$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft File: hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft (raw, json) Hash identifier: n+UJ37kJ3DjZj1Q338p2+5NqyukPCAv17nW1jtK+lxE= Subject key identifier: 1C:22:B5:3B:BF:B9:D8:53:00:95:B9:AB:E1:7B:2E:98:06:74:57:8F Authority key identifier: 84:52:B0:3E:1B:01:70:96:38:94:0D:95:92:98:3C:DE:77:EC:AB:77 Certificate issuer: /CN=8452b03e1b01709638940d9592983cde77ecab77 Certificate serial: 019CAA8FB6E5BA8F49461BC3BE11AA915D3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFKwPhsBcJY4lA2Vkpg83nfsq3c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft Manifest number: 1855 Signing time: Sun 01 Mar 2026 18:01:10 +0000 Manifest this update: Sun 01 Mar 2026 18:01:10 +0000 Manifest next update: Mon 02 Mar 2026 18:01:10 +0000 Files and hashes: 1: 0kMqt-CPfgtjYdaZtK0l7K4Ure0.roa (hash: KGaaMrvGH34iblBGGLnwSzs+JaREEUUOumEoCywsnd8=) 2: 9XLB2pGNOPbljEVUBZRkKE3gDsg.roa (hash: yFaKRkjlVIE/J3Dt9Swl2M9fjwmRRjL86LSGNcqFa2o=) 3: FllgV1uq3gnfxzgcQ6YncIh4JMQ.roa (hash: xP/yiKvXIB14qyF8rqguFru71C1q8PJ2Qa43mcie0iQ=) 4: JNZkNs3RJOo2AnXmnTbKg_X2Nm8.roa (hash: +pMZwPRauFNHIAoy64TMZM699q7Sq6HNlbnD+XOQxn4=) 5: MZB1UqbipBpVhmhIAAIPCSUm9tE.roa (hash: zYMw6mBm4z/9+C34n4tABKKlDK/AXIGy+SsUTUFBU8w=) 6: TaW1xof2_FS-y1oMd64DHywlLM8.roa (hash: wpTtq6XsXybW5bFqRgDMjejQMJ2CiWnuwczXgfVlZ+M=) 7: fXpzmIEAnbtmNcx0rqptqG5QnQg.roa (hash: 5iU3booTwnLztG+lAWV3dZKWKwiQOKD5sGh5Wy5gwWk=) 8: hFKwPhsBcJY4lA2Vkpg83nfsq3c.crl (hash: yAivyc8KoZ0b7UbWSQWHaChAnCoPURQfuvkF1OKSlzk=) 9: hTBE-AfXHoIR0eXyurn7fldr3Uw.roa (hash: h5l8+NwGnElycHcZimGiomdSgVS5UzfYH7eaKNxeRxk=) 10: mTw_KV9L-hpI5Nu8b0XPe3ZJbgw.roa (hash: HG8VsquQ+FnSEapJw68ywW3TpFwS/T5f8VjxgSgr5P4=) 11: o1g6d4IpK0z2pKch2obiVEvKpo0.roa (hash: ogKpeh7KtOQ7CbX8yF/mDVAEfUbLY6d/B58Q/R7K4YE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft rsync://rpki.ripe.net/repository/DEFAULT/hFKwPhsBcJY4lA2Vkpg83nfsq3c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 15:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:aa:8f:b6:e5:ba:8f:49:46:1b:c3:be:11:aa:91:5d:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8452b03e1b01709638940d9592983cde77ecab77 Validity Not Before: Mar 1 18:01:10 2026 GMT Not After : Mar 2 18:01:10 2026 GMT Subject: CN=1c22b53bbfb9d8530095b9abe17b2e980674578f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f7:f9:e5:78:67:5e:bf:3c:17:b5:1d:7b:04: c6:43:5e:db:cc:6e:ea:62:b5:3f:8f:41:fc:59:d3: 5f:e2:56:ab:fd:3c:19:39:37:b0:07:cd:9a:cc:c7: 05:10:17:06:fc:c7:2a:d7:1e:82:60:44:76:b8:09: 8c:44:b0:6f:4c:e0:88:ac:e7:43:f7:89:c3:60:9b: b6:a6:f0:52:61:63:d7:f9:e4:08:64:a3:66:70:29: 81:9a:2c:9c:dc:9c:eb:a7:14:ed:8a:fa:49:14:4f: bd:59:6e:8e:e3:4f:46:96:9f:bb:c6:29:8f:a6:39: 6b:7a:56:cf:ba:99:01:5f:1b:c9:0e:e2:ed:44:33: e9:f2:0a:c1:03:61:35:bf:0c:d6:27:f5:9e:6e:e5: d0:f8:bc:94:99:22:91:65:18:ab:e8:97:1b:77:58: 51:ed:16:34:f2:49:ee:1e:11:93:13:dd:25:82:b0: d5:95:13:9a:7d:a5:cc:a1:a9:80:79:94:97:c6:0b: ad:75:91:6c:ed:77:51:b4:4d:16:f6:10:4f:df:16: bb:43:54:92:99:41:5c:e4:56:55:18:48:73:a1:85: 2b:c0:e3:9c:83:38:63:a0:72:cc:19:a9:c5:5c:62: ba:20:a5:88:18:d4:6e:7d:56:91:23:4e:a0:6b:ab: de:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:22:B5:3B:BF:B9:D8:53:00:95:B9:AB:E1:7B:2E:98:06:74:57:8F X509v3 Authority Key Identifier: keyid:84:52:B0:3E:1B:01:70:96:38:94:0D:95:92:98:3C:DE:77:EC:AB:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFKwPhsBcJY4lA2Vkpg83nfsq3c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:e5:a4:ed:30:d7:8f:6e:be:6b:40:87:22:06:da:a6:5b:36: 72:b3:8f:3c:70:86:73:ec:b8:a2:cf:20:38:e0:2f:5c:0b:9f: 91:d7:bc:49:a2:65:ec:af:04:1e:4c:f2:36:32:5d:be:eb:15: 43:58:b8:fd:7c:8c:51:b5:81:70:de:8e:e8:d1:b9:84:a1:a0: 7e:dc:14:a4:ad:65:d7:eb:fa:30:bc:29:b3:55:43:70:51:ff: 95:f9:0e:cf:48:5b:43:73:e7:b2:b9:ed:cf:b7:94:4d:5e:4e: e6:16:62:b5:74:fb:55:a6:24:cb:af:10:d8:9e:2f:21:a0:24: 4a:68:00:10:e1:c7:b8:dc:f2:96:d0:0d:3f:50:13:df:5e:12: 80:ad:e8:ec:9d:61:6a:c5:b0:f6:d6:f0:c1:5f:c6:6e:18:6c: 90:ee:4f:25:8d:d3:ad:4e:66:76:a5:8c:80:3d:21:94:1a:35: 7b:15:90:4e:ea:bb:4e:98:fd:c1:41:db:42:1e:7e:80:65:32: 85:e1:5c:38:bb:c8:b5:dc:3e:c8:39:ca:74:b4:8e:be:11:d0: ca:f1:d6:3b:f6:62:8b:25:45:38:f7:ab:f9:0d:ff:1e:bb:d9: 51:49:7a:b6:70:df:d6:47:61:2f:c1:02:26:a0:5f:8f:8a:24: 69:e2:2c:72 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZyqj7bluo9JRhvDvhGqkV06MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0NTJiMDNlMWIwMTcwOTYzODk0MGQ5NTkyOTgzY2RlNzdl Y2FiNzcwHhcNMjYwMzAxMTgwMTEwWhcNMjYwMzAyMTgwMTEwWjAzMTEwLwYDVQQD EygxYzIyYjUzYmJmYjlkODUzMDA5NWI5YWJlMTdiMmU5ODA2NzQ1NzhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwPf55XhnXr88F7UdewTGQ17bzG7q YrU/j0H8WdNf4lar/TwZOTewB82azMcFEBcG/Mcq1x6CYER2uAmMRLBvTOCIrOdD 94nDYJu2pvBSYWPX+eQIZKNmcCmBmiyc3JzrpxTtivpJFE+9WW6O409Glp+7ximP pjlrelbPupkBXxvJDuLtRDPp8grBA2E1vwzWJ/WebuXQ+LyUmSKRZRir6Jcbd1hR 7RY08knuHhGTE90lgrDVlROafaXMoamAeZSXxgutdZFs7XdRtE0W9hBP3xa7Q1SS mUFc5FZVGEhzoYUrwOOcgzhjoHLMGanFXGK6IKWIGNRufVaRI06ga6veZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBwitTu/udhTAJW5q+F7LpgGdFePMB8GA1UdIwQY MBaAFIRSsD4bAXCWOJQNlZKYPN537Kt3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEZLd1Boc0JjSlk0bEEyVmtwZzgzbmZzcTNjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC8wMTFmNmUtZTkyOC00ZjJiLWFhMjQt MjAwZmMyNzRjYjAxLzEvaEZLd1Boc0JjSlk0bEEyVmtwZzgzbmZzcTNjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC8wMTFmNmUtZTkyOC00ZjJiLWFhMjQtMjAwZmMyNzRjYjAx LzEvaEZLd1Boc0JjSlk0bEEyVmtwZzgzbmZzcTNjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU+Wk7TDX j26+a0CHIgbapls2crOPPHCGc+y4os8gOOAvXAufkde8SaJl7K8EHkzyNjJdvusV Q1i4/XyMUbWBcN6O6NG5hKGgftwUpK1l1+v6MLwps1VDcFH/lfkOz0hbQ3Pnsrnt z7eUTV5O5hZitXT7VaYky68Q2J4vIaAkSmgAEOHHuNzyltANP1AT314SgK3o7J1h asWw9tbwwV/GbhhskO5PJY3TrU5mdqWMgD0hlBo1exWQTuq7Tpj9wUHbQh5+gGUy heFcOLvItdw+yDnKdLSOvhHQyvHWO/ZiiyVFOPer+Q3/HrvZUUl6tnDf1kdhL8EC JqBfj4okaeIscg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:31:07 2026 by rpki-client