$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft File: TKZvPA8ld05pbSpGcjJ365YRKMM.mft (raw, json) Hash identifier: w9ph4+aFN4WRZrtty0IJvqrHh1NnIADe8yr4r2080j4= Subject key identifier: 7F:FB:8C:F5:CB:D9:21:F1:00:07:E9:39:4C:B6:61:F7:DD:60:C6:BD Authority key identifier: 4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3 Certificate issuer: /CN=4ca66f3c0f25774e696d2a46723277eb961128c3 Certificate serial: 019CAE6BF93C1132B725A3BF787730438CFD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft Manifest number: 186C Signing time: Mon 02 Mar 2026 12:00:37 +0000 Manifest this update: Mon 02 Mar 2026 12:00:37 +0000 Manifest next update: Tue 03 Mar 2026 12:00:37 +0000 Files and hashes: 1: 0IrKb4Ocom_z-8cWO6ogho_9Ejs.roa (hash: tjdt9PHspdzPY29Lxc8zvyVdheALBUo0bapCnScWepo=) 2: 1-mot6mikLp_MDl0b7kmHUwF8vnM.roa (hash: XgWK76sOAKa1F05WWdrvMpLFcLfu8IIa8P7y+0SOUIQ=) 3: 2hev3Ozu25IR4V2dL7dAcH9H-38.roa (hash: JMnA8s2ygn9eCJpbiMUYRSb0p9eo/efu/ihrpcvOxF0=) 4: 5CBz7J_rxqKIErWJdNCTyxWORk4.roa (hash: NgQqsHixRjLE1PxJ9k04+GOCbvcPmM6kd6jLKzVPJ4A=) 5: 9d-_5920bjCdAX8N09u8neSsl3o.roa (hash: o8FIziw32GpKzwaDWACsYaXRfvH+eTcW8yYR9DZRp+c=) 6: CxwFpKnVRB1YipI_w1rOdL2Rr_0.roa (hash: Sqj7uyxBPWvN499fr3Zl2IE3H+X3USQ46cvMPtYbWbI=) 7: TKZvPA8ld05pbSpGcjJ365YRKMM.crl (hash: fg7jRQJQg5zyHWG6XKc9xT6/xRpN256Mi5UQo0CMc8k=) 8: k4d-Grd6fMOD6ch95iLC_D9xAmI.roa (hash: FpQzQlajcmhliY2oa1dKiB0yjFo7oTmcDQa2iboX4UE=) 9: o4wjR8pZMB50VMWQpLsPi-iVTDE.roa (hash: ATIz3XapJ04NxEJg4iAdFVY462a3mfpQBCW4sSM6kew=) 10: oQUSrEROqxA0JRpbiStP3_G82GM.roa (hash: XUh60Rhyc+lm/VBx4kH4IarcFH4VCmn/oycmnKA5p14=) 11: oW0C-k4390azUSS_-13XzI_AVfY.roa (hash: rzcyrGergvNW2GLz+g1GX+/P72a2swYsTQgABXmO4lQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Mar 2026 12:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:ae:6b:f9:3c:11:32:b7:25:a3:bf:78:77:30:43:8c:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ca66f3c0f25774e696d2a46723277eb961128c3 Validity Not Before: Mar 2 12:00:37 2026 GMT Not After : Mar 3 12:00:37 2026 GMT Subject: CN=7ffb8cf5cbd921f10007e9394cb661f7dd60c6bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:04:b9:23:0a:f3:62:0b:2f:b7:d8:1e:6c:d4: 7c:65:2c:22:70:af:08:54:60:dc:91:6b:22:d9:54: 5e:94:70:57:2b:7b:af:9f:bf:2c:9a:22:d0:c3:13: 5e:1d:9b:8a:5f:da:97:99:62:7b:1c:69:58:0a:a2: 72:d2:b7:ce:6d:93:ec:0a:e2:da:38:89:23:33:41: 57:9a:6f:ca:7b:c2:91:79:b7:d3:66:d5:c7:f8:c8: b2:89:45:9f:38:f1:93:51:bd:95:7a:79:64:bb:cf: 68:13:98:e8:5e:eb:59:90:c4:c5:9f:d6:92:96:3c: 3b:22:cd:26:c5:64:b7:41:45:4b:24:eb:a5:0f:15: 3d:3d:03:85:7c:f4:71:40:b1:df:cc:bf:25:7b:10: 53:b1:89:1b:95:5e:5f:9e:75:a3:d1:b4:5f:a7:4c: ce:84:8c:bd:42:7a:df:68:c6:aa:97:b3:07:24:ec: 17:5e:d0:3b:b1:bb:30:fb:1e:66:85:2f:91:b8:04: d7:bd:91:2a:62:1e:d9:4e:5d:96:a1:0e:c9:f8:e5: d2:15:f8:fa:b2:60:37:16:8a:ce:fc:83:67:af:e4: 7b:67:24:cf:d8:1d:4d:bf:17:85:c2:eb:7c:3e:df: e3:d2:f7:ba:e5:2d:30:99:1e:a6:6b:11:c5:0d:1f: b8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:FB:8C:F5:CB:D9:21:F1:00:07:E9:39:4C:B6:61:F7:DD:60:C6:BD X509v3 Authority Key Identifier: keyid:4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:9c:04:7a:2e:da:a1:94:66:97:b5:9c:e7:8f:8a:bb:94:ef: a7:e8:9b:18:2f:08:f6:80:e5:a2:63:e3:ac:b5:e8:90:8d:7b: 1b:06:71:0d:e3:23:66:0f:a5:fa:7b:f3:cf:54:6e:97:05:e7: b2:91:b4:db:67:aa:33:d9:b0:b4:ef:3d:37:2f:2a:bd:a4:af: d1:59:b0:63:a0:ac:c4:72:ee:e9:69:ef:90:1c:91:78:91:69: bd:a8:17:d8:5d:d7:aa:62:22:57:dc:2f:7e:12:c8:2a:26:a8: 6e:cf:41:1e:b2:63:66:b5:6c:bb:74:1c:9b:7d:64:b9:9d:fa: fc:01:46:23:02:d9:bb:fb:1d:90:78:e2:a8:6e:be:8f:84:3b: b0:2f:bf:29:1d:cc:99:be:bf:68:50:d1:ed:98:85:8c:99:cf: e0:f9:9b:de:d9:06:33:89:5d:d8:f1:e8:1d:00:0f:01:e7:c9: 95:28:98:78:a6:08:eb:5f:77:66:40:56:46:3d:a5:08:08:24: f5:09:d5:3c:05:9e:02:ea:a6:cf:d6:21:77:e9:6f:ea:15:f6: 1d:f9:2b:b0:a5:71:a9:e7:92:41:89:f7:53:b1:1e:f4:09:91: 40:30:bd:3c:d9:58:e5:ca:29:7b:14:59:17:8d:cc:5d:35:b2: 3d:9c:61:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZyua/k8ETK3JaO/eHcwQ4z9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjYTY2ZjNjMGYyNTc3NGU2OTZkMmE0NjcyMzI3N2ViOTYx MTI4YzMwHhcNMjYwMzAyMTIwMDM3WhcNMjYwMzAzMTIwMDM3WjAzMTEwLwYDVQQD Eyg3ZmZiOGNmNWNiZDkyMWYxMDAwN2U5Mzk0Y2I2NjFmN2RkNjBjNmJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoQS5IwrzYgsvt9gebNR8ZSwicK8I VGDckWsi2VRelHBXK3uvn78smiLQwxNeHZuKX9qXmWJ7HGlYCqJy0rfObZPsCuLa OIkjM0FXmm/Ke8KRebfTZtXH+MiyiUWfOPGTUb2Venlku89oE5joXutZkMTFn9aS ljw7Is0mxWS3QUVLJOulDxU9PQOFfPRxQLHfzL8lexBTsYkblV5fnnWj0bRfp0zO hIy9QnrfaMaql7MHJOwXXtA7sbsw+x5mhS+RuATXvZEqYh7ZTl2WoQ7J+OXSFfj6 smA3ForO/INnr+R7ZyTP2B1NvxeFwut8Pt/j0ve65S0wmR6maxHFDR+4BwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH/7jPXL2SHxAAfpOUy2YffdYMa9MB8GA1UdIwQY MBaAFEymbzwPJXdOaW0qRnIyd+uWESjDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8yMDQwMTctZjA0Ni00YjY5LWIzZTUt MzE5YjBjODc0NDQwLzEvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy8yMDQwMTctZjA0Ni00YjY5LWIzZTUtMzE5YjBjODc0NDQw LzEvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHZwEei7a oZRml7Wc54+Ku5Tvp+ibGC8I9oDlomPjrLXokI17GwZxDeMjZg+l+nvzz1RulwXn spG022eqM9mwtO89Ny8qvaSv0VmwY6CsxHLu6WnvkByReJFpvagX2F3XqmIiV9wv fhLIKiaobs9BHrJjZrVsu3Qcm31kuZ36/AFGIwLZu/sdkHjiqG6+j4Q7sC+/KR3M mb6/aFDR7ZiFjJnP4Pmb3tkGM4ld2PHoHQAPAefJlSiYeKYI6193ZkBWRj2lCAgk 9QnVPAWeAuqmz9Yhd+lv6hX2HfkrsKVxqeeSQYn3U7Ee9AmRQDC9PNlY5copexRZ F43MXTWyPZxhlg== -----END CERTIFICATE-----Generated at Mon Mar 2 16:33:32 2026 by rpki-client