$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: kzGRN3exWtOU8wr4KkSRvGNQRzoy2sp+illsMmqvFmA= Subject key identifier: 6B:6F:10:A9:EE:3A:11:3B:E3:E6:48:45:62:1F:12:5F:6A:28:50:3F Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019DC4BAA3A660769D584F23945E1CA78FFC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 1127 Signing time: Sat 25 Apr 2026 13:00:59 +0000 Manifest this update: Sat 25 Apr 2026 13:00:59 +0000 Manifest next update: Sun 26 Apr 2026 13:00:59 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: TRBB2hSSVJDduRGLV8fmwSQ+C0oGn2/4jxHr6Nvaf0U=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 10: qOS44k4K1WSKtUKGLEhRxJxPEas.roa (hash: FW03t2tk2X1t0JN65p0CDI9DvEztasvMAKi+nwmwwnw=) 11: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 26 Apr 2026 11:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:c4:ba:a3:a6:60:76:9d:58:4f:23:94:5e:1c:a7:8f:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Apr 25 13:00:59 2026 GMT Not After : Apr 26 13:00:59 2026 GMT Subject: CN=6b6f10a9ee3a113be3e64845621f125f6a28503f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:44:a9:86:15:1a:a1:7a:2f:19:12:f9:ff:ee: 90:08:7e:28:5b:6a:ec:74:f2:0a:17:f4:cb:9f:73: ff:50:fb:b4:b5:2c:ff:e2:86:83:12:ed:c8:53:56: 55:8b:b4:3f:91:9c:2b:68:2e:4f:03:57:16:bd:15: d4:d6:53:6f:94:d1:93:fa:14:2b:b3:1f:12:ad:e7: c1:5a:4a:16:13:47:97:c6:bc:c9:24:88:66:f9:58: b1:2a:e4:0e:80:31:a5:ec:ce:21:b0:fd:29:b7:38: 05:c3:2f:7f:71:88:a7:c1:7d:cd:e8:3a:00:cb:97: a3:86:d7:ec:93:91:ef:7d:5a:3b:7a:b6:74:d9:e0: d1:c9:58:47:3a:2f:7d:32:6d:aa:d0:b7:a8:e0:2a: 7b:93:56:44:dc:2d:b9:39:9e:7b:92:7e:e5:60:9a: a7:29:75:39:44:3e:b4:15:ed:eb:bf:07:fe:fb:29: d2:d6:7b:83:da:a8:08:83:3f:f2:18:24:ed:28:db: 62:87:91:94:86:06:08:5f:0a:83:d4:e0:26:04:3e: 96:3e:3e:cc:39:e9:f4:3c:98:49:5d:23:c1:80:16: 35:8b:7f:34:dc:46:2b:7e:7d:4f:6e:7b:ac:12:99: 4d:08:36:31:b4:7a:26:1f:38:81:86:e0:ce:b7:c8: 42:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:6F:10:A9:EE:3A:11:3B:E3:E6:48:45:62:1F:12:5F:6A:28:50:3F X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:16:72:6d:60:5c:9a:a1:88:1a:cf:ce:ed:3b:65:32:d6:87: 67:7f:04:29:b6:8b:09:3a:a3:4d:46:cf:cd:f1:f7:de:ba:c6: 9b:a5:ef:94:2c:ee:dd:b6:71:3f:ab:12:b7:aa:5b:f5:98:59: 09:63:da:d0:1f:29:08:18:08:1e:ec:ab:67:06:d9:5f:79:d8: a9:d7:4c:33:fd:9a:d8:8e:f2:65:ea:e4:9e:fe:18:98:43:bc: 43:b5:ec:bb:55:fc:b5:ac:e5:6c:e0:b1:c8:70:7c:8e:68:37: a2:2d:2e:b5:36:76:6a:e6:70:6b:66:e6:70:64:c7:83:4e:a7: 61:e6:96:71:32:8b:82:3f:13:df:63:40:30:61:6c:e9:d7:db: f1:75:97:bc:1c:c7:4f:2f:7d:f5:18:78:1b:21:eb:72:bd:dc: 05:82:c6:8d:a8:e9:b0:5d:fb:65:d1:f4:2b:87:12:a3:c0:0b: 69:22:93:be:92:3e:5c:69:fc:0a:2a:3b:2f:77:7d:02:94:6d: d3:a6:15:ec:77:dd:92:e1:46:35:ac:d7:2a:a8:06:36:06:e8: 5b:10:63:05:f4:6c:d7:0b:f7:13:5f:b6:bf:ee:ba:8f:f3:71: bc:46:14:3c:2b:54:4d:82:a5:98:19:76:66:fd:0e:f3:2b:c3: 92:5a:d2:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ3EuqOmYHadWE8jlF4cp4/8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwNDI1MTMwMDU5WhcNMjYwNDI2MTMwMDU5WjAzMTEwLwYDVQQD Eyg2YjZmMTBhOWVlM2ExMTNiZTNlNjQ4NDU2MjFmMTI1ZjZhMjg1MDNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo0SphhUaoXovGRL5/+6QCH4oW2rs dPIKF/TLn3P/UPu0tSz/4oaDEu3IU1ZVi7Q/kZwraC5PA1cWvRXU1lNvlNGT+hQr sx8SrefBWkoWE0eXxrzJJIhm+VixKuQOgDGl7M4hsP0ptzgFwy9/cYinwX3N6DoA y5ejhtfsk5HvfVo7erZ02eDRyVhHOi99Mm2q0Leo4Cp7k1ZE3C25OZ57kn7lYJqn KXU5RD60Fe3rvwf++ynS1nuD2qgIgz/yGCTtKNtih5GUhgYIXwqD1OAmBD6WPj7M Oen0PJhJXSPBgBY1i3803EYrfn1PbnusEplNCDYxtHomHziBhuDOt8hCjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGtvEKnuOhE74+ZIRWIfEl9qKFA/MB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXhZybWBc mqGIGs/O7TtlMtaHZ38EKbaLCTqjTUbPzfH33rrGm6XvlCzu3bZxP6sSt6pb9ZhZ CWPa0B8pCBgIHuyrZwbZX3nYqddMM/2a2I7yZerknv4YmEO8Q7Xsu1X8tazlbOCx yHB8jmg3oi0utTZ2auZwa2bmcGTHg06nYeaWcTKLgj8T32NAMGFs6dfb8XWXvBzH Ty999Rh4GyHrcr3cBYLGjajpsF37ZdH0K4cSo8ALaSKTvpI+XGn8Cio7L3d9ApRt 06YV7HfdkuFGNazXKqgGNgboWxBjBfRs1wv3E1+2v+66j/NxvEYUPCtUTYKlmBl2 Zv0O8yvDklrSsg== -----END CERTIFICATE-----Generated at Sat Apr 25 18:47:03 2026 by rpki-client