$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: hKr02nrGwGFu5Q++cnoY8jbgIMxWTZ4h+kWqDSKsxN0= Subject key identifier: DC:09:7C:58:25:BB:8E:2A:B9:58:AD:CD:59:C7:62:51:DB:6F:10:94 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019D710C5DC03BC54499119E51A7BDEF9227 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 10FA Signing time: Thu 09 Apr 2026 07:02:08 +0000 Manifest this update: Thu 09 Apr 2026 07:02:08 +0000 Manifest next update: Fri 10 Apr 2026 07:02:08 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: S6QgNqDu6Peqfy7Xg2Z4ivTmiZzXF7ZF+KPhIF8l36M=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 10 Apr 2026 07:02:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:71:0c:5d:c0:3b:c5:44:99:11:9e:51:a7:bd:ef:92:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Apr 9 07:02:08 2026 GMT Not After : Apr 10 07:02:08 2026 GMT Subject: CN=dc097c5825bb8e2ab958adcd59c76251db6f1094 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:74:19:c6:5b:7d:dc:bc:d0:37:4c:6e:78:86: e2:b0:fb:de:4a:27:8b:c2:ee:e3:e4:96:28:71:01: 6a:c8:56:59:01:67:9f:80:c8:b3:f5:49:3e:80:4d: 39:93:1a:fe:93:db:a9:00:ee:38:d6:9d:93:7a:e9: 84:38:20:8e:db:99:86:94:43:d6:5f:57:88:bb:2a: 2c:88:b4:a3:d7:f1:9c:7f:ed:35:50:21:3a:ca:f8: 7f:a5:84:aa:2a:90:f8:ba:3a:30:54:82:90:2a:3d: ab:5c:c4:04:c4:c1:10:a2:97:e8:d8:4a:09:2c:b1: 83:6a:29:8c:ca:c6:a0:63:02:24:2c:2b:0c:f4:ba: 82:c6:17:94:a7:67:9b:a4:2a:f6:94:e2:e3:b5:4c: 38:e4:40:47:32:ae:63:10:9d:d0:49:a7:e2:7a:4d: d3:ac:b8:08:5a:21:83:39:53:9f:7e:c1:ac:06:ac: a0:02:68:09:fb:4a:4e:39:40:9e:bb:b0:4d:12:2f: fe:c3:fc:52:b0:f6:cc:32:2a:b6:be:2d:95:44:42: ae:55:f2:30:d0:cd:78:65:e1:9c:a0:81:a4:c0:0e: ee:e4:70:21:44:1e:43:1a:38:b2:0a:f3:b1:8f:61: 24:26:ed:97:13:f5:30:a1:21:13:e7:f7:37:50:9e: 3b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:09:7C:58:25:BB:8E:2A:B9:58:AD:CD:59:C7:62:51:DB:6F:10:94 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:0c:11:bc:02:6e:52:30:5f:ec:eb:14:6a:c0:ba:66:71:56: b8:2c:39:76:e0:c0:91:43:a6:88:07:d6:1c:ce:30:5e:d0:6e: 7a:89:22:70:f7:8d:3c:85:f1:b7:b0:3c:2d:06:f1:91:b1:25: d2:f3:d4:04:a5:9d:11:1a:89:f4:35:01:3b:c0:b1:1a:d9:59: 4d:7d:ab:4c:a6:13:17:b2:96:44:64:7a:51:92:d2:7c:86:84: 3a:90:9d:9e:f0:cf:fa:e8:27:31:c4:00:d7:81:a3:ca:07:76: 37:f9:03:aa:ee:0a:a3:40:d1:76:f6:e1:aa:4c:7a:bc:83:94: ed:78:17:d5:aa:b0:a8:3e:bc:13:c0:0a:bc:bd:91:b2:0e:e6: ce:09:bd:0c:19:1b:34:92:b3:28:21:a3:f9:b2:27:b6:40:24: 8b:63:4a:49:43:f6:c0:5c:56:e0:1a:6e:18:af:f1:df:92:e4: 0e:98:4f:fe:35:c3:dc:04:87:7a:ab:3c:f2:f2:01:7e:72:af: 62:32:cb:20:44:0d:4d:61:34:51:50:04:91:d2:26:e9:1b:46: c1:6c:d2:23:2b:a6:63:57:05:c8:6d:d0:c3:fd:3a:3c:49:8a: b3:96:7a:e4:c6:cd:69:19:90:e5:50:5c:a9:4d:2f:de:04:42: ae:07:5d:5e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ1xDF3AO8VEmRGeUae975InMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwNDA5MDcwMjA4WhcNMjYwNDEwMDcwMjA4WjAzMTEwLwYDVQQD EyhkYzA5N2M1ODI1YmI4ZTJhYjk1OGFkY2Q1OWM3NjI1MWRiNmYxMDk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt3QZxlt93LzQN0xueIbisPveSieL wu7j5JYocQFqyFZZAWefgMiz9Uk+gE05kxr+k9upAO441p2TeumEOCCO25mGlEPW X1eIuyosiLSj1/Gcf+01UCE6yvh/pYSqKpD4ujowVIKQKj2rXMQExMEQopfo2EoJ LLGDaimMysagYwIkLCsM9LqCxheUp2ebpCr2lOLjtUw45EBHMq5jEJ3QSafiek3T rLgIWiGDOVOffsGsBqygAmgJ+0pOOUCeu7BNEi/+w/xSsPbMMiq2vi2VREKuVfIw 0M14ZeGcoIGkwA7u5HAhRB5DGjiyCvOxj2EkJu2XE/UwoSET5/c3UJ47zwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNwJfFglu44quVitzVnHYlHbbxCUMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWAwRvAJu UjBf7OsUasC6ZnFWuCw5duDAkUOmiAfWHM4wXtBueokicPeNPIXxt7A8LQbxkbEl 0vPUBKWdERqJ9DUBO8CxGtlZTX2rTKYTF7KWRGR6UZLSfIaEOpCdnvDP+ugnMcQA 14Gjygd2N/kDqu4Ko0DRdvbhqkx6vIOU7XgX1aqwqD68E8AKvL2Rsg7mzgm9DBkb NJKzKCGj+bIntkAki2NKSUP2wFxW4BpuGK/x35LkDphP/jXD3ASHeqs88vIBfnKv YjLLIEQNTWE0UVAEkdIm6RtGwWzSIyumY1cFyG3Qw/06PEmKs5Z65MbNaRmQ5VBc qU0v3gRCrgddXg== -----END CERTIFICATE-----Generated at Thu Apr 9 16:14:26 2026 by rpki-client