$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft File: oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft (raw, json) Hash identifier: PUWjoBCJWj3nvtMX8HCKh/gsBeuaDgZVGyxtCOIAphk= Subject key identifier: 8E:DF:F3:99:B8:88:0C:6D:AC:99:A7:1E:47:76:9B:1C:C0:2E:8D:74 Authority key identifier: A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7 Certificate issuer: /CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7 Certificate serial: 019CE03448A00DA6451236A73D59192DFC3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft Manifest number: 07EF Signing time: Thu 12 Mar 2026 04:00:48 +0000 Manifest this update: Thu 12 Mar 2026 04:00:48 +0000 Manifest next update: Fri 13 Mar 2026 04:00:48 +0000 Files and hashes: 1: 1-EbrvxNY7jUJJte1JMBcOC69EBk.roa (hash: /M4gkvV/7tnw4BlBdpuc1viYnL0XhtHAFXwLDGq3QCg=) 2: NjOJ8tUpqLJAAfHhfTTwUysAm7s.roa (hash: 3a42jEcgSU6c6ZDozj7GhmcER8SN0dScIEdBDzntTP4=) 3: OA81K4GFXKVrjD-M584jTyFYST8.roa (hash: C4S9fMtXlXuIFqggmB3QlimOTqdUpyywlGKQgdOtY5w=) 4: YpbC5jk8lzSJpred_IHkkCVUCKE.roa (hash: Zo4+zcIWbT83bhve20wlbO77GzQpKYPsD28KLD9jN8Y=) 5: YxQb53gzYd0iTmUe7A41D-2rnY8.roa (hash: q+Z1iMu62RV5K/wK7fU9JbtFm1jSO7NLnuxYy0Ettbk=) 6: h_aNMTHSod3zvEv_zlqSsdV20TQ.roa (hash: GccHbmvEFlhiHjnJ+i3nG2pD81e9dD/oLrnSrArj6ig=) 7: oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl (hash: FJiHcJE3/O+rOMp/j2bZ46pt6//AbB8+ReQwAnUa2yU=) 8: oh53IB-aUH2plypNUq8_qw59tUU.roa (hash: k/rLC3QFD8nEmci+tQAmE7NOGPMxS4KDVOpLNqgFsg4=) 9: vyjCA1W9-6KFsgjaGvfzXuiMYLQ.roa (hash: 7JV7egLgY4Bzr/UvgYj0RPwIqhuXjEo3YWECD7QdwW0=) 10: wtolA6HMGVvPA6gYljfUXhGgO9w.roa (hash: 9lH1rM52hRaE2Kxe2ZgcgE2kAZOcfeGaiUJXArzl1qI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 13 Mar 2026 04:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:e0:34:48:a0:0d:a6:45:12:36:a7:3d:59:19:2d:fc:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a124ccdd70f3ec762cbd65e04dd6f76be236a8a7 Validity Not Before: Mar 12 04:00:48 2026 GMT Not After : Mar 13 04:00:48 2026 GMT Subject: CN=8edff399b8880c6dac99a71e47769b1cc02e8d74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0a:eb:68:a1:b1:66:35:32:fb:e7:58:0b:fb: 44:de:ac:50:b2:53:2f:29:50:85:91:ac:5e:2f:bf: 64:48:01:31:4b:57:65:47:2d:df:dd:36:85:e2:fa: a0:06:b5:03:f9:78:ee:ba:c4:88:b5:48:81:bc:56: 13:4a:ba:c3:c8:72:95:43:98:fc:95:01:11:11:3b: fe:40:73:f7:b8:05:51:84:e5:f9:fe:1e:9d:5e:dc: 7e:de:11:3f:4d:5a:1c:eb:3c:96:c4:01:55:f7:2a: eb:d6:6b:d5:3c:c9:de:e7:5a:92:47:ec:d0:40:b1: e2:fe:35:52:d8:dd:2b:9d:e5:71:86:2a:2e:a5:7e: eb:27:6b:ab:87:c1:97:e7:18:22:d9:de:c0:46:55: 45:b3:fe:e9:71:ac:9a:2d:81:06:fe:1d:d5:3f:97: 1e:bc:97:71:2d:fd:6b:0f:c3:1e:c0:95:9f:94:c2: 8e:7f:fb:1f:24:23:f6:b6:2b:ca:69:e4:e2:01:e3: 60:48:70:ed:ad:22:2d:6c:ee:c2:9c:36:63:9c:55: fe:f6:ab:e6:1d:43:52:c4:68:d9:a5:79:e9:98:1a: d0:a9:f7:70:76:07:f7:92:40:99:18:8c:26:92:e7: cb:40:6f:48:9a:9a:62:f5:f1:85:90:fb:d7:ce:6d: 78:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:DF:F3:99:B8:88:0C:6D:AC:99:A7:1E:47:76:9B:1C:C0:2E:8D:74 X509v3 Authority Key Identifier: keyid:A1:24:CC:DD:70:F3:EC:76:2C:BD:65:E0:4D:D6:F7:6B:E2:36:A8:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oSTM3XDz7HYsvWXgTdb3a-I2qKc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b694b8-8211-4c06-9c81-7b35397af2f7/1/oSTM3XDz7HYsvWXgTdb3a-I2qKc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:fe:b0:13:a3:4f:cb:16:f7:5e:5b:6e:46:69:1c:eb:6f:8b: f8:2d:ae:eb:13:ef:10:23:7d:3c:87:c1:38:31:5b:cd:3b:87: ae:b4:87:2f:75:a1:84:4d:54:1b:5b:a5:5f:50:5f:10:19:57: 05:6c:e2:32:57:2d:4a:61:1f:9d:cf:55:67:4e:ed:45:93:8e: 18:b3:4a:cb:ca:5f:f9:83:92:bb:a8:57:a7:93:77:3d:21:60: 04:f0:ea:d7:0f:cb:0e:b9:56:0c:bb:89:dc:6a:f5:5e:a2:17: 4a:9c:77:7a:3f:02:15:70:92:d2:9b:c5:60:c5:1e:85:a0:f1: f7:e4:c4:80:25:6d:15:ce:ec:8d:0c:5a:53:f4:cc:1a:6e:1f: 2e:d6:bc:6b:4a:93:29:85:e5:3a:5c:a0:a9:5f:26:e1:58:0a: 30:9a:4e:bb:99:fc:47:f7:0a:f3:10:90:6f:b7:5d:bd:b4:ba: 8d:c9:b2:23:ab:25:f0:5e:ed:4b:48:1d:9d:d0:81:6b:8d:46: 78:5b:17:b1:66:d6:67:6d:08:52:b7:df:aa:8a:48:f8:ce:a4: 16:9c:92:42:93:d9:6b:81:ad:8a:54:7c:49:ce:53:ba:0d:96: 94:8a:e0:3e:de:26:38:ec:3d:dd:c1:66:80:a4:b2:99:8f:73: 04:7e:0c:05 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZzgNEigDaZFEjanPVkZLfw+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExMjRjY2RkNzBmM2VjNzYyY2JkNjVlMDRkZDZmNzZiZTIz NmE4YTcwHhcNMjYwMzEyMDQwMDQ4WhcNMjYwMzEzMDQwMDQ4WjAzMTEwLwYDVQQD Eyg4ZWRmZjM5OWI4ODgwYzZkYWM5OWE3MWU0Nzc2OWIxY2MwMmU4ZDc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvwrraKGxZjUy++dYC/tE3qxQslMv KVCFkaxeL79kSAExS1dlRy3f3TaF4vqgBrUD+XjuusSItUiBvFYTSrrDyHKVQ5j8 lQERETv+QHP3uAVRhOX5/h6dXtx+3hE/TVoc6zyWxAFV9yrr1mvVPMne51qSR+zQ QLHi/jVS2N0rneVxhioupX7rJ2urh8GX5xgi2d7ARlVFs/7pcayaLYEG/h3VP5ce vJdxLf1rD8MewJWflMKOf/sfJCP2tivKaeTiAeNgSHDtrSItbO7CnDZjnFX+9qvm HUNSxGjZpXnpmBrQqfdwdgf3kkCZGIwmkufLQG9Imppi9fGFkPvXzm14jQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI7f85m4iAxtrJmnHkd2mxzALo10MB8GA1UdIwQY MBaAFKEkzN1w8+x2LL1l4E3W92viNqinMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9iNjk0YjgtODIxMS00YzA2LTljODEt N2IzNTM5N2FmMmY3LzEvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni9iNjk0YjgtODIxMS00YzA2LTljODEtN2IzNTM5N2FmMmY3 LzEvb1NUTTNYRHo3SFlzdldYZ1RkYjNhLUkycUtjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWv6wE6NP yxb3XltuRmkc62+L+C2u6xPvECN9PIfBODFbzTuHrrSHL3WhhE1UG1ulX1BfEBlX BWziMlctSmEfnc9VZ07tRZOOGLNKy8pf+YOSu6hXp5N3PSFgBPDq1w/LDrlWDLuJ 3Gr1XqIXSpx3ej8CFXCS0pvFYMUehaDx9+TEgCVtFc7sjQxaU/TMGm4fLta8a0qT KYXlOlygqV8m4VgKMJpOu5n8R/cK8xCQb7ddvbS6jcmyI6sl8F7tS0gdndCBa41G eFsXsWbWZ20IUrffqopI+M6kFpySQpPZa4GtilR8Sc5Tug2WlIrgPt4mOOw93cFm gKSymY9zBH4MBQ== -----END CERTIFICATE-----Generated at Thu Mar 12 12:49:18 2026 by rpki-client