$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: PTH8vUn5bLgxatUt0YR0lnuYjFOHIcFugzFS6xkvrXs= Subject key identifier: F5:F2:D0:33:3F:47:D5:CC:57:B5:1C:AD:6F:02:FB:9B:3D:FE:12:44 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019CD87AA9D5494291B215168AF58E2B849D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 10AB Signing time: Tue 10 Mar 2026 16:00:43 +0000 Manifest this update: Tue 10 Mar 2026 16:00:43 +0000 Manifest next update: Wed 11 Mar 2026 16:00:43 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: NyrWpQUtWdebU2LtEf+cWHFdGdhJdInteurAOuXGPyg=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 11 Mar 2026 15:04:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:d8:7a:a9:d5:49:42:91:b2:15:16:8a:f5:8e:2b:84:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Mar 10 16:00:43 2026 GMT Not After : Mar 11 16:00:43 2026 GMT Subject: CN=f5f2d0333f47d5cc57b51cad6f02fb9b3dfe1244 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bd:39:f5:b2:f8:6b:3c:1b:1b:9e:6b:92:b6: a2:bd:03:45:28:a2:e4:42:fd:9c:ea:4e:4a:aa:c2: 02:6a:d1:88:37:5d:de:2e:2a:b7:eb:ca:61:79:62: 79:6b:ed:66:13:5a:a4:b0:09:9a:68:1b:a8:89:9d: d7:95:df:5b:e8:94:18:76:15:c5:80:98:a2:30:6b: 62:d9:37:b8:40:d6:9c:8d:0f:70:39:e8:70:bc:d0: eb:91:da:81:fa:98:5e:4c:d8:ba:e8:7f:97:c0:f6: 71:1a:00:65:35:42:40:e5:77:92:75:5a:fe:3b:f2: 72:e4:16:7a:8e:57:42:1a:42:55:83:da:30:83:25: cd:47:72:6a:ec:4d:2d:41:f9:ca:3b:97:aa:b6:53: b6:d8:ab:2f:b9:76:cf:8c:8d:c0:af:dd:04:48:12: fd:5c:b9:94:95:e4:ab:d3:bd:67:55:26:2e:e4:3b: b4:c3:56:8c:2f:cc:c9:e7:aa:3c:24:19:2c:3b:a3: a3:08:56:78:ee:1c:1f:bb:6b:7f:60:66:19:c4:fa: 2e:58:b9:1f:d5:a3:e2:6a:17:c1:4a:9a:0e:db:ba: 09:a3:53:63:e5:65:66:b6:99:0c:62:51:cf:65:3c: f5:aa:4e:2f:8a:8e:f9:91:eb:b7:37:97:b9:d0:62: 5b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:F2:D0:33:3F:47:D5:CC:57:B5:1C:AD:6F:02:FB:9B:3D:FE:12:44 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:06:76:35:51:27:8b:3a:cc:bd:3b:3f:cb:04:04:94:9d:42: 1d:46:97:8c:67:37:e7:73:19:7d:fa:c9:a7:a6:e9:d7:27:1c: 68:56:73:3d:2a:a6:cd:31:03:2c:bf:81:a3:6e:ac:43:5b:2a: 0a:fd:0c:45:92:cd:8c:b5:87:47:81:a8:52:85:19:46:ac:bb: 7c:86:29:af:ec:42:a6:d4:66:e0:65:d1:56:9f:13:a4:85:b3: 00:fc:e6:27:ba:a5:92:68:bb:f5:8b:f0:d6:92:ee:80:5c:a5: 31:43:dc:a1:1f:be:62:42:50:db:31:fe:bc:02:ad:a5:d9:b0: d8:76:bb:b9:4a:5e:f2:0a:a7:8f:59:09:cf:3d:0e:5d:4b:02: 47:49:e3:50:99:c7:fc:ce:cf:a3:fa:04:1d:95:d7:b6:ce:78: 96:4e:d5:bb:23:79:14:dd:c5:a1:06:bd:17:56:78:98:f0:36: 86:1f:f3:37:ff:96:6b:df:76:5b:00:71:a5:46:4c:e8:cf:22: 99:79:40:43:07:02:30:53:0d:38:46:35:35:e2:04:80:a9:ce: e6:8a:df:de:3b:80:cd:dd:b2:a1:3e:e6:9c:25:1b:ce:d7:dc: fa:7e:86:b2:d9:8e:5c:ad:cf:15:bb:f5:23:13:8d:4c:8e:cf: 53:24:35:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZzYeqnVSUKRshUWivWOK4SdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMzEwMTYwMDQzWhcNMjYwMzExMTYwMDQzWjAzMTEwLwYDVQQD EyhmNWYyZDAzMzNmNDdkNWNjNTdiNTFjYWQ2ZjAyZmI5YjNkZmUxMjQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv7059bL4azwbG55rkraivQNFKKLk Qv2c6k5KqsICatGIN13eLiq368pheWJ5a+1mE1qksAmaaBuoiZ3Xld9b6JQYdhXF gJiiMGti2Te4QNacjQ9wOehwvNDrkdqB+pheTNi66H+XwPZxGgBlNUJA5XeSdVr+ O/Jy5BZ6jldCGkJVg9owgyXNR3Jq7E0tQfnKO5eqtlO22KsvuXbPjI3Ar90ESBL9 XLmUleSr071nVSYu5Du0w1aML8zJ56o8JBksO6OjCFZ47hwfu2t/YGYZxPouWLkf 1aPiahfBSpoO27oJo1Nj5WVmtpkMYlHPZTz1qk4vio75keu3N5e50GJbQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPXy0DM/R9XMV7UcrW8C+5s9/hJEMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArAZ2NVEn izrMvTs/ywQElJ1CHUaXjGc353MZffrJp6bp1yccaFZzPSqmzTEDLL+Bo26sQ1sq Cv0MRZLNjLWHR4GoUoUZRqy7fIYpr+xCptRm4GXRVp8TpIWzAPzmJ7qlkmi79Yvw 1pLugFylMUPcoR++YkJQ2zH+vAKtpdmw2Ha7uUpe8gqnj1kJzz0OXUsCR0njUJnH /M7Po/oEHZXXts54lk7VuyN5FN3FoQa9F1Z4mPA2hh/zN/+Wa992WwBxpUZM6M8i mXlAQwcCMFMNOEY1NeIEgKnO5orf3juAzd2yoT7mnCUbztfc+n6GstmOXK3PFbv1 IxONTI7PUyQ1xA== -----END CERTIFICATE-----Generated at Tue Mar 10 18:25:42 2026 by rpki-client