$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: TZnYpFvxjXRRDZFtkPvxFJ3CjAv0vTVs4zx1+T7sNuY= Subject key identifier: 8C:06:77:9B:D1:21:F8:12:99:03:05:8D:EE:43:86:98:55:B3:15:E6 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019CD2AF8189E54060B075687C189E4717FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 10A8 Signing time: Mon 09 Mar 2026 13:00:43 +0000 Manifest this update: Mon 09 Mar 2026 13:00:43 +0000 Manifest next update: Tue 10 Mar 2026 13:00:43 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: JXZ/xb9ZSDk/dXYWkh+yWC8yg0oCKKlE0V+zEcPQKCA=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Mar 2026 13:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:d2:af:81:89:e5:40:60:b0:75:68:7c:18:9e:47:17:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Mar 9 13:00:43 2026 GMT Not After : Mar 10 13:00:43 2026 GMT Subject: CN=8c06779bd121f8129903058dee43869855b315e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:21:4d:2b:53:3a:5a:14:d0:a7:ab:ed:12:36: 6c:5a:f3:5a:4f:a5:2f:1c:be:21:18:ea:57:50:13: b7:0e:ff:6c:90:41:c9:c4:f6:f4:65:d3:ee:43:71: d4:27:8c:f2:66:9a:c5:fd:64:b3:82:b4:98:af:0d: 9e:28:1c:26:63:01:4f:f5:9b:0f:68:46:90:34:d6: a0:2b:d8:ad:58:87:f4:34:c3:30:3a:ee:1f:61:f4: 44:7b:80:91:6f:92:97:24:29:c1:7f:e3:49:20:46: 9a:3d:1f:eb:10:77:7f:b1:7f:7b:b6:fc:80:f9:ed: 75:e0:f1:d0:1f:70:8e:a0:d8:ea:a8:d7:f1:7f:55: ab:73:f6:a7:8b:66:c4:f6:fa:11:9c:50:74:9a:96: 71:c9:b1:1f:ac:be:bb:18:bb:73:04:31:bb:a4:a7: bd:93:3a:fd:a2:2b:59:db:78:c5:a2:fc:5d:92:d5: e6:24:5c:f1:74:6e:1d:3b:55:4b:0f:81:ed:29:ce: ed:cc:0b:7a:69:dd:73:06:7a:75:9f:e3:f0:db:20: ad:59:f5:1d:7d:83:a7:c0:a7:07:06:6f:95:f2:eb: 24:53:dd:8f:f7:d9:d6:a5:4d:79:44:00:08:fa:dd: fa:2b:e0:2e:b1:bc:58:5b:af:10:c7:b0:08:37:f8: 5f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:06:77:9B:D1:21:F8:12:99:03:05:8D:EE:43:86:98:55:B3:15:E6 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:75:3f:d6:8f:ba:45:fc:b6:ae:7c:bd:6d:9f:d3:d6:f7:ae: cc:92:a3:77:57:92:df:e9:35:06:b9:d5:1b:2d:1c:eb:65:d0: 3d:b9:98:e4:11:5a:0c:df:c3:a3:f1:0b:d6:f1:37:f8:4f:c8: 7d:14:4c:21:52:2e:7a:2d:5c:ff:f0:0e:cf:2e:6d:29:a1:f2: 0d:fc:dc:7f:bd:1a:c1:66:6a:3f:f6:be:8e:d4:b6:78:7d:b8: 08:9a:4b:89:84:22:b9:a8:52:51:57:26:0c:95:1c:ed:c5:1e: 23:30:ec:03:ae:bf:60:68:0e:8d:07:4d:b1:48:b4:ab:6a:09: 98:8a:c8:4d:20:a4:50:7c:36:9f:2b:7a:2f:28:61:93:10:27: c3:e0:9c:34:f9:2d:41:b0:2a:7e:de:ac:53:65:1d:a1:61:f2: 16:ce:1d:d1:d1:75:2d:21:94:75:9e:b3:7b:fd:be:1d:62:aa: 21:5b:66:2e:66:39:9f:d0:60:e7:31:95:09:4b:a0:f5:e4:fa: 15:ec:23:4c:b9:7c:fb:0c:24:1a:e1:fb:14:a1:39:88:39:07: 0e:a3:b8:94:19:a4:f1:7e:be:8d:20:d0:e9:13:f4:a3:ff:69: c0:65:58:43:7a:dd:9e:2a:54:be:50:b6:39:2a:c2:dc:ec:7d: 29:ab:d3:0e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZzSr4GJ5UBgsHVofBieRxf6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMzA5MTMwMDQzWhcNMjYwMzEwMTMwMDQzWjAzMTEwLwYDVQQD Eyg4YzA2Nzc5YmQxMjFmODEyOTkwMzA1OGRlZTQzODY5ODU1YjMxNWU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2SFNK1M6WhTQp6vtEjZsWvNaT6Uv HL4hGOpXUBO3Dv9skEHJxPb0ZdPuQ3HUJ4zyZprF/WSzgrSYrw2eKBwmYwFP9ZsP aEaQNNagK9itWIf0NMMwOu4fYfREe4CRb5KXJCnBf+NJIEaaPR/rEHd/sX97tvyA +e114PHQH3COoNjqqNfxf1Wrc/ani2bE9voRnFB0mpZxybEfrL67GLtzBDG7pKe9 kzr9oitZ23jFovxdktXmJFzxdG4dO1VLD4HtKc7tzAt6ad1zBnp1n+Pw2yCtWfUd fYOnwKcHBm+V8uskU92P99nWpU15RAAI+t36K+AusbxYW68Qx7AIN/hf4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIwGd5vRIfgSmQMFje5DhphVsxXmMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXXU/1o+6 Rfy2rny9bZ/T1veuzJKjd1eS3+k1BrnVGy0c62XQPbmY5BFaDN/Do/EL1vE3+E/I fRRMIVIuei1c//AOzy5tKaHyDfzcf70awWZqP/a+jtS2eH24CJpLiYQiuahSUVcm DJUc7cUeIzDsA66/YGgOjQdNsUi0q2oJmIrITSCkUHw2nyt6LyhhkxAnw+CcNPkt QbAqft6sU2UdoWHyFs4d0dF1LSGUdZ6ze/2+HWKqIVtmLmY5n9Bg5zGVCUug9eT6 FewjTLl8+wwkGuH7FKE5iDkHDqO4lBmk8X6+jSDQ6RP0o/9pwGVYQ3rdnipUvlC2 OSrC3Ox9KavTDg== -----END CERTIFICATE-----Generated at Mon Mar 9 22:04:01 2026 by rpki-client