$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft File: pnhXc98xO5FxG_a8WxSezCRrnok.mft (raw, json) Hash identifier: cFx2R9Wt7SSM9qYP6swPGX7wxB9KflimhZR3dkAPSIg= Subject key identifier: 9E:12:20:A6:56:E2:EF:7C:71:2C:84:BF:0D:AB:9E:24:A9:EB:75:9C Authority key identifier: A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 Certificate issuer: /CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Certificate serial: 019CEDB9723412BCF4C3E0FA078C4696B73B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft Manifest number: 1632 Signing time: Sat 14 Mar 2026 19:01:19 +0000 Manifest this update: Sat 14 Mar 2026 19:01:19 +0000 Manifest next update: Sun 15 Mar 2026 19:01:19 +0000 Files and hashes: 1: 3U7B-AnDLcxVr4hQgcRtH3bY-Mc.roa (hash: 3EM7kaqylIIwfXdPOEw0QjuIVj1MmMgs2rs+igLT96s=) 2: C8g7Pi5B0RKpnrlAYnkGNfdVaNI.roa (hash: wxMFCVvSA3tdy7i3OaSOQ9SIAg2wmBIcYz9jkUGPtlk=) 3: Ine_1lLdl47bEMn6aiw9Axcdsgo.roa (hash: S/r8lpXeW/d857boj4AgP81lqUx6Xba1Zs9uDln2Uuk=) 4: L9nqjZgCKM_h4eShTqHdEr9Np6c.roa (hash: m3EOAebEcr3Ec2NVZh7NKfNA+27GisIbFErRrtFBX6k=) 5: MAC77AGiw2eaAoPXZSbuYQ5o9Cc.roa (hash: ghyy8oG2hGKa4y9DRVajZ2XWsgYoOvFgJh6c1yjrEXg=) 6: NanNAKKpriw1xLHpXZYYWO89_ic.roa (hash: vJoNpzNu5goOWjEeID9l0AJGNtpWeDH6gI91uoAnwIk=) 7: O6JDbaslrGOSZKrdtuCBt6ssF94.roa (hash: 8ty72z4beTGAGlxyLGLA0AACx0Qa5f/MkundTg5sepM=) 8: _d125rYs_YgWJE2199BRmZF843k.roa (hash: m5skVkixBC7cNTKqYmRl5Rw3Fyg0ZkEkKEj4MY2KXTY=) 9: dDB5YY9PZuYzIK0czNYk6awWuOU.roa (hash: B1+NRVwOUhTIMmxV8tnE89O/MNjbHirt4Fghn1v7gaE=) 10: euqS42j1OAh5nOlyn6iGDlUghrI.roa (hash: imMqy2oe/VSAfOYacDS+F5V24AlsU8Ttm5UT/4dybaA=) 11: pnhXc98xO5FxG_a8WxSezCRrnok.crl (hash: e7jHbSlM11dF/TthFOj8oj6VCH7uqQNxNxeitugyytw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Mar 2026 12:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:ed:b9:72:34:12:bc:f4:c3:e0:fa:07:8c:46:96:b7:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Validity Not Before: Mar 14 19:01:19 2026 GMT Not After : Mar 15 19:01:19 2026 GMT Subject: CN=9e1220a656e2ef7c712c84bf0dab9e24a9eb759c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:78:4a:46:52:d4:5d:bb:32:f6:37:2e:85:a8: 90:6a:50:41:bb:b3:9e:3d:b8:75:3d:5c:37:ac:15: 7d:ec:cc:52:cb:db:55:5e:fc:32:66:32:66:bf:6a: 68:87:0a:8d:c1:33:6c:48:0c:84:3d:fb:03:27:7c: 6a:f8:a8:2e:9b:d8:c7:3c:ef:56:e5:ce:a8:a4:7b: 4e:9c:6a:84:f8:87:e3:d5:49:be:08:1b:53:f9:71: ac:70:e7:5d:92:76:0c:46:a4:14:e8:5e:6a:fc:4c: 91:ad:2d:ee:0e:3c:2a:6b:98:1c:7c:ab:0e:52:0e: 4a:70:20:4d:23:09:97:9d:81:e7:ae:97:e5:57:95: 24:e3:06:84:25:dd:3a:b0:c2:ef:0e:bb:f4:97:3a: 72:e6:46:78:eb:3c:52:c1:93:e6:1b:39:1c:76:56: f3:78:d4:1c:67:6d:60:c8:3a:47:e6:52:84:f6:3c: 7b:77:d0:de:cd:af:ea:06:56:1e:3f:e9:13:f3:22: 11:f1:fd:95:4b:0f:b5:16:a1:8b:a1:51:c9:e8:e4: 13:17:9b:5d:d4:82:31:21:d1:fd:b8:e6:8c:bf:c1: 00:00:fd:c1:62:77:c8:5f:69:1c:45:25:56:97:97: 14:35:21:bc:02:ae:32:98:a7:2f:2e:aa:3e:ef:ef: a8:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:12:20:A6:56:E2:EF:7C:71:2C:84:BF:0D:AB:9E:24:A9:EB:75:9C X509v3 Authority Key Identifier: keyid:A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b4:5d:a1:93:b2:88:1d:5f:a1:ba:31:4f:a6:3f:99:8e:ed:6e: c3:20:a5:bf:87:68:1e:69:6e:52:10:66:7d:37:2b:7e:d9:85: 7e:cb:18:3b:23:d7:8e:43:a7:2f:05:7f:08:48:ea:88:81:bf: 2a:b4:19:2b:b0:27:f5:10:8e:fd:06:4a:df:7f:9c:05:69:cf: d9:f7:c5:9a:64:e2:70:18:6d:6e:d9:80:2d:90:f0:54:5d:84: d5:41:a4:f3:9f:c8:1b:82:66:84:f7:42:e4:f9:05:6e:0a:e4: 4c:7c:73:a2:89:83:31:93:be:25:8b:fb:10:9b:f7:05:3f:43: d6:a5:e2:51:41:5c:e1:0d:0f:cb:c1:f4:c9:b2:31:38:3d:cb: a4:70:13:6c:2e:4d:a7:86:bc:fa:10:05:b9:98:24:2e:5f:ce: 64:be:69:18:b7:20:33:a9:9f:2c:5a:3e:2f:d1:6b:7a:5c:f2: 95:37:04:f4:c4:38:49:7b:b4:5b:e8:fe:50:52:a4:a6:fd:69: ac:78:bf:4c:2e:09:b4:91:36:75:1e:3f:8e:65:56:04:71:a1: a7:10:52:a5:72:71:63:02:7c:93:03:51:b6:63:eb:e4:75:d9: 85:97:bd:26:f8:d5:c3:a5:26:9d:4c:d8:91:27:82:3e:23:2f: c4:dc:bd:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZztuXI0Erz0w+D6B4xGlrc7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2Nzg1NzczZGYzMTNiOTE3MTFiZjZiYzViMTQ5ZWNjMjQ2 YjllODkwHhcNMjYwMzE0MTkwMTE5WhcNMjYwMzE1MTkwMTE5WjAzMTEwLwYDVQQD Eyg5ZTEyMjBhNjU2ZTJlZjdjNzEyYzg0YmYwZGFiOWUyNGE5ZWI3NTljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqHhKRlLUXbsy9jcuhaiQalBBu7Oe Pbh1PVw3rBV97MxSy9tVXvwyZjJmv2pohwqNwTNsSAyEPfsDJ3xq+Kgum9jHPO9W 5c6opHtOnGqE+Ifj1Um+CBtT+XGscOddknYMRqQU6F5q/EyRrS3uDjwqa5gcfKsO Ug5KcCBNIwmXnYHnrpflV5Uk4waEJd06sMLvDrv0lzpy5kZ46zxSwZPmGzkcdlbz eNQcZ21gyDpH5lKE9jx7d9Deza/qBlYeP+kT8yIR8f2VSw+1FqGLoVHJ6OQTF5td 1IIxIdH9uOaMv8EAAP3BYnfIX2kcRSVWl5cUNSG8Aq4ymKcvLqo+7++ovQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ4SIKZW4u98cSyEvw2rniSp63WcMB8GA1UdIwQY MBaAFKZ4V3PfMTuRcRv2vFsUnswka56JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEt ZDc1ODY5YzBjNzFlLzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEtZDc1ODY5YzBjNzFl LzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtF2hk7KI HV+hujFPpj+Zju1uwyClv4doHmluUhBmfTcrftmFfssYOyPXjkOnLwV/CEjqiIG/ KrQZK7An9RCO/QZK33+cBWnP2ffFmmTicBhtbtmALZDwVF2E1UGk85/IG4JmhPdC 5PkFbgrkTHxzoomDMZO+JYv7EJv3BT9D1qXiUUFc4Q0Py8H0ybIxOD3LpHATbC5N p4a8+hAFuZgkLl/OZL5pGLcgM6mfLFo+L9FrelzylTcE9MQ4SXu0W+j+UFKkpv1p rHi/TC4JtJE2dR4/jmVWBHGhpxBSpXJxYwJ8kwNRtmPr5HXZhZe9JvjVw6UmnUzY kSeCPiMvxNy9kg== -----END CERTIFICATE-----Generated at Sat Mar 14 21:58:58 2026 by rpki-client