$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: N9b8M50/sSice6c2hLZBEfs+OvhNtoDJ28r6COM13p8= Subject key identifier: 43:61:D0:A1:AE:28:11:81:98:E7:15:78:CF:36:B7:17:E9:F4:8B:0F Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019A02FE46B30A214179161F6D48914757F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0F2C Signing time: Mon 20 Oct 2025 19:00:09 +0000 Manifest this update: Mon 20 Oct 2025 19:00:09 +0000 Manifest next update: Tue 21 Oct 2025 19:00:09 +0000 Files and hashes: 1: 0qafQTKpUINoCVOYOkW5UnOWR94.roa (hash: MusUL5944aEPud+AesWo0c3hbkne3BfD5w+aqIADrZU=) 2: 3BwQGvtGG9EzTodyzZ_T_NlKH8c.roa (hash: 3YVq+Q3Pxf3bX0RyqLEPepY9xeWnJNOauq8KUa99lAY=) 3: 3jf0qN8pQHNEeZXSK9GB9T1D4_E.roa (hash: DRAm1n/nD8B8BQj+jf77wLhiQpGtxWx72r8uwhAFjaU=) 4: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 5: 89lMNrhD2F5x0Ke_v2bBXPEQYgU.roa (hash: K5oebEL4UYGbpI6omznf50HWdMyeoL9B3ezd2prsxV4=) 6: E_3-qae-50qWA7R56c8VnNml0ZU.roa (hash: nkgMixGbN46lHgT97kcU8QjXRmEi7iabVPw78zf1uq4=) 7: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 8: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: Ls1uYOJq9AlRw3t8yq8a9GACJXfKjycNB/XeqPGWmLM=) 9: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 10: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 11: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 12: jFuP-GeZY6Z37SVSGqClEWTPyy4.roa (hash: 65ZwPuCoL1Qqn8JPgxAd7UOuJekWTxCoLNYfjh3KVJo=) 13: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) 14: vmyAzNx7YC2gCU3FErnhSsG464E.roa (hash: b2H/65WWZwau4OQRXdpkdBOUisTMki5wQZ0WO+I8q90=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 Oct 2025 19:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:02:fe:46:b3:0a:21:41:79:16:1f:6d:48:91:47:57:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Oct 20 19:00:09 2025 GMT Not After : Oct 21 19:00:09 2025 GMT Subject: CN=4361d0a1ae28118198e71578cf36b717e9f48b0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:05:03:09:8e:a7:aa:7e:d2:4e:2e:7b:14:e5: af:de:7b:32:f5:ee:c9:3d:82:3a:28:90:1a:fd:65: f8:84:5b:8a:81:eb:b4:7a:ea:ec:c7:ae:cd:ba:54: 85:9b:7f:49:96:46:61:46:a6:12:cf:e3:46:27:47: a3:71:f8:65:1f:cc:57:47:9c:a3:82:1b:95:6f:9e: 0d:87:a7:a0:3e:55:1a:49:49:47:1f:69:78:ec:63: 74:75:59:09:1e:82:65:95:8d:b2:e2:12:6e:3b:0c: 48:35:e8:58:b7:77:01:ef:44:da:7d:98:f0:9c:af: c4:71:65:2f:dc:46:ce:b9:4a:14:7b:43:d9:cb:58: 0a:a7:9b:0a:34:c2:a5:5e:3b:89:31:90:4f:d1:ac: 26:ef:3c:e3:d0:c2:41:c8:4d:f2:5d:00:20:48:01: 56:a5:a1:c6:0d:4f:20:18:e6:eb:6f:31:e0:2b:84: fb:15:7c:3d:ce:3e:c7:d8:66:b7:81:83:50:f7:01: 1b:da:64:8d:f2:59:1e:93:7c:88:b3:ab:67:4f:15: 2c:7d:e4:4a:92:04:9c:11:84:42:2e:2a:0d:57:99: 8a:f2:40:4e:c9:a3:44:c6:a7:a0:4b:c3:92:ae:b8: ce:2e:84:21:05:fb:35:7f:4f:98:4a:4a:6a:9d:e3: bc:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:61:D0:A1:AE:28:11:81:98:E7:15:78:CF:36:B7:17:E9:F4:8B:0F X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:a6:c9:af:40:4a:d9:24:56:04:3c:a7:03:06:e6:01:a5:cd: dc:02:c2:12:f7:bb:42:9f:05:5a:5f:b5:6e:a0:3c:e4:8e:b3: fe:98:7e:92:99:f9:83:61:14:d9:87:9a:16:a0:bb:52:cc:96: b1:b1:50:64:c0:ae:53:73:88:35:2a:9c:74:a4:27:10:f3:c2: cd:c1:ff:af:df:40:97:6c:8b:c3:64:a9:c4:14:60:c9:2e:50: 07:98:c4:81:12:07:06:05:b4:ce:2c:37:a4:1e:12:1e:5f:17: ce:6b:c6:af:12:78:7b:e8:83:5f:05:2d:f6:8d:3f:77:02:ac: 4b:5b:e0:54:15:82:f4:d5:fa:13:32:65:d4:e8:da:ac:fd:b7: c4:11:76:a5:c0:6c:59:b9:97:ca:c7:fc:c9:5b:84:bb:21:13: e2:3a:25:76:a6:76:26:9a:07:b9:ef:fc:38:65:5a:d3:3e:84: 17:93:f1:54:34:3e:90:f4:7b:52:9e:a2:41:08:87:06:0d:a4: 37:1b:71:48:c3:4d:25:9e:e1:d8:a7:8e:e7:47:cf:f5:6f:8c: 9b:46:e0:31:30:6f:c0:75:93:e8:ec:b3:e7:1b:83:74:2c:90: b9:03:60:41:ec:fd:ee:08:09:e5:67:26:68:b1:81:d2:3d:c2: d7:9a:bc:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZoC/kazCiFBeRYfbUiRR1f0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUxMDIwMTkwMDA5WhcNMjUxMDIxMTkwMDA5WjAzMTEwLwYDVQQD Eyg0MzYxZDBhMWFlMjgxMTgxOThlNzE1NzhjZjM2YjcxN2U5ZjQ4YjBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxwUDCY6nqn7STi57FOWv3nsy9e7J PYI6KJAa/WX4hFuKgeu0eursx67NulSFm39JlkZhRqYSz+NGJ0ejcfhlH8xXR5yj ghuVb54Nh6egPlUaSUlHH2l47GN0dVkJHoJllY2y4hJuOwxINehYt3cB70TafZjw nK/EcWUv3EbOuUoUe0PZy1gKp5sKNMKlXjuJMZBP0awm7zzj0MJByE3yXQAgSAFW paHGDU8gGObrbzHgK4T7FXw9zj7H2Ga3gYNQ9wEb2mSN8lkek3yIs6tnTxUsfeRK kgScEYRCLioNV5mK8kBOyaNExqegS8OSrrjOLoQhBfs1f0+YSkpqneO8SwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFENh0KGuKBGBmOcVeM82txfp9IsPMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApqbJr0BK 2SRWBDynAwbmAaXN3ALCEve7Qp8FWl+1bqA85I6z/ph+kpn5g2EU2YeaFqC7UsyW sbFQZMCuU3OINSqcdKQnEPPCzcH/r99Al2yLw2SpxBRgyS5QB5jEgRIHBgW0ziw3 pB4SHl8XzmvGrxJ4e+iDXwUt9o0/dwKsS1vgVBWC9NX6EzJl1OjarP23xBF2pcBs WbmXysf8yVuEuyET4joldqZ2JpoHue/8OGVa0z6EF5PxVDQ+kPR7Up6iQQiHBg2k NxtxSMNNJZ7h2KeO50fP9W+Mm0bgMTBvwHWT6Oyz5xuDdCyQuQNgQez97ggJ5Wcm aLGB0j3C15q82g== -----END CERTIFICATE-----Generated at Tue Oct 21 05:10:58 2025 by rpki-client