$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft File: bf7PoOZpJZXPvqUmYHbo5T79lGE.mft (raw, json) Hash identifier: WF7okNBdIGnJqJTsHAHSKQVl4TohhUNhTl7k19sSGYQ= Subject key identifier: 39:91:06:50:F0:42:DB:29:64:38:35:C0:3E:C9:B5:24:D0:DD:A3:19 Authority key identifier: 6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61 Certificate issuer: /CN=6dfecfa0e6692595cfbea5266076e8e53efd9461 Certificate serial: 019CF617E9E3A52838F8D239ED3FD2F78833 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft Manifest number: 110A Signing time: Mon 16 Mar 2026 10:01:28 +0000 Manifest this update: Mon 16 Mar 2026 10:01:28 +0000 Manifest next update: Tue 17 Mar 2026 10:01:28 +0000 Files and hashes: 1: 01O1H3vr-Xg2_Kt_tRxOoSePvYw.roa (hash: DTK4FxlalSIuFNse2BYUOpmcSGMhnqSmE/87aEUEtrg=) 2: 1-EqD6vgoA3IVAsjiLQYVEyyKW0U.roa (hash: Of+IRZAD6r3ftFWFR7yxzKwNLfYZjre35Dmg5UJV5ds=) 3: 3oqgYKPHjP4c1L0WVBDxXqGTNKs.roa (hash: PdT5GAbt00ZEVCyICmg6bHJkYgLa1nkpbJxhAhA4vnk=) 4: HB0FIxc95bfbXI-7nw5kY1VNoMs.roa (hash: 236zwT5kbl7DOv0ChJB+B8PFAcfi388Ks1QJGiJxQlM=) 5: RSEZnKImClpjfvRbvyGXO7YCT30.roa (hash: nbl9nzX5UblCyKX8B1eZxPxYHLEkClkhmOAKVpl4rkY=) 6: TCGXmp-ZcJuoO-eDyOqbUVRKJXI.roa (hash: zb8J86h3WDmjGOxtQQnoZ3rsuxycMmwLx3S1o5snyrE=) 7: XR-EYzoeTJi_gNpw5v85R8iIDCI.roa (hash: hr4Ank/yR0Q5kl1E1WgAYLVhDPaCeCKIZMYB9E/hjDs=) 8: bf7PoOZpJZXPvqUmYHbo5T79lGE.crl (hash: x414Sw0a51Lw9uD6qqClwwzAk1D8H4Jt8Liyg7I4xDI=) 9: fv8hSy-qTmyzkAkKRiqf7Cbw4Q8.roa (hash: JVsfqbqPGUHeKikh7Yf/w82XL596L03oNIzuxFbcXEQ=) 10: ngXBDJqFRHqY02oCl22jHBT8QTU.roa (hash: J4yIx0/GQQvuBdXMZZvAxL9Vevspg59Zpn25unHuRA8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 17 Mar 2026 09:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:f6:17:e9:e3:a5:28:38:f8:d2:39:ed:3f:d2:f7:88:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6dfecfa0e6692595cfbea5266076e8e53efd9461 Validity Not Before: Mar 16 10:01:28 2026 GMT Not After : Mar 17 10:01:28 2026 GMT Subject: CN=39910650f042db29643835c03ec9b524d0dda319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:52:82:c6:fd:bd:68:97:3a:3e:1f:4f:5a:58: 17:dc:2e:4e:11:af:4f:6f:94:0a:e3:3b:48:44:52: 31:3e:75:0e:ed:39:18:0d:21:b3:e3:c9:94:2a:54: 05:bd:6b:18:e5:63:91:79:c4:11:ae:da:c6:d8:75: 59:67:12:2c:78:89:57:d0:0f:d2:9c:34:04:25:a4: ee:05:a8:23:36:24:be:59:15:84:30:fa:de:21:e5: 84:2b:ea:6c:fa:5d:52:0b:45:bb:f9:6a:ad:1d:85: c9:f4:0b:dc:55:b5:da:03:4b:8a:39:b8:07:c0:34: 0b:8a:f4:24:83:6f:0a:6b:89:43:99:ca:ee:00:8e: 4f:82:5c:16:0a:31:f0:db:9a:a2:00:28:77:a0:45: 02:23:22:e1:19:7e:78:9a:ea:70:55:bb:95:56:60: bc:97:91:e3:56:2c:5e:3d:74:db:d0:30:fd:7f:9d: 30:18:cb:fc:a9:2f:b4:d9:9a:86:e9:e6:19:89:1d: e4:50:b0:75:72:9f:f1:b7:f1:24:c7:f2:a1:13:f1: 4e:9c:78:3d:1a:9a:88:37:70:71:24:84:fd:f3:8a: ac:0e:41:be:b0:0d:46:44:fa:e9:c8:c8:95:8d:57: 39:4f:d3:2f:f8:46:f3:00:d7:8c:57:c1:8e:c4:de: c0:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:91:06:50:F0:42:DB:29:64:38:35:C0:3E:C9:B5:24:D0:DD:A3:19 X509v3 Authority Key Identifier: keyid:6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b1:46:02:7a:93:f6:49:e6:f9:f2:22:18:7b:0c:4a:f1:a2:4b: 5a:36:8d:6f:42:aa:c3:4d:9c:2f:8c:94:35:ca:9c:6f:66:68: 89:9b:fd:a0:a2:71:55:53:d3:a6:38:a6:f2:f1:c5:2c:63:ac: 03:c4:a9:ad:b7:72:a3:5b:93:05:a3:c3:79:12:5e:d5:dc:a3: 08:a8:86:bf:56:eb:5f:0b:af:77:4a:5e:5e:14:82:28:41:09: ec:6d:23:5a:6f:45:de:7f:69:8c:6a:0d:d0:88:4e:04:b4:af: 2d:a0:77:92:87:2e:16:ab:15:10:3f:c2:b8:70:e4:fe:6b:37: 17:43:85:02:97:f1:16:6e:52:82:3c:dd:d1:72:28:da:1a:4f: 86:ed:98:6b:75:fb:02:fb:51:84:a4:3a:8f:94:cd:f9:f1:17: 1e:17:e3:5c:ed:3a:2d:52:f3:22:0a:dd:0e:b4:c9:43:b4:36: 32:fc:25:62:2b:e2:c2:72:8d:88:09:7f:37:7f:1a:bb:71:49: b3:0f:14:f0:ae:0a:21:75:72:c2:26:ea:0f:5e:fe:7b:14:85: 8b:79:91:e5:42:71:d2:ab:f0:e8:e2:ff:99:33:3e:43:34:2e: 58:9d:f6:08:c3:41:99:05:23:30:79:fd:26:11:67:9a:66:02: dd:78:2a:f0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZz2F+njpSg4+NI57T/S94gzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZmVjZmEwZTY2OTI1OTVjZmJlYTUyNjYwNzZlOGU1M2Vm ZDk0NjEwHhcNMjYwMzE2MTAwMTI4WhcNMjYwMzE3MTAwMTI4WjAzMTEwLwYDVQQD EygzOTkxMDY1MGYwNDJkYjI5NjQzODM1YzAzZWM5YjUyNGQwZGRhMzE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoVKCxv29aJc6Ph9PWlgX3C5OEa9P b5QK4ztIRFIxPnUO7TkYDSGz48mUKlQFvWsY5WORecQRrtrG2HVZZxIseIlX0A/S nDQEJaTuBagjNiS+WRWEMPreIeWEK+ps+l1SC0W7+WqtHYXJ9AvcVbXaA0uKObgH wDQLivQkg28Ka4lDmcruAI5PglwWCjHw25qiACh3oEUCIyLhGX54mupwVbuVVmC8 l5HjVixePXTb0DD9f50wGMv8qS+02ZqG6eYZiR3kULB1cp/xt/Ekx/KhE/FOnHg9 GpqIN3BxJIT984qsDkG+sA1GRPrpyMiVjVc5T9Mv+EbzANeMV8GOxN7AIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDmRBlDwQtspZDg1wD7JtSTQ3aMZMB8GA1UdIwQY MBaAFG3+z6DmaSWVz76lJmB26OU+/ZRhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9mY2ZlYzctZDZjMy00YjQwLWJhMmMt Zjk4OGQ0OGU1MWU4LzEvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy9mY2ZlYzctZDZjMy00YjQwLWJhMmMtZjk4OGQ0OGU1MWU4 LzEvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsUYCepP2 Seb58iIYewxK8aJLWjaNb0Kqw02cL4yUNcqcb2ZoiZv9oKJxVVPTpjim8vHFLGOs A8Sprbdyo1uTBaPDeRJe1dyjCKiGv1brXwuvd0peXhSCKEEJ7G0jWm9F3n9pjGoN 0IhOBLSvLaB3kocuFqsVED/CuHDk/ms3F0OFApfxFm5Sgjzd0XIo2hpPhu2Ya3X7 AvtRhKQ6j5TN+fEXHhfjXO06LVLzIgrdDrTJQ7Q2MvwlYiviwnKNiAl/N38au3FJ sw8U8K4KIXVywibqD17+exSFi3mR5UJx0qvw6OL/mTM+QzQuWJ32CMNBmQUjMHn9 JhFnmmYC3Xgq8A== -----END CERTIFICATE-----Generated at Mon Mar 16 15:10:39 2026 by rpki-client