$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft File: 2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft (raw, json) Hash identifier: PiM8oyBDGvkvJn7wiHuEdl6ZeCJJ1op1E2DMNgnNZEs= Subject key identifier: 3B:39:9D:95:B6:2D:5E:05:97:13:23:FB:28:93:AF:D1:58:F8:DD:D7 Authority key identifier: D8:D3:CA:2C:23:1A:FD:F3:B0:35:5C:77:A7:CB:B2:26:F8:1B:74:DE Certificate issuer: /CN=d8d3ca2c231afdf3b0355c77a7cbb226f81b74de Certificate serial: 019CA9B3E71C5E294763D5AB9BD3BEB8F184 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft Manifest number: 0434 Signing time: Sun 01 Mar 2026 14:01:05 +0000 Manifest this update: Sun 01 Mar 2026 14:01:05 +0000 Manifest next update: Mon 02 Mar 2026 14:01:05 +0000 Files and hashes: 1: 2IiWe1A18ODcftRT6YrkMfyygcw.roa (hash: wTczLqEW9RRWBHT/mYw12mmurAPtA5oq8MEFaFAjnu0=) 2: 2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl (hash: 53rIneMhK8XlDRBNitsdoyUqL9D3tMkmNK1pKfRs/Rg=) 3: 40ZCLfu-hf54aZk4vS6thtcaz6Y.roa (hash: 6qlfEyZyTsr1GU+JJmssokqBIx7S6uv3hfgnFxarKbc=) 4: SIVhfOqz4_ZwZRIWPrAs9TLD0QI.roa (hash: kRtJ8SNMjyDbUxu98aNT/p/eOM2tAQZf30u+RPiQ1f8=) 5: _msrPFl7j-h-scWfwUUyG5vmI0Q.roa (hash: C0U0oHsxASzeTthWbTeZAy4SqW+0azDdamHmVesAW1U=) 6: frMVgzQaPIs1Gz7R4vF3dTAHWzc.roa (hash: qpSuTjOUyEClBJcAXKNR1v6GJxRuHi1KjNiauEeSO7o=) 7: gA8K0uCGARt0iMHybj1fl0_l9iM.roa (hash: oF5vhF0FQd0hgOhUSqj7/e1FPt2MEHPpP+wGYckBTNY=) 8: klEpgcDgV3MNJLywxR3-VstKMaE.roa (hash: 76nMpG3WoKqOfhqvdWfqDmfgIocWXvBNiYDORl3wdTo=) 9: ofDxB8O2MbjFIXFLf88e0INSGBo.roa (hash: ikjcPpCnHENpa86zzER4JQ6OTnpcpzdfcewDtUbt2Vg=) 10: tevOSAyMp-1DHWOc8A6PPAJZLUs.roa (hash: /4F2MJ2YCwSX6I/W4Ebbet4QyTAZ6jd4w/oq57g4Qcw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 14:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:a9:b3:e7:1c:5e:29:47:63:d5:ab:9b:d3:be:b8:f1:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8d3ca2c231afdf3b0355c77a7cbb226f81b74de Validity Not Before: Mar 1 14:01:05 2026 GMT Not After : Mar 2 14:01:05 2026 GMT Subject: CN=3b399d95b62d5e05971323fb2893afd158f8ddd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b1:e2:9c:26:04:45:b9:8c:c7:8e:bb:9a:a0: 0d:e7:86:2a:ee:59:81:2d:be:47:46:7d:07:e8:8e: c4:9f:0c:9c:a0:56:f3:d7:99:98:16:91:3e:58:62: 18:59:51:eb:85:5b:be:13:9f:ee:d9:99:ac:06:fe: b3:dd:81:5f:67:8e:4d:e8:87:28:84:34:96:98:97: 3a:8a:bf:84:ad:fa:8a:e8:1c:20:24:d3:74:fc:c8: 69:66:d3:ed:54:8f:89:5d:f2:ab:fd:5f:ed:ce:8d: b1:f7:fe:95:12:7a:71:30:b6:82:3e:ea:ce:3b:be: a4:67:98:19:46:f3:0d:c0:39:19:dc:7d:0d:fc:27: 14:2c:b3:26:e7:91:ac:62:01:af:08:e6:6a:09:82: 29:4e:66:46:c9:74:a7:ce:be:13:a3:ff:a8:b9:f2: dd:d9:53:c3:ea:39:83:06:db:3a:c7:56:1e:a0:b2: 60:82:10:a5:1c:6b:ef:86:b4:72:c7:1b:72:ca:1d: f0:c6:47:9e:07:f5:98:d3:5e:a4:93:63:eb:e2:27: e2:77:c8:bc:6c:de:44:5f:5d:45:92:1a:d4:5b:83: 0f:a1:b0:b7:94:b7:0b:21:b5:c2:4d:bf:20:80:00: 3f:0b:09:ba:8a:86:a5:05:0a:80:c7:c1:92:19:a5: aa:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:39:9D:95:B6:2D:5E:05:97:13:23:FB:28:93:AF:D1:58:F8:DD:D7 X509v3 Authority Key Identifier: keyid:D8:D3:CA:2C:23:1A:FD:F3:B0:35:5C:77:A7:CB:B2:26:F8:1B:74:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:70:ca:c3:72:58:8d:bf:77:fa:1c:b0:7f:57:fa:ce:d8:b2: 99:6f:11:35:c0:8f:49:33:7f:94:04:ff:53:8b:39:fe:2a:6f: cf:90:35:54:d1:71:ce:55:e1:56:34:0a:55:c8:f0:97:34:03: 55:c3:5a:08:ba:4d:28:fd:d3:33:62:41:bb:76:a7:0f:4e:62: c3:21:fa:74:1a:a8:47:13:4d:8c:26:d4:92:af:ff:2b:89:fb: 94:4b:1e:77:c1:50:d1:15:20:92:ed:b4:86:25:bc:5e:20:5b: 7f:f6:c7:d6:a6:a9:5e:70:0b:87:ef:7c:c8:0d:60:3a:19:11: 4f:24:78:04:77:7b:ed:d9:eb:58:2c:93:ea:16:f4:02:1a:f2: 42:91:ca:55:15:bf:3a:c2:ee:bb:6e:38:e8:4e:8e:ea:b6:aa: 60:8c:39:e2:5d:29:01:cd:b3:c1:d2:0a:79:1a:70:fa:e2:ce: 22:3b:8b:cc:c7:42:d7:5e:f8:ad:95:ce:e9:c9:6d:4a:14:4f: a3:de:13:9a:cf:70:cd:fb:d4:5c:78:bb:75:aa:e1:06:13:a9: 58:a4:83:a3:b8:b0:eb:d2:ba:e3:2c:90:55:75:46:01:97:f6: a1:37:01:8f:4a:25:55:ea:04:3f:5a:a8:85:03:92:d1:da:02: 89:05:a7:c6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZyps+ccXilHY9Wrm9O+uPGEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4ZDNjYTJjMjMxYWZkZjNiMDM1NWM3N2E3Y2JiMjI2Zjgx Yjc0ZGUwHhcNMjYwMzAxMTQwMTA1WhcNMjYwMzAyMTQwMTA1WjAzMTEwLwYDVQQD EygzYjM5OWQ5NWI2MmQ1ZTA1OTcxMzIzZmIyODkzYWZkMTU4ZjhkZGQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsbHinCYERbmMx467mqAN54Yq7lmB Lb5HRn0H6I7EnwycoFbz15mYFpE+WGIYWVHrhVu+E5/u2ZmsBv6z3YFfZ45N6Ico hDSWmJc6ir+ErfqK6BwgJNN0/MhpZtPtVI+JXfKr/V/tzo2x9/6VEnpxMLaCPurO O76kZ5gZRvMNwDkZ3H0N/CcULLMm55GsYgGvCOZqCYIpTmZGyXSnzr4To/+oufLd 2VPD6jmDBts6x1YeoLJgghClHGvvhrRyxxtyyh3wxkeeB/WY016kk2Pr4ifid8i8 bN5EX11FkhrUW4MPobC3lLcLIbXCTb8ggAA/Cwm6ioalBQqAx8GSGaWqywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDs5nZW2LV4FlxMj+yiTr9FY+N3XMB8GA1UdIwQY MBaAFNjTyiwjGv3zsDVcd6fLsib4G3TeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMk5QS0xDTWFfZk93TlZ4M3A4dXlKdmdiZE40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS8zYzA3NmItYWVhMS00YTMzLWE5ZTkt OTkxMjhiZjZhODQxLzEvMk5QS0xDTWFfZk93TlZ4M3A4dXlKdmdiZE40Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOS8zYzA3NmItYWVhMS00YTMzLWE5ZTktOTkxMjhiZjZhODQx LzEvMk5QS0xDTWFfZk93TlZ4M3A4dXlKdmdiZE40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUXDKw3JY jb93+hywf1f6ztiymW8RNcCPSTN/lAT/U4s5/ipvz5A1VNFxzlXhVjQKVcjwlzQD VcNaCLpNKP3TM2JBu3anD05iwyH6dBqoRxNNjCbUkq//K4n7lEsed8FQ0RUgku20 hiW8XiBbf/bH1qapXnALh+98yA1gOhkRTyR4BHd77dnrWCyT6hb0AhryQpHKVRW/ OsLuu2446E6O6raqYIw54l0pAc2zwdIKeRpw+uLOIjuLzMdC1174rZXO6cltShRP o94Tms9wzfvUXHi7darhBhOpWKSDo7iw69K64yyQVXVGAZf2oTcBj0olVeoEP1qo hQOS0doCiQWnxg== -----END CERTIFICATE-----Generated at Sun Mar 1 23:16:23 2026 by rpki-client