$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: SjgmdPBnkj19l8Fgq7iLAH9oFxCrSxZh4CmugY3Ijsk= Subject key identifier: CF:27:5F:63:8F:77:40:1E:27:A5:F7:79:83:8F:B6:B2:C0:4B:60:5D Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019D18360EA332BC5FA52CA439EEEC39BE63 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 10CC Signing time: Mon 23 Mar 2026 01:01:29 +0000 Manifest this update: Mon 23 Mar 2026 01:01:29 +0000 Manifest next update: Tue 24 Mar 2026 01:01:29 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: 6Ai3MsYt5qzjLZ3Te1I1gUg/9hmi7kz3jFH4U6V244M=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 24 Mar 2026 01:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:18:36:0e:a3:32:bc:5f:a5:2c:a4:39:ee:ec:39:be:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Mar 23 01:01:29 2026 GMT Not After : Mar 24 01:01:29 2026 GMT Subject: CN=cf275f638f77401e27a5f779838fb6b2c04b605d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6c:bd:20:5e:44:5a:7d:10:be:69:6c:f6:99: da:c3:f3:7f:6b:2b:c3:8e:2d:27:04:f5:2f:aa:e1: 8e:f0:7e:38:da:7b:1e:bc:f5:47:82:5b:c1:1e:0d: 52:44:78:2a:55:51:72:8a:ce:58:e3:0b:b3:ae:89: f8:8b:18:3c:97:9b:b5:4d:48:4a:15:71:5e:5f:09: 53:eb:51:2e:9b:85:68:3a:06:6f:33:c6:f0:7d:64: 18:c1:b0:0c:21:5f:d5:ba:72:c1:73:05:e3:78:07: f2:49:d5:d5:55:12:40:8d:8d:4f:b6:f1:88:e3:ea: 4b:7c:7c:ed:b5:2d:57:b0:9d:c9:38:72:a4:ae:50: 11:1c:75:58:88:49:36:d8:50:75:bb:0a:50:15:48: d4:a7:44:c1:b0:8e:db:c2:fb:c5:0c:dc:29:eb:be: 14:5d:06:ed:a4:7b:8a:db:49:76:79:15:af:ca:06: b2:96:da:44:52:92:7e:89:ea:f9:48:5c:71:12:bd: 04:b4:f6:74:24:6b:39:fd:a1:aa:19:16:e1:34:8d: 9a:e1:5c:33:7a:1b:23:dc:f5:5a:28:39:82:86:75: 17:b6:75:30:b9:e2:a3:34:1b:a2:9c:a8:6b:c6:49: 9e:13:41:77:36:66:50:34:32:87:ec:ee:c5:4f:db: 40:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:27:5F:63:8F:77:40:1E:27:A5:F7:79:83:8F:B6:B2:C0:4B:60:5D X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:9d:91:9e:51:5a:5c:c0:c6:50:40:9c:dc:d3:ba:00:b8:51: 2b:77:b4:09:a5:51:9e:c7:6a:a7:ec:34:7c:68:3c:8f:b4:c8: 36:5e:da:b5:3d:56:c6:07:af:0e:29:e2:87:99:f0:84:45:86: f9:00:cb:8c:d9:bb:81:03:ae:bd:4f:d8:7b:78:6a:15:19:4b: ff:62:8a:80:cd:d4:23:c4:3e:34:cf:12:95:4e:30:91:ac:a4: 68:3d:3c:3b:f6:79:0e:24:f5:d8:e9:38:84:03:85:2e:ce:1d: c8:94:d5:fa:e4:a7:91:cb:9f:d6:7c:76:7a:d5:b4:41:52:13: 59:e1:e3:9a:13:c3:73:f1:7b:3a:5c:23:01:33:f2:12:fd:08: 28:3c:83:b9:92:60:28:3d:5e:8f:0f:09:45:20:62:61:8f:f8: f7:19:46:73:1c:40:38:91:92:a5:b6:06:35:e1:54:f9:4a:2f: d2:92:5e:28:0e:15:0e:58:41:45:3f:70:e4:e3:9f:27:28:d9: 49:c7:34:62:d1:e1:a5:0a:14:bf:d1:04:5d:bd:37:5e:b3:71: b9:28:9d:e6:31:ca:d0:6b:e4:37:c9:e9:5a:32:64:86:d3:29: 90:b7:60:1a:ef:2b:21:ac:72:8c:ba:26:43:4e:ea:77:fe:b8: e8:94:bf:de -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0YNg6jMrxfpSykOe7sOb5jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMzIzMDEwMTI5WhcNMjYwMzI0MDEwMTI5WjAzMTEwLwYDVQQD EyhjZjI3NWY2MzhmNzc0MDFlMjdhNWY3Nzk4MzhmYjZiMmMwNGI2MDVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtGy9IF5EWn0Qvmls9pnaw/N/ayvD ji0nBPUvquGO8H442nsevPVHglvBHg1SRHgqVVFyis5Y4wuzron4ixg8l5u1TUhK FXFeXwlT61Eum4VoOgZvM8bwfWQYwbAMIV/VunLBcwXjeAfySdXVVRJAjY1PtvGI 4+pLfHzttS1XsJ3JOHKkrlARHHVYiEk22FB1uwpQFUjUp0TBsI7bwvvFDNwp674U XQbtpHuK20l2eRWvygayltpEUpJ+ier5SFxxEr0EtPZ0JGs5/aGqGRbhNI2a4Vwz ehsj3PVaKDmChnUXtnUwueKjNBuinKhrxkmeE0F3NmZQNDKH7O7FT9tAdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM8nX2OPd0AeJ6X3eYOPtrLAS2BdMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZZ2RnlFa XMDGUECc3NO6ALhRK3e0CaVRnsdqp+w0fGg8j7TINl7atT1WxgevDinih5nwhEWG +QDLjNm7gQOuvU/Ye3hqFRlL/2KKgM3UI8Q+NM8SlU4wkaykaD08O/Z5DiT12Ok4 hAOFLs4dyJTV+uSnkcuf1nx2etW0QVITWeHjmhPDc/F7OlwjATPyEv0IKDyDuZJg KD1ejw8JRSBiYY/49xlGcxxAOJGSpbYGNeFU+Uov0pJeKA4VDlhBRT9w5OOfJyjZ Scc0YtHhpQoUv9EEXb03XrNxuSid5jHK0GvkN8npWjJkhtMpkLdgGu8rIaxyjLom Q07qd/646JS/3g== -----END CERTIFICATE-----Generated at Mon Mar 23 10:30:50 2026 by rpki-client