$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft File: dOPDNpcglLGowT1BgWhX0Zejquk.mft (raw, json) Hash identifier: lvTOg+QBT7Uaet3W7C63xg804Jjw2MvlBfEox+fR0Nc= Subject key identifier: 85:05:E8:71:39:C6:50:66:EB:41:2B:43:36:72:4C:B6:96:D0:B6:A5 Authority key identifier: 74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9 Certificate issuer: /CN=74e3c336972094b1a8c13d41816857d197a3aae9 Certificate serial: 019CE335147D12B5D89626DB2CE13B2F0FAD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft Manifest number: 1588 Signing time: Thu 12 Mar 2026 18:00:32 +0000 Manifest this update: Thu 12 Mar 2026 18:00:32 +0000 Manifest next update: Fri 13 Mar 2026 18:00:32 +0000 Files and hashes: 1: 1vjKgLyMbmbnD9BN-ENq6mCvpdQ.roa (hash: j6oOw0mW9VGeX6HTh7Pt8Y8xHM75I2sfi2YWe7POauE=) 2: 65FnmspDUVJ9_6QxvLd4l0NA4FE.roa (hash: lgYYkTyMefTXhDS2aNN91oiVE93MHjvbMsoRpFVLAkk=) 3: 6USIsr77ojsfaUkK7p_9yPX50RE.roa (hash: bxePdusDHlOz01oH/vysD1HExvewxm7Ub84+S8jsj6E=) 4: Bh0VhXCtnVTu6NYuZ4a0xAtyxnA.roa (hash: HBYP5wsCK4dtPnx1EHAW2IQhQMnr5dUB/nJJqTK+1C4=) 5: EnU8KLDk0MRS40FVtDjms_Soitw.roa (hash: rcy33n4rwkCj0xCW3i6XJv7RosymyzbT1+UqsgkLw0Q=) 6: Fe1_O6lqpZ4wU51PSyJRl5pRxgs.roa (hash: 3NI8C19YgNRWzyzmt0xuFsZNQ7eEnAdbBiag8O0XRuA=) 7: LcVUnzg476sY0cRj19anqQVr9co.roa (hash: CgyZ8RxzuluDb45z3tYn/fize5wHrZwU9v+utbAlRwk=) 8: QtjndSCGblrfab-ioVOroaNfPN4.roa (hash: 4OpyhaYwVmjq3TRkCJRrHAwNHbosmRoeTn4+UUJfDU8=) 9: dOPDNpcglLGowT1BgWhX0Zejquk.crl (hash: I0sk2EmCpvRNBavlgO/vGLOdG9ksGNBb6VOxIsfYaMc=) 10: lC8mVQtZgzYCvFwXFlGkBqCpw84.roa (hash: SarrKRsARvJpAVux4A8mAEIosBVax08KS/WsVU5r/mE=) 11: ooTDK5wBI-XJq8zfv_YSdFU-vlo.roa (hash: xJD4AS2qcydvJ4nIFIToFd7KJeX/bcKOS0Cq1Ky05fE=) 12: sOU9sf_TLtLowD_NZ2t2Nk3oMWk.roa (hash: A6LA4etDI922EmA77PSJlPQnzxugY9xfCjTlpLtEMx0=) 13: usyF6cqpiTZ36Hi-zUV3iBaL6mI.roa (hash: MwwYW4a1c7XEGwwS8SXJYUUEBBLKVu6KJRZWVoJlLQo=) 14: v4wBo_Qz0X5zJTIwb0QZQ9GFZms.roa (hash: IlvU1dySJCzAWqUq3ax3NvMIRPVQQDJqs9utM98mnVw=) 15: y8jNpNhJhN8HEtdIA-w7AJf_i5Q.roa (hash: 8sIOOrWgw4Q4JWzlfJJ/cqOkQmwBNx1SNCCheRpOVMM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 13 Mar 2026 15:04:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:e3:35:14:7d:12:b5:d8:96:26:db:2c:e1:3b:2f:0f:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74e3c336972094b1a8c13d41816857d197a3aae9 Validity Not Before: Mar 12 18:00:32 2026 GMT Not After : Mar 13 18:00:32 2026 GMT Subject: CN=8505e87139c65066eb412b4336724cb696d0b6a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:a0:a7:33:b2:6c:0b:bb:1c:7a:56:88:c9:f4: 55:d3:3b:73:f5:20:d7:37:83:f7:91:25:2b:91:8f: a4:de:05:73:dd:46:b9:c3:89:b0:97:66:33:34:c2: 4d:f3:d6:06:66:f3:1f:3a:41:7b:06:81:fe:6f:9f: 80:9c:90:1a:2c:b4:e4:e0:93:a7:64:38:40:1f:4f: 7e:5b:30:cf:a5:d9:ad:67:96:af:e3:91:7a:42:50: 08:a6:fb:df:c3:2e:a3:5e:b1:11:7e:49:81:5a:aa: 51:49:b4:ea:66:64:1b:6f:90:8d:ec:0b:19:d2:f5: 21:d0:55:dc:b1:ec:ef:26:c5:7d:77:24:07:2c:cc: 99:4c:cb:ee:c1:61:da:5c:5a:d3:dc:8d:79:95:11: 54:09:3e:a7:e1:1c:7b:6f:a9:c4:0b:7e:e4:ee:7f: 8a:76:87:32:60:a0:08:2b:ff:43:3a:9e:e3:88:b5: fc:6a:52:9a:a9:01:fd:35:af:27:a8:56:cd:a5:c4: fe:a1:d3:71:2f:38:78:81:88:66:3e:92:65:4f:64: 18:f5:54:be:58:8d:18:2d:d5:22:1c:3f:b8:29:fe: 81:cf:42:a2:0f:6e:65:53:4f:da:32:12:5d:32:ad: b0:fb:da:42:fb:c4:3e:1a:98:9f:ea:83:75:8e:75: dc:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:05:E8:71:39:C6:50:66:EB:41:2B:43:36:72:4C:B6:96:D0:B6:A5 X509v3 Authority Key Identifier: keyid:74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:45:c0:d8:ea:2d:ac:89:ef:94:c2:a6:99:0a:bf:a6:32:5a: da:6d:91:b0:ba:6a:37:b4:d1:52:a3:19:d8:ba:e1:0a:1f:48: 7e:9e:f5:5e:37:f9:7a:82:bc:52:29:a0:7e:02:68:c7:55:44: 66:38:38:52:d3:32:5b:61:a4:d1:07:14:37:96:ad:25:1f:90: 86:78:30:e1:77:ab:fd:07:e3:80:d2:d6:59:32:b3:65:27:a7: 2a:f1:c5:c5:2f:bd:ef:c6:3b:e9:bc:f6:37:3b:b3:07:c5:8c: 7d:8f:ee:ca:36:04:e5:26:76:3f:69:50:4a:ee:1e:d1:cc:89: 66:e3:82:1b:45:bb:38:20:b2:5a:99:b1:eb:97:43:63:03:2b: 13:d8:ba:a2:bc:21:d9:e6:04:9a:ce:6f:ba:4f:37:c2:1d:18: 16:14:55:39:20:89:9a:49:15:30:e4:80:b0:0c:89:2a:0a:29: a2:44:a5:ce:e1:c9:10:8b:55:9e:2c:05:44:ec:cd:3d:1f:db: 36:b7:cd:be:c3:62:2e:7f:71:35:99:76:35:25:2c:44:cf:cd: a0:da:c7:95:63:e7:fb:82:64:c7:bc:91:b3:7b:d2:a3:b8:e3: 74:31:d8:96:8d:b1:96:54:10:1e:56:e3:bd:e7:11:2f:7b:3a: 5c:cd:0e:43 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZzjNRR9ErXYlibbLOE7Lw+tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0ZTNjMzM2OTcyMDk0YjFhOGMxM2Q0MTgxNjg1N2QxOTdh M2FhZTkwHhcNMjYwMzEyMTgwMDMyWhcNMjYwMzEzMTgwMDMyWjAzMTEwLwYDVQQD Eyg4NTA1ZTg3MTM5YzY1MDY2ZWI0MTJiNDMzNjcyNGNiNjk2ZDBiNmE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5aCnM7JsC7scelaIyfRV0ztz9SDX N4P3kSUrkY+k3gVz3Ua5w4mwl2YzNMJN89YGZvMfOkF7BoH+b5+AnJAaLLTk4JOn ZDhAH09+WzDPpdmtZ5av45F6QlAIpvvfwy6jXrERfkmBWqpRSbTqZmQbb5CN7AsZ 0vUh0FXcsezvJsV9dyQHLMyZTMvuwWHaXFrT3I15lRFUCT6n4Rx7b6nEC37k7n+K docyYKAIK/9DOp7jiLX8alKaqQH9Na8nqFbNpcT+odNxLzh4gYhmPpJlT2QY9VS+ WI0YLdUiHD+4Kf6Bz0KiD25lU0/aMhJdMq2w+9pC+8Q+Gpif6oN1jnXc4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIUF6HE5xlBm60ErQzZyTLaW0LalMB8GA1UdIwQY MBaAFHTjwzaXIJSxqME9QYFoV9GXo6rpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZE9QRE5wY2dsTEdvd1QxQmdXaFgwWmVqcXVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8xOGM0OTgtMjE3MS00ZTFjLThkODAt YTZjNDllYjI4Mjg3LzEvZE9QRE5wY2dsTEdvd1QxQmdXaFgwWmVqcXVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi8xOGM0OTgtMjE3MS00ZTFjLThkODAtYTZjNDllYjI4Mjg3 LzEvZE9QRE5wY2dsTEdvd1QxQmdXaFgwWmVqcXVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANkXA2Oot rInvlMKmmQq/pjJa2m2RsLpqN7TRUqMZ2LrhCh9Ifp71Xjf5eoK8UimgfgJox1VE Zjg4UtMyW2Gk0QcUN5atJR+Qhngw4Xer/QfjgNLWWTKzZSenKvHFxS+978Y76bz2 NzuzB8WMfY/uyjYE5SZ2P2lQSu4e0cyJZuOCG0W7OCCyWpmx65dDYwMrE9i6orwh 2eYEms5vuk83wh0YFhRVOSCJmkkVMOSAsAyJKgopokSlzuHJEItVniwFROzNPR/b NrfNvsNiLn9xNZl2NSUsRM/NoNrHlWPn+4Jkx7yRs3vSo7jjdDHYlo2xllQQHlbj vecRL3s6XM0OQw== -----END CERTIFICATE-----Generated at Thu Mar 12 23:31:54 2026 by rpki-client