$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft File: ER1oFDdScdGjy9EhVdsR0r1BqNM.mft (raw, json) Hash identifier: tMJZ2MnjZ0HfBjuT9O9xYwGmomYJ8ZMdpGhukONoh5c= Subject key identifier: 4B:8D:31:1B:73:D1:A6:D2:2E:F3:D4:61:62:04:0F:DD:E2:B2:EB:33 Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Certificate serial: 019CAA8F65312A902DF88873EBBE50935107 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft Manifest number: 170B Signing time: Sun 01 Mar 2026 18:00:50 +0000 Manifest this update: Sun 01 Mar 2026 18:00:50 +0000 Manifest next update: Mon 02 Mar 2026 18:00:50 +0000 Files and hashes: 1: 8ZTbVFN88ElJOvnxpynWkBywvcU.roa (hash: Zi7aMmYsFeMT6y4m/OMRvzAw9FlwVPNAsEeEWMyssQs=) 2: 9gyIdfYx-vxaH69AuzYIu8sS7ec.roa (hash: vsh4e/kwYxBt1mO0Ld2w2nU9VsbUvL0v+cSn3CZdKv4=) 3: D4HmthbydYoqExoa56VFIbe7J5A.roa (hash: 1gmVpoixHN/Zn+8HJ6YdrukA3JeRxcEeBWZ/2aGh+ps=) 4: DKZJyriLpkX0P03xQILHD2FwZEo.roa (hash: x6vx2AQsWgf7sMGXLXxiRwrb7PArAVgKRPBlJd4ah10=) 5: ER1oFDdScdGjy9EhVdsR0r1BqNM.crl (hash: vSbf02tgQFAWp8vrGKFbRsY7OrqfOAV2zvfH9qTRLUY=) 6: HRwCntz8pHEtM7UJXh-KwEbXi3w.roa (hash: CKUDXMyXov9Gbf/ygH+HewYMwNtReJO+UQotN2JyBXQ=) 7: Haim4aY9ShmCS1epcJRa3-rRRmM.roa (hash: AQeMZQUR+w1eyhT+kYpVEnNYoo0tXgoBt1LUUZT+/W4=) 8: Ka2f0_rG4AuXnvi8TQgXMBJzKOE.roa (hash: HTLBGDTB6awokEWRy6DjReQvfOLjCmwPODXPDvHGn+A=) 9: LdJkopqk4m9ubmHzk4T29FnhG7o.roa (hash: Qx8FwqyP4Rxw7vIMwqfqa4V2zeYK7+dz+yeOugc8QVI=) 10: S3K9bo4j9NjF6L9mhwIsz-LYyHg.roa (hash: FX7C0FNczXeRPZms4zyJ1OukTZNK4zd0GhG7vBTsBvg=) 11: UWgtqXah3liJx-awsYUK3XIS54c.roa (hash: nisX/PCjG49hPGc2ySAUn3J0MxV+pv8+T78d4GdNMSs=) 12: _d7ohj2Ako_tiSFSE9-jnGs0uoI.roa (hash: mf32LDbJ2Su5F5H62P0/F/PId5oq7GFGgkD8WKRwmPw=) 13: f5svUnEK1n30wRVLtixbJDS7pZM.roa (hash: sILbepz7GhK0jGMQ48sIN5LBYx9eYZB9voFGWkXvx60=) 14: iK87eJg7y-_rcG1D3z4FzaXgRNE.roa (hash: uVYEVS9koySJoZQhAK0q3w5qAE9/nwHY2ro0Er3WEZY=) 15: mcS4SdpuWVbabfdpCB_tOwct_TA.roa (hash: hcfOoUJHvls1DL90VCIcUIUdeQTL2YjVgbYPY6TdJAA=) 16: nXrADfBP6wNtRforv4w6KFdo1Ns.roa (hash: PAoowx6zHYeOj9TxBp8LwY6JFAj6/p0gXZ/G0XMc/dg=) 17: tDoaGy6SLh3swARR-izxiYVQMmU.roa (hash: lZCnqmwKcNoIj9hNP0txhfT3ExuUcH8dWLkUpGjDKzc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 18:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:aa:8f:65:31:2a:90:2d:f8:88:73:eb:be:50:93:51:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Validity Not Before: Mar 1 18:00:50 2026 GMT Not After : Mar 2 18:00:50 2026 GMT Subject: CN=4b8d311b73d1a6d22ef3d46162040fdde2b2eb33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1a:17:9d:2d:b4:d2:bf:1f:6e:a4:f3:98:03: 05:1c:4d:a6:f1:e8:e2:db:bd:32:72:f3:12:85:66: 2a:d0:c7:d0:b8:11:36:a6:78:23:23:13:6e:be:f2: c4:ea:58:df:a3:c1:ee:28:6b:e8:5a:28:30:64:52: 32:75:a0:d4:07:ee:50:1a:2c:6a:0a:4b:74:d8:59: a9:85:7e:c7:22:cf:80:f8:8c:74:b0:5c:73:d0:27: 2d:aa:30:a2:6e:04:6c:98:2e:72:9e:de:63:8b:3f: 51:4f:8e:ee:05:02:40:5d:36:fe:9c:84:a4:78:ab: 9c:29:d5:bf:51:93:d2:15:13:44:63:d0:8d:13:e3: 4d:07:99:cf:c4:67:c9:da:fb:9a:96:d8:d4:4f:06: 39:e0:da:40:d6:15:d9:92:f6:68:16:ef:7c:e9:a8: 22:f6:d3:2a:50:84:4b:6e:bb:f1:9a:04:d2:46:26: 8b:7d:7d:28:93:b3:27:e8:88:41:8c:0c:7b:3d:53: 02:4a:b3:22:34:a4:27:a2:d2:1d:87:f5:4d:37:8b: 87:d4:03:17:61:17:c0:6d:ac:44:67:6f:91:77:3a: f0:b6:69:ee:42:7d:b1:83:c8:f3:43:a1:c4:9f:7e: a2:4a:5f:68:6c:64:c7:5f:9b:75:c2:24:63:15:77: 19:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:8D:31:1B:73:D1:A6:D2:2E:F3:D4:61:62:04:0F:DD:E2:B2:EB:33 X509v3 Authority Key Identifier: keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:2d:be:7d:5d:1f:60:91:c7:62:b4:14:17:bc:36:5a:20:a6: b2:33:b7:3d:70:97:93:73:45:df:73:32:19:3e:89:f9:79:f5: 6f:e4:68:00:6d:09:26:48:50:1f:ce:1b:36:3c:84:f9:08:9e: 1e:1c:02:0d:bc:0e:55:63:ae:07:06:ce:6e:0d:e4:ab:46:c9: 65:15:34:cb:89:96:95:02:c3:08:67:7f:07:ed:5b:ab:49:64: 34:94:80:30:19:b8:6a:3d:98:49:86:12:22:8b:c2:7d:60:38: 2c:6f:8a:7f:8c:92:22:98:75:dd:72:50:9d:85:d6:6a:bb:7f: 86:1d:ce:00:d0:3d:e5:45:43:66:e4:f4:88:44:dc:51:9c:37: 96:94:08:26:8a:93:cf:e1:da:52:b1:4e:48:a6:1a:68:ed:7b: cf:e0:0a:15:e0:a9:4c:69:e2:f2:89:10:22:c8:fb:79:1e:4f: 91:ab:36:de:8c:42:af:2e:a0:af:f1:a1:a0:6b:d5:c8:ee:90: ae:b9:5c:7c:1a:de:9a:7b:ea:e1:59:9b:6e:74:a4:e1:84:1d: 78:a3:26:c1:d5:ca:2e:be:31:0c:25:a5:f4:62:26:06:ec:2e: 61:f6:75:03:70:e1:93:04:6a:30:bd:28:af:01:f6:a0:25:df: d7:90:cb:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZyqj2UxKpAt+Ihz675Qk1EHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMWQ2ODE0Mzc1MjcxZDFhM2NiZDEyMTU1ZGIxMWQyYmQ0 MWE4ZDMwHhcNMjYwMzAxMTgwMDUwWhcNMjYwMzAyMTgwMDUwWjAzMTEwLwYDVQQD Eyg0YjhkMzExYjczZDFhNmQyMmVmM2Q0NjE2MjA0MGZkZGUyYjJlYjMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnBoXnS200r8fbqTzmAMFHE2m8eji 270ycvMShWYq0MfQuBE2pngjIxNuvvLE6ljfo8HuKGvoWigwZFIydaDUB+5QGixq Ckt02FmphX7HIs+A+Ix0sFxz0CctqjCibgRsmC5ynt5jiz9RT47uBQJAXTb+nISk eKucKdW/UZPSFRNEY9CNE+NNB5nPxGfJ2vualtjUTwY54NpA1hXZkvZoFu986agi 9tMqUIRLbrvxmgTSRiaLfX0ok7Mn6IhBjAx7PVMCSrMiNKQnotIdh/VNN4uH1AMX YRfAbaxEZ2+RdzrwtmnuQn2xg8jzQ6HEn36iSl9obGTHX5t1wiRjFXcZ8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEuNMRtz0abSLvPUYWIED93isuszMB8GA1UdIwQY MBaAFBEdaBQ3UnHRo8vRIVXbEdK9QajTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQt MjcxZDI1ZTIwNTc0LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQtMjcxZDI1ZTIwNTc0 LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACi2+fV0f YJHHYrQUF7w2WiCmsjO3PXCXk3NF33MyGT6J+Xn1b+RoAG0JJkhQH84bNjyE+Qie HhwCDbwOVWOuBwbObg3kq0bJZRU0y4mWlQLDCGd/B+1bq0lkNJSAMBm4aj2YSYYS IovCfWA4LG+Kf4ySIph13XJQnYXWart/hh3OANA95UVDZuT0iETcUZw3lpQIJoqT z+HaUrFOSKYaaO17z+AKFeCpTGni8okQIsj7eR5Pkas23oxCry6gr/GhoGvVyO6Q rrlcfBremnvq4VmbbnSk4YQdeKMmwdXKLr4xDCWl9GImBuwuYfZ1A3DhkwRqML0o rwH2oCXf15DLdA== -----END CERTIFICATE-----Generated at Mon Mar 2 03:26:35 2026 by rpki-client