$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft File: OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft (raw, json) Hash identifier: nt8r7BntmKIZZBx+/y00QqxB3+hLA4Q/QF5gItC6qrc= Subject key identifier: F6:A9:68:CC:78:F8:B2:94:D0:28:08:B1:90:C1:3F:35:F4:78:ED:FB Authority key identifier: 38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 Certificate issuer: /CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Certificate serial: 019CAA585ED3F5C0722E020FD6219065536C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft Manifest number: 1856 Signing time: Sun 01 Mar 2026 17:00:44 +0000 Manifest this update: Sun 01 Mar 2026 17:00:44 +0000 Manifest next update: Mon 02 Mar 2026 17:00:44 +0000 Files and hashes: 1: 1wr8QIeSM3CIv5J7uap933hLaGs.roa (hash: Y6lFO4ooFEDBG8EOKNjhhaIJIuCCzVgscAraR7wX8B4=) 2: 4nJ0h3kxVoLTGLl-KMMdIGNO3U4.roa (hash: yXSTzPv+VSMPQEsmFJQmVgwkS8AYD6u5M83BtbV+VIE=) 3: 5h7nMBydUVPaOlFP-jldFT3enCQ.roa (hash: +rXXd2KMjjrhcbSdyv1pypNJANUYaaOEd90M4umJew8=) 4: EdrkWbcqLRMSNrh6Sa5x5mnTLPc.roa (hash: Fk5tDegQkNWmVnCc3SYJvszlVAARBSOO/qIaE+GvEdY=) 5: FOt64C6RCxN5JGIdYYt0-jp9RJQ.roa (hash: tamHBKuLjpWpXY8LQK286Mn5I3Q0OVkX8D4lvECCpD8=) 6: LTj2PGdyu1TZVch3WwkoLN3benA.roa (hash: 0uIInrnjr5BRMLrYPZ3TlKAb12B+T0z8Pu5nxkwhOwA=) 7: OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl (hash: SEzSP5eWioqDoXTMmChf/v77Xjmttqr/NwCqmlzayHw=) 8: OR9wB6bWiqsZvjqNRRbC11UhrBA.roa (hash: BLhfuTsmrrfMXC8Lx4hjGsCFS5Q2HKcD1UJlTtem6+U=) 9: UJVwk9mntlMFjdR5x6Gz4DwAego.roa (hash: Y9Qzk1ZJNkQeeN5SL4rk7tJNNAoeHg7LXp+c5rv1kJY=) 10: XIxZD227ioGX0cqqVFAINXLyX6Q.roa (hash: sDleWGEf+rrGs4/hbX/4+JTQcRgaaTHiE45KWqHpF+s=) 11: XkdalcQg6hGFzhglm3gQzCnpww4.roa (hash: 8jItQEffXXa+ZvcKZLLyn2RNT/EfLCbVUQe+TOkVNeM=) 12: YWsBcXgsO8gZFuZAgXqc8mQzIPQ.roa (hash: FIq3otCEvunZWYD7V3EpFGXTGzchT90RBkn3PHEPtpE=) 13: fPatpWdNAbZy6ojdptQs2lNi1EE.roa (hash: X9tWk7+bmsyMGDUglxjA0jdRl4uO9c2P7cIjkiKVhfo=) 14: fny2WANL9Kakl_hzClrFytLGIbA.roa (hash: Li0zLoSXMQkOWimSeqYniHU5WmqmT1OGtibQ573h2wE=) 15: lqG4TiS1VcHtRo5hXtYqEofYXQY.roa (hash: lQ0va2Pv+RAccp1R5C/OndWZWgx6m66STBo/DZ6jbSw=) 16: snScws96TnQnAtgCESncYf2cHQI.roa (hash: Rg061AAdsDJTEuVCFaKulmhMa2nYwQQcIJgWuXh/KyU=) 17: zyiTueEsxpcD3PrX5wVtwGJMZ_Y.roa (hash: 7R1f/73J/Qx3gYsQEvvU8YVQZND5dDU9/Elan9+1kYw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 17:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:aa:58:5e:d3:f5:c0:72:2e:02:0f:d6:21:90:65:53:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Validity Not Before: Mar 1 17:00:44 2026 GMT Not After : Mar 2 17:00:44 2026 GMT Subject: CN=f6a968cc78f8b294d02808b190c13f35f478edfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:ba:8b:53:b2:38:95:22:da:24:83:8e:fa:69: 31:5d:d7:f6:f2:5c:3b:28:08:63:99:8f:a2:1d:bf: 8e:df:70:ee:58:95:5a:f6:36:c4:a5:10:e6:00:fc: e3:16:21:b4:d1:4e:13:fc:dc:75:38:3d:42:1f:32: 05:98:e1:8e:fe:1f:55:73:b8:e0:ee:03:29:25:fc: f1:94:43:39:cc:9c:d1:e7:93:bc:27:a9:50:ce:0f: ba:5a:2b:c7:ee:fc:54:89:eb:67:e7:fa:2a:9a:10: b1:fa:d3:fd:7a:f6:df:62:e0:ce:25:c2:b7:86:06: b4:73:c2:30:f5:8f:7c:97:96:2b:e5:a7:4e:98:fd: 4b:aa:27:d6:94:a7:71:f4:3d:b8:72:f0:ee:12:32: e4:74:9d:09:db:26:10:76:44:63:19:a1:09:00:30: 37:8e:6b:77:fb:29:9b:a8:f1:58:86:e7:ba:c3:ac: d2:05:75:6e:e6:30:cb:42:d9:6e:6f:c8:71:14:53: 17:07:02:0d:04:e6:f8:5c:65:cc:ce:65:f6:47:0d: 34:00:e1:14:ca:c0:29:b4:7c:18:98:ff:0a:0a:85: 0b:24:9e:2d:df:cb:20:b1:45:d0:e8:ab:55:cc:82: 1b:65:d1:98:ea:82:39:5f:48:b8:28:f4:ac:56:14: b9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:A9:68:CC:78:F8:B2:94:D0:28:08:B1:90:C1:3F:35:F4:78:ED:FB X509v3 Authority Key Identifier: keyid:38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:48:12:2a:3e:22:b1:90:81:98:1e:45:88:ea:42:d8:e0:9e: c0:8a:51:eb:88:9a:6c:56:e0:6d:63:41:19:cc:5e:e2:02:40: b1:f9:17:95:70:ad:87:f6:31:c3:7c:01:be:65:d0:f9:d5:66: d7:33:f4:f1:ee:35:d6:f4:6b:c5:65:36:90:f6:d2:ac:e2:28: 7f:c1:28:ad:1c:90:af:1a:96:3e:82:43:34:b6:41:ec:23:7e: 41:b4:4f:a3:52:b5:95:ac:8f:de:60:22:80:9e:93:d1:5f:d0: 3a:59:bf:5e:d5:37:e2:35:f5:bf:e1:5e:10:4c:cc:f5:f7:27: d6:f7:b8:61:7a:bc:1f:95:29:f1:b5:86:ce:95:84:5e:f5:0c: ed:bd:5d:a7:34:92:71:5c:6e:e8:4d:94:0a:2d:40:dc:99:04: 9e:2a:a9:c9:4e:5b:38:e0:3b:f2:51:ff:60:20:fc:8f:7e:7c: 57:74:d3:4e:f9:d3:bd:33:05:18:9c:90:a1:14:29:ec:a6:07: c1:06:91:ba:93:55:26:72:b5:4a:9d:f9:23:85:79:e4:66:39: c3:27:8d:ad:c9:0c:52:09:e5:5c:fa:a4:3c:e5:b2:03:17:45: 3a:53:cf:41:5f:cd:17:78:a2:95:0a:6d:7e:b0:10:60:40:d1: 63:08:d4:d8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZyqWF7T9cByLgIP1iGQZVNsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4N2Q2ZGY3ZWI3NTQyZTAzMzNhZWVkZDE0YWRmZjhmNTFm OGNiZDgwHhcNMjYwMzAxMTcwMDQ0WhcNMjYwMzAyMTcwMDQ0WjAzMTEwLwYDVQQD EyhmNmE5NjhjYzc4ZjhiMjk0ZDAyODA4YjE5MGMxM2YzNWY0NzhlZGZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlrqLU7I4lSLaJIOO+mkxXdf28lw7 KAhjmY+iHb+O33DuWJVa9jbEpRDmAPzjFiG00U4T/Nx1OD1CHzIFmOGO/h9Vc7jg 7gMpJfzxlEM5zJzR55O8J6lQzg+6WivH7vxUietn5/oqmhCx+tP9evbfYuDOJcK3 hga0c8Iw9Y98l5Yr5adOmP1LqifWlKdx9D24cvDuEjLkdJ0J2yYQdkRjGaEJADA3 jmt3+ymbqPFYhue6w6zSBXVu5jDLQtlub8hxFFMXBwINBOb4XGXMzmX2Rw00AOEU ysAptHwYmP8KCoULJJ4t38sgsUXQ6KtVzIIbZdGY6oI5X0i4KPSsVhS5rQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPapaMx4+LKU0CgIsZDBPzX0eO37MB8GA1UdIwQY MBaAFDh9bffrdULgMzru3RSt/49R+MvYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2Mt NjA5YTQ4YjJiMTRkLzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2MtNjA5YTQ4YjJiMTRk LzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhkgSKj4i sZCBmB5FiOpC2OCewIpR64iabFbgbWNBGcxe4gJAsfkXlXCth/Yxw3wBvmXQ+dVm 1zP08e411vRrxWU2kPbSrOIof8EorRyQrxqWPoJDNLZB7CN+QbRPo1K1layP3mAi gJ6T0V/QOlm/XtU34jX1v+FeEEzM9fcn1ve4YXq8H5Up8bWGzpWEXvUM7b1dpzSS cVxu6E2UCi1A3JkEniqpyU5bOOA78lH/YCD8j358V3TTTvnTvTMFGJyQoRQp7KYH wQaRupNVJnK1Sp35I4V55GY5wyeNrckMUgnlXPqkPOWyAxdFOlPPQV/NF3iilQpt frAQYEDRYwjU2A== -----END CERTIFICATE-----Generated at Mon Mar 2 03:45:11 2026 by rpki-client