$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: /cCGLX18qolAxRz4YKCbpsdVjc/RDK7X4vInHsVVYMg= Subject key identifier: 91:D3:EA:ED:83:2B:48:3B:2F:93:90:0C:E7:29:1D:6A:55:FF:87:D9 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019D61982ED5792887F86C82FB66CAA3BD70 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 10F2 Signing time: Mon 06 Apr 2026 07:00:56 +0000 Manifest this update: Mon 06 Apr 2026 07:00:56 +0000 Manifest next update: Tue 07 Apr 2026 07:00:56 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: 2bAtGeoR1qNVzWY9+yUgB+eZGmTVUrnttBMrQtVoiFQ=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 07 Apr 2026 01:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:61:98:2e:d5:79:28:87:f8:6c:82:fb:66:ca:a3:bd:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Apr 6 07:00:56 2026 GMT Not After : Apr 7 07:00:56 2026 GMT Subject: CN=91d3eaed832b483b2f93900ce7291d6a55ff87d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:6a:65:58:ab:c0:ae:fa:d4:2f:e1:ed:01:69: 8f:46:df:3b:39:73:f6:83:fb:ae:d3:70:64:a7:0d: db:a8:c7:3d:c0:14:2f:4d:96:07:10:e4:da:47:fc: 2d:70:3e:12:c3:39:18:f3:c9:6e:0d:a4:b3:e3:27: d9:3b:71:10:02:fc:30:f6:9f:58:9a:fe:4e:8a:63: f4:c7:84:7e:cf:bd:b9:e8:e8:c9:0b:46:ca:21:69: 43:e9:79:1f:34:bc:64:f8:66:7f:40:8b:8b:ea:b2: 53:b3:72:4f:1a:d5:d0:29:2b:c9:ec:48:0f:ee:52: 78:80:21:f1:c8:c5:49:36:37:ff:bf:b0:58:a2:21: f4:97:d8:75:62:68:99:af:78:39:ea:f1:7b:57:42: bb:2d:b3:08:06:70:a9:7b:b0:da:c4:61:66:55:99: c7:d3:7a:0d:20:3a:a2:10:0d:07:0d:f0:77:e4:38: 22:79:a6:00:88:bf:41:47:02:4b:27:2a:dd:32:c9: 42:c3:dd:67:60:d3:b2:85:98:95:93:cb:97:f0:22: db:0a:8d:5b:48:64:cd:16:1f:5a:23:da:ba:0c:a5: a3:4e:1a:d0:81:4c:fa:45:09:85:34:76:7e:05:a4: 81:21:a8:1d:80:66:bb:60:e3:13:55:ef:63:5b:dc: 39:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:D3:EA:ED:83:2B:48:3B:2F:93:90:0C:E7:29:1D:6A:55:FF:87:D9 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:47:63:e5:41:11:ba:a3:bc:e5:54:3f:1c:78:a6:aa:34:6c: 4c:2e:f6:43:5e:53:75:21:b9:2c:cb:53:eb:60:d4:0b:5b:e7: a2:7d:39:52:50:5e:26:8a:ba:dc:5d:bf:4a:71:bf:9a:b1:7a: ab:e8:9f:6f:97:8d:eb:fc:89:65:f7:af:6d:41:8f:2f:e5:b5: 16:83:e1:e9:94:c5:cc:c8:66:fc:98:d3:27:ba:97:b5:f4:97: 95:a1:2b:75:bc:1d:07:62:68:d5:7b:5b:b2:c1:52:23:3f:57: cc:00:5f:18:83:f3:a1:6d:39:41:a7:c3:74:e7:d6:70:47:64: 6e:40:3b:15:59:2c:ec:38:87:3b:28:7c:77:23:c4:38:12:e6: 61:3c:d1:10:9d:4c:5e:fd:a8:4f:0f:99:df:0c:bc:18:4f:bd: 20:02:37:9b:03:9d:53:71:d2:06:32:89:bd:79:8e:bb:71:e1: aa:9d:db:45:60:6f:6a:c8:24:dd:c1:67:b1:22:22:c2:a9:30: 28:77:02:70:66:fe:57:9d:91:64:78:0a:f3:6c:ad:a2:39:0f: 9e:ca:cf:ba:f2:d1:49:0f:d7:22:d9:ff:9a:2a:fe:f9:e7:4d: 88:7e:74:35:70:89:84:08:00:2e:f0:a4:d3:bf:ba:1c:3a:75: ae:2a:94:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ1hmC7VeSiH+GyC+2bKo71wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwNDA2MDcwMDU2WhcNMjYwNDA3MDcwMDU2WjAzMTEwLwYDVQQD Eyg5MWQzZWFlZDgzMmI0ODNiMmY5MzkwMGNlNzI5MWQ2YTU1ZmY4N2Q5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl2plWKvArvrUL+HtAWmPRt87OXP2 g/uu03Bkpw3bqMc9wBQvTZYHEOTaR/wtcD4SwzkY88luDaSz4yfZO3EQAvww9p9Y mv5OimP0x4R+z7256OjJC0bKIWlD6XkfNLxk+GZ/QIuL6rJTs3JPGtXQKSvJ7EgP 7lJ4gCHxyMVJNjf/v7BYoiH0l9h1YmiZr3g56vF7V0K7LbMIBnCpe7DaxGFmVZnH 03oNIDqiEA0HDfB35DgieaYAiL9BRwJLJyrdMslCw91nYNOyhZiVk8uX8CLbCo1b SGTNFh9aI9q6DKWjThrQgUz6RQmFNHZ+BaSBIagdgGa7YOMTVe9jW9w5NwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJHT6u2DK0g7L5OQDOcpHWpV/4fZMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUUdj5UER uqO85VQ/HHimqjRsTC72Q15TdSG5LMtT62DUC1vnon05UlBeJoq63F2/SnG/mrF6 q+ifb5eN6/yJZfevbUGPL+W1FoPh6ZTFzMhm/JjTJ7qXtfSXlaErdbwdB2Jo1Xtb ssFSIz9XzABfGIPzoW05QafDdOfWcEdkbkA7FVks7DiHOyh8dyPEOBLmYTzREJ1M Xv2oTw+Z3wy8GE+9IAI3mwOdU3HSBjKJvXmOu3Hhqp3bRWBvasgk3cFnsSIiwqkw KHcCcGb+V52RZHgK82ytojkPnsrPuvLRSQ/XItn/mir++edNiH50NXCJhAgALvCk 07+6HDp1riqU3A== -----END CERTIFICATE-----Generated at Mon Apr 6 10:38:18 2026 by rpki-client