$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft File: Us2aZRLb8lpfGbgn16LH4iou6N0.mft (raw, json) Hash identifier: GoU+FKC1Crvke4PKtU6piieyVyVxPiCSXfmmr/i8Zec= Subject key identifier: F3:D7:6C:20:02:21:8E:8B:4D:F2:5C:D9:38:5C:E7:84:EE:B5:7A:E0 Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Certificate serial: 019CE5FF565DF8424E827FD0C426E0C6FB62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft Manifest number: 0B2D Signing time: Fri 13 Mar 2026 07:00:42 +0000 Manifest this update: Fri 13 Mar 2026 07:00:42 +0000 Manifest next update: Sat 14 Mar 2026 07:00:42 +0000 Files and hashes: 1: 3JNAFPmuRusA7_P1cHUrpNc8ZWQ.roa (hash: zKy+aXsrA8Z978tqaQi0ynXqJW9mllBBtqQYt4mz8gc=) 2: 3eP-ZYKR74zQteZxg-jYK68KuKU.roa (hash: rI+Q6O08EYSoWZw7Ks588qVsTWbvSuHUC1dp2GQPsEg=) 3: 6ez8s1YBp2TYVVuKcqGU9mGsJLQ.roa (hash: iFltius3SHf/ctu10YpbCgn/dFGwWU60BbGiBMv1N44=) 4: Px4XmExl2QONyqSP6s8-qLoIeoI.roa (hash: reA0XoIHBbZsGAjNzRWT9dW+9757Ms5dgcUGYfnrDi8=) 5: SY0oaouPknTSy2MmGqSQOcOco4Q.roa (hash: HRxdYO/Iechw+UCcupxpKvFHOwFwn4JRjC6eMfFT/dQ=) 6: TQgAk-kjCmuvz2eqWr757vit-aI.roa (hash: lmDr2ZoodOyQIYq1JnmRLGHdUSfi5+BCh4SAfh571Mk=) 7: Us2aZRLb8lpfGbgn16LH4iou6N0.crl (hash: SulKa0nGN0ZgNaT61tPF6W4IIebqx8HOoBGOn2R7lrs=) 8: _6Vs95Jmy7MF2kHG6396ytTGdZ8.roa (hash: EoAlzz1DKspJX2qs3ChwNI4PXJbIIl04jqeAnWG79Vw=) 9: b4bnSjrxkGqwlr0zkoxcOijmFkc.roa (hash: fQuLS072q+zjmBm2EgGlUmemoEePNKD15HIZM6Eyfw4=) 10: hlAbpQnKYaIDHrjCT-1lNBwSXu0.roa (hash: BILz2oAMGgMF6vZP6W3jaxaaHIODVkHC+m/GaL33QlM=) 11: kPZtrooPlOyF8jQupuEU9Gy1bJQ.roa (hash: KtcI+6F6qPHzsOZYQ0EOD+pODuibLz2OAgS4M/a6Aq4=) 12: oLlQgePRk9yvcOlL0Fl_a56u9H4.roa (hash: Wqock9cGRbZPQGtCkafIuYZm7FqajUuA17fJ83OGRks=) 13: otDdauzK1pDpIELnjnezw5Wgbks.roa (hash: PkYGbseDQrN+XnOme6deJeEpgE/JFmyzszNd7IeDEBs=) 14: qPI1ggc-eoyI91LAejwAAyCD3rI.roa (hash: tWlcYblK/ohLjpwsq6RKKOq9sGO2SDlm/NJl1KT1Ji8=) 15: tusmxRMWIAwEpYPSOoqJvIiGe6Y.roa (hash: Y+h643AXdu/W8Kb6xvutaQ49rtSwE1WVNhhcs22Oz2o=) 16: xp9MuE3K7E-Sb2HgnwhKc3yErto.roa (hash: 9FJKEkYOHXVi/GiMh+ZQtwPZthuSJbC+u80wUEZ5uBo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 14 Mar 2026 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:e5:ff:56:5d:f8:42:4e:82:7f:d0:c4:26:e0:c6:fb:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Validity Not Before: Mar 13 07:00:42 2026 GMT Not After : Mar 14 07:00:42 2026 GMT Subject: CN=f3d76c2002218e8b4df25cd9385ce784eeb57ae0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ae:fb:83:af:f3:44:8f:99:23:22:1e:ef:2c: b7:b9:95:3b:6a:b2:84:86:07:9b:6b:cc:eb:07:60: 37:1d:b9:22:5f:10:e1:ed:5f:0c:81:9a:cc:d4:57: 75:cc:a1:2f:45:4a:4a:68:43:1e:fe:05:04:1d:d7: ae:7b:54:12:5b:a8:e4:68:2b:55:79:30:ec:8b:87: 5a:91:47:47:d0:d4:63:3a:a6:63:45:44:7e:56:e7: 0f:36:de:25:9d:83:18:9a:7f:0d:4c:49:82:4a:5f: 1e:99:39:3b:48:64:38:e8:41:b6:02:61:50:f6:aa: ee:c7:c9:5c:40:70:01:75:5c:0b:75:06:d6:50:52: ab:c8:6a:1b:92:82:53:aa:07:91:49:9e:f9:50:4e: ec:6d:70:2c:57:6c:67:bf:5f:8f:9b:f8:c7:54:56: f0:96:a8:9f:4d:e0:8d:39:d3:5d:fe:e4:e3:af:56: 68:33:d1:01:08:6d:c3:47:e2:66:7a:1a:59:88:b4: 9e:e3:01:69:c5:21:ef:52:98:ec:a9:0b:16:4d:ef: 93:8b:12:ab:44:9e:37:31:3c:98:b7:49:9d:b7:97: d4:ca:9d:54:8b:e6:d3:2d:27:b9:7c:5a:3a:bf:36: b9:5a:da:d6:47:2a:93:e1:d2:ae:ac:54:17:6d:81: ac:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:D7:6C:20:02:21:8E:8B:4D:F2:5C:D9:38:5C:E7:84:EE:B5:7A:E0 X509v3 Authority Key Identifier: keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:5c:38:c8:58:f1:f0:cd:71:b1:1c:bf:ee:2c:5b:84:fb:63: fb:19:11:b7:6b:50:db:d0:14:de:44:7f:a9:86:28:30:e2:a7: 89:09:c1:42:e9:7f:df:32:6e:01:4f:24:13:df:d9:16:91:1d: b2:f3:39:7a:8f:89:5b:c6:e6:2e:e7:86:ef:d9:4d:7f:85:e7: 99:82:93:ef:73:5e:e2:ee:9b:ca:a5:df:17:57:93:92:68:52: 47:ca:57:1b:af:49:b5:b9:b6:f8:66:d1:b4:78:40:a8:fd:97: 53:b3:5e:85:0b:ef:4f:b6:21:57:7d:04:b3:14:9c:a2:1d:ab: b9:e7:05:a5:67:f3:ab:30:d9:1f:3b:d4:7a:2b:f5:90:28:28: 2b:68:08:d1:14:1b:45:00:b6:3c:ca:93:00:f0:60:b0:04:86: 7f:99:63:f3:d0:e2:6c:7d:97:7a:f5:19:c6:d6:5d:1c:10:11: 9a:f2:ca:b3:45:20:80:92:f4:6b:67:f8:bf:99:8b:3e:c8:ef: fa:1c:59:95:52:ef:fc:98:0a:a7:70:b2:9b:4a:62:75:bf:ec: 75:f6:ed:7d:c9:c5:b9:f0:16:14:a4:48:76:b3:a2:66:75:64: 36:7d:19:6b:58:15:77:60:2a:4c:f8:16:74:45:8b:25:a9:71: 8e:9e:c7:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZzl/1Zd+EJOgn/QxCbgxvtiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyY2Q5YTY1MTJkYmYyNWE1ZjE5YjgyN2Q3YTJjN2UyMmEy ZWU4ZGQwHhcNMjYwMzEzMDcwMDQyWhcNMjYwMzE0MDcwMDQyWjAzMTEwLwYDVQQD EyhmM2Q3NmMyMDAyMjE4ZThiNGRmMjVjZDkzODVjZTc4NGVlYjU3YWUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwa77g6/zRI+ZIyIe7yy3uZU7arKE hgeba8zrB2A3HbkiXxDh7V8MgZrM1Fd1zKEvRUpKaEMe/gUEHdeue1QSW6jkaCtV eTDsi4dakUdH0NRjOqZjRUR+VucPNt4lnYMYmn8NTEmCSl8emTk7SGQ46EG2AmFQ 9qrux8lcQHABdVwLdQbWUFKryGobkoJTqgeRSZ75UE7sbXAsV2xnv1+Pm/jHVFbw lqifTeCNOdNd/uTjr1ZoM9EBCG3DR+JmehpZiLSe4wFpxSHvUpjsqQsWTe+TixKr RJ43MTyYt0mdt5fUyp1Ui+bTLSe5fFo6vza5WtrWRyqT4dKurFQXbYGsrwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPPXbCACIY6LTfJc2Thc54TutXrgMB8GA1UdIwQY MBaAFFLNmmUS2/JaXxm4J9eix+IqLujdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUt Y2NhMzc2MDZiZjE4LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUtY2NhMzc2MDZiZjE4 LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnlw4yFjx 8M1xsRy/7ixbhPtj+xkRt2tQ29AU3kR/qYYoMOKniQnBQul/3zJuAU8kE9/ZFpEd svM5eo+JW8bmLueG79lNf4XnmYKT73Ne4u6byqXfF1eTkmhSR8pXG69Jtbm2+GbR tHhAqP2XU7NehQvvT7YhV30EsxScoh2ruecFpWfzqzDZHzvUeiv1kCgoK2gI0RQb RQC2PMqTAPBgsASGf5lj89DibH2XevUZxtZdHBARmvLKs0UggJL0a2f4v5mLPsjv +hxZlVLv/JgKp3Cym0pidb/sdfbtfcnFufAWFKRIdrOiZnVkNn0Za1gVd2AqTPgW dEWLJalxjp7HDQ== -----END CERTIFICATE-----Generated at Fri Mar 13 10:38:58 2026 by rpki-client