$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft File: hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft (raw, json) Hash identifier: +YvgnTeHTpost+kwIIpVY89M5kcjzBN8MJrdfHpQ9kY= Subject key identifier: B9:9B:E5:8E:8C:3E:C1:2E:51:B3:67:BA:84:8C:AE:57:FB:F0:A0:0B Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd Certificate serial: 019D3A1CCE88F22E8F67D677983F48720A8B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft Manifest number: 14B1 Signing time: Sun 29 Mar 2026 15:00:59 +0000 Manifest this update: Sun 29 Mar 2026 15:00:59 +0000 Manifest next update: Mon 30 Mar 2026 15:00:59 +0000 Files and hashes: 1: 4xaEdixeinTNAew5f36B5ogFapc.roa (hash: U+lj7Po2vIYbjteMOk724C6A7iSVfdA9w8Qr+wSn2EY=) 2: 6bp5_uY1eTTE0FRpgy0dJ0tGIWA.roa (hash: JQ6e3y/UZad8zx3alMXWmLY2Cs0ywtM7PcyjG1jGvp0=) 3: 8rDvMkxptJnltjzzUCN1e7h2mu0.roa (hash: bN6iyJOU8RYfCqW0mfWStueUrIARdx585ED2RX3ioso=) 4: 9561YDYiFuwA3cK9_Ao81cqPzyw.roa (hash: sI0N1MtQFC1Bs34l2HPoGh51MHvRDzLlzChm4jYV9bI=) 5: IrFs_aYDL98DrBmqXNeImOXYqVs.roa (hash: /du+UzfxF5Oy69bwitaws2QcGuPpQ2q/PzP+2+rlKmc=) 6: Mpb5tIfxbf_t0TleDipa0dPzQfg.roa (hash: dlPOC3LjslO4GRq7Su9TrpsYGXUfWyZVAl7s4ntuJgI=) 7: SnpB0ExR-bCAJLKknHnesUTaAWU.roa (hash: wlr5EY83KcqFkovq8AptI/Jy70VxHPVKk3n5WEh7t3w=) 8: W-auLweCazJVGZa2RWm9KCu-wKE.roa (hash: KDvTseiWMAdzP9ZuSgmWkkWqgGW79SkpbkY25PFZ98s=) 9: ZNVLkE0Hncpo1bsQ8SqkvCmjNMs.roa (hash: ckctwOhfUle+O6fK0mnv5ZMxRNGqbUG5lJdOX3nwnlo=) 10: djAPpFOBLqUtxJOa9UwBPjNac1E.roa (hash: 7Rj31INl1FIcMdN33laOh9K9+J+bHShe/BZUzyt8PUg=) 11: ggV7rBXwprR59jciPQhDDTZxxmQ.roa (hash: I4MtXY7ClGvNcIjMAoHA2mKMcNbnijfTuvNa/n/j6Xw=) 12: hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl (hash: 64XbPa0Ya2clm6w3vevMXVq3tU8SotMuCQWp4JEP0rk=) 13: nkFmcbj5SRyrAXjUVz7jAMSoyJk.roa (hash: lYeXLJKim2pWsORoTqRVNykk1XTHGi948eQwJ6tFxj4=) 14: pnn2LDubyB-s2_PbTNDUNt7JA_8.roa (hash: vW3hxl2FPzWH44KmHJKXNpZV557F5Hczl/NZRDVCKlg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Mar 2026 07:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:3a:1c:ce:88:f2:2e:8f:67:d6:77:98:3f:48:72:0a:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd Validity Not Before: Mar 29 15:00:59 2026 GMT Not After : Mar 30 15:00:59 2026 GMT Subject: CN=b99be58e8c3ec12e51b367ba848cae57fbf0a00b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:64:f7:f1:29:67:7b:3e:54:44:dc:f4:aa:de: 9d:e6:99:ba:e1:5f:9a:f6:8d:87:f9:d0:29:8a:f4: 6b:02:e9:80:4d:74:74:c9:e5:51:ad:3d:b3:98:4f: b2:dc:59:f4:6a:02:3f:1d:5e:0c:bc:8c:f8:af:e0: 40:b9:e5:98:99:63:5b:93:be:b3:ff:87:c1:6c:50: d9:e8:c3:12:e3:6b:9e:4f:81:e3:8c:53:87:4a:4b: 3c:7b:4e:26:8e:18:0a:1e:35:8f:e8:a0:c9:bd:ef: d1:49:bb:cb:2b:4d:69:b2:a9:df:d7:04:18:0a:15: cc:0f:e4:26:12:3d:a8:6a:46:39:29:a1:a5:87:73: 47:de:b9:f3:0e:b5:c7:1a:99:47:9a:6d:ee:7f:75: f0:08:7d:70:f3:ee:b4:c9:61:d8:60:83:44:a5:d7: 4b:c0:95:d1:44:2c:a3:45:ef:b9:b6:7e:b5:43:88: d3:01:b0:c8:44:d9:07:66:06:16:6c:87:df:9d:0d: c6:cf:34:a5:30:72:a3:11:88:bf:55:85:bb:ee:15: d7:17:82:db:ee:5a:50:71:85:33:d1:4b:b6:24:2e: 14:14:aa:49:69:99:0e:73:a7:34:90:97:98:e8:c1: e6:5f:6f:97:d9:a9:51:7a:05:5b:07:12:66:b4:15: 3c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:9B:E5:8E:8C:3E:C1:2E:51:B3:67:BA:84:8C:AE:57:FB:F0:A0:0B X509v3 Authority Key Identifier: keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:fe:96:c4:f4:5f:ed:53:71:21:24:a3:f4:98:7d:cf:8a:5c: 1d:51:60:eb:4e:70:9f:39:a7:08:04:dd:97:f3:c4:e7:81:5c: 9e:17:32:6f:8d:73:0e:1b:46:66:43:da:49:33:d5:44:97:a7: 6d:41:72:51:a4:cb:b9:47:15:3b:2e:bb:48:43:77:61:c2:3e: 26:32:84:92:98:89:8b:7d:d3:be:09:80:55:56:86:a0:4d:d5: 64:d9:8c:be:4e:bc:77:91:3f:ef:89:7e:2c:c3:b5:b7:a9:87: 71:16:e8:9d:54:91:59:5a:3b:aa:d8:1d:54:9f:e3:e9:14:3a: 02:cd:ba:56:33:04:03:a4:22:f8:13:16:77:64:7a:fc:26:fa: 37:a4:95:4a:bf:85:18:57:d0:c8:3d:d3:42:33:a1:bc:c7:bd: 01:d1:40:b6:4c:50:c8:3e:e5:e7:0d:ef:15:a1:36:f8:e6:d1: 2b:49:1e:79:88:69:71:35:97:ef:7e:33:1c:e3:86:6f:4f:d6: cc:9c:51:2a:8c:46:f0:19:c8:52:f5:dc:68:6f:09:cd:71:bc: 2a:47:3b:3a:13:ba:2f:e6:6d:d5:ce:97:5c:41:0e:d1:e0:0c: c6:cd:d6:a7:5f:9c:39:84:fc:cb:5b:67:57:7d:a5:48:e4:32: bd:de:13:68 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ06HM6I8i6PZ9Z3mD9IcgqLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZDBlNzYzZjkzNWMxNzE2OTRmMTcyMDU2ZWI0NDIwOWRi MmUyY2QwHhcNMjYwMzI5MTUwMDU5WhcNMjYwMzMwMTUwMDU5WjAzMTEwLwYDVQQD EyhiOTliZTU4ZThjM2VjMTJlNTFiMzY3YmE4NDhjYWU1N2ZiZjBhMDBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwGT38Slnez5URNz0qt6d5pm64V+a 9o2H+dApivRrAumATXR0yeVRrT2zmE+y3Fn0agI/HV4MvIz4r+BAueWYmWNbk76z /4fBbFDZ6MMS42ueT4HjjFOHSks8e04mjhgKHjWP6KDJve/RSbvLK01psqnf1wQY ChXMD+QmEj2oakY5KaGlh3NH3rnzDrXHGplHmm3uf3XwCH1w8+60yWHYYINEpddL wJXRRCyjRe+5tn61Q4jTAbDIRNkHZgYWbIffnQ3GzzSlMHKjEYi/VYW77hXXF4Lb 7lpQcYUz0Uu2JC4UFKpJaZkOc6c0kJeY6MHmX2+X2alRegVbBxJmtBU8aQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLmb5Y6MPsEuUbNnuoSMrlf78KALMB8GA1UdIwQY MBaAFIXQ52P5NcFxaU8XIFbrRCCdsuLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2Qt ZjEyODM1ZjAyNDdiLzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2QtZjEyODM1ZjAyNDdi LzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjP6WxPRf 7VNxISSj9Jh9z4pcHVFg605wnzmnCATdl/PE54Fcnhcyb41zDhtGZkPaSTPVRJen bUFyUaTLuUcVOy67SEN3YcI+JjKEkpiJi33TvgmAVVaGoE3VZNmMvk68d5E/74l+ LMO1t6mHcRbonVSRWVo7qtgdVJ/j6RQ6As26VjMEA6Qi+BMWd2R6/Cb6N6SVSr+F GFfQyD3TQjOhvMe9AdFAtkxQyD7l5w3vFaE2+ObRK0keeYhpcTWX734zHOOGb0/W zJxRKoxG8BnIUvXcaG8JzXG8Kkc7OhO6L+Zt1c6XXEEO0eAMxs3Wp1+cOYT8y1tn V32lSOQyvd4TaA== -----END CERTIFICATE-----Generated at Sun Mar 29 17:17:26 2026 by rpki-client