$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: TpIWFqyYqf7fVvYfon9F1JBn0vuSUjWpJMJW7m1tznI= Subject key identifier: E0:5B:94:C1:AC:79:E3:3E:97:F0:A7:4C:A5:7D:D0:24:2D:3E:22:F0 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019D8ACB0BC7598D75A9E0B63AC7149D4F24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 1109 Signing time: Tue 14 Apr 2026 07:00:55 +0000 Manifest this update: Tue 14 Apr 2026 07:00:55 +0000 Manifest next update: Wed 15 Apr 2026 07:00:55 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: CdcLYW0EzgT/uUxHuTPDBXhPGDUoCO+gQ0zJg+WEfME=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 10: qOS44k4K1WSKtUKGLEhRxJxPEas.roa (hash: FW03t2tk2X1t0JN65p0CDI9DvEztasvMAKi+nwmwwnw=) 11: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 14 Apr 2026 23:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:8a:cb:0b:c7:59:8d:75:a9:e0:b6:3a:c7:14:9d:4f:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Apr 14 07:00:55 2026 GMT Not After : Apr 15 07:00:55 2026 GMT Subject: CN=e05b94c1ac79e33e97f0a74ca57dd0242d3e22f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9b:65:5f:58:45:53:cd:3d:5c:16:52:e7:3a: f6:92:da:a6:e9:8b:a2:dd:ed:29:95:a5:e3:c6:14: e8:6f:d4:01:42:5c:b6:01:cf:e2:bc:2f:9f:44:40: 61:ea:56:51:d8:08:e5:0e:37:c1:46:b6:30:c4:12: 00:ad:20:eb:40:49:b6:60:ce:de:30:b4:c8:b8:f5: c6:fd:d3:83:da:bc:95:05:59:eb:22:db:33:62:bb: 6f:5c:0c:ca:59:66:2c:b3:99:55:65:d3:e2:c3:1a: 62:8f:38:58:7d:9a:e7:97:fc:72:f6:ef:2e:a2:0b: 6d:bd:07:4e:ac:3a:50:c3:91:a4:c1:c8:2e:1b:ac: a1:44:7d:8a:73:cc:91:3a:20:1f:92:c2:f7:15:d1: 4a:e4:67:f4:7d:3c:b2:87:ad:cb:a5:ec:3e:c1:c9: da:06:9d:4c:38:7c:d4:59:98:f0:0b:6e:d8:7f:fe: 66:1f:eb:c7:f2:79:b6:7a:6f:db:17:c4:83:18:25: cf:d5:91:a8:7f:57:ab:0e:57:68:69:56:72:0f:b4: 7b:fe:3b:a5:0e:78:d9:b0:a2:16:3e:c1:11:d8:91: f5:fc:b7:b0:17:36:1c:fb:2c:2d:ee:0a:d3:38:af: 53:6b:eb:00:28:74:5d:08:67:5c:cd:75:b1:b7:14: 5e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:5B:94:C1:AC:79:E3:3E:97:F0:A7:4C:A5:7D:D0:24:2D:3E:22:F0 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:66:ce:62:aa:93:6a:e2:68:0d:65:fe:d5:77:c9:dc:33:50: 1d:dc:01:df:b7:66:6f:61:7c:90:10:0e:ee:3b:69:2f:62:aa: af:78:16:56:21:d7:0a:01:b4:4f:7b:a2:3c:b5:73:ac:62:2f: a6:ee:18:c7:e6:f3:dd:e5:7b:3d:60:29:eb:ce:f9:fc:3a:bf: 1b:7d:37:7c:d6:f3:be:15:2a:1a:87:ea:3c:bf:42:6a:b8:8a: 6c:97:e2:21:08:e5:45:cd:42:72:15:60:3e:70:f6:d6:e2:a7: 7c:e0:d4:c6:b8:41:f7:38:7a:53:1a:a9:11:38:de:9b:a9:13: 45:ab:15:e6:be:3f:d7:11:a1:7e:91:7c:e1:58:ec:e4:33:88: 75:12:03:ab:ed:23:57:c4:18:76:d8:94:cd:94:a6:0f:4c:dc: c7:81:6f:71:57:a6:8f:6d:5f:99:14:33:e2:42:92:04:05:59: 6e:0e:6c:c3:31:b0:ef:55:48:c1:01:10:75:a3:0c:52:30:85: 6b:61:f3:50:5b:06:42:56:e7:93:c1:a4:b0:c4:02:dc:00:86: d0:af:93:87:50:1c:0d:e8:de:a9:2d:15:da:0d:69:20:fe:d6: e8:17:91:29:b6:04:13:bd:c7:62:f1:b3:dd:a1:90:e5:0a:cb: ea:d4:d2:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2KywvHWY11qeC2OscUnU8kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwNDE0MDcwMDU1WhcNMjYwNDE1MDcwMDU1WjAzMTEwLwYDVQQD EyhlMDViOTRjMWFjNzllMzNlOTdmMGE3NGNhNTdkZDAyNDJkM2UyMmYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwptlX1hFU809XBZS5zr2ktqm6Yui 3e0plaXjxhTob9QBQly2Ac/ivC+fREBh6lZR2AjlDjfBRrYwxBIArSDrQEm2YM7e MLTIuPXG/dOD2ryVBVnrItszYrtvXAzKWWYss5lVZdPiwxpijzhYfZrnl/xy9u8u ogttvQdOrDpQw5GkwcguG6yhRH2Kc8yROiAfksL3FdFK5Gf0fTyyh63Lpew+wcna Bp1MOHzUWZjwC27Yf/5mH+vH8nm2em/bF8SDGCXP1ZGof1erDldoaVZyD7R7/jul DnjZsKIWPsER2JH1/LewFzYc+ywt7grTOK9Ta+sAKHRdCGdczXWxtxRezQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOBblMGseeM+l/CnTKV90CQtPiLwMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK2bOYqqT auJoDWX+1XfJ3DNQHdwB37dmb2F8kBAO7jtpL2Kqr3gWViHXCgG0T3uiPLVzrGIv pu4Yx+bz3eV7PWAp6875/Dq/G303fNbzvhUqGofqPL9CariKbJfiIQjlRc1CchVg PnD21uKnfODUxrhB9zh6UxqpETjem6kTRasV5r4/1xGhfpF84Vjs5DOIdRIDq+0j V8QYdtiUzZSmD0zcx4FvcVemj21fmRQz4kKSBAVZbg5swzGw71VIwQEQdaMMUjCF a2HzUFsGQlbnk8GksMQC3ACG0K+Th1AcDejeqS0V2g1pIP7W6BeRKbYEE73HYvGz 3aGQ5QrL6tTSIQ== -----END CERTIFICATE-----Generated at Tue Apr 14 09:24:50 2026 by rpki-client