$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft File: Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft (raw, json) Hash identifier: 1QVYjYs0Y7yvBZaNOm2AqXZwE5lVT2+/wCo92z2c5XQ= Subject key identifier: 97:60:EA:ED:83:1E:AF:DD:2A:2E:13:C5:50:43:FA:BF:0F:05:7D:47 Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65 Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65 Certificate serial: 019CC899EE0D3F9F8F2356A2736D73DBB3FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft Manifest number: 0BB9 Signing time: Sat 07 Mar 2026 14:00:56 +0000 Manifest this update: Sat 07 Mar 2026 14:00:56 +0000 Manifest next update: Sun 08 Mar 2026 14:00:56 +0000 Files and hashes: 1: 1vbf4idXUPCWVm0PjanUNDzo3LM.roa (hash: /Im6rBlfP/hqnXVPz/7A/iNYH4vUpjF3xS/bQj/oQ5Q=) 2: 2KGI0ncnRfDhkkE_GeDt4kg9A6A.roa (hash: D03oFEIOCPyMTFkWyGOuVN6dyHDgUfDh2sP45/yVk0M=) 3: 7ZlxFMTrvWHxaDQj8cGRFKFOYRs.roa (hash: cMX6h6ESvCK8kLWWGv+cii+7hJJzZRIJOKQPIQ2Prc4=) 4: 99pLW5NSdSWyy1K_KuBziUqycLU.roa (hash: iIMALiQte4M3j2/lLwOQNkJ4eCV7WxTe0kTN8g67L1E=) 5: BVH6b7o32zruo819dGQ7RJqUDl8.roa (hash: xnWOB/u8pFkczKp6SQPwHh+agMf57JcMqkeEhSQno3k=) 6: CFRA8brf5sE4J0Vi_mv81svugxI.roa (hash: uvljp7f/z0E6aDzdRUCbiXg1uxB0BXMPXZAh/OfcnR8=) 7: O95FYcJt2MJqQBJC_AIOSexxhY0.roa (hash: 0fj+Bm1xvWakTGbe1RmNsauUNwiHSCe1QzuuMJQvQKI=) 8: Q319puPuZ6pEVFIow6HSoz6aiu4.roa (hash: w5OU1Qsqqe0TAPMfpoTlrKdZQKLeQmRMZSWdZEzQ0ZA=) 9: R2Xs7XqXEclO85JXT59oGHv2UUY.roa (hash: nIFGF9nru9tSwOgFOZOY266TEUqFgtMmSxtUiekx1us=) 10: SRu3Oj_JR0Aqw1_pXOqCkyqZiNM.roa (hash: OXGfPj6oOrbejLX45mK4NILgwBe4FcCaUI2RA3UNsvQ=) 11: UGOdZFnWOaDTUW1gBJTVRUvwwsg.roa (hash: 31f0c90jHRTJFbEadEWirIAL83TgIDaQVunpcdqq/Lc=) 12: WBXZwfjVQMhyPd0wAfSbxYfJifA.roa (hash: 7Zi1rF/rVFpFWu59NAjvAspfxDVu7Q9niDEtiwGb2YM=) 13: YnEzVxxydocNJgTIMFRXPna0zB4.roa (hash: ZgavJWzGoXn3e/0BfVR/irboVRcmVNTc0rTuF6DBaG8=) 14: Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl (hash: gqNSLuWYHaZC0eEXW99kSudVOT7Q5Ig4JeFch8jqt6w=) 15: fja8EDLSj-GXWp-ja1-kSk00taQ.roa (hash: fV9XPVZHv5y/fbzPwaa+4kN4atFK0nZgUPlx8b1imXU=) 16: qUJVzkvCS28CT-LmqvhYZclQCzE.roa (hash: BntXpT1OhjVzTBdajvz/YjJOLIAqWeZhu5LfIQJSn34=) 17: ulmVQiOp1gOs49EtEkyImPsqtd0.roa (hash: f351U+o3k5FK4942+J3BTuz1lhxg1e9CRMaV4iDlrp0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Mar 2026 10:49:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:c8:99:ee:0d:3f:9f:8f:23:56:a2:73:6d:73:db:b3:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67499595a65aab0b53768def08091e31061e9e65 Validity Not Before: Mar 7 14:00:56 2026 GMT Not After : Mar 8 14:00:56 2026 GMT Subject: CN=9760eaed831eafdd2a2e13c55043fabf0f057d47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:61:71:99:2f:b7:59:45:6f:b8:32:0a:72:cb: 5d:25:ac:b2:69:99:81:bd:47:3e:bb:11:15:b7:91: 58:5b:3f:ce:18:43:dc:f9:51:b9:e3:d9:df:4a:3c: 14:67:de:49:07:4c:74:05:62:29:93:f0:8f:10:a9: 0d:80:64:7f:66:7d:a2:ac:e6:dc:29:35:b1:81:5e: ef:c1:63:53:c6:2f:38:e4:ff:f6:21:24:ac:8a:70: 46:5e:62:4f:e5:2c:05:be:dc:66:92:d8:17:c3:51: 12:ed:49:65:87:b7:a1:9b:75:67:ed:1b:80:be:ee: ba:77:49:ac:f8:c4:62:53:b9:21:3f:04:7f:bc:e6: b8:7c:55:ca:f6:92:e8:82:17:62:06:ec:d0:57:04: b6:81:6a:b1:37:32:21:38:fc:06:6b:45:64:fa:54: 79:d2:df:69:08:74:a0:ba:7f:5d:bf:34:77:62:fe: a4:42:1e:96:92:1b:bc:bf:14:c8:7d:56:35:3e:b1: e2:82:6e:9f:9c:52:ab:af:db:6c:d3:8e:9c:e9:f0: 24:cf:eb:22:bb:13:8b:a4:c5:64:21:12:df:bb:a9: cd:2c:26:d0:d0:e6:03:c9:84:c2:42:ec:4a:b0:a9: 99:fe:29:36:ee:e2:73:a9:88:a1:17:92:cc:e3:61: 83:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:60:EA:ED:83:1E:AF:DD:2A:2E:13:C5:50:43:FA:BF:0F:05:7D:47 X509v3 Authority Key Identifier: keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:63:a1:d2:ab:d0:30:bb:34:43:d5:bb:26:87:92:8c:87:24: 6f:d9:cd:1a:67:7a:de:88:5d:0a:a9:af:f0:e6:b9:d2:80:08: dd:48:bc:a6:4b:8c:bd:01:7b:c1:5c:59:c4:b0:72:ef:0a:99: 86:38:69:81:ad:61:cc:ab:48:83:2a:46:83:fd:b1:6a:fa:f7: 9f:91:90:2a:05:ca:4b:16:a0:f8:49:46:e1:6d:41:99:2b:b0: 28:e5:1c:52:45:55:94:8e:66:64:b8:c3:ee:81:e6:6e:5b:d1: 8a:67:d5:96:dc:c3:98:a3:84:f3:65:36:22:8e:8f:08:ad:d2: cb:60:58:14:a6:a0:65:9e:3f:90:5e:fa:d2:05:c5:fe:69:3f: 7a:cb:87:e9:c7:f4:a6:e4:55:57:5f:59:53:3a:db:c7:41:dc: 1a:db:b4:68:a0:e9:45:50:81:da:a8:e9:04:37:b0:7d:19:75: 3d:bc:24:0a:38:35:89:45:85:fd:94:a8:9c:4c:92:00:ad:b0: 3a:45:31:6d:fd:0c:5b:35:96:1a:5f:e2:60:eb:56:84:ed:10: a2:71:bb:d4:c6:cc:d6:69:7e:3a:0d:65:03:40:3a:fe:ef:2a: 9d:da:88:92:c8:6a:8a:16:ca:e9:a2:04:96:7a:7c:f9:91:83: 68:d0:bc:89 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZzIme4NP5+PI1aic21z27P7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3NDk5NTk1YTY1YWFiMGI1Mzc2OGRlZjA4MDkxZTMxMDYx ZTllNjUwHhcNMjYwMzA3MTQwMDU2WhcNMjYwMzA4MTQwMDU2WjAzMTEwLwYDVQQD Eyg5NzYwZWFlZDgzMWVhZmRkMmEyZTEzYzU1MDQzZmFiZjBmMDU3ZDQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6mFxmS+3WUVvuDIKcstdJayyaZmB vUc+uxEVt5FYWz/OGEPc+VG549nfSjwUZ95JB0x0BWIpk/CPEKkNgGR/Zn2irObc KTWxgV7vwWNTxi845P/2ISSsinBGXmJP5SwFvtxmktgXw1ES7Ullh7ehm3Vn7RuA vu66d0ms+MRiU7khPwR/vOa4fFXK9pLoghdiBuzQVwS2gWqxNzIhOPwGa0Vk+lR5 0t9pCHSgun9dvzR3Yv6kQh6Wkhu8vxTIfVY1PrHigm6fnFKrr9ts046c6fAkz+si uxOLpMVkIRLfu6nNLCbQ0OYDyYTCQuxKsKmZ/ik27uJzqYihF5LM42GDhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJdg6u2DHq/dKi4TxVBD+r8PBX1HMB8GA1UdIwQY MBaAFGdJlZWmWqsLU3aN7wgJHjEGHp5lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTct MzU1MDgwNDE2NTJkLzEvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTctMzU1MDgwNDE2NTJk LzEvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVmOh0qvQ MLs0Q9W7JoeSjIckb9nNGmd63ohdCqmv8Oa50oAI3Ui8pkuMvQF7wVxZxLBy7wqZ hjhpga1hzKtIgypGg/2xavr3n5GQKgXKSxag+ElG4W1BmSuwKOUcUkVVlI5mZLjD 7oHmblvRimfVltzDmKOE82U2Io6PCK3Sy2BYFKagZZ4/kF760gXF/mk/esuH6cf0 puRVV19ZUzrbx0HcGtu0aKDpRVCB2qjpBDewfRl1PbwkCjg1iUWF/ZSonEySAK2w OkUxbf0MWzWWGl/iYOtWhO0QonG71MbM1ml+Og1lA0A6/u8qndqIkshqihbK6aIE lnp8+ZGDaNC8iQ== -----END CERTIFICATE-----Generated at Sat Mar 7 19:21:20 2026 by rpki-client