$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft File: AOT2p3Not87P5nIgtDZXax4Aiuw.mft (raw, json) Hash identifier: zekduioIlocvz9vz8kUzSK+FxwPtk9j8Vf0YLhshaL8= Subject key identifier: D1:FC:7C:B7:68:C5:18:43:26:FB:A4:E6:4A:0F:4A:7C:21:66:35:A2 Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec Certificate serial: 019CABD9BBB0AD9575897262C914A0854E11 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft Manifest number: 1949 Signing time: Mon 02 Mar 2026 00:01:38 +0000 Manifest this update: Mon 02 Mar 2026 00:01:38 +0000 Manifest next update: Tue 03 Mar 2026 00:01:38 +0000 Files and hashes: 1: 1-7-GRl1DpJL9MX_Eh7vVlgQAtds.roa (hash: qBQ+Yv34RT+76LqwEUvZMWK4vq87p/Tm5N2E03sJUtE=) 2: 8JQ0VF5qvrtIdP5kzOpKrpQ4c_Q.roa (hash: 8Cz/nfpNgRo73mnZrpsPG4yB6fA8zTsiRnBVo7ed97c=) 3: AOT2p3Not87P5nIgtDZXax4Aiuw.crl (hash: EMpJLCi5ExDtvfP9CBNqgCMdYXgbFrr5O6ND+KVOgcY=) 4: CP1700xQhoIo0eqZb96w49fwMZU.roa (hash: FhGMMmXWb4O7zbwANRuKCF/ES8PwzOmEkZV99iTN5xU=) 5: Iz8oQHvYY4N1cu4pgE3299ogM34.roa (hash: GTn6Y+DWEw4+IcATVORnDqgcpHWD0i8V9c7BBTnRM3U=) 6: MQ0e7OQgina0hHLbzkJJI7ocRMY.roa (hash: lYlPT7y2KTJ0qjKzQaLtDJlIn+M8xo18ZCJuzXN583Y=) 7: VcGOwSBLa8MeclenBwYCnJTkc6Q.roa (hash: ZpKqr8OOjlncepBvaT8KeQio9IThw68qGgH8coHhuVI=) 8: gF0x-IgTBvCJCERAByN93AH9MjM.roa (hash: f9L9sZ2MryoARd93KF5kcE6ImNuSL3mNiWJ8yZc3d58=) 9: hGF5HckbV_mO1zNnnUvLaxvGgg0.roa (hash: LswWVKDsb8V0ubfBEeUCi7BkiOP6J97pjosqCGNORUk=) 10: oPPgaBYxfthIjxyRNKKvuQhADcA.roa (hash: vJpx4imZl2f0ZsJVLjSi4WZMmzQUNNlQIXHfoEUu3/k=) 11: tDS2Cs2obRP0GxSw9_zcJ3O6_H8.roa (hash: 6+3w2X7QmyZajlkvHT3Z32O7WpWvoPyxaW4Oqr2oNl8=) 12: v3K9UBCZQXetZHCASn_v-Er6z80.roa (hash: M01ADTQv5+WF8EwvS7wZ9W7tolykwshPsb2JjYqw3EQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Mar 2026 00:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:ab:d9:bb:b0:ad:95:75:89:72:62:c9:14:a0:85:4e:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec Validity Not Before: Mar 2 00:01:38 2026 GMT Not After : Mar 3 00:01:38 2026 GMT Subject: CN=d1fc7cb768c5184326fba4e64a0f4a7c216635a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:6e:e2:45:a0:69:c6:bf:0b:67:58:7d:06:34: 64:b7:e7:92:e4:e5:9b:61:c9:1a:f8:a7:28:22:7a: cf:a7:f7:fd:5f:93:46:7c:28:66:35:36:68:76:6a: ba:4f:1d:b3:5e:7d:5d:94:89:e9:bf:db:52:8e:80: 59:7f:6d:6c:62:f5:b6:7b:3d:47:a3:75:c2:dc:1e: 99:f0:ad:10:66:b4:a1:c0:4d:3d:33:5a:db:99:a4: f6:94:6b:49:8e:03:02:37:81:e0:fa:9e:78:af:dc: 31:e2:8c:dc:36:e8:d1:07:2e:c8:3b:55:eb:8a:80: 57:fe:60:c8:b7:04:3a:83:5b:de:3b:ab:0e:e8:a2: a3:d2:43:c7:7e:6a:8c:51:97:80:78:bd:eb:8c:19: 06:a2:0d:8c:b2:de:1a:d0:8b:e1:7f:e3:3e:7a:41: 48:aa:b1:5f:f2:56:03:0a:27:52:58:38:f0:33:d3: 5a:65:68:a1:1c:47:46:af:07:70:53:df:f0:7c:9e: 33:62:f7:0e:f1:d0:c8:5a:03:a4:6d:25:72:a9:3b: b4:82:5b:e2:77:9f:86:4b:d0:1a:43:13:45:3a:d8: 39:c6:02:11:5c:8c:d9:1a:03:7b:f7:ec:a8:c6:89: 89:f2:e4:56:6b:5b:99:8b:10:1d:98:d5:18:4d:89: de:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:FC:7C:B7:68:C5:18:43:26:FB:A4:E6:4A:0F:4A:7C:21:66:35:A2 X509v3 Authority Key Identifier: keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:a3:05:24:f9:fe:e3:91:b0:35:ba:d5:ba:bc:66:eb:fa:af: 98:1a:1e:bd:10:63:ae:89:63:0d:24:0a:e1:2c:0f:f6:ff:54: 8e:01:26:cd:95:12:2f:08:ad:49:5f:87:55:04:d1:f2:a6:a0: 5a:76:1a:6a:ec:2b:d5:b2:54:04:81:b4:2b:40:cf:3a:ad:9b: 53:46:a8:f2:dc:72:84:6c:07:69:66:ee:bc:0e:ca:51:d0:27: 3b:78:60:44:85:58:69:1c:48:db:72:77:4d:c2:cc:bd:40:67: 2c:9d:6f:ff:e1:2f:f4:f3:60:20:3e:ad:e9:47:3f:0a:1a:59: df:12:39:91:11:35:de:b5:dd:11:11:c3:1d:28:b6:49:ea:f3: 9e:22:aa:09:91:7c:47:c1:89:3a:8f:36:3c:96:db:01:84:df: af:51:9b:68:1f:36:31:8d:a6:33:7a:a8:c5:67:25:6f:7b:45: a3:4c:22:fc:cc:61:64:6b:a7:2b:e1:8e:e2:42:5a:fd:bc:e9: a0:61:7c:91:dd:ab:6c:31:5a:ae:74:dc:c1:b9:c8:71:a2:30: df:1c:1b:60:71:a1:16:53:81:32:e4:cf:89:c4:ad:6b:63:77: 56:0a:26:cb:dd:8f:17:d8:b9:f9:0a:99:a9:4f:4b:e3:87:41: 4c:76:68:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZyr2buwrZV1iXJiyRSghU4RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZTRmNmE3NzM2OGI3Y2VjZmU2NzIyMGI0MzY1NzZiMWUw MDhhZWMwHhcNMjYwMzAyMDAwMTM4WhcNMjYwMzAzMDAwMTM4WjAzMTEwLwYDVQQD EyhkMWZjN2NiNzY4YzUxODQzMjZmYmE0ZTY0YTBmNGE3YzIxNjYzNWEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz27iRaBpxr8LZ1h9BjRkt+eS5OWb Ycka+KcoInrPp/f9X5NGfChmNTZodmq6Tx2zXn1dlInpv9tSjoBZf21sYvW2ez1H o3XC3B6Z8K0QZrShwE09M1rbmaT2lGtJjgMCN4Hg+p54r9wx4ozcNujRBy7IO1Xr ioBX/mDItwQ6g1veO6sO6KKj0kPHfmqMUZeAeL3rjBkGog2Mst4a0Ivhf+M+ekFI qrFf8lYDCidSWDjwM9NaZWihHEdGrwdwU9/wfJ4zYvcO8dDIWgOkbSVyqTu0glvi d5+GS9AaQxNFOtg5xgIRXIzZGgN79+yoxomJ8uRWa1uZixAdmNUYTYneRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNH8fLdoxRhDJvuk5koPSnwhZjWiMB8GA1UdIwQY MBaAFADk9qdzaLfOz+ZyILQ2V2seAIrsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMt YjA3ZDg0MTZhZTRhLzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMtYjA3ZDg0MTZhZTRh LzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKqMFJPn+ 45GwNbrVurxm6/qvmBoevRBjroljDSQK4SwP9v9UjgEmzZUSLwitSV+HVQTR8qag WnYaauwr1bJUBIG0K0DPOq2bU0ao8txyhGwHaWbuvA7KUdAnO3hgRIVYaRxI23J3 TcLMvUBnLJ1v/+Ev9PNgID6t6Uc/ChpZ3xI5kRE13rXdERHDHSi2SerzniKqCZF8 R8GJOo82PJbbAYTfr1GbaB82MY2mM3qoxWclb3tFo0wi/MxhZGunK+GO4kJa/bzp oGF8kd2rbDFarnTcwbnIcaIw3xwbYHGhFlOBMuTPicSta2N3Vgomy92PF9i5+QqZ qU9L44dBTHZoFA== -----END CERTIFICATE-----Generated at Mon Mar 2 06:15:29 2026 by rpki-client