$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: VNra79ur6B81RvL5iDboHfhwqu4JQfUFCIEG1ZbLvIw= Subject key identifier: 0A:33:39:7D:30:7B:0A:F6:58:A3:D9:98:FA:6F:5E:2D:8E:8F:AF:5B Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019A8651018FCCBE1B13259B35544520D0F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0F70 Signing time: Sat 15 Nov 2025 07:00:46 +0000 Manifest this update: Sat 15 Nov 2025 07:00:46 +0000 Manifest next update: Sun 16 Nov 2025 07:00:46 +0000 Files and hashes: 1: 0qafQTKpUINoCVOYOkW5UnOWR94.roa (hash: MusUL5944aEPud+AesWo0c3hbkne3BfD5w+aqIADrZU=) 2: 3BwQGvtGG9EzTodyzZ_T_NlKH8c.roa (hash: 3YVq+Q3Pxf3bX0RyqLEPepY9xeWnJNOauq8KUa99lAY=) 3: 3jf0qN8pQHNEeZXSK9GB9T1D4_E.roa (hash: DRAm1n/nD8B8BQj+jf77wLhiQpGtxWx72r8uwhAFjaU=) 4: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 5: 89lMNrhD2F5x0Ke_v2bBXPEQYgU.roa (hash: K5oebEL4UYGbpI6omznf50HWdMyeoL9B3ezd2prsxV4=) 6: E_3-qae-50qWA7R56c8VnNml0ZU.roa (hash: nkgMixGbN46lHgT97kcU8QjXRmEi7iabVPw78zf1uq4=) 7: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 8: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: NDdrVty4vzwYGDPs8E/rcvb0y34v9pJXDyh8Zuzn6HI=) 9: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 10: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 11: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 12: jFuP-GeZY6Z37SVSGqClEWTPyy4.roa (hash: 65ZwPuCoL1Qqn8JPgxAd7UOuJekWTxCoLNYfjh3KVJo=) 13: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) 14: vmyAzNx7YC2gCU3FErnhSsG464E.roa (hash: b2H/65WWZwau4OQRXdpkdBOUisTMki5wQZ0WO+I8q90=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 16 Nov 2025 01:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:86:51:01:8f:cc:be:1b:13:25:9b:35:54:45:20:d0:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Nov 15 07:00:46 2025 GMT Not After : Nov 16 07:00:46 2025 GMT Subject: CN=0a33397d307b0af658a3d998fa6f5e2d8e8faf5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:57:f5:22:0b:c7:a8:50:10:89:d3:d4:57:fd: 0c:07:09:bb:6a:57:6e:e0:bf:e0:51:e5:b0:34:5b: 00:0d:52:04:42:f7:66:13:50:ee:5d:f1:42:f7:37: 2b:e0:c5:c7:3e:b2:bb:ea:3b:40:75:ec:60:f5:79: 21:7a:c7:23:20:44:48:19:ba:e1:0a:13:e3:7c:36: 01:8d:ca:61:f8:5f:f7:59:5a:a9:84:df:8c:08:49: db:d8:3c:02:a9:ae:d6:64:b3:7f:36:58:34:ec:49: d5:4a:c1:4e:db:98:a2:66:40:3c:89:12:0e:0f:6f: 7f:9c:b7:f8:3d:7c:0f:96:f8:f5:0f:da:54:28:05: 87:c0:2b:78:e7:b4:7c:13:f9:16:90:11:b3:cb:00: 04:6b:58:41:ba:12:c7:b7:8e:9b:4f:66:1b:02:19: 7c:f1:5c:72:35:91:1b:fb:c5:97:89:6f:9d:1c:9f: e2:0c:9e:d4:f2:c4:10:55:30:c1:9a:2c:57:05:26: 04:e9:12:3a:87:4f:a0:c6:e9:f9:9b:b6:bb:4b:e3: dc:ed:64:8b:d7:52:45:34:e6:eb:41:af:26:ef:14: cf:ef:37:53:48:e7:8d:91:e2:61:9c:f0:3b:79:02: 12:3e:2a:0e:56:e8:61:56:8f:92:aa:be:95:2b:fe: 5a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:33:39:7D:30:7B:0A:F6:58:A3:D9:98:FA:6F:5E:2D:8E:8F:AF:5B X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:3b:b3:b2:60:50:77:0f:6e:ca:54:06:8a:5c:e9:96:4d:da: 04:a0:66:02:c6:7f:bb:a0:dd:e6:81:81:7e:f4:01:b6:ab:dc: 61:2c:fa:aa:ed:75:6f:29:59:89:0b:14:09:cf:f3:c4:3a:8f: b7:2b:08:55:b0:51:d7:36:c2:36:fc:57:c4:8d:56:40:58:cf: a9:fa:a2:ea:00:1a:cb:b2:ba:b5:e0:b6:6f:36:29:39:b7:48: 7b:39:25:e9:1d:40:1f:77:28:f0:1f:18:1f:e1:91:3e:5a:2c: 10:cd:03:cb:8e:a5:93:89:b3:a6:ee:e3:fe:77:b5:30:fc:49: c3:43:bd:4c:bc:25:3f:33:1a:0a:6c:01:c1:cb:33:e8:a5:07: 31:78:2a:cd:cc:c3:0a:47:f4:5c:0c:40:8e:1f:a4:5a:86:bb: 75:a8:27:7b:53:05:1c:02:ed:8e:05:e7:46:28:64:f8:49:02: 6f:41:1c:4d:5c:35:34:8e:b5:37:76:c0:d3:c1:5c:71:df:b4: 48:a2:bb:fb:22:c0:28:65:13:71:73:84:6a:c7:ca:d7:d3:d1: c6:0d:f9:6b:78:fe:a3:10:63:be:8f:f1:cc:4f:85:0d:d5:a7: 2e:ff:e5:9c:a5:0e:f3:5e:e5:d8:75:53:2d:ac:09:4c:5e:70: 0d:88:ac:fe -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZqGUQGPzL4bEyWbNVRFINDzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUxMTE1MDcwMDQ2WhcNMjUxMTE2MDcwMDQ2WjAzMTEwLwYDVQQD EygwYTMzMzk3ZDMwN2IwYWY2NThhM2Q5OThmYTZmNWUyZDhlOGZhZjViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzlf1IgvHqFAQidPUV/0MBwm7aldu 4L/gUeWwNFsADVIEQvdmE1DuXfFC9zcr4MXHPrK76jtAdexg9XkhescjIERIGbrh ChPjfDYBjcph+F/3WVqphN+MCEnb2DwCqa7WZLN/Nlg07EnVSsFO25iiZkA8iRIO D29/nLf4PXwPlvj1D9pUKAWHwCt457R8E/kWkBGzywAEa1hBuhLHt46bT2YbAhl8 8VxyNZEb+8WXiW+dHJ/iDJ7U8sQQVTDBmixXBSYE6RI6h0+gxun5m7a7S+Pc7WSL 11JFNObrQa8m7xTP7zdTSOeNkeJhnPA7eQISPioOVuhhVo+Sqr6VK/5aWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAozOX0wewr2WKPZmPpvXi2Oj69bMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUjuzsmBQ dw9uylQGilzplk3aBKBmAsZ/u6Dd5oGBfvQBtqvcYSz6qu11bylZiQsUCc/zxDqP tysIVbBR1zbCNvxXxI1WQFjPqfqi6gAay7K6teC2bzYpObdIezkl6R1AH3co8B8Y H+GRPlosEM0Dy46lk4mzpu7j/ne1MPxJw0O9TLwlPzMaCmwBwcsz6KUHMXgqzczD Ckf0XAxAjh+kWoa7dagne1MFHALtjgXnRihk+EkCb0EcTVw1NI61N3bA08Fccd+0 SKK7+yLAKGUTcXOEasfK19PRxg35a3j+oxBjvo/xzE+FDdWnLv/lnKUO817l2HVT LawJTF5wDYis/g== -----END CERTIFICATE-----Generated at Sat Nov 15 08:26:30 2025 by rpki-client