$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: 38bDsJ3vbI0PLkMg+k7Gan0wYaDavAXISLyhWPdu2LA= Subject key identifier: 4C:09:70:F0:D6:3B:6F:1B:9E:E4:32:D3:95:BC:FE:D0:42:D8:AD:68 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019C98C0293F0B6922D040A9F01B56BD1B54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 108A Signing time: Thu 26 Feb 2026 07:00:56 +0000 Manifest this update: Thu 26 Feb 2026 07:00:56 +0000 Manifest next update: Fri 27 Feb 2026 07:00:56 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: ARJez/TJ2q1q9PWEog7Fh1N3Rdi3OatDw4r1PfcyrRo=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Feb 2026 07:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:98:c0:29:3f:0b:69:22:d0:40:a9:f0:1b:56:bd:1b:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Feb 26 07:00:56 2026 GMT Not After : Feb 27 07:00:56 2026 GMT Subject: CN=4c0970f0d63b6f1b9ee432d395bcfed042d8ad68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:97:2c:e5:d4:b6:c0:8f:09:ee:da:0e:c8:e5: 77:f7:20:aa:20:98:32:c6:63:ef:98:6c:9d:85:4c: bc:a8:71:39:a7:a0:6e:ff:d7:21:fb:ea:ac:b3:46: e3:5b:e7:d4:c2:cf:33:97:3d:1b:c5:44:68:00:60: 15:2a:a3:dd:1d:0a:24:6e:34:b2:f9:3a:68:35:d6: db:19:61:9f:22:2c:1d:ef:ee:83:47:d8:fe:5e:45: 37:9e:f0:22:f3:d6:63:5e:40:0c:a2:32:1e:cc:10: c2:77:e8:53:2a:71:1b:dd:0e:4b:2e:5a:31:28:c7: d2:61:fb:08:a9:aa:92:ec:15:a2:68:69:8c:94:73: 21:18:2a:54:0d:4b:0e:d3:8c:71:04:bd:04:74:42: 9f:fb:2a:7a:af:46:6f:c5:90:91:65:c7:87:28:1d: 50:7d:32:5d:56:63:35:20:fa:0a:c8:f9:5e:9e:0a: 78:c0:a2:84:a7:4b:28:1e:80:15:8e:16:54:11:fe: 1d:1c:22:ac:5d:b6:1a:83:c6:b7:5f:c9:58:25:c5: a3:f0:60:2d:7b:a1:98:a1:91:de:7d:74:c4:4a:c6: 5d:19:51:f0:66:6e:32:dc:9f:ab:79:4f:19:18:a0: d6:ae:f9:ab:84:5a:c5:78:a6:9b:ba:74:a7:77:67: 27:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:09:70:F0:D6:3B:6F:1B:9E:E4:32:D3:95:BC:FE:D0:42:D8:AD:68 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:b7:5b:cc:22:f7:e6:fd:0f:1b:75:07:03:9b:69:04:ee:cf: 59:9a:cf:c2:8a:7e:06:09:c2:27:bf:a8:8e:ae:dc:d8:83:d2: ba:c8:58:b5:84:46:b7:ea:5b:e5:8f:55:23:ad:02:12:76:cc: fc:9c:3e:b9:19:8e:22:03:ed:78:86:5c:38:87:53:b5:f0:e5: 8e:73:f8:ea:0c:eb:d1:e8:16:9b:c2:3f:65:20:b4:55:25:3b: 5d:82:da:a6:ad:7e:67:95:11:f1:27:89:25:da:61:58:d3:df: 6d:e9:32:43:08:f0:37:b8:b9:d1:6a:7c:2b:f9:0a:ef:2f:90: 90:b2:bd:13:f1:b6:c9:ef:e0:07:6c:60:b1:ce:f6:a9:3b:a6: fb:6a:f5:84:f7:24:3f:cf:31:cb:35:3e:26:59:70:9c:49:44: b4:54:fc:41:13:93:e7:f0:8d:43:c3:d5:4d:29:65:32:0b:08: d8:95:3d:86:b7:3d:29:21:a5:fa:82:94:4b:70:2c:e6:a5:44: 26:28:3c:84:90:26:18:bd:63:f0:35:76:c4:da:3b:14:cd:e8: d5:5d:9d:a6:f0:7c:91:5d:ea:08:9c:88:e2:2e:e7:db:29:7a: 92:f2:e2:91:a6:22:ea:42:89:3a:bf:4d:0e:02:2b:81:e5:fa: 34:40:7c:2b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZyYwCk/C2ki0ECp8BtWvRtUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMjI2MDcwMDU2WhcNMjYwMjI3MDcwMDU2WjAzMTEwLwYDVQQD Eyg0YzA5NzBmMGQ2M2I2ZjFiOWVlNDMyZDM5NWJjZmVkMDQyZDhhZDY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwJcs5dS2wI8J7toOyOV39yCqIJgy xmPvmGydhUy8qHE5p6Bu/9ch++qss0bjW+fUws8zlz0bxURoAGAVKqPdHQokbjSy +TpoNdbbGWGfIiwd7+6DR9j+XkU3nvAi89ZjXkAMojIezBDCd+hTKnEb3Q5LLlox KMfSYfsIqaqS7BWiaGmMlHMhGCpUDUsO04xxBL0EdEKf+yp6r0ZvxZCRZceHKB1Q fTJdVmM1IPoKyPlengp4wKKEp0soHoAVjhZUEf4dHCKsXbYag8a3X8lYJcWj8GAt e6GYoZHefXTESsZdGVHwZm4y3J+reU8ZGKDWrvmrhFrFeKabunSnd2cnlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEwJcPDWO28bnuQy05W8/tBC2K1oMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlrdbzCL3 5v0PG3UHA5tpBO7PWZrPwop+BgnCJ7+ojq7c2IPSushYtYRGt+pb5Y9VI60CEnbM /Jw+uRmOIgPteIZcOIdTtfDljnP46gzr0egWm8I/ZSC0VSU7XYLapq1+Z5UR8SeJ JdphWNPfbekyQwjwN7i50Wp8K/kK7y+QkLK9E/G2ye/gB2xgsc72qTum+2r1hPck P88xyzU+JllwnElEtFT8QROT5/CNQ8PVTSllMgsI2JU9hrc9KSGl+oKUS3As5qVE Jig8hJAmGL1j8DV2xNo7FM3o1V2dpvB8kV3qCJyI4i7n2yl6kvLikaYi6kKJOr9N DgIrgeX6NEB8Kw== -----END CERTIFICATE-----Generated at Thu Feb 26 17:16:19 2026 by rpki-client