$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft File: s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft (raw, json) Hash identifier: RiwaMMS9HlRRGJjMWWC2nTFan9bqxjC+/zb2FPSHXdw= Subject key identifier: 47:57:E7:D4:00:69:EB:D2:AA:C4:01:2F:6F:73:30:50:A3:8E:B8:F7 Authority key identifier: B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 Certificate issuer: /CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Certificate serial: 019CA9EADDA1F62B84E13FC4B7945C0D6A3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft Manifest number: 1868 Signing time: Sun 01 Mar 2026 15:01:07 +0000 Manifest this update: Sun 01 Mar 2026 15:01:07 +0000 Manifest next update: Mon 02 Mar 2026 15:01:07 +0000 Files and hashes: 1: 3qg1KGc8omoslEG7jKlx4gx_LhQ.roa (hash: TnGs+EX2f9uQeebTem+/sfQFkc/zmqJQ5dURkVKi/n4=) 2: 6GTkHhvGaHh_ppvgJMPn5q-SDT4.roa (hash: zOLVYqNLZkRsHu25N50zDbPPg1XzLp1BrOsPiOu+9z8=) 3: 6JxXQsPP5HeOd-zrinJyzOvxbvk.roa (hash: avnYdM5iKLHNYRmn2VZGG+0Rulxb30BrgSNse/s1Stw=) 4: Lm2Fdw-4HY59cWTBR1AYmOLC0Mk.roa (hash: SNGqheW6LsNlSg4kHxkvmFfi6Fzh2bEiE379f5CYZNA=) 5: N18aROBQ19Wj6Kdi3-iQ5c6OfeA.roa (hash: ezUkbSC7P3mO/d4z+5YndvD9aLmtqZ6KOctd3R4dOws=) 6: OUOP2IJYsVbNI_PTNHQ12RVMoDI.roa (hash: BnGONzncD2wwl5KKt6nDn2hcjBqGU1Umy1qq2TndNLU=) 7: X5qhIZ7xGCMvKQfZQrbeuOZ9uf8.roa (hash: i3DUL5+61b/Yr3dFWew0V6gv0s7RuSUIeTUfltYEFJs=) 8: Zjh5y2Kd8cSRzdszQnign9Lz3l4.roa (hash: TMEeISdGQlH/KULrec6oWy2p2scTUrKdaSvlMRJx3eE=) 9: davP__FvqtFRD-X_NqiEFhhBbv0.roa (hash: 4RXC3pzMOtisG7APBmg+7ubBijArd9IpJUc7sUhKN2U=) 10: g-q-xyU0r6niX_HcUqMnHfOWVQg.roa (hash: 3EYAH+TPHIG5maEa02mmMDsDD6AUBoN3T8wtoxwbwEg=) 11: iO24D_W0B1UjBwRFlQ8CdPgIqgs.roa (hash: VKTFC+1OrvrVs+DP4mHHKFLGZKyqteGaSW/b1eEAqMs=) 12: jytqbvPB7p4L3yG-M73X311CEZM.roa (hash: OoChTy3t+Ypl0/yoHt/yN9OFfFbQL1CiSDqOkSSFy9Y=) 13: qzIbIOdweY6pocYgDw-BYpuwt2k.roa (hash: RCGDZNml0heHLSfAzhIyGN2imnWRjKRBHXZrfhyhHtA=) 14: s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl (hash: S06MMDeDcJVfMlGI8UczFPwcPq4thnx7TzhddH5gLbc=) 15: x3SzmyzLt8OYyGIP7YYKzeSx1t0.roa (hash: aW1SwGzhZKDv9vTg+ztGzAN+MHGjx+qNx1xNIM7zvvM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 15:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:a9:ea:dd:a1:f6:2b:84:e1:3f:c4:b7:94:5c:0d:6a:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Validity Not Before: Mar 1 15:01:07 2026 GMT Not After : Mar 2 15:01:07 2026 GMT Subject: CN=4757e7d40069ebd2aac4012f6f733050a38eb8f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:80:b8:30:8c:ff:6a:de:a6:90:fd:ca:c7:34: 4f:18:0c:26:9d:90:17:13:80:1d:45:ec:3c:b9:a0: 42:e3:d8:8b:94:4c:9d:b9:0e:cf:44:b9:e6:ef:24: ce:ee:65:6e:92:4d:27:68:a6:f1:c2:41:2c:b2:0a: b1:b6:7b:d6:fe:9b:93:c1:dc:1b:16:31:db:09:cd: 7e:81:e0:f5:76:f7:c3:25:72:2d:f2:d1:dd:e6:7d: 29:4d:24:a6:95:42:e4:57:e6:42:dd:f8:9e:61:a4: bb:84:7f:1f:73:26:66:71:08:53:75:bf:ae:23:cc: 25:42:8b:87:e6:2d:ed:f4:81:c9:b2:a8:5e:df:06: bf:bf:1f:ad:7c:54:a3:ce:54:4f:bb:27:38:ba:ff: bd:49:44:42:17:09:8d:c4:f8:73:53:8c:14:dc:ab: 78:54:41:81:f7:29:cc:b1:36:77:bc:5e:de:d0:d0: 1c:b7:80:c7:c1:a3:2e:27:c0:8d:cc:62:55:44:ad: fc:9e:df:70:35:89:1a:54:68:1f:1b:0c:22:d2:fe: aa:58:6f:51:ec:24:0d:d7:04:36:2b:78:b5:94:b9: c3:e2:da:00:a0:29:32:bb:eb:23:65:3c:c7:18:a0: d6:ca:3a:1b:9b:c2:13:43:7d:b8:13:08:c1:de:f2: 87:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:57:E7:D4:00:69:EB:D2:AA:C4:01:2F:6F:73:30:50:A3:8E:B8:F7 X509v3 Authority Key Identifier: keyid:B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:c4:64:8c:89:e4:33:8f:62:d6:84:49:76:7c:de:55:4d:40: a3:16:a8:7f:a0:72:21:55:3e:1f:f8:7f:43:43:88:f9:2e:e1: c7:7f:c2:5e:13:0a:e2:89:64:93:74:d3:a4:68:2d:6a:ad:37: 20:9c:75:e3:bc:cb:f3:62:7f:33:3a:2d:3f:88:d0:2b:ef:30: e1:f6:ea:90:75:a1:1e:aa:b6:16:6e:a4:e5:aa:f8:66:9c:73: e6:b5:71:eb:9a:20:1d:fb:0d:4f:4d:ec:ba:54:c5:9c:db:0f: ba:97:3a:3f:cb:77:aa:70:85:d1:66:e2:e2:97:a6:81:fd:9c: 6e:2b:45:38:49:37:60:06:31:7d:bc:f0:8c:6e:27:27:7d:9b: 5d:1b:2b:a1:4b:db:07:8d:4f:8e:07:05:34:e1:61:b7:24:8f: 32:64:9c:94:7a:55:ff:51:34:05:c5:49:07:f3:6f:79:e3:f7: 14:68:b9:a0:56:6c:fc:8b:5a:ca:16:19:17:44:b9:c2:42:15: 3f:31:cb:9e:59:f6:26:a8:96:35:9d:12:7c:15:fd:4a:ad:ef: 3a:7b:79:70:7a:56:68:eb:cc:0d:e0:58:95:ce:b3:32:56:6d: 32:02:c8:3e:09:52:f9:f9:be:17:2d:02:7b:8d:b0:33:8e:21: c0:a1:81:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZyp6t2h9iuE4T/Et5RcDWo6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzYTVkOTk4NjNkYjJlNDliNDRmNmMzMjRlYjA0Mzg4ZmM3 NTE1ZDIwHhcNMjYwMzAxMTUwMTA3WhcNMjYwMzAyMTUwMTA3WjAzMTEwLwYDVQQD Eyg0NzU3ZTdkNDAwNjllYmQyYWFjNDAxMmY2ZjczMzA1MGEzOGViOGY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp4C4MIz/at6mkP3KxzRPGAwmnZAX E4AdRew8uaBC49iLlEyduQ7PRLnm7yTO7mVukk0naKbxwkEssgqxtnvW/puTwdwb FjHbCc1+geD1dvfDJXIt8tHd5n0pTSSmlULkV+ZC3fieYaS7hH8fcyZmcQhTdb+u I8wlQouH5i3t9IHJsqhe3wa/vx+tfFSjzlRPuyc4uv+9SURCFwmNxPhzU4wU3Kt4 VEGB9ynMsTZ3vF7e0NAct4DHwaMuJ8CNzGJVRK38nt9wNYkaVGgfGwwi0v6qWG9R 7CQN1wQ2K3i1lLnD4toAoCkyu+sjZTzHGKDWyjobm8ITQ324EwjB3vKHowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEdX59QAaevSqsQBL29zMFCjjrj3MB8GA1UdIwQY MBaAFLOl2Zhj2y5JtE9sMk6wQ4j8dRXSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAt ZWVjNWQ1MGVmYTk0LzEvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAtZWVjNWQ1MGVmYTk0 LzEvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV8RkjInk M49i1oRJdnzeVU1Aoxaof6ByIVU+H/h/Q0OI+S7hx3/CXhMK4olkk3TTpGgtaq03 IJx147zL82J/MzotP4jQK+8w4fbqkHWhHqq2Fm6k5ar4Zpxz5rVx65ogHfsNT03s ulTFnNsPupc6P8t3qnCF0Wbi4pemgf2cbitFOEk3YAYxfbzwjG4nJ32bXRsroUvb B41PjgcFNOFhtySPMmSclHpV/1E0BcVJB/NveeP3FGi5oFZs/ItayhYZF0S5wkIV PzHLnln2JqiWNZ0SfBX9Sq3vOnt5cHpWaOvMDeBYlc6zMlZtMgLIPglS+fm+Fy0C e42wM44hwKGBtg== -----END CERTIFICATE-----Generated at Mon Mar 2 01:51:39 2026 by rpki-client