$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft File: ZbfWaZg1v-moCB38EU3xv20hXac.mft (raw, json) Hash identifier: H9JwkwPlR/0PzDu3Gl3B9C7OHQsfx10BGxG8vFHa1Nk= Subject key identifier: 30:64:15:32:B7:69:5E:85:4E:EF:39:92:25:02:D7:8B:00:B6:5E:6F Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7 Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7 Certificate serial: 019D0E567DEDC4F87E2D41A7B0ADD780D62B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft Manifest number: 1934 Signing time: Sat 21 Mar 2026 03:00:42 +0000 Manifest this update: Sat 21 Mar 2026 03:00:42 +0000 Manifest next update: Sun 22 Mar 2026 03:00:42 +0000 Files and hashes: 1: 2293WVx5FEzWqVXSDjmLVc7kfB8.roa (hash: Z0We1fzMf0PQYdkcSo2x/cAXZoyZ0rwm8YewHU6T5Q8=) 2: 3Cud0IjmLSFijPu1FHVaG-hN8Io.roa (hash: era6BJ/gH62QZKVqWWZexM6Ohqb5Okgw649Y5mKkQ3o=) 3: 55HWqxxZe2wnYl-SD-3TTNTZPYA.roa (hash: PHOed791pgRRjh0SKyECtJfcfZcGYeoyFrNZ2S7sdyo=) 4: BB19wgK_cXo8Dd4pF6PmXBrBreM.roa (hash: 3iQxoj4exX4X3C1YSZ22/4UJclsEWITyZFVoJzL/n+o=) 5: EdkIr_aloLjy1asrooEt3vPzf5A.roa (hash: gtPxzWeHEIa/RG6GCOlFbr/rigyq2NrvE6Ua39yZA0s=) 6: GVjcU6D8aWZVpw7PDbk3WG3ZDeM.roa (hash: /yPUh4RShIPRU6JRwk4aAlU3tTd7eBKky9bhRB1Hohc=) 7: Iqn2a1TzD5OARZGuXM6CI4N8Wtg.roa (hash: vh8lJd60NCX8IZI5qkAhTHaew5W6iPSaQYte6UCjL9E=) 8: Lo8n8GTpAuX3cUT5TKIwpdDYMpk.roa (hash: LFfd8LdOzsN++zViD01pBmc6X7J6TGbEOTbK6bu+kU4=) 9: MDa6kjpECMXWe15W6-w-6g5-5AE.roa (hash: EhKZtfCh9xGJEskJActy0QvC9WEnI4730g54I6PP7+8=) 10: RwRbsf_6_s1yWi7p-eL75QDFgPs.roa (hash: DgI/Jb/NnWPeaSYtffRytB12Xe456guJHdCzLMefKE8=) 11: V7bJldrOAC9AMnsBmLTIjKty43o.roa (hash: WOizHLdOu1fR+MAOiOCP8R1TI24LkdNXvt93DZ1xalw=) 12: ZbfWaZg1v-moCB38EU3xv20hXac.crl (hash: IQiyDePjNIXdQ9C/vXhryHULvWZwrYQ90d4jeSOgIx8=) 13: ctbsw4D6oWX-An4odqL9ZPDxCow.roa (hash: EK7BVitWZylgQlJDsbGdNmIJWOPX1XIbssYMftGa4LM=) 14: cuTKnPSYIqMi_v6Ugbvmok1PROw.roa (hash: 23+0bEujcw5tIRr1F8V97O5sEK7TfNzRLUEsi4oLeZQ=) 15: giZ2uZ_m5due4lBiPxv8SG1NOGc.roa (hash: 9B02223i6VysXTKxWCnxBQOkAZWOwRjQUTSDwwP8F0A=) 16: jmSRD5Pbhaie_b0T8NixTJfcSnc.roa (hash: s2xY4deOusI8dO/f5m35S6W/k+iFhPCHHaOzT9YnjuE=) 17: l_M-qcELBfH_HuI6aghWUFDtxOw.roa (hash: z2cHGTv3tLxgFFvet0Fzm8aB5Q9uQ06+bb/TW2RJpDc=) 18: lhRe_xHQCXI5rtB8SPIPogdMRdc.roa (hash: RTJfCFGZ0JUtgtMrlDAXPJi/7/7VB6A1h0/zy5VXyBQ=) 19: lr69ZnSsfxxuk1vODKFRiBaL2To.roa (hash: 37NPtx8graaK5aNHzHeeZP1iUIdHIbfvmo4GsLdMi0s=) 20: m0PCCuuKQXgWJqTZSdxwQsBX66s.roa (hash: 606ww6A+IADwULNhMsZB5CNHymRvztMh7JZEr3D5GTw=) 21: m35MBC3-R1Km-GWEprOI4k13d4o.roa (hash: LsPD64UtQd1Nb8CJ8XDG7o3lS49ig9cWrQe+LYlYhOM=) 22: mahoof4m7VQsfHWs8J1qWV__YZQ.roa (hash: fJTBlPt7bZTm/FjsAsBry9UuObsDLmAxGPqwEBr5S84=) 23: sjQCjerjRwfah-q2hwwOmAstMTo.roa (hash: N10Zo0ylNZWVNpGxcYshMOYMt1EH12p203A0DA3EChs=) 24: tLSGZw5-QpB_5fV81O2fLyOca60.roa (hash: QiSrJL6zpztpRwpWANYGtyIdsxsBMIWfzPt3CGOqWPA=) 25: uPPMfzvppi6crx_fwjzm4FFjaiU.roa (hash: T1v7WU4SmcRloZpbTO6KaFpsrh4cykq4OEhmzqxfj88=) 26: xmMlfa7iRWWb2wsgVQjfEUP18xg.roa (hash: MZHFj2EgqlivJGFIR4zUNFYVY5Bn/cspVbef0X3zPHs=) 27: zMqk1-WIYUxSncp-81GKb9JoWog.roa (hash: g3omPs3FrgCp88PJmKaoUEjf80fMum+1oxYyWWIAYGw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 22 Mar 2026 02:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:0e:56:7d:ed:c4:f8:7e:2d:41:a7:b0:ad:d7:80:d6:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7 Validity Not Before: Mar 21 03:00:42 2026 GMT Not After : Mar 22 03:00:42 2026 GMT Subject: CN=30641532b7695e854eef39922502d78b00b65e6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:8d:f1:2b:ef:ad:74:78:28:83:56:e7:fb:52: 36:e8:05:35:a8:12:23:a2:ad:11:50:3c:b7:58:db: ac:fb:b4:f4:a2:05:34:3e:82:03:b6:a8:ae:72:02: 07:46:31:91:99:30:1b:1e:1c:97:bb:30:05:24:f2: 5c:0f:9f:82:09:17:d7:65:cd:9f:2c:ba:85:65:35: d2:fd:c5:c3:50:79:d7:ba:7e:bd:ed:f6:53:63:5a: 51:e3:f9:83:15:42:49:29:ab:f7:84:eb:53:f5:7c: 39:9b:d4:4c:51:5e:0b:a0:04:5c:ee:81:1e:71:e7: 1d:3a:bb:c8:04:46:df:1a:3c:f3:32:1a:00:9a:93: 53:7f:7b:26:0c:a3:dd:c3:18:85:d3:63:86:8b:8e: c1:cd:66:31:b2:19:20:ea:52:56:c9:ff:11:da:fe: e7:71:42:e4:d3:6d:75:a0:d7:8d:7c:54:44:cf:60: 08:bf:6a:ea:e4:bf:89:d5:82:de:76:4d:3e:b3:79: f1:fe:65:a0:ad:d3:64:2d:ea:39:b6:c3:1e:45:ff: 77:30:ec:2c:25:ea:38:c2:c6:d7:f0:a9:b2:b4:12: c2:4d:e4:12:1a:e8:60:73:ae:c9:ec:46:0a:0f:f0: 3e:40:0d:60:4d:f8:b2:71:2b:89:d4:97:97:61:23: 87:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:64:15:32:B7:69:5E:85:4E:EF:39:92:25:02:D7:8B:00:B6:5E:6F X509v3 Authority Key Identifier: keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:19:9c:fe:46:42:70:98:be:ed:89:b8:5a:9d:6b:6b:51:cd: 5d:b2:b9:0d:e8:12:dc:d7:49:8c:71:8f:92:af:e1:b4:b4:29: 9a:cd:5f:9a:3b:18:16:4f:91:68:d2:15:31:ed:58:84:ab:e9: 3d:53:2a:8a:ba:c3:7b:4d:51:fa:ed:b7:34:d8:f4:78:3a:1d: 8b:05:bb:13:a0:ed:fe:7d:b0:e8:57:fc:7f:7b:9d:40:90:25: 60:90:49:0d:9f:44:ef:12:dd:a0:8a:73:25:8c:da:40:9b:96: 67:0b:f3:3c:b7:09:0a:f2:f3:93:70:ec:e9:c1:bd:75:c1:11: e9:cf:f4:0d:a9:89:9a:42:7c:76:f7:0c:12:9f:ec:35:43:b3: d3:9b:c5:3c:44:99:f6:a0:d0:20:d8:38:72:67:ba:f9:f1:34: eb:54:7b:75:ef:17:24:02:b0:4e:01:39:fd:0d:61:35:fb:b0: 91:99:5f:7d:0f:eb:fc:42:59:81:a4:56:b7:a4:9b:a9:f5:e1: c3:5d:79:41:e7:db:d7:e7:54:a8:30:9b:6e:a3:0e:76:d9:83: df:36:46:37:b6:c2:e0:be:b0:87:31:9b:33:e5:61:a2:22:a4: 49:52:30:81:08:fc:6d:19:c2:8e:b4:a4:0e:1e:aa:a3:e6:b4: 92:d5:1c:d3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0OVn3txPh+LUGnsK3XgNYrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1YjdkNjY5OTgzNWJmZTlhODA4MWRmYzExNGRmMWJmNmQy MTVkYTcwHhcNMjYwMzIxMDMwMDQyWhcNMjYwMzIyMDMwMDQyWjAzMTEwLwYDVQQD EygzMDY0MTUzMmI3Njk1ZTg1NGVlZjM5OTIyNTAyZDc4YjAwYjY1ZTZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0o3xK++tdHgog1bn+1I26AU1qBIj oq0RUDy3WNus+7T0ogU0PoIDtqiucgIHRjGRmTAbHhyXuzAFJPJcD5+CCRfXZc2f LLqFZTXS/cXDUHnXun697fZTY1pR4/mDFUJJKav3hOtT9Xw5m9RMUV4LoARc7oEe cecdOrvIBEbfGjzzMhoAmpNTf3smDKPdwxiF02OGi47BzWYxshkg6lJWyf8R2v7n cULk0211oNeNfFREz2AIv2rq5L+J1YLedk0+s3nx/mWgrdNkLeo5tsMeRf93MOws Jeo4wsbX8KmytBLCTeQSGuhgc67J7EYKD/A+QA1gTfiycSuJ1JeXYSOHsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDBkFTK3aV6FTu85kiUC14sAtl5vMB8GA1UdIwQY MBaAFGW31mmYNb/pqAgd/BFN8b9tIV2nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWmJmV2FaZzF2LW1vQ0IzOEVVM3h2MjBoWGFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC8wMjVlZTgtM2Y0Ny00NTdkLThkNDct OWU0MTNlYmY0MmYzLzEvWmJmV2FaZzF2LW1vQ0IzOEVVM3h2MjBoWGFjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC8wMjVlZTgtM2Y0Ny00NTdkLThkNDctOWU0MTNlYmY0MmYz LzEvWmJmV2FaZzF2LW1vQ0IzOEVVM3h2MjBoWGFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAExmc/kZC cJi+7Ym4Wp1ra1HNXbK5DegS3NdJjHGPkq/htLQpms1fmjsYFk+RaNIVMe1YhKvp PVMqirrDe01R+u23NNj0eDodiwW7E6Dt/n2w6Ff8f3udQJAlYJBJDZ9E7xLdoIpz JYzaQJuWZwvzPLcJCvLzk3Ds6cG9dcER6c/0DamJmkJ8dvcMEp/sNUOz05vFPESZ 9qDQINg4cme6+fE061R7de8XJAKwTgE5/Q1hNfuwkZlffQ/r/EJZgaRWt6SbqfXh w115Qefb1+dUqDCbbqMOdtmD3zZGN7bC4L6whzGbM+VhoiKkSVIwgQj8bRnCjrSk Dh6qo+a0ktUc0w== -----END CERTIFICATE-----Generated at Sat Mar 21 08:01:49 2026 by rpki-client