$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: lnMLgv16kxov8I0GrPeMXhAp8yV7zJJJteiy2Ij2Sfc= Subject key identifier: 77:CE:68:C5:CA:9C:5E:0C:F4:CE:EF:1F:31:1C:52:04:2C:FF:E1:2F Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 0198C8364E11BD8D2933E3F5DAA699AA087E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0E88 Signing time: Wed 20 Aug 2025 16:00:58 +0000 Manifest this update: Wed 20 Aug 2025 16:00:58 +0000 Manifest next update: Thu 21 Aug 2025 16:00:58 +0000 Files and hashes: 1: 3BwQGvtGG9EzTodyzZ_T_NlKH8c.roa (hash: 3YVq+Q3Pxf3bX0RyqLEPepY9xeWnJNOauq8KUa99lAY=) 2: 3jf0qN8pQHNEeZXSK9GB9T1D4_E.roa (hash: DRAm1n/nD8B8BQj+jf77wLhiQpGtxWx72r8uwhAFjaU=) 3: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 4: 89lMNrhD2F5x0Ke_v2bBXPEQYgU.roa (hash: K5oebEL4UYGbpI6omznf50HWdMyeoL9B3ezd2prsxV4=) 5: E_3-qae-50qWA7R56c8VnNml0ZU.roa (hash: nkgMixGbN46lHgT97kcU8QjXRmEi7iabVPw78zf1uq4=) 6: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 7: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: AKkaX2ZqR44GKEBRouoIytwYa2SPqUaRd90zLq8xuCY=) 8: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 9: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 10: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 11: jFuP-GeZY6Z37SVSGqClEWTPyy4.roa (hash: 65ZwPuCoL1Qqn8JPgxAd7UOuJekWTxCoLNYfjh3KVJo=) 12: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) 13: oEuyAAJZN4XAHoWmGWmvPb4FubQ.roa (hash: esXNrVEA5MkO3OsllRSKIYSvaqpShmC/xd9y//cEJ8g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 21 Aug 2025 16:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:c8:36:4e:11:bd:8d:29:33:e3:f5:da:a6:99:aa:08:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Aug 20 16:00:58 2025 GMT Not After : Aug 21 16:00:58 2025 GMT Subject: CN=77ce68c5ca9c5e0cf4ceef1f311c52042cffe12f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0e:0c:da:5b:61:8a:0e:f9:bb:d2:7c:cc:a3: f3:a3:58:17:7c:79:fb:5e:98:75:35:c6:1f:57:be: 07:22:a5:b1:2a:9c:4b:f9:42:60:fe:50:45:c7:33: 63:36:8d:85:78:e3:ff:ef:99:5e:9d:d9:e1:ee:9f: ed:35:ef:25:e8:9c:3d:85:f2:c8:c9:b0:9e:d3:dd: a0:cb:20:e6:0f:2f:88:47:c8:b5:b6:d5:d0:97:75: 09:e4:97:07:30:60:d7:2a:59:f2:3a:f4:13:e4:0a: 2e:9e:dd:76:6c:2d:65:67:b5:72:08:55:e0:7b:4c: b4:4b:0d:fc:bc:44:98:5d:a5:f4:44:eb:24:f3:05: 4b:86:44:00:d9:cf:82:4d:2e:f4:7b:6c:2b:0f:de: 05:f9:e1:17:80:3f:88:73:df:8c:db:b1:3e:c3:65: fb:9c:08:97:cf:ff:0d:ef:c5:c1:89:75:15:c5:38: a3:f7:e6:13:35:63:62:5d:78:ba:db:e4:f7:58:18: d0:ee:2e:a0:75:41:20:ee:4a:6b:e2:f8:67:5a:df: b3:be:d8:16:69:f1:93:a4:05:69:83:d7:51:3a:40: 1d:cb:7c:a1:30:d4:6b:cc:0d:09:31:a1:eb:34:4c: 00:3f:f1:85:cc:95:e1:ad:39:d6:a3:37:5e:56:98: af:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:CE:68:C5:CA:9C:5E:0C:F4:CE:EF:1F:31:1C:52:04:2C:FF:E1:2F X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:e2:77:76:fd:b4:59:2e:c2:b4:2f:81:f4:97:d8:8b:5e:31: f7:11:90:72:56:bf:62:28:52:df:b4:94:7d:3e:c3:9f:62:0b: d4:86:46:8c:35:57:f0:48:35:43:ec:8f:55:41:cc:6e:ce:a7: c0:cb:a1:d6:5e:43:68:2b:08:5e:c8:6c:88:ab:1d:ad:6b:e3: 28:d6:be:e0:e4:f6:5b:88:0f:49:e9:24:08:af:7f:3a:f2:af: 8a:86:26:4b:e0:01:9c:28:75:6d:06:46:d9:49:a3:0e:fd:5a: 13:e0:0c:60:65:44:d9:9e:57:fa:9e:08:42:0f:eb:05:81:22: 58:87:9b:8c:8e:81:6e:e1:ba:07:25:1e:ab:02:7e:83:7c:3c: cf:a6:c0:d8:0d:1d:6f:68:7c:bf:f1:2b:a0:36:3d:91:a8:d2: e5:81:34:a3:44:bb:16:b5:58:2f:01:11:f1:a1:46:c2:3b:a8: 77:53:fd:bc:99:f0:e6:08:07:bb:f0:c2:48:dc:97:0f:67:0d: a1:a9:8f:3e:aa:0a:e7:85:6d:a3:b4:30:fa:b2:c7:b6:64:69: d5:4b:2f:ae:db:8b:dd:4a:2f:ab:ba:c9:fc:8b:1f:3c:0b:91: ab:26:52:ad:9a:ae:08:f3:08:81:b9:57:d1:07:38:a9:ae:f4: 31:55:6e:0a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjINk4RvY0pM+P12qaZqgh+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUwODIwMTYwMDU4WhcNMjUwODIxMTYwMDU4WjAzMTEwLwYDVQQD Eyg3N2NlNjhjNWNhOWM1ZTBjZjRjZWVmMWYzMTFjNTIwNDJjZmZlMTJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzA4M2lthig75u9J8zKPzo1gXfHn7 Xph1NcYfV74HIqWxKpxL+UJg/lBFxzNjNo2FeOP/75lendnh7p/tNe8l6Jw9hfLI ybCe092gyyDmDy+IR8i1ttXQl3UJ5JcHMGDXKlnyOvQT5Aount12bC1lZ7VyCFXg e0y0Sw38vESYXaX0ROsk8wVLhkQA2c+CTS70e2wrD94F+eEXgD+Ic9+M27E+w2X7 nAiXz/8N78XBiXUVxTij9+YTNWNiXXi62+T3WBjQ7i6gdUEg7kpr4vhnWt+zvtgW afGTpAVpg9dROkAdy3yhMNRrzA0JMaHrNEwAP/GFzJXhrTnWozdeVpiveQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHfOaMXKnF4M9M7vHzEcUgQs/+EvMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE+J3dv20 WS7CtC+B9JfYi14x9xGQcla/YihS37SUfT7Dn2IL1IZGjDVX8Eg1Q+yPVUHMbs6n wMuh1l5DaCsIXshsiKsdrWvjKNa+4OT2W4gPSekkCK9/OvKvioYmS+ABnCh1bQZG 2UmjDv1aE+AMYGVE2Z5X+p4IQg/rBYEiWIebjI6BbuG6ByUeqwJ+g3w8z6bA2A0d b2h8v/EroDY9kajS5YE0o0S7FrVYLwER8aFGwjuod1P9vJnw5ggHu/DCSNyXD2cN oamPPqoK54Vto7Qw+rLHtmRp1UsvrtuL3Uovq7rJ/IsfPAuRqyZSrZquCPMIgblX 0Qc4qa70MVVuCg== -----END CERTIFICATE-----Generated at Thu Aug 21 01:11:56 2025 by rpki-client