$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft File: bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft (raw, json) Hash identifier: QdIqGuduf/uvvsgsqO3k4RFKjzwmPeuN2hfwEd/CcXQ= Subject key identifier: 44:70:47:07:D3:59:28:91:D1:8D:BE:4D:47:B9:5E:DA:03:B1:02:4B Authority key identifier: 6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 Certificate issuer: /CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Certificate serial: 019CAB3497D08D3ED5BC93CC222BED401DB1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft Manifest number: 18CD Signing time: Sun 01 Mar 2026 21:01:16 +0000 Manifest this update: Sun 01 Mar 2026 21:01:16 +0000 Manifest next update: Mon 02 Mar 2026 21:01:16 +0000 Files and hashes: 1: TjYcJALyGbmW-x31ry7QsUvdQtQ.roa (hash: knhLPKVdJjwTBCuKiy0BNSL8TQGPgiu2tFYYWRO2204=) 2: baEkayAg80jmYDBU-ExaHSLpuaI.roa (hash: nAErtQy9uElHFQjfJS5ckQ4epiwL6hvpsQEYN9BEeqw=) 3: bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl (hash: DkZBP5w6qRsIZibTeDGFU5TJRbfwzQOR3NJB8j+nRUQ=) 4: cGs3UaDvGLQ1Q_TQpZAPaINt4Es.roa (hash: W7uHnT9KoPvCIjHy/wyMQaAb03AUeFyxBB7Do1XvIvI=) 5: ebSZBecc7df92SgP59-y12trz8Y.roa (hash: eWLHCXv7jbIrxX4dZcu1pV/1wCL3MzIiRwN/vf2jitQ=) 6: nmGtGkrhBfqxDaqozTHEU7woU_8.roa (hash: myNlScXFtUNhqDOYxLDED2mEeSRwem2M2mluAw2qbGU=) 7: oRALtbh2nuCRd23sDYqfy35X5z0.roa (hash: jC6NP1kM59PVY3etFPE/j9NV0XqouvnOb2E4RPSGrX4=) 8: pI2S2lg5Mevtnr1gNuhTMLXlTZk.roa (hash: 5cp4WqQX2Fq4/2gG8NNXNJQnzkTkhV+uz8kgPR8ik8M=) 9: pUi-gLSXqZ0JaQPDBRSSYpMiavg.roa (hash: BVbd5i0a2oHy3QrO+gV4ifjJEQxi06QcvV9UBgsyx9E=) 10: rWySjgHmxws3lM6jmie75S8CDBw.roa (hash: At0oBHsNt1VyqDJTW3hMzgCfUrv9SJ/hPxisShjHIa0=) 11: yYjK6TLqyOsG3tmiBYFMP1Aoexg.roa (hash: 3ZWyZKdoBkHem28rqJLRhRuGSLJ2oX1IHJZHOWmP0p0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 18:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:ab:34:97:d0:8d:3e:d5:bc:93:cc:22:2b:ed:40:1d:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Validity Not Before: Mar 1 21:01:16 2026 GMT Not After : Mar 2 21:01:16 2026 GMT Subject: CN=44704707d3592891d18dbe4d47b95eda03b1024b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:5e:cd:1b:43:0e:9c:8e:35:5c:7d:e3:a1:84: fb:de:2b:94:5c:a1:cf:d4:9d:0d:93:65:89:9d:c3: 7d:a2:a6:31:e6:d4:72:ac:cf:db:26:32:82:a3:48: 5d:a1:46:80:5e:fa:7b:1f:e4:cd:1b:02:5c:bc:83: 16:3d:a9:5f:47:87:3e:03:94:07:5e:56:0e:25:2a: 45:3f:61:14:35:69:68:20:a3:cb:1d:78:1f:4d:18: a3:3e:0c:08:39:ed:57:9b:3a:7e:81:9c:37:c9:68: fc:a5:b1:4f:0a:f6:e4:1e:eb:a5:ee:21:a9:03:3d: d7:b9:1b:7b:25:2e:8d:58:dc:21:eb:4c:33:cf:cd: e7:19:cd:ea:90:69:da:fb:6b:3d:bb:c9:4a:26:52: d2:81:b0:4a:f4:7d:ba:62:ad:ba:52:7b:97:31:86: ef:de:3e:d2:2e:ff:61:d7:f4:05:9a:76:c0:f1:d8: 5c:71:59:67:ce:03:52:b7:b1:92:b6:f4:57:73:0d: 1a:33:bb:0a:1c:2f:8a:5a:58:82:9d:4c:22:07:c2: b2:1b:55:ee:7e:ac:38:45:30:54:87:67:af:a0:2d: bc:98:71:dd:a2:c6:53:2e:c3:1e:a5:5c:d4:3c:73: 90:ae:83:49:4e:a3:8f:66:67:3f:64:13:24:3a:d3: 03:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:70:47:07:D3:59:28:91:D1:8D:BE:4D:47:B9:5E:DA:03:B1:02:4B X509v3 Authority Key Identifier: keyid:6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:e3:5f:4d:8a:0d:b9:e1:7c:d4:2d:0f:8d:07:7f:5e:f7:91: 3c:e2:f7:bd:1e:6b:e6:27:3b:dc:f3:cb:39:26:08:90:dd:e5: ed:76:9a:d4:80:66:14:9a:db:d0:da:15:bc:37:33:2b:ac:3a: cb:9f:a5:e6:28:c0:c1:ee:fc:59:6b:6f:70:4d:01:16:1c:40: be:e8:36:ed:37:11:d5:d1:83:31:8c:8f:68:33:22:66:0a:28: 8a:9f:bd:2c:a5:5b:8b:7b:6d:03:fd:d7:f3:0b:cf:11:0e:86: f7:f8:49:73:e5:c8:06:57:e2:54:dc:1a:54:27:05:db:5a:ac: 6a:7e:1d:73:38:65:7b:cc:93:e6:ad:8a:46:cb:65:35:05:b4: b8:92:4e:c7:4a:27:09:a7:29:2b:b4:ef:d1:a5:4a:16:fc:a5: 52:76:86:3e:4f:42:1f:6c:e6:c3:10:e3:e5:85:6a:88:ec:c8: b7:25:5a:c1:75:39:f1:6e:56:f2:2e:84:1b:85:01:6b:64:08: 86:3c:75:a5:70:24:c5:c7:da:8d:a3:12:aa:41:97:d3:a6:a1: 82:e0:95:34:74:12:be:3e:29:76:50:f1:cb:b7:01:50:37:e2: 12:db:35:17:c7:ab:aa:92:59:23:ca:77:32:be:ae:a9:5b:d1: 9a:19:d5:27 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZyrNJfQjT7VvJPMIivtQB2xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMzAzMGE0YjY3Zjk1YzJmZWQ5MDJkNTY2NTdmYWEyNDk0 YjUxMjkwHhcNMjYwMzAxMjEwMTE2WhcNMjYwMzAyMjEwMTE2WjAzMTEwLwYDVQQD Eyg0NDcwNDcwN2QzNTkyODkxZDE4ZGJlNGQ0N2I5NWVkYTAzYjEwMjRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmV7NG0MOnI41XH3joYT73iuUXKHP 1J0Nk2WJncN9oqYx5tRyrM/bJjKCo0hdoUaAXvp7H+TNGwJcvIMWPalfR4c+A5QH XlYOJSpFP2EUNWloIKPLHXgfTRijPgwIOe1Xmzp+gZw3yWj8pbFPCvbkHuul7iGp Az3XuRt7JS6NWNwh60wzz83nGc3qkGna+2s9u8lKJlLSgbBK9H26Yq26UnuXMYbv 3j7SLv9h1/QFmnbA8dhccVlnzgNSt7GStvRXcw0aM7sKHC+KWliCnUwiB8KyG1Xu fqw4RTBUh2evoC28mHHdosZTLsMepVzUPHOQroNJTqOPZmc/ZBMkOtMDrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFERwRwfTWSiR0Y2+TUe5XtoDsQJLMB8GA1UdIwQY MBaAFG8wMKS2f5XC/tkC1WZX+qJJS1EpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYt YmYzYjIxYTI3MGYyLzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYtYmYzYjIxYTI3MGYy LzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGONfTYoN ueF81C0PjQd/XveRPOL3vR5r5ic73PPLOSYIkN3l7Xaa1IBmFJrb0NoVvDczK6w6 y5+l5ijAwe78WWtvcE0BFhxAvug27TcR1dGDMYyPaDMiZgooip+9LKVbi3ttA/3X 8wvPEQ6G9/hJc+XIBlfiVNwaVCcF21qsan4dczhle8yT5q2KRstlNQW0uJJOx0on CacpK7Tv0aVKFvylUnaGPk9CH2zmwxDj5YVqiOzItyVawXU58W5W8i6EG4UBa2QI hjx1pXAkxcfajaMSqkGX06ahguCVNHQSvj4pdlDxy7cBUDfiEts1F8erqpJZI8p3 Mr6uqVvRmhnVJw== -----END CERTIFICATE-----Generated at Mon Mar 2 03:39:31 2026 by rpki-client