$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: XaNjqHit3TMTYzJcyOR2RwaJ0hCGyLW0GIsfmv13Mc8= Subject key identifier: 79:EB:09:E5:4C:EB:24:E1:3B:2F:49:D4:BB:46:CC:67:76:A6:06:DD Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019CDA690672AC7D5C3D31D2E672DDE27E91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 10AC Signing time: Wed 11 Mar 2026 01:00:41 +0000 Manifest this update: Wed 11 Mar 2026 01:00:41 +0000 Manifest next update: Thu 12 Mar 2026 01:00:41 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: eALEuOa5hb/i3/nfHrd+9aMRThicdLzkz0OZYD1LKkY=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 12 Mar 2026 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:da:69:06:72:ac:7d:5c:3d:31:d2:e6:72:dd:e2:7e:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Mar 11 01:00:41 2026 GMT Not After : Mar 12 01:00:41 2026 GMT Subject: CN=79eb09e54ceb24e13b2f49d4bb46cc6776a606dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:71:9f:b0:86:80:63:8f:a0:56:1f:7f:c8:b8: 95:89:ef:19:73:f3:a7:c3:16:22:46:98:85:4b:0d: b6:00:a8:56:12:3b:5a:99:b4:62:e7:42:4c:4d:00: fa:ac:41:d9:f2:38:cf:db:80:64:df:de:10:37:8e: 8b:2a:c5:bb:72:85:47:80:03:8d:ff:14:a6:40:a2: 12:fe:d8:6b:8d:29:42:ff:6b:5f:41:d5:a0:2f:37: b8:cf:80:e4:39:b1:00:7b:a2:be:14:78:ca:51:90: a7:d5:8c:0d:1f:23:39:d2:57:c8:28:55:31:52:cc: 65:94:57:a4:3f:1d:b0:f2:d4:51:57:0e:9b:58:ec: 9d:a6:f4:d1:de:b1:e0:80:4f:87:e2:e0:f3:de:f8: 86:2e:3e:61:a6:9f:89:3a:64:f0:51:2a:86:b2:ba: 19:df:6c:0e:6a:f8:81:63:4f:3a:d9:64:2c:e6:b3: 08:f3:2a:01:51:19:24:c1:aa:5c:fe:b5:f1:77:d0: e0:d4:a4:03:44:81:d1:50:8b:a1:31:d8:55:90:37: d4:52:c4:85:c1:45:95:bf:3c:b2:b8:44:83:63:16: 24:08:f8:14:6f:60:c7:3b:8d:79:f9:25:75:4d:c1: 51:98:ad:f4:1f:13:62:65:fe:fc:ad:9a:3f:66:42: 6f:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:EB:09:E5:4C:EB:24:E1:3B:2F:49:D4:BB:46:CC:67:76:A6:06:DD X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:70:66:8d:c4:58:e7:23:04:09:d0:a9:8a:9a:60:00:06:31: 0c:0f:e1:b6:6a:b2:2a:d5:72:26:06:1b:56:1f:b2:51:ff:4d: 3d:6b:cc:11:1e:19:c4:b5:10:60:88:92:57:fe:0b:44:46:52: bf:d3:98:4c:84:03:b6:27:32:9d:6f:cb:f4:ad:66:44:2b:f9: 8f:72:66:17:fb:aa:ec:d4:7d:7c:2e:78:ef:37:70:54:27:38: 55:a9:75:42:1e:b6:46:10:31:ae:20:33:3b:03:75:08:59:e8: 04:e2:77:7b:f4:7f:19:aa:cd:f0:f7:a9:da:0b:23:7d:b3:76: 85:e0:8e:90:0e:cd:5d:70:52:3b:7b:16:78:58:ec:c4:78:e4: 4c:6a:75:bd:bc:0c:a3:f1:d1:e5:45:7c:bf:ac:78:83:aa:41: 25:8a:4e:b9:37:a7:23:53:d5:f9:6a:6b:32:b9:c2:2c:a1:ba: 89:9d:2d:b0:48:05:59:b7:90:5c:39:95:71:e0:79:d4:de:35: 6d:20:03:4f:32:b2:8f:9d:47:24:7a:0f:31:16:62:24:dc:c9: 10:ee:af:da:3d:56:3e:62:31:68:6d:11:ee:dc:7a:5c:e7:5b: aa:3d:b0:64:33:b8:82:f3:8f:23:bf:fb:52:7d:25:4e:39:6d: 8e:20:5a:62 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZzaaQZyrH1cPTHS5nLd4n6RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMzExMDEwMDQxWhcNMjYwMzEyMDEwMDQxWjAzMTEwLwYDVQQD Eyg3OWViMDllNTRjZWIyNGUxM2IyZjQ5ZDRiYjQ2Y2M2Nzc2YTYwNmRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2HGfsIaAY4+gVh9/yLiVie8Zc/On wxYiRpiFSw22AKhWEjtambRi50JMTQD6rEHZ8jjP24Bk394QN46LKsW7coVHgAON /xSmQKIS/thrjSlC/2tfQdWgLze4z4DkObEAe6K+FHjKUZCn1YwNHyM50lfIKFUx UsxllFekPx2w8tRRVw6bWOydpvTR3rHggE+H4uDz3viGLj5hpp+JOmTwUSqGsroZ 32wOaviBY0862WQs5rMI8yoBURkkwapc/rXxd9Dg1KQDRIHRUIuhMdhVkDfUUsSF wUWVvzyyuESDYxYkCPgUb2DHO415+SV1TcFRmK30HxNiZf78rZo/ZkJvqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHnrCeVM6yThOy9J1LtGzGd2pgbdMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPnBmjcRY 5yMECdCpippgAAYxDA/htmqyKtVyJgYbVh+yUf9NPWvMER4ZxLUQYIiSV/4LREZS v9OYTIQDticynW/L9K1mRCv5j3JmF/uq7NR9fC547zdwVCc4Val1Qh62RhAxriAz OwN1CFnoBOJ3e/R/GarN8Pep2gsjfbN2heCOkA7NXXBSO3sWeFjsxHjkTGp1vbwM o/HR5UV8v6x4g6pBJYpOuTenI1PV+WprMrnCLKG6iZ0tsEgFWbeQXDmVceB51N41 bSADTzKyj51HJHoPMRZiJNzJEO6v2j1WPmIxaG0R7tx6XOdbqj2wZDO4gvOPI7/7 Un0lTjltjiBaYg== -----END CERTIFICATE-----Generated at Wed Mar 11 09:17:00 2026 by rpki-client