$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: 1WphsVumtisWA+XOrU0p7kYHnZGIMPeD4uj6d8CjUXE= Subject key identifier: 34:E6:A1:76:1C:9E:3E:9C:F4:B1:86:D2:7E:12:F6:6B:22:5C:EE:49 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019E1D905A289495AAF68931F1BCA8D4C48A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 1155 Signing time: Tue 12 May 2026 19:00:59 +0000 Manifest this update: Tue 12 May 2026 19:00:59 +0000 Manifest next update: Wed 13 May 2026 19:00:59 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: jXcNnZaElTzlpqxSi9xg8qn0jQwCtTzWyoXu2uErPto=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 10: qOS44k4K1WSKtUKGLEhRxJxPEas.roa (hash: FW03t2tk2X1t0JN65p0CDI9DvEztasvMAKi+nwmwwnw=) 11: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 19:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:1d:90:5a:28:94:95:aa:f6:89:31:f1:bc:a8:d4:c4:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: May 12 19:00:59 2026 GMT Not After : May 13 19:00:59 2026 GMT Subject: CN=34e6a1761c9e3e9cf4b186d27e12f66b225cee49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c9:f2:5a:14:25:da:b7:db:a0:b4:d7:8d:b4: 0c:d5:dc:e1:43:a3:58:b0:e6:e1:d7:85:69:98:1a: 34:1c:a2:77:dd:d2:8b:20:5a:f3:7f:99:04:93:40: 60:11:27:eb:4b:76:f3:aa:b3:bf:02:64:74:56:a5: 6e:ee:7e:1e:da:fc:e3:cf:df:a4:83:d8:b4:66:70: 18:37:7f:2e:37:6f:50:a0:ea:20:f9:85:f9:50:a9: f3:c9:e1:b8:0a:10:e5:88:ef:cb:f6:03:31:03:97: 35:a9:e2:ca:81:3e:49:bb:53:5e:a1:25:c5:ab:8c: c8:d4:dc:03:52:d8:e8:eb:da:13:f5:4c:39:23:b0: 87:a1:c8:c2:10:1b:1c:cb:05:ac:e8:87:41:ef:3c: 84:70:9d:c0:c7:86:cf:bd:5a:55:f1:c7:8b:0f:ff: 84:95:d0:f2:29:d0:02:65:b6:b3:ca:8d:e4:1e:e9: ab:b2:11:89:6b:95:a8:31:04:8b:2a:c4:18:3f:d9: 0c:8b:9d:55:3b:82:65:bb:10:e2:8b:f0:bf:b4:21: 31:4a:d5:43:a8:c2:78:27:58:61:4c:cf:65:36:73: c3:ca:6f:b9:61:62:48:89:7f:20:8a:92:13:c9:47: 08:59:f9:2e:51:a3:24:5b:f7:2f:69:c7:80:6c:6d: 56:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:E6:A1:76:1C:9E:3E:9C:F4:B1:86:D2:7E:12:F6:6B:22:5C:EE:49 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:45:b7:55:10:48:b7:4a:2f:32:25:5e:5f:76:1c:52:9f:3e: 76:b3:46:00:c1:b2:1a:01:81:77:a7:1f:24:45:8a:63:1e:af: 3a:08:0d:68:6c:15:2e:7f:8f:03:ca:7e:cb:13:95:51:c7:d1: 25:4b:e1:54:14:b4:b4:db:f0:d9:51:8a:19:e6:c3:c0:61:62: 31:cc:35:99:0c:19:fd:df:9a:30:00:80:5a:31:94:06:6e:02: bf:b2:03:b2:5c:39:3f:b4:fb:64:c3:d8:23:d0:1c:12:b0:bd: 8b:15:66:58:68:0a:c4:fa:4b:0c:46:97:f3:90:43:b6:da:43: 41:88:d6:a7:fe:d9:62:45:93:85:47:ac:77:2e:c0:5a:d3:ec: 65:06:31:83:41:fc:2c:ef:86:7a:f1:28:98:b5:71:21:92:af: 7f:5a:a1:24:1f:fa:aa:74:18:56:3d:b3:15:41:67:15:c9:cf: 78:4d:e9:27:41:bf:72:45:28:52:3e:a5:2c:b2:46:06:89:8d: c8:e4:30:1f:7a:7a:c5:10:01:f0:b5:59:c8:de:2a:14:5e:f7: 63:7c:7e:2a:d9:a0:38:a1:68:3c:5d:ec:c8:fd:88:2c:3f:50: 97:9d:0f:9b:28:9f:cd:c6:49:8b:c1:ed:ad:a9:d1:bf:03:fa: f2:74:ef:13 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4dkFoolJWq9okx8byo1MSKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwNTEyMTkwMDU5WhcNMjYwNTEzMTkwMDU5WjAzMTEwLwYDVQQD EygzNGU2YTE3NjFjOWUzZTljZjRiMTg2ZDI3ZTEyZjY2YjIyNWNlZTQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn8nyWhQl2rfboLTXjbQM1dzhQ6NY sObh14VpmBo0HKJ33dKLIFrzf5kEk0BgESfrS3bzqrO/AmR0VqVu7n4e2vzjz9+k g9i0ZnAYN38uN29QoOog+YX5UKnzyeG4ChDliO/L9gMxA5c1qeLKgT5Ju1NeoSXF q4zI1NwDUtjo69oT9Uw5I7CHocjCEBscywWs6IdB7zyEcJ3Ax4bPvVpV8ceLD/+E ldDyKdACZbazyo3kHumrshGJa5WoMQSLKsQYP9kMi51VO4JluxDii/C/tCExStVD qMJ4J1hhTM9lNnPDym+5YWJIiX8gipITyUcIWfkuUaMkW/cvaceAbG1WTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDTmoXYcnj6c9LGG0n4S9msiXO5JMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAekW3VRBI t0ovMiVeX3YcUp8+drNGAMGyGgGBd6cfJEWKYx6vOggNaGwVLn+PA8p+yxOVUcfR JUvhVBS0tNvw2VGKGebDwGFiMcw1mQwZ/d+aMACAWjGUBm4Cv7IDslw5P7T7ZMPY I9AcErC9ixVmWGgKxPpLDEaX85BDttpDQYjWp/7ZYkWThUesdy7AWtPsZQYxg0H8 LO+GevEomLVxIZKvf1qhJB/6qnQYVj2zFUFnFcnPeE3pJ0G/ckUoUj6lLLJGBomN yOQwH3p6xRAB8LVZyN4qFF73Y3x+KtmgOKFoPF3syP2ILD9Ql50PmyifzcZJi8Ht ranRvwP68nTvEw== -----END CERTIFICATE-----Generated at Wed May 13 02:22:10 2026 by rpki-client