$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft File: Us2aZRLb8lpfGbgn16LH4iou6N0.mft (raw, json) Hash identifier: dfqG09cMAfOdju4bdTmW7A3t6/ItIj5vlkfKwjzbrnc= Subject key identifier: FD:9D:65:DC:4A:05:C2:BF:1A:36:A8:A6:3E:F8:2D:84:8B:40:AB:2F Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Certificate serial: 019CAC102977D3AB4811DFAB01203CA18F36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft Manifest number: 0B0F Signing time: Mon 02 Mar 2026 01:01:06 +0000 Manifest this update: Mon 02 Mar 2026 01:01:06 +0000 Manifest next update: Tue 03 Mar 2026 01:01:06 +0000 Files and hashes: 1: 3JNAFPmuRusA7_P1cHUrpNc8ZWQ.roa (hash: zKy+aXsrA8Z978tqaQi0ynXqJW9mllBBtqQYt4mz8gc=) 2: 3eP-ZYKR74zQteZxg-jYK68KuKU.roa (hash: rI+Q6O08EYSoWZw7Ks588qVsTWbvSuHUC1dp2GQPsEg=) 3: 6ez8s1YBp2TYVVuKcqGU9mGsJLQ.roa (hash: iFltius3SHf/ctu10YpbCgn/dFGwWU60BbGiBMv1N44=) 4: Px4XmExl2QONyqSP6s8-qLoIeoI.roa (hash: reA0XoIHBbZsGAjNzRWT9dW+9757Ms5dgcUGYfnrDi8=) 5: SY0oaouPknTSy2MmGqSQOcOco4Q.roa (hash: HRxdYO/Iechw+UCcupxpKvFHOwFwn4JRjC6eMfFT/dQ=) 6: TQgAk-kjCmuvz2eqWr757vit-aI.roa (hash: lmDr2ZoodOyQIYq1JnmRLGHdUSfi5+BCh4SAfh571Mk=) 7: Us2aZRLb8lpfGbgn16LH4iou6N0.crl (hash: l6sC6rSJSpZqqRSqMRl30E6xcbLl1jjzDrLs2menCx8=) 8: _6Vs95Jmy7MF2kHG6396ytTGdZ8.roa (hash: EoAlzz1DKspJX2qs3ChwNI4PXJbIIl04jqeAnWG79Vw=) 9: b4bnSjrxkGqwlr0zkoxcOijmFkc.roa (hash: fQuLS072q+zjmBm2EgGlUmemoEePNKD15HIZM6Eyfw4=) 10: hlAbpQnKYaIDHrjCT-1lNBwSXu0.roa (hash: BILz2oAMGgMF6vZP6W3jaxaaHIODVkHC+m/GaL33QlM=) 11: kPZtrooPlOyF8jQupuEU9Gy1bJQ.roa (hash: KtcI+6F6qPHzsOZYQ0EOD+pODuibLz2OAgS4M/a6Aq4=) 12: oLlQgePRk9yvcOlL0Fl_a56u9H4.roa (hash: Wqock9cGRbZPQGtCkafIuYZm7FqajUuA17fJ83OGRks=) 13: otDdauzK1pDpIELnjnezw5Wgbks.roa (hash: PkYGbseDQrN+XnOme6deJeEpgE/JFmyzszNd7IeDEBs=) 14: qPI1ggc-eoyI91LAejwAAyCD3rI.roa (hash: tWlcYblK/ohLjpwsq6RKKOq9sGO2SDlm/NJl1KT1Ji8=) 15: tusmxRMWIAwEpYPSOoqJvIiGe6Y.roa (hash: Y+h643AXdu/W8Kb6xvutaQ49rtSwE1WVNhhcs22Oz2o=) 16: xp9MuE3K7E-Sb2HgnwhKc3yErto.roa (hash: 9FJKEkYOHXVi/GiMh+ZQtwPZthuSJbC+u80wUEZ5uBo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 18:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:ac:10:29:77:d3:ab:48:11:df:ab:01:20:3c:a1:8f:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Validity Not Before: Mar 2 01:01:06 2026 GMT Not After : Mar 3 01:01:06 2026 GMT Subject: CN=fd9d65dc4a05c2bf1a36a8a63ef82d848b40ab2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:66:5c:27:17:8a:32:b9:d7:5b:be:22:eb:cc: ea:e8:b0:b5:e0:b4:dc:d8:71:13:10:ee:f0:d6:e9: 8c:19:08:2f:30:55:eb:28:66:f0:05:35:38:e4:fc: fa:49:c7:ae:e7:6b:26:90:90:98:27:6f:32:fd:74: 1b:89:bc:e2:a7:36:8d:ac:11:23:50:a4:f9:8a:87: 08:a6:7a:36:54:cc:39:75:36:8d:04:74:5f:fd:ea: e8:32:83:60:fe:90:b8:c1:f7:a8:fe:64:24:c6:37: 95:6d:c5:25:7a:4e:ab:0f:4e:93:aa:a9:35:88:04: 37:9d:dc:ed:56:18:d7:59:85:bf:d8:e2:3f:32:5c: 8e:6c:4e:c6:81:92:9a:11:e3:ce:1c:32:26:6a:8c: 97:6d:9a:88:56:a2:d6:de:02:ea:3c:af:cc:6d:25: 51:c9:3c:bf:96:e8:c2:21:f6:4b:67:cc:66:21:68: 6b:8d:05:bc:89:05:1e:50:cc:06:14:7c:4b:95:c7: c4:c7:94:fa:df:c0:3f:ba:f3:40:d5:08:2e:e3:39: 9e:df:be:9d:ec:08:b3:67:af:de:d8:09:99:2f:54: 60:1c:b7:14:2a:06:62:c9:ba:f5:d4:4c:49:31:6d: 20:7e:cb:7b:80:4b:51:78:02:c8:d5:06:94:61:07: a4:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:9D:65:DC:4A:05:C2:BF:1A:36:A8:A6:3E:F8:2D:84:8B:40:AB:2F X509v3 Authority Key Identifier: keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:14:c7:59:25:88:4f:89:bf:c8:6d:50:a7:d9:60:19:cd:65: 88:e6:0e:5f:33:4c:42:14:57:f0:f4:ce:43:74:ed:d2:7b:83: 96:5e:a6:ba:46:0f:0b:75:d2:9c:e7:50:ba:74:a8:f6:a0:b0: 7e:a4:33:b4:39:1f:27:27:41:76:2d:3d:d4:29:3b:0b:61:ef: 1d:97:53:a8:cb:77:5d:36:7c:54:ea:0f:dc:30:e4:5c:56:a1: a0:cc:67:62:bb:05:4c:f8:a4:38:d3:41:62:3f:5d:6d:e4:4d: dd:4e:da:ec:5e:cc:7d:93:4e:0e:56:6c:0c:d1:a2:d8:5e:59: c4:d6:36:c8:98:a2:fe:2f:d3:ac:90:1a:d1:05:16:a7:66:d0: 11:45:44:44:81:c7:e2:0f:70:6d:23:20:24:84:ea:b9:05:7e: 7a:37:f8:6e:90:b3:36:08:1f:cb:15:ca:e3:7c:6a:4f:ee:c3: 05:a5:75:52:d6:d4:12:14:4c:81:9d:44:3c:3c:7d:fa:a7:dd: 91:51:1f:8f:89:ae:de:0e:4e:de:68:ee:71:bf:6a:16:41:c5: a8:5b:f4:e4:74:95:46:cd:58:e3:e7:a5:c8:f2:ac:42:57:45: e4:a4:01:09:14:4b:4c:d3:df:08:67:79:88:95:58:e1:e0:60: 36:c1:7f:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZysECl306tIEd+rASA8oY82MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyY2Q5YTY1MTJkYmYyNWE1ZjE5YjgyN2Q3YTJjN2UyMmEy ZWU4ZGQwHhcNMjYwMzAyMDEwMTA2WhcNMjYwMzAzMDEwMTA2WjAzMTEwLwYDVQQD EyhmZDlkNjVkYzRhMDVjMmJmMWEzNmE4YTYzZWY4MmQ4NDhiNDBhYjJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx2ZcJxeKMrnXW74i68zq6LC14LTc 2HETEO7w1umMGQgvMFXrKGbwBTU45Pz6Sceu52smkJCYJ28y/XQbibzipzaNrBEj UKT5iocIpno2VMw5dTaNBHRf/eroMoNg/pC4wfeo/mQkxjeVbcUlek6rD06Tqqk1 iAQ3ndztVhjXWYW/2OI/MlyObE7GgZKaEePOHDImaoyXbZqIVqLW3gLqPK/MbSVR yTy/lujCIfZLZ8xmIWhrjQW8iQUeUMwGFHxLlcfEx5T638A/uvNA1Qgu4zme376d 7AizZ6/e2AmZL1RgHLcUKgZiybr11ExJMW0gfst7gEtReALI1QaUYQek3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP2dZdxKBcK/Gjaopj74LYSLQKsvMB8GA1UdIwQY MBaAFFLNmmUS2/JaXxm4J9eix+IqLujdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUt Y2NhMzc2MDZiZjE4LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUtY2NhMzc2MDZiZjE4 LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnhTHWSWI T4m/yG1Qp9lgGc1liOYOXzNMQhRX8PTOQ3Tt0nuDll6mukYPC3XSnOdQunSo9qCw fqQztDkfJydBdi091Ck7C2HvHZdTqMt3XTZ8VOoP3DDkXFahoMxnYrsFTPikONNB Yj9dbeRN3U7a7F7MfZNODlZsDNGi2F5ZxNY2yJii/i/TrJAa0QUWp2bQEUVERIHH 4g9wbSMgJITquQV+ejf4bpCzNggfyxXK43xqT+7DBaV1UtbUEhRMgZ1EPDx9+qfd kVEfj4mu3g5O3mjucb9qFkHFqFv05HSVRs1Y4+elyPKsQldF5KQBCRRLTNPfCGd5 iJVY4eBgNsF/ng== -----END CERTIFICATE-----Generated at Mon Mar 2 03:57:47 2026 by rpki-client