$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft File: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft (raw, json) Hash identifier: v7Pq8mVE8WvHqC2xmCi+QEwUmgQ/8S635dS5RqI4Peg= Subject key identifier: F4:65:D4:8B:77:11:F6:D8:D9:3B:E3:F7:E6:13:CE:2C:0F:FC:03:60 Authority key identifier: 23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62 Certificate issuer: /CN=23259da3b1b38ca0939f490fb9043fcd89cfd062 Certificate serial: 019CA97CD48056B1E646AD9475C54A8134C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft Manifest number: 184F Signing time: Sun 01 Mar 2026 13:00:56 +0000 Manifest this update: Sun 01 Mar 2026 13:00:56 +0000 Manifest next update: Mon 02 Mar 2026 13:00:56 +0000 Files and hashes: 1: BNGMVvTZ1XawSMPOVaywEKgFz8w.roa (hash: WMt9Jn62xWAvsFJt6BLgLhIXnUKvtSHXK/jsLiQ9wc0=) 2: IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl (hash: s8H3rK3sAfwvEkH6fzUTYL/94oRo/7lpbVLiZVcD2ng=) 3: J_k_uJydXhJKkAPBLn_Xr9EpYmw.roa (hash: bMaFsCf1Hj+guhXQdkk7ZJ24ZgANPSnkOncPj3CW1pQ=) 4: S9D_ZvZP7Y2SyyqdAWt1mGxtagE.roa (hash: hH6PHrAp3gX28fWUuJtWpjV+rB9bYio8w3wI6R4XHQI=) 5: YPhzzBUAAD8W6PxdQ8Eo6J_1Xlo.roa (hash: QJjVxTN7Kd8ed1QYD92fFHesTbkRe6gyeZIi3S6D0so=) 6: Z8UyJlJrz_tPx2Lzi2wtF6sRSoY.roa (hash: pZEmU7QBOi+LmI67NMxNilqE5KRHfsee+sRCVmykeWE=) 7: gw26QBwPzQF9bT3yyu20z1tgJyk.roa (hash: iuHp19gpWORmcmt7JfC/koJtOp0jpGQxA/LoBFKsFao=) 8: mdj55pZO6nRDbpPFsXBoK-GkNU8.roa (hash: JU7FZwf7hl0KcJAATQ/by5oF+/xX9ntEZw2LOkX+3S0=) 9: n70k782e6Gxq_-Hc2YO_idjOcAs.roa (hash: 9xPDUcAeeZeb+V1tJdiN4n6+fuVQh1F2hwH4+x4MOiQ=) 10: pX4-zHrOaGGZmLrFodKOqsDRVt8.roa (hash: oNNoPaGL9tiGcsnmh6pVkfSYR8zyTqJrDL9WChZzfdA=) 11: vqLY8AJRdwBNZp1vMAKBzj7hYMk.roa (hash: QScIVVTzvA87+g4pWqcXEROo6Uo1IppOyeJM8oSgj8s=) 12: xgHR7y7J0aGtYD0R9jhr6WJbZm8.roa (hash: CHXV05nQbB5KxwYkctbAeeyJMsjXN6ysG0w+cPnzH+Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 06:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:a9:7c:d4:80:56:b1:e6:46:ad:94:75:c5:4a:81:34:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23259da3b1b38ca0939f490fb9043fcd89cfd062 Validity Not Before: Mar 1 13:00:56 2026 GMT Not After : Mar 2 13:00:56 2026 GMT Subject: CN=f465d48b7711f6d8d93be3f7e613ce2c0ffc0360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ca:79:31:e6:c9:c1:21:b1:1c:47:eb:01:52: db:23:91:e2:d2:b9:93:6c:a6:0e:30:7e:5e:5a:8a: 49:75:2d:54:83:55:48:fe:83:09:91:fa:82:f0:5e: e5:62:15:ac:35:16:47:bb:01:b6:ff:fd:92:e4:6a: de:ef:b3:4f:bd:31:07:f4:73:2b:7c:53:ee:f4:fe: e3:5f:08:3d:9f:77:db:5c:13:79:f4:b6:75:68:5d: 3f:20:5b:92:39:73:db:88:df:f1:cb:25:c0:ff:dc: c1:06:41:88:39:a8:e8:b3:19:c0:25:18:9d:5f:f7: 01:e5:dd:48:be:13:f2:bf:7f:dc:bd:3a:69:82:dd: 18:9f:61:f7:50:17:a2:60:fc:0b:98:e2:6f:37:a7: bd:39:ff:3e:b9:8b:79:87:db:f2:ef:a2:70:ae:f1: 88:c2:b3:bd:92:bf:36:d8:b7:77:de:8e:65:39:a4: c4:ce:74:ae:a8:8f:37:34:4e:43:0a:b6:9d:0c:ee: 6f:58:55:b9:23:64:01:d7:71:43:37:6d:cc:22:d1: 1a:09:a5:6f:f3:16:b4:47:00:27:32:d0:a3:0e:0d: 6d:e0:1f:3b:87:29:57:8d:7b:35:9d:b8:60:21:69: 58:b0:72:6b:ae:92:34:bd:45:6d:5b:e8:57:d6:d0: be:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:65:D4:8B:77:11:F6:D8:D9:3B:E3:F7:E6:13:CE:2C:0F:FC:03:60 X509v3 Authority Key Identifier: keyid:23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:d8:be:7d:10:1e:30:e8:15:e4:b6:2d:dd:44:b0:17:97:b4: 4f:42:99:9c:df:67:64:60:88:e3:92:a4:9c:a1:d6:f2:93:ad: 4d:af:9d:5e:b5:dd:67:9d:c1:32:40:5c:04:39:22:25:cc:4f: 7e:76:19:63:c5:22:3f:34:ec:8c:23:f1:3e:8f:c9:ec:2c:b6: 03:b3:3c:84:70:98:08:08:c6:8e:28:48:e9:a2:f4:a7:7d:e4: 9e:1f:96:07:10:b3:eb:38:0e:48:13:85:79:a2:19:48:2c:d1: 1f:33:c1:57:65:5a:ca:01:b6:59:5a:47:bb:ac:a2:12:74:71: 69:ce:5e:a1:c3:12:5d:46:4a:d2:eb:95:a9:14:f2:34:cb:c3: c1:81:90:d7:50:5b:0f:30:57:dc:aa:c9:6f:75:4a:8e:82:e8: d7:51:ee:52:d5:6f:62:9f:37:03:b1:e1:20:82:c3:4a:8f:6e: 83:02:df:34:ad:e8:c5:5e:db:e3:8b:8b:be:54:32:5c:a7:80: 8e:bf:8d:0e:d1:39:25:28:23:06:bb:c8:c2:58:d7:8b:95:e2: b0:04:72:d0:7c:39:2f:d1:0c:7f:0f:ca:30:b6:60:fa:10:20: 40:92:5e:5f:36:1a:74:5b:3d:c5:3f:54:b7:89:a2:7f:3b:98: 00:fd:54:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZypfNSAVrHmRq2UdcVKgTTDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzMjU5ZGEzYjFiMzhjYTA5MzlmNDkwZmI5MDQzZmNkODlj ZmQwNjIwHhcNMjYwMzAxMTMwMDU2WhcNMjYwMzAyMTMwMDU2WjAzMTEwLwYDVQQD EyhmNDY1ZDQ4Yjc3MTFmNmQ4ZDkzYmUzZjdlNjEzY2UyYzBmZmMwMzYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtsp5MebJwSGxHEfrAVLbI5Hi0rmT bKYOMH5eWopJdS1Ug1VI/oMJkfqC8F7lYhWsNRZHuwG2//2S5Gre77NPvTEH9HMr fFPu9P7jXwg9n3fbXBN59LZ1aF0/IFuSOXPbiN/xyyXA/9zBBkGIOajosxnAJRid X/cB5d1IvhPyv3/cvTppgt0Yn2H3UBeiYPwLmOJvN6e9Of8+uYt5h9vy76JwrvGI wrO9kr822Ld33o5lOaTEznSuqI83NE5DCradDO5vWFW5I2QB13FDN23MItEaCaVv 8xa0RwAnMtCjDg1t4B87hylXjXs1nbhgIWlYsHJrrpI0vUVtW+hX1tC+5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPRl1It3EfbY2Tvj9+YTziwP/ANgMB8GA1UdIwQY MBaAFCMlnaOxs4ygk59JD7kEP82Jz9BiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUt NjU0ZGQ2NDQyY2U0LzEvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUtNjU0ZGQ2NDQyY2U0 LzEvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV9i+fRAe MOgV5LYt3USwF5e0T0KZnN9nZGCI45KknKHW8pOtTa+dXrXdZ53BMkBcBDkiJcxP fnYZY8UiPzTsjCPxPo/J7Cy2A7M8hHCYCAjGjihI6aL0p33knh+WBxCz6zgOSBOF eaIZSCzRHzPBV2VaygG2WVpHu6yiEnRxac5eocMSXUZK0uuVqRTyNMvDwYGQ11Bb DzBX3KrJb3VKjoLo11HuUtVvYp83A7HhIILDSo9ugwLfNK3oxV7b44uLvlQyXKeA jr+NDtE5JSgjBrvIwljXi5XisARy0Hw5L9EMfw/KMLZg+hAgQJJeXzYadFs9xT9U t4mifzuYAP1Ucw== -----END CERTIFICATE-----Generated at Sun Mar 1 16:29:49 2026 by rpki-client