$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: J3aBm7X3adDz2It6y9gbD9RO4b8OSgjZaOyxRsJgPeo= Subject key identifier: CE:BF:0F:46:53:9D:9A:92:37:F0:9B:1A:B9:45:F2:7B:71:49:9B:E2 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019EC1B6F4F25438F763318240430B32167D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 11AA Signing time: Sat 13 Jun 2026 16:00:53 +0000 Manifest this update: Sat 13 Jun 2026 16:00:53 +0000 Manifest next update: Sun 14 Jun 2026 16:00:53 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: 1Zgxxfd6n+VK7hQKZuoPd9LFDNWa/NYSabBHskgroaY=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 10: qOS44k4K1WSKtUKGLEhRxJxPEas.roa (hash: FW03t2tk2X1t0JN65p0CDI9DvEztasvMAKi+nwmwwnw=) 11: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 16:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:c1:b6:f4:f2:54:38:f7:63:31:82:40:43:0b:32:16:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jun 13 16:00:53 2026 GMT Not After : Jun 14 16:00:53 2026 GMT Subject: CN=cebf0f46539d9a9237f09b1ab945f27b71499be2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e0:a3:92:60:05:7f:1a:6e:f7:3f:9e:07:14: 7c:3b:44:0e:0c:56:83:2e:fd:3e:83:11:6a:6a:03: ca:d6:bd:eb:24:ac:54:bb:28:d1:4c:ca:76:52:0e: c6:f6:5e:3a:9a:83:ad:9e:e8:f9:22:fe:f9:86:91: 94:9d:f8:a7:22:62:8f:72:52:0e:82:ff:b0:0b:34: 51:59:f2:04:ca:1d:1b:70:c5:0c:03:de:27:25:b4: 03:6b:d6:63:8c:82:d0:18:66:0f:c1:3a:ad:f5:1e: 77:b5:87:eb:fa:e0:8d:22:ac:64:5a:dd:45:f6:e2: 5b:14:3c:0d:74:45:43:4a:fd:24:3b:00:cf:b5:5b: d2:37:a5:a9:9d:e0:37:ee:79:9d:ac:c8:07:24:6a: 5f:c1:73:80:4a:71:18:10:c1:a1:13:b4:17:c5:bb: 2a:a2:d8:82:ba:e3:53:48:30:43:08:67:4d:34:a7: af:ad:96:11:04:68:95:6a:68:6a:25:ea:6c:7b:30: 55:b0:84:38:33:75:d6:7d:a0:e8:3b:de:74:e3:65: 5b:74:ef:08:77:09:d0:e2:bc:aa:74:41:92:54:48: ac:89:bd:f1:fb:00:e3:eb:00:f4:7e:70:ae:07:d5: e3:ec:10:ad:8d:3a:bd:4d:74:d6:4d:21:d5:34:bc: c9:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:BF:0F:46:53:9D:9A:92:37:F0:9B:1A:B9:45:F2:7B:71:49:9B:E2 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:59:b0:04:bf:f7:5b:c4:3d:1a:af:d2:a2:09:15:99:e4:67: 48:78:fd:aa:64:bf:36:69:97:1f:e5:99:ae:7f:5a:fd:b0:08: 8f:69:70:d2:7b:f2:48:34:a4:34:c4:99:41:cd:45:0d:de:93: 3b:02:ef:89:61:5e:56:5a:d9:82:cd:53:95:32:71:8d:f8:39: 9c:cf:ec:6b:c2:ce:ae:c5:8d:a0:f4:0d:c9:92:bb:ac:27:fb: 4c:65:36:1f:6c:df:0c:df:18:91:30:b2:03:36:ab:14:67:3f: d5:ba:bf:70:75:92:e8:c7:df:d6:5e:2c:f9:e5:a2:49:e2:2a: 39:e7:a7:df:69:ad:1d:81:d4:00:13:7d:4f:18:65:2a:e3:cc: d5:21:54:e8:32:6d:72:6c:44:c0:75:e9:3a:05:2a:b8:65:26: 34:f5:59:3f:27:37:a5:0a:39:03:27:5c:27:f0:97:67:77:6e: 37:08:e6:51:7b:4a:2c:55:f6:5e:0f:b1:f6:0f:11:81:9b:39: b7:d9:76:9f:8c:5a:1b:47:f2:ca:4b:e9:2b:5a:5a:34:69:b3: 41:25:5f:35:f9:91:04:6e:a5:a3:e3:4a:a1:7d:db:04:a9:f7: b5:73:90:2b:4d:3a:81:0b:cb:45:22:f8:3d:03:60:3c:3a:bc: de:03:be:4d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ7BtvTyVDj3YzGCQEMLMhZ9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwNjEzMTYwMDUzWhcNMjYwNjE0MTYwMDUzWjAzMTEwLwYDVQQD EyhjZWJmMGY0NjUzOWQ5YTkyMzdmMDliMWFiOTQ1ZjI3YjcxNDk5YmUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAseCjkmAFfxpu9z+eBxR8O0QODFaD Lv0+gxFqagPK1r3rJKxUuyjRTMp2Ug7G9l46moOtnuj5Iv75hpGUnfinImKPclIO gv+wCzRRWfIEyh0bcMUMA94nJbQDa9ZjjILQGGYPwTqt9R53tYfr+uCNIqxkWt1F 9uJbFDwNdEVDSv0kOwDPtVvSN6WpneA37nmdrMgHJGpfwXOASnEYEMGhE7QXxbsq otiCuuNTSDBDCGdNNKevrZYRBGiVamhqJepsezBVsIQ4M3XWfaDoO95042VbdO8I dwnQ4ryqdEGSVEisib3x+wDj6wD0fnCuB9Xj7BCtjTq9TXTWTSHVNLzJNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM6/D0ZTnZqSN/CbGrlF8ntxSZviMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATVmwBL/3 W8Q9Gq/SogkVmeRnSHj9qmS/NmmXH+WZrn9a/bAIj2lw0nvySDSkNMSZQc1FDd6T OwLviWFeVlrZgs1TlTJxjfg5nM/sa8LOrsWNoPQNyZK7rCf7TGU2H2zfDN8YkTCy AzarFGc/1bq/cHWS6Mff1l4s+eWiSeIqOeen32mtHYHUABN9TxhlKuPM1SFU6DJt cmxEwHXpOgUquGUmNPVZPyc3pQo5AydcJ/CXZ3duNwjmUXtKLFX2Xg+x9g8RgZs5 t9l2n4xaG0fyykvpK1paNGmzQSVfNfmRBG6lo+NKoX3bBKn3tXOQK006gQvLRSL4 PQNgPDq83gO+TQ== -----END CERTIFICATE-----Generated at Sat Jun 13 21:24:35 2026 by rpki-client