
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json)
Hash identifier: xBkrl+eaPYfGd0IeDZMHspXt33R442CBhApuMc4WxJI=
Subject key identifier: 8E:7F:5A:EE:57:36:C8:66:D5:B7:9C:30:5D:3F:0F:A3:67:30:27:07
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 019F528E3DB2961021E2EEC948CFB6195BAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
Manifest number: 11F5
Signing time: Sat 11 Jul 2026 19:01:21 +0000
Manifest this update: Sat 11 Jul 2026 19:01:21 +0000
Manifest next update: Sun 12 Jul 2026 19:01:21 +0000
Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=)
2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=)
3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=)
4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=)
5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=)
6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: re/Qr1XCG/gHDN9BQJjrTm7/4FDYARPiyAg7j0YzK6A=)
7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=)
8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=)
9: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=)
10: qOS44k4K1WSKtUKGLEhRxJxPEas.roa (hash: FW03t2tk2X1t0JN65p0CDI9DvEztasvMAKi+nwmwwnw=)
11: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 12 Jul 2026 19:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:52:8e:3d:b2:96:10:21:e2:ee:c9:48:cf:b6:19:5b:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: Jul 11 19:01:21 2026 GMT
Not After : Jul 12 19:01:21 2026 GMT
Subject: CN=8e7f5aee5736c866d5b79c305d3f0fa367302707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:61:1b:3d:11:c3:c1:a8:e9:82:e2:ba:25:14:
9b:92:62:cc:65:5b:3d:09:5a:76:94:23:47:95:8b:
ed:44:82:d5:cd:7f:27:55:17:4e:5b:13:b0:0c:9b:
c4:c4:a0:f6:5c:df:fd:c8:47:40:f0:84:ce:4b:8b:
d6:aa:58:19:49:79:7e:81:d8:7c:f6:b4:91:a7:48:
7b:4c:c7:e8:39:0f:50:ad:f3:c0:c3:64:b7:3c:94:
c4:ea:1d:96:15:38:dd:da:11:c6:04:7b:3e:2c:4c:
c3:37:02:14:68:2b:4a:d1:52:68:5f:e7:8c:40:0e:
7b:6e:a3:cc:03:31:20:e8:9c:90:63:ea:23:c9:84:
e3:b9:77:14:e8:15:05:de:a6:81:47:e3:bf:89:43:
79:fb:de:7c:f9:a3:a5:e6:cf:b0:8e:33:56:db:87:
15:cf:e4:f2:df:75:5e:b6:52:b6:d2:47:d3:c6:f4:
7d:43:2c:ec:ab:73:0b:3a:91:44:bd:29:b7:d9:66:
e9:bc:1b:f9:cf:88:44:4c:87:c4:35:f7:48:e8:b5:
27:8e:47:c7:45:b8:33:8a:3b:60:b0:93:82:b6:0b:
8b:cf:a6:dd:dd:19:15:82:b8:49:be:d2:3b:3c:4e:
44:d1:32:61:43:9c:35:dd:b2:78:84:d7:8c:30:e0:
3e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:7F:5A:EE:57:36:C8:66:D5:B7:9C:30:5D:3F:0F:A3:67:30:27:07
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:c3:de:00:19:20:25:3f:71:07:77:b9:a4:7b:7c:b2:e2:9a:
8c:b5:b3:04:fb:0c:eb:4d:cf:c1:46:5d:45:03:8f:db:6d:12:
3e:0e:f5:11:5f:e0:89:21:b9:97:72:c2:40:3d:fd:59:e0:4c:
5e:39:88:43:34:d0:92:82:a6:8a:36:99:22:3a:bd:07:f3:20:
60:e8:6d:5e:e8:de:a7:c4:e7:55:fa:96:2b:8d:72:4b:88:4b:
b8:99:43:17:db:1c:19:b3:08:cd:60:ef:a7:0b:54:e3:79:e2:
c8:78:9b:fe:08:9d:3b:b7:92:c9:dd:cb:8b:e6:82:08:4f:48:
8e:7c:f1:c8:9c:49:51:1e:39:68:e2:3c:6a:78:74:b5:a2:10:
99:d3:b8:1e:ef:24:2a:ec:62:3a:f6:26:ce:b8:6a:d1:67:8d:
4a:2e:41:3e:3b:d4:4e:b0:f1:17:af:89:f3:c9:a0:2e:36:96:
71:9f:05:87:64:90:02:f6:4a:34:06:71:b7:c3:f3:83:4e:ad:
c5:1c:aa:75:9d:b5:ca:b9:bc:86:e0:2b:c7:7e:50:d6:b1:ba:
d7:e6:d6:c7:14:db:a1:34:cb:53:23:e8:ef:5f:92:d6:83:28:
d3:44:f4:30:2f:60:5c:03:75:3c:1c:33:b6:37:ba:d7:08:2e:
90:44:60:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 12 04:08:01 2026 by rpki-client