$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: ZIXOrm0QneYp8pzOt4USgTX1m38j2/9/apzMxrwzY8g= Subject key identifier: C2:1E:69:00:69:AB:24:08:D9:B3:C1:9F:E6:F4:77:47:BE:BB:A9:E2 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 0198D5BC24F7D39CF4532F6265D1B731ADA2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0E8F Signing time: Sat 23 Aug 2025 07:02:13 +0000 Manifest this update: Sat 23 Aug 2025 07:02:13 +0000 Manifest next update: Sun 24 Aug 2025 07:02:13 +0000 Files and hashes: 1: 3BwQGvtGG9EzTodyzZ_T_NlKH8c.roa (hash: 3YVq+Q3Pxf3bX0RyqLEPepY9xeWnJNOauq8KUa99lAY=) 2: 3jf0qN8pQHNEeZXSK9GB9T1D4_E.roa (hash: DRAm1n/nD8B8BQj+jf77wLhiQpGtxWx72r8uwhAFjaU=) 3: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 4: 89lMNrhD2F5x0Ke_v2bBXPEQYgU.roa (hash: K5oebEL4UYGbpI6omznf50HWdMyeoL9B3ezd2prsxV4=) 5: E_3-qae-50qWA7R56c8VnNml0ZU.roa (hash: nkgMixGbN46lHgT97kcU8QjXRmEi7iabVPw78zf1uq4=) 6: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 7: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: TRAln2BgANFsFryri9Qf4tTxHwdl2Pda8qeVhAfr7XE=) 8: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 9: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 10: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 11: jFuP-GeZY6Z37SVSGqClEWTPyy4.roa (hash: 65ZwPuCoL1Qqn8JPgxAd7UOuJekWTxCoLNYfjh3KVJo=) 12: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) 13: oEuyAAJZN4XAHoWmGWmvPb4FubQ.roa (hash: esXNrVEA5MkO3OsllRSKIYSvaqpShmC/xd9y//cEJ8g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 05:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:d5:bc:24:f7:d3:9c:f4:53:2f:62:65:d1:b7:31:ad:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Aug 23 07:02:13 2025 GMT Not After : Aug 24 07:02:13 2025 GMT Subject: CN=c21e690069ab2408d9b3c19fe6f47747bebba9e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1c:04:af:aa:9b:38:ca:53:a3:6e:1b:00:1d: 1d:c9:c7:2c:fc:b0:73:cc:d5:4f:83:22:1c:3e:b3: 7e:db:de:ef:a7:8f:87:ac:8e:63:db:bc:c7:ed:10: 67:49:50:55:2f:f4:8a:13:2f:a9:56:a7:2c:fd:8e: aa:18:1e:61:2c:9d:51:5e:ab:ce:9d:b8:e4:9c:1c: 26:0a:40:b4:9e:3c:d1:d8:70:e3:05:68:12:0d:cf: 9b:00:18:b1:55:1f:10:40:83:b5:71:bd:19:87:dc: 7d:18:25:2c:25:eb:de:2b:c6:15:d7:4a:21:6b:71: 10:f5:8d:fc:d3:46:d5:f4:b6:31:d7:95:5c:c1:a6: a1:de:de:a4:26:3c:61:10:72:f2:3e:2b:9e:45:76: fb:77:48:96:19:dc:31:60:6a:9d:1f:52:dd:65:e1: 9b:0c:21:7c:a9:18:a7:96:0d:7a:9b:c9:0f:78:c1: 24:27:ee:07:b5:c1:6f:9f:ed:cd:3f:3a:ab:df:6f: cd:ac:2f:65:c9:70:23:c2:f6:fb:5a:91:7a:45:8c: 3c:e8:93:34:32:79:97:c9:fa:43:74:e2:ec:a0:d4: 93:37:af:3e:ac:d4:12:39:55:be:fb:2c:87:bc:db: 4d:51:a0:26:dd:95:25:85:0b:fd:de:4b:6a:ed:e2: ec:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:1E:69:00:69:AB:24:08:D9:B3:C1:9F:E6:F4:77:47:BE:BB:A9:E2 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:e1:16:c7:b3:5f:9c:f3:64:8e:52:5e:81:b9:dd:4c:36:ff: 09:c2:de:eb:16:79:11:24:f2:71:e8:41:50:cf:ea:27:f9:f1: 5d:7a:71:e3:0d:75:11:05:01:cf:04:fb:29:b7:d5:f2:61:d9: ee:21:bb:ad:12:91:d9:7f:9e:ec:37:0e:23:cd:89:0c:0c:ef: a9:a7:ca:4c:75:cb:de:5a:7e:8d:c2:01:56:74:5f:22:ed:52: d0:ae:54:62:ce:5a:f5:4c:0f:d7:92:6e:9c:ed:0d:55:2f:71: 24:c1:50:0c:df:c5:7f:3c:05:9c:61:9c:b5:20:c2:6d:42:fc: d6:8f:87:7b:bc:89:c2:a4:62:ea:27:16:0a:cc:12:49:62:4d: 1e:43:16:fa:dc:1d:0c:2c:52:b4:c5:23:fc:00:dc:d2:ce:5e: 6e:de:a8:18:36:08:ef:62:ef:d5:06:92:79:00:57:bd:58:ed: 69:d1:c6:02:d7:b5:f2:df:6f:ad:da:8b:e2:62:2d:2d:7f:48: e8:b7:c3:1d:20:da:5c:fb:15:4f:b3:00:28:11:ef:35:d3:db: c5:52:68:92:6c:70:6b:fb:93:be:f1:0d:d2:dd:5e:c8:9e:d7: c5:95:97:97:e2:9e:71:85:13:ae:93:aa:a4:a2:b0:c0:1e:1a: 2e:e9:ca:e7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjVvCT305z0Uy9iZdG3Ma2iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUwODIzMDcwMjEzWhcNMjUwODI0MDcwMjEzWjAzMTEwLwYDVQQD EyhjMjFlNjkwMDY5YWIyNDA4ZDliM2MxOWZlNmY0Nzc0N2JlYmJhOWUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBwEr6qbOMpTo24bAB0dyccs/LBz zNVPgyIcPrN+297vp4+HrI5j27zH7RBnSVBVL/SKEy+pVqcs/Y6qGB5hLJ1RXqvO nbjknBwmCkC0njzR2HDjBWgSDc+bABixVR8QQIO1cb0Zh9x9GCUsJeveK8YV10oh a3EQ9Y3800bV9LYx15Vcwaah3t6kJjxhEHLyPiueRXb7d0iWGdwxYGqdH1LdZeGb DCF8qRinlg16m8kPeMEkJ+4HtcFvn+3NPzqr32/NrC9lyXAjwvb7WpF6RYw86JM0 MnmXyfpDdOLsoNSTN68+rNQSOVW++yyHvNtNUaAm3ZUlhQv93ktq7eLsoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMIeaQBpqyQI2bPBn+b0d0e+u6niMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOuEWx7Nf nPNkjlJegbndTDb/CcLe6xZ5ESTycehBUM/qJ/nxXXpx4w11EQUBzwT7KbfV8mHZ 7iG7rRKR2X+e7DcOI82JDAzvqafKTHXL3lp+jcIBVnRfIu1S0K5UYs5a9UwP15Ju nO0NVS9xJMFQDN/FfzwFnGGctSDCbUL81o+He7yJwqRi6icWCswSSWJNHkMW+twd DCxStMUj/ADc0s5ebt6oGDYI72Lv1QaSeQBXvVjtadHGAte18t9vrdqL4mItLX9I 6LfDHSDaXPsVT7MAKBHvNdPbxVJokmxwa/uTvvEN0t1eyJ7XxZWXl+KecYUTrpOq pKKwwB4aLunK5w== -----END CERTIFICATE-----Generated at Sat Aug 23 11:29:02 2025 by rpki-client