$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft File: bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft (raw, json) Hash identifier: KO7o9Kj0n6FnXAYuTpzy2cgiIB1d0K/LpHxAkUI+diM= Subject key identifier: 9B:D6:80:D8:79:4A:EB:A5:51:4A:D3:1C:2B:C0:03:B1:38:96:E3:B1 Authority key identifier: 6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 Certificate issuer: /CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Certificate serial: 019CE33530FE03869788AFD59D952D66AC7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft Manifest number: 18EA Signing time: Thu 12 Mar 2026 18:00:39 +0000 Manifest this update: Thu 12 Mar 2026 18:00:39 +0000 Manifest next update: Fri 13 Mar 2026 18:00:39 +0000 Files and hashes: 1: TjYcJALyGbmW-x31ry7QsUvdQtQ.roa (hash: knhLPKVdJjwTBCuKiy0BNSL8TQGPgiu2tFYYWRO2204=) 2: baEkayAg80jmYDBU-ExaHSLpuaI.roa (hash: nAErtQy9uElHFQjfJS5ckQ4epiwL6hvpsQEYN9BEeqw=) 3: bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl (hash: x9E1tm8xXosatHXCSSJX1GXaV0Ay4PXaplpMVY8lqXw=) 4: cGs3UaDvGLQ1Q_TQpZAPaINt4Es.roa (hash: W7uHnT9KoPvCIjHy/wyMQaAb03AUeFyxBB7Do1XvIvI=) 5: ebSZBecc7df92SgP59-y12trz8Y.roa (hash: eWLHCXv7jbIrxX4dZcu1pV/1wCL3MzIiRwN/vf2jitQ=) 6: nmGtGkrhBfqxDaqozTHEU7woU_8.roa (hash: myNlScXFtUNhqDOYxLDED2mEeSRwem2M2mluAw2qbGU=) 7: oRALtbh2nuCRd23sDYqfy35X5z0.roa (hash: jC6NP1kM59PVY3etFPE/j9NV0XqouvnOb2E4RPSGrX4=) 8: pI2S2lg5Mevtnr1gNuhTMLXlTZk.roa (hash: 5cp4WqQX2Fq4/2gG8NNXNJQnzkTkhV+uz8kgPR8ik8M=) 9: pUi-gLSXqZ0JaQPDBRSSYpMiavg.roa (hash: BVbd5i0a2oHy3QrO+gV4ifjJEQxi06QcvV9UBgsyx9E=) 10: rWySjgHmxws3lM6jmie75S8CDBw.roa (hash: At0oBHsNt1VyqDJTW3hMzgCfUrv9SJ/hPxisShjHIa0=) 11: yYjK6TLqyOsG3tmiBYFMP1Aoexg.roa (hash: 3ZWyZKdoBkHem28rqJLRhRuGSLJ2oX1IHJZHOWmP0p0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 13 Mar 2026 15:04:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:e3:35:30:fe:03:86:97:88:af:d5:9d:95:2d:66:ac:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Validity Not Before: Mar 12 18:00:39 2026 GMT Not After : Mar 13 18:00:39 2026 GMT Subject: CN=9bd680d8794aeba5514ad31c2bc003b13896e3b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:17:cb:38:92:57:ae:8d:0f:b9:cc:30:0a:f1: 87:af:ca:17:48:fd:97:ed:bf:d1:00:d1:de:79:92: a6:38:e4:91:e8:d5:d9:ac:36:9e:64:94:45:d4:e8: 25:2d:40:e7:7a:ba:f6:03:c7:c1:cd:cc:64:08:dc: 99:77:54:7c:6b:80:69:63:db:6f:61:ee:7e:04:88: b6:86:eb:18:a6:33:f1:dd:85:6a:5d:f8:0b:b7:00: 0f:cf:db:4e:13:e7:e9:a3:40:7e:ce:72:3d:ea:d2: 28:24:a1:ba:5f:90:48:89:88:98:55:ef:cc:47:6b: a2:df:97:da:4f:c5:e0:0c:e0:19:76:37:10:ce:fa: 34:26:81:bb:42:92:ac:47:b8:a6:da:69:a9:11:73: e0:f5:89:5a:6f:7f:d7:7c:af:53:3c:eb:27:32:c5: a8:e1:13:82:a3:6d:a4:85:62:36:14:6a:1f:48:9d: bc:79:63:ae:43:b3:e7:1b:2c:71:89:57:4b:3d:6f: 5d:2a:35:7c:70:1b:97:03:5a:4a:ac:f0:db:36:ff: 72:6b:c1:75:51:33:dd:c5:2c:fb:b7:a9:53:ac:1c: 96:12:24:49:88:52:36:60:2f:8e:52:c4:b7:b6:c0: e2:22:72:66:8d:0b:cc:d5:23:2d:1c:9b:aa:86:e5: 76:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:D6:80:D8:79:4A:EB:A5:51:4A:D3:1C:2B:C0:03:B1:38:96:E3:B1 X509v3 Authority Key Identifier: keyid:6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:c9:d0:14:45:6c:82:fc:24:06:9a:2a:63:e7:d1:25:75:5e: fb:b3:0d:1d:db:95:aa:9a:40:76:3d:0b:98:79:b5:50:6f:2a: fd:4e:67:89:0a:66:d5:23:33:ab:e7:d1:0e:6e:fe:26:8c:60: ce:b7:aa:15:32:33:2a:de:48:14:6d:0b:01:4b:ad:1e:8c:37: ff:64:ba:ab:37:40:bf:1f:3f:17:8c:76:a8:63:7f:86:ba:7e: 34:6a:ff:b6:f6:e6:dc:f6:30:8d:d7:90:b6:e1:e8:db:15:eb: 92:58:30:4b:c5:a2:55:73:1b:19:1f:57:f4:8d:28:28:9a:37: 46:91:7d:8e:6a:2d:ba:93:79:ce:77:f4:cb:95:9c:d6:96:f5: a6:3a:b6:c2:bd:54:40:c2:76:88:27:2b:ee:d9:cf:a1:ac:46: b8:a0:a2:92:cf:2b:d3:a6:c8:73:2c:64:2c:45:47:d4:f4:bf: 08:3e:b4:f2:39:85:34:4c:66:c1:bb:05:1b:fa:b3:b5:e5:82: b4:15:ad:e8:ca:09:f1:38:6d:77:ba:a3:d9:12:d8:de:1d:46: 62:a0:2b:7f:6b:99:50:63:34:3e:2f:e0:28:1f:66:ee:a3:81: 57:c2:0e:3f:ad:46:3e:f9:45:96:da:6c:7f:40:98:c2:31:04: cf:c5:9b:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZzjNTD+A4aXiK/VnZUtZqx/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMzAzMGE0YjY3Zjk1YzJmZWQ5MDJkNTY2NTdmYWEyNDk0 YjUxMjkwHhcNMjYwMzEyMTgwMDM5WhcNMjYwMzEzMTgwMDM5WjAzMTEwLwYDVQQD Eyg5YmQ2ODBkODc5NGFlYmE1NTE0YWQzMWMyYmMwMDNiMTM4OTZlM2IxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqxfLOJJXro0PucwwCvGHr8oXSP2X 7b/RANHeeZKmOOSR6NXZrDaeZJRF1OglLUDnerr2A8fBzcxkCNyZd1R8a4BpY9tv Ye5+BIi2husYpjPx3YVqXfgLtwAPz9tOE+fpo0B+znI96tIoJKG6X5BIiYiYVe/M R2ui35faT8XgDOAZdjcQzvo0JoG7QpKsR7im2mmpEXPg9Ylab3/XfK9TPOsnMsWo 4ROCo22khWI2FGofSJ28eWOuQ7PnGyxxiVdLPW9dKjV8cBuXA1pKrPDbNv9ya8F1 UTPdxSz7t6lTrByWEiRJiFI2YC+OUsS3tsDiInJmjQvM1SMtHJuqhuV2zQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJvWgNh5SuulUUrTHCvAA7E4luOxMB8GA1UdIwQY MBaAFG8wMKS2f5XC/tkC1WZX+qJJS1EpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYt YmYzYjIxYTI3MGYyLzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYtYmYzYjIxYTI3MGYy LzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVMnQFEVs gvwkBpoqY+fRJXVe+7MNHduVqppAdj0LmHm1UG8q/U5niQpm1SMzq+fRDm7+Joxg zreqFTIzKt5IFG0LAUutHow3/2S6qzdAvx8/F4x2qGN/hrp+NGr/tvbm3PYwjdeQ tuHo2xXrklgwS8WiVXMbGR9X9I0oKJo3RpF9jmotupN5znf0y5Wc1pb1pjq2wr1U QMJ2iCcr7tnPoaxGuKCiks8r06bIcyxkLEVH1PS/CD608jmFNExmwbsFG/qzteWC tBWt6MoJ8Thtd7qj2RLY3h1GYqArf2uZUGM0Pi/gKB9m7qOBV8IOP61GPvlFltps f0CYwjEEz8Wb9w== -----END CERTIFICATE-----Generated at Fri Mar 13 00:17:03 2026 by rpki-client