$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9f09aa-dd5e-4e06-b28e-e871b21790de/1/9zQlckyuJz8pYwYNyGXG8LBCXK0.mft File: 9zQlckyuJz8pYwYNyGXG8LBCXK0.mft (raw, json) Hash identifier: sPjQuChYZQM1ucFarEZDiJq7rfuelmFxnAg2Ru+tcL0= Subject key identifier: 5E:21:C9:6D:88:5B:12:93:A5:E2:DB:4F:64:DF:EF:CA:F5:BF:48:85 Authority key identifier: F7:34:25:72:4C:AE:27:3F:29:63:06:0D:C8:65:C6:F0:B0:42:5C:AD Certificate issuer: /CN=f73425724cae273f2963060dc865c6f0b0425cad Certificate serial: 019CA9B392416DAAC34261A4733BB56226B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9zQlckyuJz8pYwYNyGXG8LBCXK0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9f09aa-dd5e-4e06-b28e-e871b21790de/1/9zQlckyuJz8pYwYNyGXG8LBCXK0.mft Manifest number: 0212 Signing time: Sun 01 Mar 2026 14:00:43 +0000 Manifest this update: Sun 01 Mar 2026 14:00:43 +0000 Manifest next update: Mon 02 Mar 2026 14:00:43 +0000 Files and hashes: 1: 1E8AiSnlYGPXbOfAXqZEBvdti0Q.roa (hash: zg4/KmKPBBnWqoo6XqmqqOeEWKX38ZMsmowwS7V3CsY=) 2: 5ovyXW66FMFmM04hnCYQuTdPbDs.roa (hash: SJtk0xAZ//VsBgvIWTtE8Cera1hdejrKmhHRvfx1y+Y=) 3: 9zQlckyuJz8pYwYNyGXG8LBCXK0.crl (hash: IVRFXlTL9SyImLUSSfsuve7TZZHoecWbkaLgYDHOqfs=) 4: K72M0eQ91LUvPmgbf1TD9RJOOzE.roa (hash: S2SZxBEr4TYx0vstbs14/OJg1zVQ6WlQ8FoARL2ed1w=) 5: ZmA7YXk1EXie8V8IljOsrQAeVMc.roa (hash: KfN3YtXoCnYtbOhys/L3JbGSTPU3Jpxa1rNO5rVZaaM=) 6: adb_NQqDE2btKs5IvofM8ruzaqs.roa (hash: mZd2SOSViUwqdouzHTAAV8V8TgiRqrWPvi7A8y6abkk=) 7: dqaulTVaJdxe0Se94TESS0Xu5Tk.roa (hash: nLinLeHvfWZfhWqocoBwHCFEyZWPv+TO3g4L1fui8n4=) 8: hbHoK0o2p6Bt0sMLz48Nn7EIEws.roa (hash: AabyFao1094cA8E0S9PcCwFVPGA7d1c7Y+W9MYMaIkQ=) 9: iNlyy6fzG-pZXJKLvpBU9XAYkVo.roa (hash: S8q8QiAGEz7MV6+djxO4YwhYaC2j/vE52wvZ9iUEIgY=) 10: komjT8O821bHvm5KoIcSK9RLwFg.roa (hash: XiZH/CbY0Sotg650d8Q01CbsjUqKfb4sXPg9XUzPS6Q=) 11: o8UxQ3a2n9kEjcAUYeME6BdSwgU.roa (hash: jVCIyXg4cflFe4QRKBmdG7+ZUZqcWZ/CfJby4iYt/TM=) 12: rTCIQuB8b5-23Fe16EFzxOkFAo0.roa (hash: 85dTReYxmMkhMzb7ZnE2kpCceaZUsUjOdsiOl8VJLKg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/9f09aa-dd5e-4e06-b28e-e871b21790de/1/9zQlckyuJz8pYwYNyGXG8LBCXK0.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/9f09aa-dd5e-4e06-b28e-e871b21790de/1/9zQlckyuJz8pYwYNyGXG8LBCXK0.mft rsync://rpki.ripe.net/repository/DEFAULT/9zQlckyuJz8pYwYNyGXG8LBCXK0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 14:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:a9:b3:92:41:6d:aa:c3:42:61:a4:73:3b:b5:62:26:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f73425724cae273f2963060dc865c6f0b0425cad Validity Not Before: Mar 1 14:00:43 2026 GMT Not After : Mar 2 14:00:43 2026 GMT Subject: CN=5e21c96d885b1293a5e2db4f64dfefcaf5bf4885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:9f:28:c3:fa:2f:73:17:f9:60:e2:c1:de:bd: a2:b0:14:24:15:b1:7a:6f:f8:98:08:fa:e7:5c:e5: 5a:7f:55:7c:3f:2b:e2:8b:2a:86:03:6a:a6:e5:0d: 13:b8:31:32:98:3a:62:45:13:e3:15:ae:19:cf:de: 62:98:86:ef:bd:9d:7e:76:3c:72:08:8c:e5:8c:25: a2:10:c5:18:7a:7c:4c:3a:b1:bc:e9:e2:4b:35:f3: f2:e2:9f:18:dd:5b:86:26:0f:ad:ae:4d:f0:cb:e9: 85:6c:25:21:62:a3:30:fd:fd:db:7c:ad:18:08:29: 00:cd:d6:1d:37:0b:9f:9a:22:f2:9a:97:89:8c:fd: e8:b2:32:c4:6f:1b:df:f4:19:02:60:78:2a:b9:4c: 8e:73:34:49:16:7f:11:b8:2c:1e:58:a0:01:70:06: 59:36:5f:a9:c1:f1:49:8d:51:20:e6:04:74:5c:f3: 98:ba:0a:3d:da:fb:eb:d3:a8:bd:35:d4:db:99:07: 8d:5b:53:39:a7:13:c0:98:14:1c:ec:55:2a:b3:39: 0e:14:ae:b4:41:9d:51:6b:ce:0a:ab:bb:a6:e9:38: b1:8a:00:6a:5f:3f:1f:94:c0:9c:77:c7:7d:2d:43: 93:77:a5:35:0e:38:b8:91:d3:6c:73:6b:40:51:f4: 19:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:21:C9:6D:88:5B:12:93:A5:E2:DB:4F:64:DF:EF:CA:F5:BF:48:85 X509v3 Authority Key Identifier: keyid:F7:34:25:72:4C:AE:27:3F:29:63:06:0D:C8:65:C6:F0:B0:42:5C:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9zQlckyuJz8pYwYNyGXG8LBCXK0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9f09aa-dd5e-4e06-b28e-e871b21790de/1/9zQlckyuJz8pYwYNyGXG8LBCXK0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9f09aa-dd5e-4e06-b28e-e871b21790de/1/9zQlckyuJz8pYwYNyGXG8LBCXK0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:36:44:50:35:ee:49:fb:5d:87:fb:51:68:13:71:77:6c:89: 2a:f1:f4:c1:e9:3b:4a:55:12:38:29:21:26:69:1a:6f:3b:f1: 0e:3f:72:0c:4d:ab:88:d4:9a:1b:89:f3:fd:0c:29:b8:97:22: e3:c8:ce:73:47:9f:f0:77:c6:89:ab:36:be:2f:22:cc:e4:6f: 2f:cf:2b:6d:41:e5:85:13:24:09:46:90:d5:42:2d:d6:b9:9c: bc:a0:1f:9e:de:da:49:5f:bb:e9:f2:41:4d:81:97:57:33:d5: b0:7a:1d:b6:77:67:ac:92:2c:89:d0:19:7e:e7:28:77:05:6e: 2b:17:4a:04:c1:0e:0f:f4:ad:42:9f:3c:78:f7:97:c4:98:d1: c0:a7:e4:b0:cc:34:28:2c:36:ea:b5:93:6e:da:9e:9f:2e:21: b3:7a:f0:b1:f9:c6:3b:1c:5b:10:2d:ea:00:da:2c:4b:a1:e1: 80:70:1f:27:6f:06:d4:d1:fc:26:df:2a:df:9a:e8:1d:11:c4: 88:43:1c:cf:f4:71:2e:90:72:29:49:d8:b7:b9:dc:82:68:54: f3:e4:c3:48:b0:6c:9e:1e:b5:81:2c:bf:86:3e:54:06:2c:cd: e2:10:b0:63:8b:42:66:21:1b:3e:72:12:2e:ee:4c:b8:4c:24: 35:5b:20:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZyps5JBbarDQmGkczu1YiazMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3MzQyNTcyNGNhZTI3M2YyOTYzMDYwZGM4NjVjNmYwYjA0 MjVjYWQwHhcNMjYwMzAxMTQwMDQzWhcNMjYwMzAyMTQwMDQzWjAzMTEwLwYDVQQD Eyg1ZTIxYzk2ZDg4NWIxMjkzYTVlMmRiNGY2NGRmZWZjYWY1YmY0ODg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmp8ow/ovcxf5YOLB3r2isBQkFbF6 b/iYCPrnXOVaf1V8PyviiyqGA2qm5Q0TuDEymDpiRRPjFa4Zz95imIbvvZ1+djxy CIzljCWiEMUYenxMOrG86eJLNfPy4p8Y3VuGJg+trk3wy+mFbCUhYqMw/f3bfK0Y CCkAzdYdNwufmiLympeJjP3osjLEbxvf9BkCYHgquUyOczRJFn8RuCweWKABcAZZ Nl+pwfFJjVEg5gR0XPOYugo92vvr06i9NdTbmQeNW1M5pxPAmBQc7FUqszkOFK60 QZ1Ra84Kq7um6TixigBqXz8flMCcd8d9LUOTd6U1Dji4kdNsc2tAUfQZjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF4hyW2IWxKTpeLbT2Tf78r1v0iFMB8GA1UdIwQY MBaAFPc0JXJMric/KWMGDchlxvCwQlytMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOXpRbGNreXVKejhwWXdZTnlHWEc4TEJDWEswLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC85ZjA5YWEtZGQ1ZS00ZTA2LWIyOGUt ZTg3MWIyMTc5MGRlLzEvOXpRbGNreXVKejhwWXdZTnlHWEc4TEJDWEswLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC85ZjA5YWEtZGQ1ZS00ZTA2LWIyOGUtZTg3MWIyMTc5MGRl LzEvOXpRbGNreXVKejhwWXdZTnlHWEc4TEJDWEswLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAADZEUDXu Sftdh/tRaBNxd2yJKvH0wek7SlUSOCkhJmkabzvxDj9yDE2riNSaG4nz/QwpuJci 48jOc0ef8HfGias2vi8izORvL88rbUHlhRMkCUaQ1UIt1rmcvKAfnt7aSV+76fJB TYGXVzPVsHodtndnrJIsidAZfucodwVuKxdKBMEOD/StQp88ePeXxJjRwKfksMw0 KCw26rWTbtqeny4hs3rwsfnGOxxbEC3qANosS6HhgHAfJ28G1NH8Jt8q35roHRHE iEMcz/RxLpByKUnYt7ncgmhU8+TDSLBsnh61gSy/hj5UBizN4hCwY4tCZiEbPnIS Lu5MuEwkNVsgqQ== -----END CERTIFICATE-----Generated at Sun Mar 1 23:22:23 2026 by rpki-client