$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: sFNwu1fE4FNOQPqNyGlSxUxbpQ/H3g82sIkZaVbQWkE= Subject key identifier: 80:9B:56:C2:36:A5:22:4F:03:7A:04:33:E8:EB:E1:94:1B:82:99:2D Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019DA00A37902716C6128C8384156E8F2200 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 1114 Signing time: Sat 18 Apr 2026 10:01:57 +0000 Manifest this update: Sat 18 Apr 2026 10:01:57 +0000 Manifest next update: Sun 19 Apr 2026 10:01:57 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: 55HwQQ76vvHG+5ypR2BhS5rfyrMHJlFs40H7NC6Yp0I=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 10: qOS44k4K1WSKtUKGLEhRxJxPEas.roa (hash: FW03t2tk2X1t0JN65p0CDI9DvEztasvMAKi+nwmwwnw=) 11: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 19 Apr 2026 10:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:a0:0a:37:90:27:16:c6:12:8c:83:84:15:6e:8f:22:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Apr 18 10:01:57 2026 GMT Not After : Apr 19 10:01:57 2026 GMT Subject: CN=809b56c236a5224f037a0433e8ebe1941b82992d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:43:12:b6:73:ac:77:bc:81:87:80:98:42:da: 9e:0e:e8:e0:55:96:ec:28:c1:9f:35:9d:4c:99:d7: dd:c9:7a:57:42:7e:4d:b8:56:d4:4a:9d:fe:ea:2b: 9e:14:15:02:5b:4c:6e:f3:c4:9c:d9:e2:6b:9a:52: 14:5d:45:63:86:96:1a:05:fb:41:d9:f6:36:bb:a2: 2b:e5:e8:5a:40:3f:6c:26:c5:2e:e3:53:71:ff:20: 07:29:27:90:1a:52:46:f2:7a:21:9d:9e:72:2a:45: cb:86:04:68:89:cf:c9:8b:ba:c5:27:cb:8e:a8:5c: fd:e6:f5:7c:0f:e3:06:53:18:d1:ec:da:dd:7f:1f: 55:96:c8:83:a6:1e:50:1d:55:f6:67:cf:25:aa:68: 9e:35:75:bb:21:47:7d:c0:37:41:6f:df:68:02:8f: d3:f2:2b:9d:fe:db:17:6f:30:ed:7b:cb:17:29:1a: 5c:ac:a9:ba:f5:1d:1a:95:15:42:e0:68:48:c0:40: 59:8e:0a:bd:4e:07:74:7d:5a:33:fe:cb:35:34:37: be:e7:b1:d4:85:14:31:28:d5:1b:9d:ec:0c:dd:3a: eb:98:62:3c:1e:12:fa:b8:cb:81:72:3c:b0:3d:5d: 76:69:ff:5c:83:61:fe:fe:f6:b5:b5:a8:ab:04:cd: c7:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:9B:56:C2:36:A5:22:4F:03:7A:04:33:E8:EB:E1:94:1B:82:99:2D X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:55:07:00:ec:14:24:5b:fe:68:54:05:23:1e:22:f4:36:ee: 8e:2f:80:ee:90:d7:02:8d:64:ca:d6:25:2a:c5:4b:72:cb:a1: 39:b6:39:c2:f4:be:98:b6:9d:83:2a:fc:2b:68:81:16:84:a9: e1:24:73:9e:30:e7:fd:10:da:32:1a:5a:40:2d:a0:81:dc:68: 07:bb:f4:e9:36:c3:47:c4:08:43:66:cd:0b:ef:b2:05:14:54: 79:d3:1f:09:b2:f3:7e:f6:8c:31:b4:c7:75:5b:ee:08:ad:bf: 78:26:16:69:ac:08:6f:c5:e2:15:86:d6:d3:0a:e5:51:cf:aa: 69:8f:58:28:d1:03:91:18:f5:fc:cb:02:0e:d3:e3:85:ff:e0: c1:04:15:4a:73:a1:5c:07:27:f8:1a:04:7d:68:4a:8c:3e:20: 04:16:3f:7f:5a:b6:32:5e:90:4c:34:94:b9:e4:03:05:03:02: e2:4b:1a:a5:f8:1a:e6:71:49:9a:f3:f3:a7:92:3c:38:49:4e: 83:aa:ad:7c:4b:db:f7:30:4e:4a:d7:96:0b:d0:9e:27:2d:6a: 48:4a:84:03:3d:23:db:ba:db:40:f6:10:02:45:0e:0b:ed:5a: fb:0c:c6:91:10:ee:de:be:81:b2:2a:2a:2f:df:ec:d5:42:ee: 48:16:af:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2gCjeQJxbGEoyDhBVujyIAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwNDE4MTAwMTU3WhcNMjYwNDE5MTAwMTU3WjAzMTEwLwYDVQQD Eyg4MDliNTZjMjM2YTUyMjRmMDM3YTA0MzNlOGViZTE5NDFiODI5OTJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwEMStnOsd7yBh4CYQtqeDujgVZbs KMGfNZ1MmdfdyXpXQn5NuFbUSp3+6iueFBUCW0xu88Sc2eJrmlIUXUVjhpYaBftB 2fY2u6Ir5ehaQD9sJsUu41Nx/yAHKSeQGlJG8nohnZ5yKkXLhgRoic/Ji7rFJ8uO qFz95vV8D+MGUxjR7Nrdfx9VlsiDph5QHVX2Z88lqmieNXW7IUd9wDdBb99oAo/T 8iud/tsXbzDte8sXKRpcrKm69R0alRVC4GhIwEBZjgq9Tgd0fVoz/ss1NDe+57HU hRQxKNUbnewM3TrrmGI8HhL6uMuBcjywPV12af9cg2H+/va1tairBM3HcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFICbVsI2pSJPA3oEM+jr4ZQbgpktMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYVUHAOwU JFv+aFQFIx4i9Dbuji+A7pDXAo1kytYlKsVLcsuhObY5wvS+mLadgyr8K2iBFoSp 4SRznjDn/RDaMhpaQC2ggdxoB7v06TbDR8QIQ2bNC++yBRRUedMfCbLzfvaMMbTH dVvuCK2/eCYWaawIb8XiFYbW0wrlUc+qaY9YKNEDkRj1/MsCDtPjhf/gwQQVSnOh XAcn+BoEfWhKjD4gBBY/f1q2Ml6QTDSUueQDBQMC4ksapfga5nFJmvPzp5I8OElO g6qtfEvb9zBOSteWC9CeJy1qSEqEAz0j27rbQPYQAkUOC+1a+wzGkRDu3r6Bsioq L9/s1ULuSBavYQ== -----END CERTIFICATE-----Generated at Sat Apr 18 19:56:24 2026 by rpki-client