$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft File: iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft (raw, json) Hash identifier: lmLCU8+5ImT2GMOlMT/csiSFctl9ZYy83TrNJ6Qjmy4= Subject key identifier: 05:07:DD:E3:BA:93:4B:4D:E7:E2:AB:FC:41:7B:39:20:32:3E:CE:F6 Authority key identifier: 89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08 Certificate issuer: /CN=896a82a725ed22bb46847ae568912078de25c108 Certificate serial: 019D21A74DF6C7A301463EF9B6E3EA96ECF2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft Manifest number: 1892 Signing time: Tue 24 Mar 2026 21:01:45 +0000 Manifest this update: Tue 24 Mar 2026 21:01:45 +0000 Manifest next update: Wed 25 Mar 2026 21:01:45 +0000 Files and hashes: 1: As_pVbbnYy_pmBMm0RcX49iX6nY.roa (hash: qzus9UnBcueHhtxBHMySF8j/gf9sbzuNZT387lhMVtE=) 2: Q7kjVEhiYHEz_AIBuFCX2o6kXpQ.roa (hash: MuV9xof7zxa6mZSUu9k4zgmUqNgq/+xzFvRw2ejciSU=) 3: UhbmNbA2hwd3CclD7uA5e7VB30s.roa (hash: juSkCYLLU3kVaC1Dq0hdQw2DrlMO0olfzSo1w3Y2IAk=) 4: Z2JoyRveJcrOS84W6TpEPChd0u8.roa (hash: aEKu2ZE0v6kUC0OnwN6L0HbgZBJi/Gu9YSjx1j8FGfg=) 5: aC9Q_3qjddY1l6-wNmHh31rhiv4.roa (hash: uKO8uok9xpbvJA3MGYKk7ndaYzKJUW2pxyQNGvBjSDU=) 6: aVkTnnbGIe4fDpGVb6wjTSR-yLQ.roa (hash: mPn9lf0kaEtQghK8NnucRSJ4lyasaPeghHp1g2R6ywY=) 7: cZkC82-vLrRXW7ttrbp1YPZPpe0.roa (hash: X7Xi6DZVONjtuDM1mnYOVnatQGs+c73Ycapzeqr5W+A=) 8: iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl (hash: 3Q9w8cJIQFVTXH5hj8F1BfkJchuLFw741eeZl8aWni8=) 9: ozLeruCkBhC4yZCUw5lMFfl-TtM.roa (hash: ygWG9N1PXEIgHYpH9dLMI7Qu5ggvIeMB+/+Dm4Mbbz4=) 10: q47qpt1p1Wj02CxPXYgOsikq_GY.roa (hash: RR0Z4b1X2W/yjPPcvR1hUKYG5qy0mYBUJ7YN4lZTqrk=) 11: s0Slj9yVMX7lCq79bqSGCqW6KPg.roa (hash: RaEewhp7TYWAZZHFh2A3/CMtjGLdyIT76c5b57zkYYU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 25 Mar 2026 21:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:21:a7:4d:f6:c7:a3:01:46:3e:f9:b6:e3:ea:96:ec:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=896a82a725ed22bb46847ae568912078de25c108 Validity Not Before: Mar 24 21:01:45 2026 GMT Not After : Mar 25 21:01:45 2026 GMT Subject: CN=0507dde3ba934b4de7e2abfc417b3920323ecef6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:83:5a:f5:4a:f3:55:df:45:62:e7:94:ac:a0: 05:b7:61:bf:ba:f1:3e:6d:54:60:29:cf:e6:02:4f: 57:8a:4f:4b:60:1d:b4:a6:e4:36:ca:1a:ef:b2:f9: 0d:5e:c7:84:b2:b7:47:2f:e0:23:6a:73:bf:ea:f8: cc:ec:9a:7d:cd:d8:18:3b:d5:90:ce:d4:6d:e8:28: f4:a5:42:80:0a:8f:81:55:da:a5:ea:f9:c0:c2:76: bd:28:e9:4c:f7:56:c7:e8:b9:49:40:6d:97:ff:b7: e4:da:a2:29:7c:85:aa:41:dc:45:2a:35:1b:fd:cc: 0b:af:7a:57:f2:a9:5a:e6:4d:59:59:ef:1e:8d:8f: ad:ac:4c:12:04:70:3e:79:08:cb:1d:94:11:ab:42: 8e:cc:79:d7:63:c6:d7:5b:0c:c7:ab:a3:e1:a6:46: 31:20:9a:55:e1:c9:59:fe:20:86:ea:eb:04:dc:8c: 35:80:e8:6d:0c:56:30:ed:3e:4c:33:27:c8:99:4f: 4b:51:95:f9:86:ee:74:a5:d5:42:89:26:68:22:fb: 6e:5d:84:01:97:a9:a3:02:4c:29:99:f2:a8:7d:bb: 5a:11:62:c2:5a:ee:f3:af:1d:d5:d4:79:73:a8:e1: 85:4c:2f:b3:af:cd:ee:b6:da:55:70:17:07:5a:99: 79:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:07:DD:E3:BA:93:4B:4D:E7:E2:AB:FC:41:7B:39:20:32:3E:CE:F6 X509v3 Authority Key Identifier: keyid:89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:55:68:a3:22:79:92:38:e7:2e:bc:76:a3:6f:20:88:45:a7: 65:52:2c:26:12:f1:fd:8c:33:5f:90:7a:4d:48:32:a1:da:c3: 20:38:ac:ae:f5:6d:d5:96:2d:8b:ec:ba:20:66:0e:bc:cb:40: 1a:7f:05:ae:23:87:87:5d:1a:17:a4:61:53:b4:31:cf:52:3c: 0a:98:1d:69:6f:a2:d7:dd:6c:1a:d7:03:04:fb:6f:ac:ca:00: 98:35:0b:3d:56:5c:84:51:3f:8a:aa:4f:d1:2e:d7:2a:01:c2: 21:b3:79:7c:6f:3a:c6:78:fb:13:7c:2c:31:02:0f:80:b8:6c: ef:b9:09:ec:68:8e:10:df:0d:bf:1f:39:0d:be:f5:13:68:6f: eb:fb:c8:d3:1e:05:d0:eb:97:33:c5:ab:37:28:47:7b:37:b6: b3:e1:b1:88:40:e7:4f:42:d8:9a:9f:b4:9f:0d:ab:7c:86:77: b3:b6:f7:09:7a:64:04:b4:0e:f7:0c:0c:f6:95:5d:bc:be:01: 50:c6:bb:24:bb:44:63:b9:bb:c1:3a:cd:a4:6f:78:32:44:c5: aa:4a:1f:55:5f:c1:78:6f:ec:a9:91:72:9f:89:3c:f4:2c:3e: 67:39:48:42:ba:02:e0:79:d9:c6:66:8b:11:90:66:da:c5:c1: bf:84:ae:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0hp032x6MBRj75tuPqluzyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5NmE4MmE3MjVlZDIyYmI0Njg0N2FlNTY4OTEyMDc4ZGUy NWMxMDgwHhcNMjYwMzI0MjEwMTQ1WhcNMjYwMzI1MjEwMTQ1WjAzMTEwLwYDVQQD EygwNTA3ZGRlM2JhOTM0YjRkZTdlMmFiZmM0MTdiMzkyMDMyM2VjZWY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApINa9UrzVd9FYueUrKAFt2G/uvE+ bVRgKc/mAk9Xik9LYB20puQ2yhrvsvkNXseEsrdHL+AjanO/6vjM7Jp9zdgYO9WQ ztRt6Cj0pUKACo+BVdql6vnAwna9KOlM91bH6LlJQG2X/7fk2qIpfIWqQdxFKjUb /cwLr3pX8qla5k1ZWe8ejY+trEwSBHA+eQjLHZQRq0KOzHnXY8bXWwzHq6PhpkYx IJpV4clZ/iCG6usE3Iw1gOhtDFYw7T5MMyfImU9LUZX5hu50pdVCiSZoIvtuXYQB l6mjAkwpmfKofbtaEWLCWu7zrx3V1HlzqOGFTC+zr83uttpVcBcHWpl5+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAUH3eO6k0tN5+Kr/EF7OSAyPs72MB8GA1UdIwQY MBaAFIlqgqcl7SK7RoR65WiRIHjeJcEIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC8zZmM4ZGEtMzUxNS00MzRkLTlmMGUt MDQwMTI3MTAyMjA5LzEvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC8zZmM4ZGEtMzUxNS00MzRkLTlmMGUtMDQwMTI3MTAyMjA5 LzEvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKVVooyJ5 kjjnLrx2o28giEWnZVIsJhLx/YwzX5B6TUgyodrDIDisrvVt1ZYti+y6IGYOvMtA Gn8FriOHh10aF6RhU7Qxz1I8CpgdaW+i191sGtcDBPtvrMoAmDULPVZchFE/iqpP 0S7XKgHCIbN5fG86xnj7E3wsMQIPgLhs77kJ7GiOEN8Nvx85Db71E2hv6/vI0x4F 0OuXM8WrNyhHeze2s+GxiEDnT0LYmp+0nw2rfIZ3s7b3CXpkBLQO9wwM9pVdvL4B UMa7JLtEY7m7wTrNpG94MkTFqkofVV/BeG/sqZFyn4k89Cw+ZzlIQroC4HnZxmaL EZBm2sXBv4SuRg== -----END CERTIFICATE-----Generated at Wed Mar 25 04:11:17 2026 by rpki-client