$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: zw350pr3c5fyBaLYeQtL9vc9Kex+5h9CQSjk5Wkxfys= Subject key identifier: 25:4B:1C:A7:49:DA:5F:C7:2C:31:67:BD:C8:0C:D0:DF:8B:30:CE:91 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 0199FB4619655CCF3FFF1B937A7DF1E15F6D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0F28 Signing time: Sun 19 Oct 2025 07:01:39 +0000 Manifest this update: Sun 19 Oct 2025 07:01:39 +0000 Manifest next update: Mon 20 Oct 2025 07:01:39 +0000 Files and hashes: 1: 0qafQTKpUINoCVOYOkW5UnOWR94.roa (hash: MusUL5944aEPud+AesWo0c3hbkne3BfD5w+aqIADrZU=) 2: 3BwQGvtGG9EzTodyzZ_T_NlKH8c.roa (hash: 3YVq+Q3Pxf3bX0RyqLEPepY9xeWnJNOauq8KUa99lAY=) 3: 3jf0qN8pQHNEeZXSK9GB9T1D4_E.roa (hash: DRAm1n/nD8B8BQj+jf77wLhiQpGtxWx72r8uwhAFjaU=) 4: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 5: 89lMNrhD2F5x0Ke_v2bBXPEQYgU.roa (hash: K5oebEL4UYGbpI6omznf50HWdMyeoL9B3ezd2prsxV4=) 6: E_3-qae-50qWA7R56c8VnNml0ZU.roa (hash: nkgMixGbN46lHgT97kcU8QjXRmEi7iabVPw78zf1uq4=) 7: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 8: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: KOojDh9l6agK9wHlwDkkxch8lqjDIr17kfJF2cqtBQQ=) 9: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 10: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 11: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 12: jFuP-GeZY6Z37SVSGqClEWTPyy4.roa (hash: 65ZwPuCoL1Qqn8JPgxAd7UOuJekWTxCoLNYfjh3KVJo=) 13: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) 14: vmyAzNx7YC2gCU3FErnhSsG464E.roa (hash: b2H/65WWZwau4OQRXdpkdBOUisTMki5wQZ0WO+I8q90=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 06:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:fb:46:19:65:5c:cf:3f:ff:1b:93:7a:7d:f1:e1:5f:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Oct 19 07:01:39 2025 GMT Not After : Oct 20 07:01:39 2025 GMT Subject: CN=254b1ca749da5fc72c3167bdc80cd0df8b30ce91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:62:fa:f7:0c:55:5b:b8:9f:96:38:07:ad:b6: e4:6b:6b:9a:af:6f:91:97:1f:08:a1:4d:40:ca:04: db:85:29:81:20:60:11:b4:2d:8c:e7:7b:9c:25:b0: dd:0c:4f:72:9c:26:78:77:ef:2d:83:39:de:91:28: 40:ed:b2:91:5b:88:b0:39:33:cf:71:3f:0b:73:0b: 13:4c:cd:1f:24:a4:3c:e8:80:eb:79:12:40:9f:20: 7c:95:09:aa:ed:80:9f:a6:15:c6:c2:cd:5d:cc:68: b4:e8:05:e0:03:79:5f:7f:0d:1f:68:1c:76:69:89: 52:0a:3d:7e:05:99:12:d4:84:06:55:4f:74:a0:1c: 31:0a:03:5b:fb:fd:3f:2b:af:9f:24:8f:7a:68:63: d1:b4:d5:da:de:b9:1c:52:98:1f:2d:35:d9:87:fd: e2:75:b8:3b:01:4a:11:73:d4:c6:70:5c:82:11:f5: 45:b8:92:80:9d:a1:d8:cb:c6:80:4b:30:95:06:0b: d7:da:b9:87:e6:f2:b8:c3:bd:4e:0a:e0:e0:12:2b: cc:f0:6b:e3:12:63:8e:15:8b:2d:a6:ae:3e:c1:4d: 60:46:9f:68:10:97:24:d2:c5:1c:57:b2:16:71:19: 94:a8:c4:65:67:f7:fc:82:f9:e9:14:fc:94:8d:c9: 71:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:4B:1C:A7:49:DA:5F:C7:2C:31:67:BD:C8:0C:D0:DF:8B:30:CE:91 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:e4:cc:6e:0f:ea:9c:3e:c7:32:6f:07:1a:fc:21:e9:e7:88: 0e:3e:60:02:f9:fe:1f:3e:36:15:4e:f6:09:da:85:cb:9e:a9: ae:d6:f9:7b:81:ec:64:8a:7a:e5:bc:70:2b:2a:2f:5f:7f:46: 0b:ff:9a:1c:72:98:52:80:cc:1b:c3:c1:ec:8a:75:48:ca:96: 04:24:9b:16:f4:10:93:23:1d:c3:42:9c:3e:d2:b5:f6:b3:e1: ad:ed:4f:3f:60:6c:c9:de:6f:98:8a:0a:d3:1e:3c:b0:55:52: bb:95:13:89:16:fa:96:42:ce:6f:ce:8c:16:50:8e:c9:8b:c0: 90:bd:63:d1:ed:06:c0:94:d4:19:45:77:4a:e2:77:16:95:90: 64:99:ce:1b:1f:19:a4:42:d3:58:b5:30:da:07:e7:cc:5c:d4: c1:08:28:71:93:80:7c:21:b0:2c:2e:e6:71:c1:b2:63:1f:da: b7:dd:2e:64:69:5a:34:7e:c3:b9:70:94:27:be:73:0a:17:9d: 28:fa:54:bd:6f:84:29:46:39:6f:d9:70:cc:c3:65:c5:db:9a: 54:d5:b4:33:83:a6:d6:39:49:b7:91:e6:a0:c3:3e:f3:c3:f8: 07:07:d6:6d:31:8c:49:d5:c9:b5:ad:cd:72:0c:97:39:c4:53: a4:09:22:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZn7RhllXM8//xuTen3x4V9tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUxMDE5MDcwMTM5WhcNMjUxMDIwMDcwMTM5WjAzMTEwLwYDVQQD EygyNTRiMWNhNzQ5ZGE1ZmM3MmMzMTY3YmRjODBjZDBkZjhiMzBjZTkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu2L69wxVW7ifljgHrbbka2uar2+R lx8IoU1AygTbhSmBIGARtC2M53ucJbDdDE9ynCZ4d+8tgznekShA7bKRW4iwOTPP cT8LcwsTTM0fJKQ86IDreRJAnyB8lQmq7YCfphXGws1dzGi06AXgA3lffw0faBx2 aYlSCj1+BZkS1IQGVU90oBwxCgNb+/0/K6+fJI96aGPRtNXa3rkcUpgfLTXZh/3i dbg7AUoRc9TGcFyCEfVFuJKAnaHYy8aASzCVBgvX2rmH5vK4w71OCuDgEivM8Gvj EmOOFYstpq4+wU1gRp9oEJck0sUcV7IWcRmUqMRlZ/f8gvnpFPyUjclxhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCVLHKdJ2l/HLDFnvcgM0N+LMM6RMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgOTMbg/q nD7HMm8HGvwh6eeIDj5gAvn+Hz42FU72CdqFy56prtb5e4HsZIp65bxwKyovX39G C/+aHHKYUoDMG8PB7Ip1SMqWBCSbFvQQkyMdw0KcPtK19rPhre1PP2Bsyd5vmIoK 0x48sFVSu5UTiRb6lkLOb86MFlCOyYvAkL1j0e0GwJTUGUV3SuJ3FpWQZJnOGx8Z pELTWLUw2gfnzFzUwQgocZOAfCGwLC7mccGyYx/at90uZGlaNH7DuXCUJ75zChed KPpUvW+EKUY5b9lwzMNlxduaVNW0M4Om1jlJt5HmoMM+88P4BwfWbTGMSdXJta3N cgyXOcRTpAkidg== -----END CERTIFICATE-----Generated at Sun Oct 19 15:04:57 2025 by rpki-client