$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: l+91MYVeRmbSg64KMoVEf9Hp4ElbqY2r0TzMbd4mx4g= Subject key identifier: 4C:67:B1:89:FE:34:A7:0B:E3:4C:9D:7C:85:81:44:0F:78:AE:16:9B Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019DB54844B60B73160C3F3325CB3EB2F996 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 111F Signing time: Wed 22 Apr 2026 13:01:45 +0000 Manifest this update: Wed 22 Apr 2026 13:01:45 +0000 Manifest next update: Thu 23 Apr 2026 13:01:45 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: cajiTHjHuxaUvSwXFiahKyJwJ4MGUyqtWhhtyzgaAZM=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 10: qOS44k4K1WSKtUKGLEhRxJxPEas.roa (hash: FW03t2tk2X1t0JN65p0CDI9DvEztasvMAKi+nwmwwnw=) 11: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 23 Apr 2026 08:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:b5:48:44:b6:0b:73:16:0c:3f:33:25:cb:3e:b2:f9:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Apr 22 13:01:45 2026 GMT Not After : Apr 23 13:01:45 2026 GMT Subject: CN=4c67b189fe34a70be34c9d7c8581440f78ae169b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:77:ab:a9:e9:b8:40:59:78:17:26:0a:2e:68: d6:aa:6a:09:30:d3:47:c0:45:5c:f3:54:5a:04:9f: 04:6b:a7:79:87:0a:1f:d6:3d:7e:9a:32:68:bb:4a: b8:e4:a6:4c:d5:62:ef:be:86:e7:34:e1:9d:4a:c7: 8c:b0:ca:46:f1:7b:e6:49:7b:53:f9:15:66:b7:91: 3a:b0:26:d4:d1:a1:c4:cd:36:59:41:4e:29:ed:5f: ef:fe:d6:5a:93:05:a2:75:69:56:c4:01:7d:24:c8: 7f:3f:cb:81:cb:ba:5b:36:50:ef:5d:87:2d:16:02: 10:75:1b:ac:51:7a:e2:73:42:27:88:2c:f6:fe:8d: 6e:bb:a3:3d:ae:c3:7f:81:89:ea:04:2e:ed:3f:ed: 6a:56:c7:43:75:6a:28:ab:72:02:b0:16:5f:97:03: 56:b8:9f:56:fb:24:2b:ba:b9:3c:61:ac:bb:73:c4: 82:93:81:6d:df:47:a8:d4:90:f1:b0:f3:92:76:82: 3d:5f:a3:17:71:f5:54:06:65:ba:dc:f9:8f:d3:b7: d7:98:0c:23:cf:dc:64:3d:9e:9f:8a:a3:cf:59:fb: b0:f3:9e:6d:c3:79:e2:91:11:c6:de:22:c2:a5:b5: 9d:3c:57:f2:02:25:0c:6a:87:ed:ab:0a:69:a5:46: 75:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:67:B1:89:FE:34:A7:0B:E3:4C:9D:7C:85:81:44:0F:78:AE:16:9B X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c2:ca:71:c3:f5:8e:dd:69:d0:bb:63:a6:69:35:c5:60:42:2d: 04:23:97:2d:10:dc:14:f5:28:14:78:eb:2d:f6:88:b4:5d:8e: a5:71:38:87:10:4a:c0:42:ee:a7:b2:76:ec:d1:92:e4:7b:69: 1e:fb:c6:23:59:48:7d:15:65:e3:8a:48:8e:50:e5:5d:c6:9b: 39:48:7e:f8:5b:cd:c9:e7:3a:3f:43:f3:47:da:b2:58:d8:2d: 68:11:e5:8a:0f:75:bf:de:c9:31:1c:6d:89:2a:e9:bb:b7:62: 97:12:db:1f:75:01:a4:ca:ec:5e:9a:df:63:e4:93:89:b7:f7: 11:7e:d2:95:14:03:03:24:f7:5c:b5:98:b6:f8:3d:87:5d:5d: dd:a6:0e:84:6a:58:5f:87:e3:44:96:c8:53:90:03:d0:8b:3c: 9f:3f:ef:b2:aa:8c:4e:9d:4f:e4:01:65:46:fc:d0:98:f2:14: ba:47:f1:50:c2:26:fa:fc:90:c2:4f:22:8b:9b:06:ae:fb:62: a7:18:a0:1d:90:53:1d:a4:0f:1b:bd:3b:53:c4:fe:f4:85:d0: d2:11:30:0d:95:9d:6d:d9:91:a0:8e:6a:2e:0f:61:57:30:db: 8f:48:a8:c5:be:eb:f8:75:1f:ab:63:df:af:15:0d:72:ea:41: 99:f8:30:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ21SES2C3MWDD8zJcs+svmWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwNDIyMTMwMTQ1WhcNMjYwNDIzMTMwMTQ1WjAzMTEwLwYDVQQD Eyg0YzY3YjE4OWZlMzRhNzBiZTM0YzlkN2M4NTgxNDQwZjc4YWUxNjliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuHerqem4QFl4FyYKLmjWqmoJMNNH wEVc81RaBJ8Ea6d5hwof1j1+mjJou0q45KZM1WLvvobnNOGdSseMsMpG8XvmSXtT +RVmt5E6sCbU0aHEzTZZQU4p7V/v/tZakwWidWlWxAF9JMh/P8uBy7pbNlDvXYct FgIQdRusUXric0IniCz2/o1uu6M9rsN/gYnqBC7tP+1qVsdDdWooq3ICsBZflwNW uJ9W+yQrurk8Yay7c8SCk4Ft30eo1JDxsPOSdoI9X6MXcfVUBmW63PmP07fXmAwj z9xkPZ6fiqPPWfuw855tw3nikRHG3iLCpbWdPFfyAiUMaoftqwpppUZ1KwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFExnsYn+NKcL40ydfIWBRA94rhabMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwspxw/WO 3WnQu2OmaTXFYEItBCOXLRDcFPUoFHjrLfaItF2OpXE4hxBKwELup7J27NGS5Htp HvvGI1lIfRVl44pIjlDlXcabOUh++FvNyec6P0PzR9qyWNgtaBHlig91v97JMRxt iSrpu7dilxLbH3UBpMrsXprfY+STibf3EX7SlRQDAyT3XLWYtvg9h11d3aYOhGpY X4fjRJbIU5AD0Is8nz/vsqqMTp1P5AFlRvzQmPIUukfxUMIm+vyQwk8ii5sGrvti pxigHZBTHaQPG707U8T+9IXQ0hEwDZWdbdmRoI5qLg9hVzDbj0ioxb7r+HUfq2Pf rxUNcupBmfgw2g== -----END CERTIFICATE-----Generated at Wed Apr 22 15:35:27 2026 by rpki-client