$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft File: ER1oFDdScdGjy9EhVdsR0r1BqNM.mft (raw, json) Hash identifier: 0dKaVDCf3qAUKpE+C1ggo1QoxETT/39RF5us/WSTFJo= Subject key identifier: F0:10:07:1B:11:79:80:D0:5F:9A:59:38:1C:BB:02:34:83:44:10:86 Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Certificate serial: 019CE47EFEE49B841F885F578BAB73183E5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft Manifest number: 1729 Signing time: Fri 13 Mar 2026 00:00:53 +0000 Manifest this update: Fri 13 Mar 2026 00:00:53 +0000 Manifest next update: Sat 14 Mar 2026 00:00:53 +0000 Files and hashes: 1: 8ZTbVFN88ElJOvnxpynWkBywvcU.roa (hash: Zi7aMmYsFeMT6y4m/OMRvzAw9FlwVPNAsEeEWMyssQs=) 2: 9gyIdfYx-vxaH69AuzYIu8sS7ec.roa (hash: vsh4e/kwYxBt1mO0Ld2w2nU9VsbUvL0v+cSn3CZdKv4=) 3: D4HmthbydYoqExoa56VFIbe7J5A.roa (hash: 1gmVpoixHN/Zn+8HJ6YdrukA3JeRxcEeBWZ/2aGh+ps=) 4: DKZJyriLpkX0P03xQILHD2FwZEo.roa (hash: x6vx2AQsWgf7sMGXLXxiRwrb7PArAVgKRPBlJd4ah10=) 5: ER1oFDdScdGjy9EhVdsR0r1BqNM.crl (hash: twn7BRwwrTM0xXQUTZxWMoAelVhQyvetRmn9HuY7h8Q=) 6: HRwCntz8pHEtM7UJXh-KwEbXi3w.roa (hash: CKUDXMyXov9Gbf/ygH+HewYMwNtReJO+UQotN2JyBXQ=) 7: Haim4aY9ShmCS1epcJRa3-rRRmM.roa (hash: AQeMZQUR+w1eyhT+kYpVEnNYoo0tXgoBt1LUUZT+/W4=) 8: Ka2f0_rG4AuXnvi8TQgXMBJzKOE.roa (hash: HTLBGDTB6awokEWRy6DjReQvfOLjCmwPODXPDvHGn+A=) 9: LdJkopqk4m9ubmHzk4T29FnhG7o.roa (hash: Qx8FwqyP4Rxw7vIMwqfqa4V2zeYK7+dz+yeOugc8QVI=) 10: S3K9bo4j9NjF6L9mhwIsz-LYyHg.roa (hash: FX7C0FNczXeRPZms4zyJ1OukTZNK4zd0GhG7vBTsBvg=) 11: UWgtqXah3liJx-awsYUK3XIS54c.roa (hash: nisX/PCjG49hPGc2ySAUn3J0MxV+pv8+T78d4GdNMSs=) 12: _d7ohj2Ako_tiSFSE9-jnGs0uoI.roa (hash: mf32LDbJ2Su5F5H62P0/F/PId5oq7GFGgkD8WKRwmPw=) 13: f5svUnEK1n30wRVLtixbJDS7pZM.roa (hash: sILbepz7GhK0jGMQ48sIN5LBYx9eYZB9voFGWkXvx60=) 14: iK87eJg7y-_rcG1D3z4FzaXgRNE.roa (hash: uVYEVS9koySJoZQhAK0q3w5qAE9/nwHY2ro0Er3WEZY=) 15: mcS4SdpuWVbabfdpCB_tOwct_TA.roa (hash: hcfOoUJHvls1DL90VCIcUIUdeQTL2YjVgbYPY6TdJAA=) 16: nXrADfBP6wNtRforv4w6KFdo1Ns.roa (hash: PAoowx6zHYeOj9TxBp8LwY6JFAj6/p0gXZ/G0XMc/dg=) 17: tDoaGy6SLh3swARR-izxiYVQMmU.roa (hash: lZCnqmwKcNoIj9hNP0txhfT3ExuUcH8dWLkUpGjDKzc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 14 Mar 2026 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:e4:7e:fe:e4:9b:84:1f:88:5f:57:8b:ab:73:18:3e:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Validity Not Before: Mar 13 00:00:53 2026 GMT Not After : Mar 14 00:00:53 2026 GMT Subject: CN=f010071b117980d05f9a59381cbb023483441086 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:77:6e:6c:6e:c0:9a:d2:39:f2:a3:c8:4d:24: bb:35:90:37:e4:24:b9:a2:cc:0c:e4:04:b2:3d:98: c8:bd:5d:47:5e:cf:c8:35:35:df:1c:2b:8b:79:2a: 37:54:b9:6b:cf:96:b5:41:de:66:20:90:a2:c9:cc: 00:dd:53:11:49:8e:bc:90:47:91:9a:d6:46:4b:d8: 68:ed:3b:0c:a2:69:65:92:d1:f3:d4:4f:94:5f:b1: 6b:66:f4:44:30:19:17:d7:c6:28:d5:dc:8e:04:fe: db:44:d9:53:7a:2d:50:e0:5c:e8:0a:1a:ed:58:65: bb:c9:41:92:0a:52:95:fc:d5:01:56:77:34:b5:dd: ae:43:fa:b1:b9:ca:07:02:7e:42:38:5a:2f:6b:f4: 2b:b9:43:6b:d1:d2:34:cf:43:03:d4:40:75:18:ba: da:7e:a0:b4:07:28:ea:77:7e:07:16:f9:ea:ab:16: 5b:f0:c0:8a:fe:cd:74:a7:df:06:89:04:c7:00:d4: eb:39:6d:56:58:e6:b9:80:f6:d8:93:15:56:a8:2f: a2:60:1f:86:4f:f1:b0:b5:29:ed:9f:f8:99:02:30: 3b:16:26:1e:1d:55:a5:8f:78:bf:6e:89:a8:eb:f9: 2f:fd:dc:13:62:aa:0d:37:fd:3e:88:7d:59:b8:78: 2c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:10:07:1B:11:79:80:D0:5F:9A:59:38:1C:BB:02:34:83:44:10:86 X509v3 Authority Key Identifier: keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:56:86:fd:89:36:1f:f4:4c:b2:f7:cd:c9:fe:31:d0:9b:d2: 2d:88:8c:d3:2f:bd:2b:0e:b6:e7:25:c6:f1:4a:2f:94:bd:c0: ef:90:df:c7:80:8b:12:f8:63:50:c6:8f:c0:ed:24:8e:1f:94: fe:9e:87:56:97:aa:d8:14:42:1c:89:5f:a8:01:50:4c:42:d1: 67:7a:ca:80:dc:c4:95:83:19:f8:d3:6a:dc:b8:03:e7:ef:a8: 70:4a:2d:af:62:34:5e:7e:94:76:58:b0:3b:f4:08:20:09:e4: 94:a4:33:24:74:52:1d:b1:b6:92:81:04:6d:5b:3b:0f:e8:04: dc:f3:f6:a2:86:3a:db:5e:4e:fe:2e:9b:da:6c:0c:83:0c:37: 05:6f:83:c0:a1:f8:d1:ca:46:ec:25:95:8c:8b:ce:0b:e8:25: 49:84:72:73:07:a0:8a:ab:e4:7b:34:0c:7e:a4:3c:5b:fb:1b: 3d:f7:1e:cf:65:15:12:4e:b0:2d:4c:8d:34:98:a5:a9:4e:16: 58:35:fc:41:5d:51:c3:73:05:e9:92:94:7d:62:4f:3a:c1:8f: 32:b4:22:51:98:a3:cf:b3:0c:5c:74:6b:02:59:63:cd:45:4b: b0:00:27:bb:71:0b:45:9a:9e:92:b7:56:79:ce:7d:5a:7a:ef: 92:90:ad:7a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZzkfv7km4QfiF9Xi6tzGD5cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMWQ2ODE0Mzc1MjcxZDFhM2NiZDEyMTU1ZGIxMWQyYmQ0 MWE4ZDMwHhcNMjYwMzEzMDAwMDUzWhcNMjYwMzE0MDAwMDUzWjAzMTEwLwYDVQQD EyhmMDEwMDcxYjExNzk4MGQwNWY5YTU5MzgxY2JiMDIzNDgzNDQxMDg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt3dubG7AmtI58qPITSS7NZA35CS5 oswM5ASyPZjIvV1HXs/INTXfHCuLeSo3VLlrz5a1Qd5mIJCiycwA3VMRSY68kEeR mtZGS9ho7TsMomllktHz1E+UX7FrZvREMBkX18Yo1dyOBP7bRNlTei1Q4FzoChrt WGW7yUGSClKV/NUBVnc0td2uQ/qxucoHAn5COFova/QruUNr0dI0z0MD1EB1GLra fqC0Byjqd34HFvnqqxZb8MCK/s10p98GiQTHANTrOW1WWOa5gPbYkxVWqC+iYB+G T/GwtSntn/iZAjA7FiYeHVWlj3i/bomo6/kv/dwTYqoNN/0+iH1ZuHgsNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPAQBxsReYDQX5pZOBy7AjSDRBCGMB8GA1UdIwQY MBaAFBEdaBQ3UnHRo8vRIVXbEdK9QajTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQt MjcxZDI1ZTIwNTc0LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQtMjcxZDI1ZTIwNTc0 LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARVaG/Yk2 H/RMsvfNyf4x0JvSLYiM0y+9Kw625yXG8UovlL3A75Dfx4CLEvhjUMaPwO0kjh+U /p6HVpeq2BRCHIlfqAFQTELRZ3rKgNzElYMZ+NNq3LgD5++ocEotr2I0Xn6Udliw O/QIIAnklKQzJHRSHbG2koEEbVs7D+gE3PP2ooY6215O/i6b2mwMgww3BW+DwKH4 0cpG7CWVjIvOC+glSYRycwegiqvkezQMfqQ8W/sbPfcez2UVEk6wLUyNNJilqU4W WDX8QV1Rw3MF6ZKUfWJPOsGPMrQiUZijz7MMXHRrAlljzUVLsAAnu3ELRZqekrdW ec59WnrvkpCteg== -----END CERTIFICATE-----Generated at Fri Mar 13 08:51:20 2026 by rpki-client