$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: SYZdLneEKIHXdGlvX9Q1bNFp/j5yAMEIobjA2NI+fGI= Subject key identifier: FE:3C:AD:E8:6F:DC:89:1F:42:1B:65:0C:22:0B:90:0E:BE:81:BA:67 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019F092B7A69A784E096D89BBACE73CD8A64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 11CF Signing time: Sat 27 Jun 2026 13:01:12 +0000 Manifest this update: Sat 27 Jun 2026 13:01:12 +0000 Manifest next update: Sun 28 Jun 2026 13:01:12 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: uIFcTuf5FalYIBlIYDUbU9EnUP20e30/q8eFA84fGzM=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 10: qOS44k4K1WSKtUKGLEhRxJxPEas.roa (hash: FW03t2tk2X1t0JN65p0CDI9DvEztasvMAKi+nwmwwnw=) 11: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Jun 2026 13:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9f:09:2b:7a:69:a7:84:e0:96:d8:9b:ba:ce:73:cd:8a:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jun 27 13:01:12 2026 GMT Not After : Jun 28 13:01:12 2026 GMT Subject: CN=fe3cade86fdc891f421b650c220b900ebe81ba67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ac:07:b6:a5:3e:68:9a:3e:f9:3b:f1:b2:0a: 69:ac:18:0d:db:81:d0:95:29:51:7c:2b:cc:42:85: 0a:a8:99:16:b5:87:18:f5:5d:04:b3:73:e9:3b:7d: a3:e9:6f:fe:30:e7:8d:fb:c2:2c:5f:f3:f6:93:16: c5:f9:70:3b:7e:18:95:d6:76:e2:47:f8:0d:5e:b6: df:f3:8f:25:81:1c:2e:b4:f2:d2:e7:df:da:e4:ac: c0:68:36:e1:39:8f:2c:be:3c:1c:9b:91:c3:7b:3a: 46:85:ea:94:0f:00:80:14:55:53:c1:0e:80:bd:d3: b8:e8:14:a7:60:f6:24:40:8b:99:55:e0:b3:0c:f3: 3e:24:fb:5c:49:d4:e5:2d:d9:c3:d1:a6:fc:f7:4c: dd:44:f9:7d:df:5c:76:f6:b6:f8:b4:81:db:21:18: 1c:b6:aa:26:80:ca:78:d1:9d:8c:45:0c:9c:7d:10: 9b:7d:d7:86:2b:15:00:91:f5:d4:ae:05:27:9f:6d: dd:83:84:a0:6f:b4:11:3a:56:2e:76:3d:b0:10:d5: 3f:20:bb:00:f0:d6:29:69:3f:ac:d6:b1:f3:26:ec: 6d:13:46:bc:d6:d0:8f:54:04:fc:4f:a4:94:47:ce: a0:91:3e:5a:7f:fe:70:d3:61:a6:fc:18:60:51:8b: eb:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:3C:AD:E8:6F:DC:89:1F:42:1B:65:0C:22:0B:90:0E:BE:81:BA:67 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:f0:38:da:66:de:5d:ef:fb:28:3c:2b:60:61:16:7b:76:80: ad:95:67:0b:90:ef:04:d7:4e:a3:55:37:3f:42:f5:cc:38:7f: 42:c4:98:18:45:be:6c:24:45:74:5d:54:b5:c5:59:9e:3f:9a: b3:33:26:4f:b3:71:5c:4c:26:d6:97:da:8b:d6:11:c1:dc:17: ea:0d:b1:bb:56:bf:0c:12:8d:95:f0:5a:69:73:90:da:74:2f: a9:85:df:d8:9e:00:11:14:25:60:b0:be:16:23:a2:64:c7:2b: 66:50:a2:c9:9c:de:a3:3f:8c:82:78:e5:db:0a:cd:7a:a0:87: a4:00:4d:7f:52:27:5a:0e:a3:49:bc:52:25:cd:4a:cc:13:62: 20:3b:eb:b0:a8:eb:54:44:2a:9f:dd:57:8b:42:f9:51:08:be: d6:14:46:a8:fc:09:57:f3:3d:ca:71:6a:87:39:2f:fb:50:ca: 15:fd:b8:c4:75:bb:0b:0d:c1:2e:6a:aa:58:03:9b:fc:5a:6b: 22:47:fa:61:25:ec:23:98:77:cd:2c:d5:03:2d:53:77:36:f2: f6:01:2d:02:98:3e:2e:7d:23:e7:af:64:48:0c:05:78:9b:6a: a2:a3:21:ca:5d:78:c5:18:11:97:5d:54:8f:b7:99:f1:6d:14: d1:00:17:56 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ8JK3ppp4Tgltibus5zzYpkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwNjI3MTMwMTEyWhcNMjYwNjI4MTMwMTEyWjAzMTEwLwYDVQQD EyhmZTNjYWRlODZmZGM4OTFmNDIxYjY1MGMyMjBiOTAwZWJlODFiYTY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtKwHtqU+aJo++TvxsgpprBgN24HQ lSlRfCvMQoUKqJkWtYcY9V0Es3PpO32j6W/+MOeN+8IsX/P2kxbF+XA7fhiV1nbi R/gNXrbf848lgRwutPLS59/a5KzAaDbhOY8svjwcm5HDezpGheqUDwCAFFVTwQ6A vdO46BSnYPYkQIuZVeCzDPM+JPtcSdTlLdnD0ab890zdRPl931x29rb4tIHbIRgc tqomgMp40Z2MRQycfRCbfdeGKxUAkfXUrgUnn23dg4Sgb7QROlYudj2wENU/ILsA 8NYpaT+s1rHzJuxtE0a81tCPVAT8T6SUR86gkT5af/5w02Gm/BhgUYvr2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP48rehv3IkfQhtlDCILkA6+gbpnMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJvA42mbe Xe/7KDwrYGEWe3aArZVnC5DvBNdOo1U3P0L1zDh/QsSYGEW+bCRFdF1UtcVZnj+a szMmT7NxXEwm1pfai9YRwdwX6g2xu1a/DBKNlfBaaXOQ2nQvqYXf2J4AERQlYLC+ FiOiZMcrZlCiyZzeoz+Mgnjl2wrNeqCHpABNf1InWg6jSbxSJc1KzBNiIDvrsKjr VEQqn91Xi0L5UQi+1hRGqPwJV/M9ynFqhzkv+1DKFf24xHW7Cw3BLmqqWAOb/Fpr Ikf6YSXsI5h3zSzVAy1Tdzby9gEtApg+Ln0j569kSAwFeJtqoqMhyl14xRgRl11U j7eZ8W0U0QAXVg== -----END CERTIFICATE-----Generated at Sat Jun 27 21:48:23 2026 by rpki-client