$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: LNzYTUgDk9BFZ8/CJ20ojhh83DLQgZhbC5FwwHWUeP4= Subject key identifier: 3C:9D:5E:36:45:C4:23:69:FF:5D:B2:5E:AD:6A:30:56:DB:32:6E:BA Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019D2997334817AAA1A37235C77501F83BE2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 10D5 Signing time: Thu 26 Mar 2026 10:01:08 +0000 Manifest this update: Thu 26 Mar 2026 10:01:08 +0000 Manifest next update: Fri 27 Mar 2026 10:01:08 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: ZQZsasH2g/7uFJmc4S/9XoPjv+bBIi2d1vWBYveO154=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 09:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:29:97:33:48:17:aa:a1:a3:72:35:c7:75:01:f8:3b:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Mar 26 10:01:08 2026 GMT Not After : Mar 27 10:01:08 2026 GMT Subject: CN=3c9d5e3645c42369ff5db25ead6a3056db326eba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:be:47:ad:fe:27:e1:be:02:d0:d6:a5:33:2e: 74:57:eb:4e:6b:f0:73:98:78:80:69:7c:75:0d:98: 04:a1:c5:c2:cd:59:11:01:e7:fd:86:82:9f:db:1f: fe:1f:55:dc:51:e4:73:05:e5:9b:e3:ca:8e:9f:0d: a2:95:e1:e2:b1:52:50:dc:08:c7:1c:58:44:a4:c1: 78:6a:fc:d6:a2:6f:14:f0:69:d4:f3:b6:c3:2d:b3: b2:46:27:81:32:09:ee:29:9b:b8:ff:bb:0d:ee:04: aa:1f:fb:25:8f:0a:20:3e:af:a4:2b:1c:2e:91:fe: 39:84:42:c6:86:4c:01:9b:5c:96:5a:5a:b6:83:9f: 86:75:5a:87:37:ff:6f:7d:2f:ca:eb:d2:57:7e:1c: 29:da:c4:35:9e:58:d1:17:1a:e3:e6:3f:18:18:0f: 32:2d:00:a6:c8:10:19:91:cc:bf:5d:d8:21:40:25: 5b:46:a4:ec:d1:44:2f:29:fc:93:67:37:9a:05:17: 0c:3b:c9:3f:9c:a6:05:5a:07:dd:95:1c:cf:fd:7c: ca:5a:34:ab:98:62:65:c4:02:08:f0:f0:45:b9:55: 7e:5f:95:42:8d:cc:b1:bb:f8:82:49:e0:a0:a7:92: 98:9a:21:ee:23:29:92:fb:8b:2d:0e:b3:16:6b:62: 93:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:9D:5E:36:45:C4:23:69:FF:5D:B2:5E:AD:6A:30:56:DB:32:6E:BA X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:d1:fd:f9:3c:2e:91:ad:ee:03:c2:09:ff:66:dc:c2:18:81: 5e:21:ed:c9:17:ee:8a:d4:de:ee:3b:17:80:3a:d4:4b:76:b5: 0f:47:d1:46:81:82:cf:34:be:37:60:e1:7e:00:87:37:60:4c: 60:bd:a2:3f:ea:8e:be:6a:f9:c3:81:84:09:26:90:4c:b8:bb: 83:ac:be:cf:09:f2:46:ce:5a:fa:b5:2f:e0:2b:c1:16:6e:21: c6:52:80:df:84:d5:53:fb:d6:18:46:af:03:0b:28:e8:c9:2f: fb:bc:f2:74:ad:88:b6:c0:d9:fd:9e:50:15:0e:6a:c6:16:79: 5b:9e:07:6e:57:1c:af:d0:7f:54:6c:ea:66:9c:f7:d1:2d:1d: 03:7c:ff:36:a1:51:28:1d:61:05:09:a9:2c:71:6e:3e:b1:d8: a4:43:94:3f:ba:e4:ad:68:b7:a5:15:0c:40:f5:34:c3:96:e6: 6c:ae:1a:4b:1c:a4:cf:07:ad:37:c3:a5:74:cb:52:a8:68:12: b3:d4:96:7d:cf:09:be:89:d8:06:18:15:41:e6:8b:2f:9f:d5: 8a:d9:79:8c:50:ac:46:8f:d0:e3:fd:5a:b8:b2:41:9e:cb:f8: be:02:04:ca:7f:2f:fa:a5:63:e1:5b:ff:a8:f1:66:13:23:fc: 4b:ac:ac:5f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0plzNIF6qho3I1x3UB+DviMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMzI2MTAwMTA4WhcNMjYwMzI3MTAwMTA4WjAzMTEwLwYDVQQD EygzYzlkNWUzNjQ1YzQyMzY5ZmY1ZGIyNWVhZDZhMzA1NmRiMzI2ZWJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs75Hrf4n4b4C0NalMy50V+tOa/Bz mHiAaXx1DZgEocXCzVkRAef9hoKf2x/+H1XcUeRzBeWb48qOnw2ileHisVJQ3AjH HFhEpMF4avzWom8U8GnU87bDLbOyRieBMgnuKZu4/7sN7gSqH/sljwogPq+kKxwu kf45hELGhkwBm1yWWlq2g5+GdVqHN/9vfS/K69JXfhwp2sQ1nljRFxrj5j8YGA8y LQCmyBAZkcy/XdghQCVbRqTs0UQvKfyTZzeaBRcMO8k/nKYFWgfdlRzP/XzKWjSr mGJlxAII8PBFuVV+X5VCjcyxu/iCSeCgp5KYmiHuIymS+4stDrMWa2KTkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDydXjZFxCNp/12yXq1qMFbbMm66MB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKtH9+Twu ka3uA8IJ/2bcwhiBXiHtyRfuitTe7jsXgDrUS3a1D0fRRoGCzzS+N2DhfgCHN2BM YL2iP+qOvmr5w4GECSaQTLi7g6y+zwnyRs5a+rUv4CvBFm4hxlKA34TVU/vWGEav Awso6Mkv+7zydK2ItsDZ/Z5QFQ5qxhZ5W54Hblccr9B/VGzqZpz30S0dA3z/NqFR KB1hBQmpLHFuPrHYpEOUP7rkrWi3pRUMQPU0w5bmbK4aSxykzwetN8OldMtSqGgS s9SWfc8JvonYBhgVQeaLL5/Vitl5jFCsRo/Q4/1auLJBnsv4vgIEyn8v+qVj4Vv/ qPFmEyP8S6ysXw== -----END CERTIFICATE-----Generated at Thu Mar 26 13:49:59 2026 by rpki-client