$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: Tf+Dp48wmzLSBOMW+9TjPrm4qVYh1R87zkVpsnzkVYg= Subject key identifier: 6C:7E:3C:F4:3E:B0:DC:80:47:B1:FC:0E:86:EF:85:0E:41:05:B1:BD Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 0197E18B6B413399CDAE52D38D8DA3675AB8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0E0D Signing time: Sun 06 Jul 2025 21:01:39 +0000 Manifest this update: Sun 06 Jul 2025 21:01:39 +0000 Manifest next update: Mon 07 Jul 2025 21:01:39 +0000 Files and hashes: 1: 1333qp73ruq7A2nSo9kOVQ7ZzE0.roa (hash: JX94IngnG5jgwt/Et193zGmN4IyvZ77gInsz4D23C18=) 2: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 3: 89lMNrhD2F5x0Ke_v2bBXPEQYgU.roa (hash: K5oebEL4UYGbpI6omznf50HWdMyeoL9B3ezd2prsxV4=) 4: E_3-qae-50qWA7R56c8VnNml0ZU.roa (hash: nkgMixGbN46lHgT97kcU8QjXRmEi7iabVPw78zf1uq4=) 5: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: WcwGs3fxIg3ci65wFPfjtjF2BalKBQQvbu7nnuxKR5A=) 7: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 8: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 9: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 10: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 07 Jul 2025 14:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:e1:8b:6b:41:33:99:cd:ae:52:d3:8d:8d:a3:67:5a:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jul 6 21:01:39 2025 GMT Not After : Jul 7 21:01:39 2025 GMT Subject: CN=6c7e3cf43eb0dc8047b1fc0e86ef850e4105b1bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ee:ef:96:17:c3:f6:42:79:c7:2b:a2:29:93: ee:e7:ee:d5:23:d6:33:de:7a:c7:dd:49:33:fa:74: aa:bf:f1:21:e8:79:ad:ef:72:8c:b6:83:fe:02:01: 64:61:b4:fc:61:0d:90:7c:35:6f:0d:0b:8b:2f:ed: 5e:ef:a0:4b:92:de:59:8a:14:56:96:85:59:0d:5b: f4:87:2b:70:3f:96:bb:91:76:35:fb:cf:2e:41:4d: dc:07:87:2e:a8:f6:2d:3d:d6:e5:44:c1:43:61:84: 07:35:bd:de:71:b3:ed:84:19:35:c0:21:47:b9:84: 94:e4:a3:93:96:28:ea:46:b2:c8:fe:19:af:6e:6e: a5:79:d8:c5:1a:df:32:ab:91:9b:8f:9d:26:0f:bc: 68:88:02:83:56:55:a7:78:eb:2a:40:79:7f:f1:02: 03:df:77:9e:fb:b3:5c:bf:c3:1a:47:1f:82:38:67: 2f:84:c4:64:2d:80:41:a1:72:58:21:21:f0:63:b2: 2a:8b:c4:2a:1f:64:bf:8c:a7:9b:b0:87:21:78:66: e5:0d:3e:42:e9:45:ba:24:3e:62:32:e5:d5:f0:34: 7a:66:99:de:a9:7b:c1:9e:26:66:f9:27:99:eb:d2: 74:57:34:ff:b8:d0:06:73:b0:77:72:1c:8b:a3:09: 14:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:7E:3C:F4:3E:B0:DC:80:47:B1:FC:0E:86:EF:85:0E:41:05:B1:BD X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:92:71:3e:7a:ba:fa:9a:b7:38:83:4e:ac:2a:74:62:97:7c: 38:21:c7:7a:04:cc:8c:f8:95:f6:e4:80:49:70:46:af:1c:45: 7d:96:06:16:b6:f0:17:01:3a:a1:a9:74:7e:ab:16:11:6b:5a: 0f:bf:0a:fa:d5:32:5a:3b:ee:25:a1:46:b0:92:dc:a0:70:ad: 91:d0:7a:df:7e:27:cb:a4:87:9c:d2:ab:68:98:75:af:1e:c5: 52:62:3b:34:4d:99:53:ea:ea:5f:13:52:df:8b:1c:27:74:77: 8a:08:e8:52:d1:40:c0:25:db:b6:4d:4f:8e:b3:f0:9e:79:8d: 17:15:a0:f7:e9:6f:72:f2:da:35:0f:64:42:3a:85:b7:1a:99: d7:b3:9c:c9:08:ae:ee:1a:f9:39:54:97:6a:c3:e6:53:7e:87: 9c:76:ed:2f:f2:13:d1:a6:eb:08:60:a5:a9:38:10:24:28:f0: 10:b0:0b:e3:d6:88:ca:a5:d9:20:c0:55:e0:85:75:5b:01:23: e5:8b:95:70:e3:20:64:64:54:56:b2:0f:f6:eb:96:93:fe:41: 28:e6:cc:91:9d:ce:16:35:e3:d7:a9:b6:73:96:64:96:50:fc: 96:e9:1c:17:cb:a9:76:82:c6:46:04:a4:a1:ee:01:27:4e:b5: 28:eb:7a:f0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZfhi2tBM5nNrlLTjY2jZ1q4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUwNzA2MjEwMTM5WhcNMjUwNzA3MjEwMTM5WjAzMTEwLwYDVQQD Eyg2YzdlM2NmNDNlYjBkYzgwNDdiMWZjMGU4NmVmODUwZTQxMDViMWJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1O7vlhfD9kJ5xyuiKZPu5+7VI9Yz 3nrH3Ukz+nSqv/Eh6Hmt73KMtoP+AgFkYbT8YQ2QfDVvDQuLL+1e76BLkt5ZihRW loVZDVv0hytwP5a7kXY1+88uQU3cB4cuqPYtPdblRMFDYYQHNb3ecbPthBk1wCFH uYSU5KOTlijqRrLI/hmvbm6ledjFGt8yq5Gbj50mD7xoiAKDVlWneOsqQHl/8QID 33ee+7Ncv8MaRx+COGcvhMRkLYBBoXJYISHwY7Iqi8QqH2S/jKebsIcheGblDT5C 6UW6JD5iMuXV8DR6ZpneqXvBniZm+SeZ69J0VzT/uNAGc7B3chyLowkUbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGx+PPQ+sNyAR7H8DobvhQ5BBbG9MB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASpJxPnq6 +pq3OINOrCp0Ypd8OCHHegTMjPiV9uSASXBGrxxFfZYGFrbwFwE6oal0fqsWEWta D78K+tUyWjvuJaFGsJLcoHCtkdB6334ny6SHnNKraJh1rx7FUmI7NE2ZU+rqXxNS 34scJ3R3igjoUtFAwCXbtk1PjrPwnnmNFxWg9+lvcvLaNQ9kQjqFtxqZ17OcyQiu 7hr5OVSXasPmU36HnHbtL/IT0abrCGClqTgQJCjwELAL49aIyqXZIMBV4IV1WwEj 5YuVcOMgZGRUVrIP9uuWk/5BKObMkZ3OFjXj16m2c5ZkllD8lukcF8updoLGRgSk oe4BJ061KOt68A== -----END CERTIFICATE-----Generated at Sun Jul 6 22:31:24 2025 by rpki-client