$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft File: AOT2p3Not87P5nIgtDZXax4Aiuw.mft (raw, json) Hash identifier: GmEjaO2rQ+ITJlkSGSZn294WawyAyS75wKGz57a4wJE= Subject key identifier: 9A:31:E6:A8:3D:71:3C:82:DB:E7:17:66:48:DA:25:4F:96:19:B5:23 Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec Certificate serial: 019D1045EC295470792349D98C52C50558E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft Manifest number: 197D Signing time: Sat 21 Mar 2026 12:01:50 +0000 Manifest this update: Sat 21 Mar 2026 12:01:50 +0000 Manifest next update: Sun 22 Mar 2026 12:01:50 +0000 Files and hashes: 1: 1-7-GRl1DpJL9MX_Eh7vVlgQAtds.roa (hash: qBQ+Yv34RT+76LqwEUvZMWK4vq87p/Tm5N2E03sJUtE=) 2: 8JQ0VF5qvrtIdP5kzOpKrpQ4c_Q.roa (hash: 8Cz/nfpNgRo73mnZrpsPG4yB6fA8zTsiRnBVo7ed97c=) 3: AOT2p3Not87P5nIgtDZXax4Aiuw.crl (hash: njSqSs5Cfn2KIwDzgGWjoC0M66Wj5fyBlPnWQPuU9TA=) 4: CP1700xQhoIo0eqZb96w49fwMZU.roa (hash: FhGMMmXWb4O7zbwANRuKCF/ES8PwzOmEkZV99iTN5xU=) 5: Iz8oQHvYY4N1cu4pgE3299ogM34.roa (hash: GTn6Y+DWEw4+IcATVORnDqgcpHWD0i8V9c7BBTnRM3U=) 6: MQ0e7OQgina0hHLbzkJJI7ocRMY.roa (hash: lYlPT7y2KTJ0qjKzQaLtDJlIn+M8xo18ZCJuzXN583Y=) 7: VcGOwSBLa8MeclenBwYCnJTkc6Q.roa (hash: ZpKqr8OOjlncepBvaT8KeQio9IThw68qGgH8coHhuVI=) 8: gF0x-IgTBvCJCERAByN93AH9MjM.roa (hash: f9L9sZ2MryoARd93KF5kcE6ImNuSL3mNiWJ8yZc3d58=) 9: hGF5HckbV_mO1zNnnUvLaxvGgg0.roa (hash: LswWVKDsb8V0ubfBEeUCi7BkiOP6J97pjosqCGNORUk=) 10: oPPgaBYxfthIjxyRNKKvuQhADcA.roa (hash: vJpx4imZl2f0ZsJVLjSi4WZMmzQUNNlQIXHfoEUu3/k=) 11: tDS2Cs2obRP0GxSw9_zcJ3O6_H8.roa (hash: 6+3w2X7QmyZajlkvHT3Z32O7WpWvoPyxaW4Oqr2oNl8=) 12: v3K9UBCZQXetZHCASn_v-Er6z80.roa (hash: M01ADTQv5+WF8EwvS7wZ9W7tolykwshPsb2JjYqw3EQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 22 Mar 2026 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:10:45:ec:29:54:70:79:23:49:d9:8c:52:c5:05:58:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec Validity Not Before: Mar 21 12:01:50 2026 GMT Not After : Mar 22 12:01:50 2026 GMT Subject: CN=9a31e6a83d713c82dbe7176648da254f9619b523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c3:dc:67:00:4e:71:7b:65:3d:de:ed:45:32: 7a:d8:c7:7d:cd:9a:00:29:c4:7e:cd:53:ed:55:c8: b0:3e:87:fd:63:29:8a:f0:7b:c9:ac:fb:bb:72:f9: 4b:56:e1:a4:84:f7:d9:af:75:f7:70:10:82:88:a6: 5c:9a:eb:9e:10:d9:65:4f:e9:7c:09:ef:ae:72:fe: 96:7b:65:d3:6b:4f:ab:7f:c2:c7:a8:93:34:27:cd: 0d:b0:d0:6d:d2:f1:46:25:e7:31:7b:b4:6d:65:f6: 14:92:cb:34:23:c8:d8:00:2f:d4:91:6b:a0:a4:76: 86:49:af:22:b6:82:e4:23:33:0e:41:5b:2d:03:3e: 1f:a5:81:d9:06:0a:32:5c:09:67:c5:ce:3a:0f:27: d9:d0:03:b3:e9:f9:54:f6:6b:80:31:8d:19:ee:4f: 3e:a7:ee:d3:5e:c8:bc:4c:b5:cb:e3:03:0d:81:68: a5:23:3c:89:97:62:41:cc:f0:8e:f3:4f:7e:25:9c: e1:cb:3f:7c:0d:78:a2:f9:63:3f:a0:54:16:6a:e1: c8:fc:38:31:92:b9:79:a5:f9:ba:32:1c:7d:90:52: 98:a0:b4:75:ad:e2:d6:ed:11:6d:c0:fb:d2:1d:10: 33:d0:5d:95:62:71:34:4e:97:6c:25:5d:9e:f5:55: 79:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:31:E6:A8:3D:71:3C:82:DB:E7:17:66:48:DA:25:4F:96:19:B5:23 X509v3 Authority Key Identifier: keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d5:52:e7:47:ac:ab:e7:58:04:a9:fc:97:70:69:2a:99:4c:e6: 2a:1d:4d:ad:14:f0:a2:3e:f1:09:66:8a:ce:7c:08:d0:9f:a6: d3:e6:7b:32:ad:ba:b5:5e:ed:06:ac:a1:c7:9d:7a:e2:7d:e9: bb:ff:10:44:40:fe:ba:c4:36:66:ca:ac:30:ac:21:7a:bf:22: 6e:94:d9:87:61:c4:7d:ad:eb:a4:b9:b3:07:3d:7e:d9:42:13: 6d:70:af:7e:01:b0:b2:7b:39:72:b9:db:19:1b:68:b9:4a:aa: 18:00:04:e1:e9:31:05:64:a1:51:64:48:55:7a:49:08:49:da: cf:6d:1f:7e:ee:3d:12:65:78:5b:58:69:0f:cf:bd:fe:fa:11: c4:0a:9e:1f:85:71:63:ec:ee:f5:17:f7:a2:1c:9b:78:57:f2: 79:e9:32:06:b7:fb:86:20:fe:fd:ae:97:37:c3:1d:d8:2e:e9: 20:56:48:54:fb:41:3d:9c:8e:1b:46:41:72:69:75:36:4e:b5: 40:8d:53:54:16:47:06:f3:f2:aa:8a:69:a8:3d:71:e8:66:32: f8:58:be:9a:5c:6e:04:8e:ac:37:30:55:67:92:99:16:d1:44: 45:80:35:e4:4e:14:6d:88:e7:8e:bd:6b:65:5e:3b:71:c6:7c: 2f:c1:92:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0QRewpVHB5I0nZjFLFBVjhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZTRmNmE3NzM2OGI3Y2VjZmU2NzIyMGI0MzY1NzZiMWUw MDhhZWMwHhcNMjYwMzIxMTIwMTUwWhcNMjYwMzIyMTIwMTUwWjAzMTEwLwYDVQQD Eyg5YTMxZTZhODNkNzEzYzgyZGJlNzE3NjY0OGRhMjU0Zjk2MTliNTIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8PcZwBOcXtlPd7tRTJ62Md9zZoA KcR+zVPtVciwPof9YymK8HvJrPu7cvlLVuGkhPfZr3X3cBCCiKZcmuueENllT+l8 Ce+ucv6We2XTa0+rf8LHqJM0J80NsNBt0vFGJecxe7RtZfYUkss0I8jYAC/UkWug pHaGSa8itoLkIzMOQVstAz4fpYHZBgoyXAlnxc46DyfZ0AOz6flU9muAMY0Z7k8+ p+7TXsi8TLXL4wMNgWilIzyJl2JBzPCO809+JZzhyz98DXii+WM/oFQWauHI/Dgx krl5pfm6Mhx9kFKYoLR1reLW7RFtwPvSHRAz0F2VYnE0TpdsJV2e9VV5AwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJox5qg9cTyC2+cXZkjaJU+WGbUjMB8GA1UdIwQY MBaAFADk9qdzaLfOz+ZyILQ2V2seAIrsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMt YjA3ZDg0MTZhZTRhLzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMtYjA3ZDg0MTZhZTRh LzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1VLnR6yr 51gEqfyXcGkqmUzmKh1NrRTwoj7xCWaKznwI0J+m0+Z7Mq26tV7tBqyhx5164n3p u/8QRED+usQ2ZsqsMKwher8ibpTZh2HEfa3rpLmzBz1+2UITbXCvfgGwsns5crnb GRtouUqqGAAE4ekxBWShUWRIVXpJCEnaz20ffu49EmV4W1hpD8+9/voRxAqeH4Vx Y+zu9Rf3ohybeFfyeekyBrf7hiD+/a6XN8Md2C7pIFZIVPtBPZyOG0ZBcml1Nk61 QI1TVBZHBvPyqoppqD1x6GYy+Fi+mlxuBI6sNzBVZ5KZFtFERYA15E4UbYjnjr1r ZV47ccZ8L8GSwQ== -----END CERTIFICATE-----Generated at Sat Mar 21 13:16:08 2026 by rpki-client