRYD5CJqPjTYWZEejOSD69A/a1ZIdDauUkQo=) 12: urqr3QuscnM9Gexd4HqCzda04Hs.roa (hash: +eFtvrmvtLAGjqTjuO2JbNNCYDwjSBJV6qDXXX+HoPY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 13 Mar 2026 15:04:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:e3:da:4d:80:29:5d:0d:10:47:16:79:42:b7:c7:53:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=255876412d20fbb6cab823481782ac47703b4404 Validity Not Before: Mar 12 21:01:00 2026 GMT Not After : Mar 13 21:01:00 2026 GMT Subject: CN=b43f783b7a9f69b6c06b282defc5ec9c76c364ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:79:f5:96:19:18:26:a7:d5:d2:4f:28:77:4f: dd:25:2a:2f:94:a3:27:bc:01:37:27:ed:59:f2:62: 98:2d:6e:e2:f4:05:14:78:dd:f7:bb:36:ef:ca:a9: d3:82:18:81:9a:33:2c:28:3a:0f:47:25:d9:99:ee: fd:72:c6:8c:56:ac:fc:5b:38:0b:c2:ca:a1:75:75: ae:9b:9d:f2:5d:2e:8c:f6:fd:71:4e:7e:3f:64:fe: 71:aa:03:f5:a9:a8:99:b7:22:70:b9:27:b9:b1:84: 46:e5:ec:c8:b2:39:5c:a4:62:f5:4f:23:96:e7:72: 99:30:97:74:8e:38:e4:d8:7e:77:ea:8d:2f:76:fa: 88:9b:80:62:3a:41:8f:d1:fb:4f:06:65:ca:97:1e: ea:4c:7a:17:4f:ef:fc:7b:83:46:8b:02:fb:bc:18: 50:04:4e:22:aa:40:d4:64:96:3a:fb:e7:b2:a7:a7: 14:2e:04:d6:e5:46:1b:bf:f6:dc:23:28:4f:3a:e3: 95:ca:e5:6b:98:dc:23:b9:1b:46:6c:14:bf:38:7a: 3d:3f:c5:da:c9:30:e1:78:87:bc:86:47:cf:1a:3f: 71:e1:d3:fd:dd:00:38:60:6e:b8:e5:a3:4c:07:fc: 18:50:ad:0f:a5:56:4f:72:1c:ad:72:95:cd:75:3d: 9b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:3F:78:3B:7A:9F:69:B6:C0:6B:28:2D:EF:C5:EC:9C:76:C3:64:AB X509v3 Authority Key Identifier: keyid:25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:36:26:84:cf:6d:10:f8:d6:b0:62:42:c6:06:43:81:e2:f7: 73:ec:8a:fe:71:52:c3:22:7d:f6:58:cc:5e:d5:21:27:e6:9a: 7a:c7:a2:bc:46:24:46:97:33:48:ac:88:78:06:53:a2:d7:e6: 55:ba:2f:71:94:6b:16:47:31:ac:92:13:0d:5d:77:89:4b:e0: 5f:ba:a9:51:bc:67:ce:73:c7:b0:bd:c2:9a:ef:b6:de:f9:04: e5:da:4a:df:dc:87:2c:22:f4:18:c2:df:bf:c5:7f:62:98:f4: 27:0a:9d:81:29:d0:20:14:02:82:68:cb:2c:15:8c:e1:bc:34: 81:99:92:bf:07:f8:d6:57:8d:0f:f2:d6:c0:33:80:e8:01:d1: 74:a6:f3:ce:e8:3d:f4:fd:85:b2:a3:47:18:5c:55:65:20:25: 58:9a:1e:8a:04:00:91:99:b7:49:a7:96:98:88:0b:a2:c3:5a: 06:a5:3e:eb:7c:f2:d5:d2:70:7a:f3:53:e3:6b:d7:49:45:fd: 26:2a:3c:52:f4:5f:fd:09:79:58:fe:90:3d:a6:42:44:41:85: 0f:20:bc:2c:29:04:d7:35:f6:33:05:d2:46:0c:a8:00:86:dc: 9f:7d:20:c7:b9:a8:85:44:ee:b3:a3:75:4b:39:ce:82:dc:ca: 39:96:94:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZzj2k2AKV0NEEcWeUK3x1PCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1NTg3NjQxMmQyMGZiYjZjYWI4MjM0ODE3ODJhYzQ3NzAz YjQ0MDQwHhcNMjYwMzEyMjEwMTAwWhcNMjYwMzEzMjEwMTAwWjAzMTEwLwYDVQQD EyhiNDNmNzgzYjdhOWY2OWI2YzA2YjI4MmRlZmM1ZWM5Yzc2YzM2NGFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApXn1lhkYJqfV0k8od0/dJSovlKMn vAE3J+1Z8mKYLW7i9AUUeN33uzbvyqnTghiBmjMsKDoPRyXZme79csaMVqz8WzgL wsqhdXWum53yXS6M9v1xTn4/ZP5xqgP1qaiZtyJwuSe5sYRG5ezIsjlcpGL1TyOW 53KZMJd0jjjk2H536o0vdvqIm4BiOkGP0ftPBmXKlx7qTHoXT+/8e4NGiwL7vBhQ BE4iqkDUZJY6++eyp6cULgTW5UYbv/bcIyhPOuOVyuVrmNwjuRtGbBS/OHo9P8Xa yTDheIe8hkfPGj9x4dP93QA4YG645aNMB/wYUK0PpVZPchytcpXNdT2bIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLQ/eDt6n2m2wGsoLe/F7Jx2w2SrMB8GA1UdIwQY MBaAFCVYdkEtIPu2yrgjSBeCrEdwO0QEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEt ODc2YzdmY2E0YjM0LzEvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEtODc2YzdmY2E0YjM0 LzEvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbDYmhM9t EPjWsGJCxgZDgeL3c+yK/nFSwyJ99ljMXtUhJ+aaeseivEYkRpczSKyIeAZTotfm VbovcZRrFkcxrJITDV13iUvgX7qpUbxnznPHsL3Cmu+23vkE5dpK39yHLCL0GMLf v8V/Ypj0JwqdgSnQIBQCgmjLLBWM4bw0gZmSvwf41leND/LWwDOA6AHRdKbzzug9 9P2FsqNHGFxVZSAlWJoeigQAkZm3SaeWmIgLosNaBqU+63zy1dJwevNT42vXSUX9 Jio8UvRf/Ql5WP6QPaZCREGFDyC8LCkE1zX2MwXSRgyoAIbcn30gx7mohUTus6N1 SznOgtzKOZaUqg== -----END CERTIFICATE-----Generated at Fri Mar 13 00:14:52 2026 by rpki-client