$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft File: XPMa_DbLaVUAf-l-1KXjGF0icbo.mft (raw, json) Hash identifier: MYLBLNXAyzhR4IOxXYoeoL0mjemFwwibq+NYR8TAQhg= Subject key identifier: 8B:C5:4B:C0:C2:74:A6:6B:67:2A:D2:06:72:79:A8:8A:81:8E:5F:51 Authority key identifier: 5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA Certificate issuer: /CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba Certificate serial: 019C66C0B91005E538B71C8525BE496488D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft Manifest number: 183B Signing time: Mon 16 Feb 2026 14:00:32 +0000 Manifest this update: Mon 16 Feb 2026 14:00:32 +0000 Manifest next update: Tue 17 Feb 2026 14:00:32 +0000 Files and hashes: 1: 1-dAYLfzEcuSnLWMiLXXSdIwT4rU.roa (hash: WhA4jtvtbE79AQa3IJODloRRuW4QHZIWAX/A32JL7m4=) 2: GOmV_75Dv1jwn9wiVioc2BSPZTo.roa (hash: pRTwblvRoqzlcA6ZsWJlwN1cr9uhPXOkl31rFqoTMf8=) 3: NklSIVNcNIWeMyDnmkM31BBhz1c.roa (hash: UKSW2BDTyMNTJDzhPRFU+Wzj1R5uLkgmHOPWx5CWEqQ=) 4: W4UHRrBQAt50eiIa0aXkDS2q-jI.roa (hash: wJtHrvfPjqzoQaYOzEJ/TBfUCsO/TaG3P+SEUHqq3Ig=) 5: XPMa_DbLaVUAf-l-1KXjGF0icbo.crl (hash: v719Y5Zh1PjJDedj9fYXdqw62wZUgX8/asEExidur3E=) 6: _5CTbNuX6fLN7jDqdj1oQp0kARc.roa (hash: Ha0LgykvjQP+9qGPn28IFIuJ0yQRLEpHe1bDMbGiuiE=) 7: _YOXL7ZxwGLyAFtXgmbGoGmsxw0.roa (hash: oYcEDHMjBaLjLdS2+cnHZQVD1ORy9f2L160BSTCgJ4c=) 8: itgrIp1NxpdNbAgMEeQKpbEmf5o.roa (hash: Js4lM2igXS9YqpQe0RjS4UXqcJs8/ISJx7M/fH+77eg=) 9: lxIA5T6ig6P82Z6FpI76sa5r9Hk.roa (hash: 3LHUUi612Oq28/k9MVav0SeJK2Lmj7BOxrV2xdjlDis=) 10: szXceV_8JO0f_7ooL6S8iduW9xI.roa (hash: xeJBYCAXDOSNVRxdgWGAZ1ipDc3y7H3KXIsJs1D2FK4=) 11: xnSiVa_Qi8Hl5xGaTydyCAcB4Q4.roa (hash: SWwZIzY753Ls9csZNqAI1seyxm1jJEeEibvAi3lb+6E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 17 Feb 2026 14:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:66:c0:b9:10:05:e5:38:b7:1c:85:25:be:49:64:88:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba Validity Not Before: Feb 16 14:00:32 2026 GMT Not After : Feb 17 14:00:32 2026 GMT Subject: CN=8bc54bc0c274a66b672ad2067279a88a818e5f51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:47:98:3e:1a:18:f8:d2:f9:96:ec:72:67:8a: 83:aa:48:d2:5f:23:7b:16:d3:08:f5:fa:9b:e7:a6: bc:2f:e6:c3:0c:7a:6f:ba:37:7e:06:43:56:5a:eb: a0:7d:dc:4f:d5:e7:e5:ae:e8:fe:58:e2:c9:1d:cd: 08:a1:9a:92:e9:be:39:33:8b:1c:71:24:52:ae:cc: 3c:b3:72:25:4c:aa:15:9b:ba:a6:4e:6a:2b:4e:9c: ae:77:03:14:40:fd:f5:c2:46:13:a2:a1:67:54:96: 9e:75:26:6e:50:5c:2e:01:7c:0b:84:6d:b2:fa:ff: 5f:32:73:8f:fe:0d:4c:c4:6b:da:58:f0:dd:09:3c: 27:20:e5:8f:79:c5:02:cc:4d:e3:a3:27:8b:83:a4: da:97:b9:32:dc:d0:23:1c:58:c0:4f:b3:bb:6e:f0: 01:6c:a8:84:e6:f6:01:5c:e6:da:71:94:20:26:5c: c2:94:fd:cc:3a:25:8f:44:10:76:eb:a5:a4:c8:33: a8:c6:fd:5b:15:c6:2b:2d:66:29:06:9c:f6:97:d5: b8:d9:09:ee:20:17:59:a1:90:78:02:d5:12:56:e7: f8:15:0a:9c:18:8d:a9:f7:dc:2f:13:fe:8b:88:9d: 43:c8:d7:85:fc:4a:01:e8:30:97:ac:68:11:23:61: d0:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C5:4B:C0:C2:74:A6:6B:67:2A:D2:06:72:79:A8:8A:81:8E:5F:51 X509v3 Authority Key Identifier: keyid:5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:a1:99:a6:5f:b9:3b:5e:49:a3:1a:77:44:35:9c:c5:ca:b7: 4b:19:be:5f:2b:cb:24:98:fe:90:b2:1a:7e:3a:1b:d5:cc:26: d5:69:43:85:a0:8c:14:00:17:70:c5:bd:b7:c6:87:4e:01:cc: d6:22:3e:e2:74:09:84:a2:a1:a9:89:a8:be:74:b7:4d:65:6d: 1e:53:ee:ef:e1:b6:47:28:91:00:22:d3:91:02:cb:2d:1a:80: cc:22:68:12:c2:7b:21:2f:1c:28:c8:88:74:16:56:1d:8e:d3: 62:b8:f3:c8:43:88:10:7e:a2:1c:4b:8e:58:46:1f:75:1b:0a: 58:29:15:d2:8e:9f:24:2a:9e:4e:e1:b3:03:f2:b8:98:82:f7: f7:0c:66:3c:dc:63:89:94:63:66:92:14:44:f1:4b:27:eb:7e: cf:b1:73:6a:12:9e:86:cb:7c:04:10:9b:f6:43:0d:1a:ec:b4: ca:b0:3d:69:38:08:c9:c5:54:48:46:3a:bc:44:eb:0d:8c:01: 0d:1b:56:a6:0b:d9:49:2a:02:65:fc:a0:3d:d8:e5:11:07:d8: 4f:6f:34:c4:55:25:10:f5:80:2a:c4:88:ce:1b:dc:89:1c:a6: b9:b3:f7:ee:5d:4d:b4:d5:c8:18:75:b6:80:2c:db:6b:72:90: 9b:59:06:75 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxmwLkQBeU4txyFJb5JZIjYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjZjMxYWZjMzZjYjY5NTUwMDdmZTk3ZWQ0YTVlMzE4NWQy MjcxYmEwHhcNMjYwMjE2MTQwMDMyWhcNMjYwMjE3MTQwMDMyWjAzMTEwLwYDVQQD Eyg4YmM1NGJjMGMyNzRhNjZiNjcyYWQyMDY3Mjc5YTg4YTgxOGU1ZjUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnUeYPhoY+NL5luxyZ4qDqkjSXyN7 FtMI9fqb56a8L+bDDHpvujd+BkNWWuugfdxP1eflruj+WOLJHc0IoZqS6b45M4sc cSRSrsw8s3IlTKoVm7qmTmorTpyudwMUQP31wkYToqFnVJaedSZuUFwuAXwLhG2y +v9fMnOP/g1MxGvaWPDdCTwnIOWPecUCzE3joyeLg6Tal7ky3NAjHFjAT7O7bvAB bKiE5vYBXObacZQgJlzClP3MOiWPRBB266WkyDOoxv1bFcYrLWYpBpz2l9W42Qnu IBdZoZB4AtUSVuf4FQqcGI2p99wvE/6LiJ1DyNeF/EoB6DCXrGgRI2HQ0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIvFS8DCdKZrZyrSBnJ5qIqBjl9RMB8GA1UdIwQY MBaAFFzzGvw2y2lVAH/pftSl4xhdInG6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWFBNYV9EYkxhVlVBZi1sLTFLWGpHRjBpY2JvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy80NThlYzMtMDQ1MS00ZTQxLTlhMzQt NzM2ZDEyODg4Y2E4LzEvWFBNYV9EYkxhVlVBZi1sLTFLWGpHRjBpY2JvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy80NThlYzMtMDQ1MS00ZTQxLTlhMzQtNzM2ZDEyODg4Y2E4 LzEvWFBNYV9EYkxhVlVBZi1sLTFLWGpHRjBpY2JvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWqGZpl+5 O15Joxp3RDWcxcq3Sxm+XyvLJJj+kLIafjob1cwm1WlDhaCMFAAXcMW9t8aHTgHM 1iI+4nQJhKKhqYmovnS3TWVtHlPu7+G2RyiRACLTkQLLLRqAzCJoEsJ7IS8cKMiI dBZWHY7TYrjzyEOIEH6iHEuOWEYfdRsKWCkV0o6fJCqeTuGzA/K4mIL39wxmPNxj iZRjZpIURPFLJ+t+z7FzahKehst8BBCb9kMNGuy0yrA9aTgIycVUSEY6vETrDYwB DRtWpgvZSSoCZfygPdjlEQfYT280xFUlEPWAKsSIzhvciRymubP37l1NtNXIGHW2 gCzba3KQm1kGdQ== -----END CERTIFICATE-----Generated at Mon Feb 16 23:58:52 2026 by rpki-client