$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: n+v7EqYVf8VSjapmZYtpTS+ZApMg+OyZqTHvqXzyeiY= Subject key identifier: 4E:D5:95:86:49:15:3E:41:83:7B:2D:2A:7E:E3:6B:A2:E6:C5:23:B5 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019DA3E67413BF27240F7FD81CB9AFF8147F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 1116 Signing time: Sun 19 Apr 2026 04:01:22 +0000 Manifest this update: Sun 19 Apr 2026 04:01:22 +0000 Manifest next update: Mon 20 Apr 2026 04:01:22 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: b5z3mIOEnMBHL9mnOGXXE7udrYWECO52vndanoiZOao=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 10: qOS44k4K1WSKtUKGLEhRxJxPEas.roa (hash: FW03t2tk2X1t0JN65p0CDI9DvEztasvMAKi+nwmwwnw=) 11: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Apr 2026 04:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:a3:e6:74:13:bf:27:24:0f:7f:d8:1c:b9:af:f8:14:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Apr 19 04:01:22 2026 GMT Not After : Apr 20 04:01:22 2026 GMT Subject: CN=4ed5958649153e41837b2d2a7ee36ba2e6c523b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b7:e3:5a:9c:f3:3c:89:42:b7:8e:c4:80:58: c9:b0:85:2d:e0:d6:e8:c2:fc:18:4b:cd:15:df:45: 08:aa:22:23:20:ed:e7:88:af:c6:e7:69:c3:7b:5b: 7f:0f:f7:79:ce:6b:3b:26:3d:28:d3:c1:e5:0b:d2: 63:8c:e5:7b:6f:32:d1:f4:ee:a4:0e:b4:a1:7e:dc: d2:2e:1f:51:02:5c:50:67:a8:f9:f9:8e:76:24:eb: 28:21:c3:40:17:ec:0b:f8:79:6a:46:c1:ff:17:6f: 7c:34:8e:95:ca:ce:1e:8b:3d:95:32:27:75:05:19: 04:cd:38:82:8a:32:36:cb:e5:aa:e7:a1:9c:7a:2d: 3d:2c:25:01:5d:cc:06:f9:46:0f:ea:fb:b6:33:6a: 87:b7:9f:92:39:98:28:06:46:ef:4b:d8:a4:41:41: e3:ea:1d:8c:a2:a3:57:ff:69:77:fe:9c:b0:c9:5c: de:42:dd:16:0f:f7:fc:98:35:66:7c:ad:21:f3:e2: d7:de:df:7c:c1:d6:f6:12:8e:d4:de:b1:bb:a0:9b: de:ef:85:c4:41:e2:c1:f8:18:d8:d6:d1:40:8c:a0: d6:cc:d2:77:b6:ac:c8:d8:fe:cf:09:a4:00:ad:29: 29:1d:40:b1:e1:c8:ad:8c:84:59:d8:34:37:44:cc: e8:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:D5:95:86:49:15:3E:41:83:7B:2D:2A:7E:E3:6B:A2:E6:C5:23:B5 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:ad:94:a6:11:53:c0:8e:02:ba:d4:57:68:e2:35:2a:23:09: ba:0a:2d:64:be:81:25:5f:5e:70:cf:47:72:fd:7e:2e:92:1b: b8:9c:cd:0a:fe:01:79:46:cb:fb:80:69:51:fe:54:d3:a1:11: e6:91:c1:a0:77:34:7c:23:ed:86:7e:22:79:f0:fd:6e:6d:64: 0c:ed:24:2e:10:76:6a:6a:75:19:fa:e7:14:d7:1a:11:3e:28: a8:10:02:01:a8:91:03:fc:fe:ed:5c:5c:67:28:be:20:51:3a: 2c:0d:a4:8e:d1:e8:ef:2c:d2:46:7d:5f:39:e0:fa:6b:3a:e2: 1d:ca:b0:92:fc:bd:f6:51:8d:7e:2d:e5:88:74:01:20:94:19: b2:39:4d:21:ca:1a:40:10:bf:82:67:86:df:b6:42:29:46:c1: d6:e5:87:2e:2e:5c:71:7d:a6:06:f8:ee:d2:12:c2:53:db:ab: a2:56:8d:a9:21:d4:e1:4c:80:9a:75:ca:1d:be:4b:87:83:82: db:8d:92:40:43:7a:ad:e1:b3:fc:3f:31:a4:ce:27:48:e0:e3: 39:ca:04:51:04:15:c1:3c:e8:de:c2:03:b0:08:5c:95:68:11: 7d:34:ac:b5:79:9d:db:93:24:de:36:09:06:fb:b8:c1:10:f6: 2c:bf:0b:df -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2j5nQTvyckD3/YHLmv+BR/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwNDE5MDQwMTIyWhcNMjYwNDIwMDQwMTIyWjAzMTEwLwYDVQQD Eyg0ZWQ1OTU4NjQ5MTUzZTQxODM3YjJkMmE3ZWUzNmJhMmU2YzUyM2I1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArrfjWpzzPIlCt47EgFjJsIUt4Nbo wvwYS80V30UIqiIjIO3niK/G52nDe1t/D/d5zms7Jj0o08HlC9JjjOV7bzLR9O6k DrShftzSLh9RAlxQZ6j5+Y52JOsoIcNAF+wL+HlqRsH/F298NI6Vys4eiz2VMid1 BRkEzTiCijI2y+Wq56Gcei09LCUBXcwG+UYP6vu2M2qHt5+SOZgoBkbvS9ikQUHj 6h2MoqNX/2l3/pywyVzeQt0WD/f8mDVmfK0h8+LX3t98wdb2Eo7U3rG7oJve74XE QeLB+BjY1tFAjKDWzNJ3tqzI2P7PCaQArSkpHUCx4citjIRZ2DQ3RMzo6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE7VlYZJFT5Bg3stKn7ja6LmxSO1MB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqK2UphFT wI4CutRXaOI1KiMJugotZL6BJV9ecM9Hcv1+LpIbuJzNCv4BeUbL+4BpUf5U06ER 5pHBoHc0fCPthn4iefD9bm1kDO0kLhB2amp1GfrnFNcaET4oqBACAaiRA/z+7Vxc Zyi+IFE6LA2kjtHo7yzSRn1fOeD6azriHcqwkvy99lGNfi3liHQBIJQZsjlNIcoa QBC/gmeG37ZCKUbB1uWHLi5ccX2mBvju0hLCU9urolaNqSHU4UyAmnXKHb5Lh4OC 242SQEN6reGz/D8xpM4nSODjOcoEUQQVwTzo3sIDsAhclWgRfTSstXmd25Mk3jYJ Bvu4wRD2LL8L3w== -----END CERTIFICATE-----Generated at Sun Apr 19 14:42:26 2026 by rpki-client