$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: k/aQCGt+mE5aUF9qX7Q2hgpXT/MJey5ySV9ILaBKHCk= Subject key identifier: 5D:EB:C0:D8:9E:3B:54:E3:71:17:9B:19:C0:7E:BB:0F:18:67:C6:89 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019DA5D4DA0AD5770873710706D0E007C64C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 1117 Signing time: Sun 19 Apr 2026 13:01:23 +0000 Manifest this update: Sun 19 Apr 2026 13:01:23 +0000 Manifest next update: Mon 20 Apr 2026 13:01:23 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: BSdlElv5GiCVo7mAhYUW6Qu+0jzut79nmbTxKuMIcmk=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 10: qOS44k4K1WSKtUKGLEhRxJxPEas.roa (hash: FW03t2tk2X1t0JN65p0CDI9DvEztasvMAKi+nwmwwnw=) 11: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Apr 2026 12:11:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:a5:d4:da:0a:d5:77:08:73:71:07:06:d0:e0:07:c6:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Apr 19 13:01:23 2026 GMT Not After : Apr 20 13:01:23 2026 GMT Subject: CN=5debc0d89e3b54e371179b19c07ebb0f1867c689 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d0:87:ce:a8:39:25:39:ea:a7:c1:1e:64:c6: 0b:83:7b:8c:6b:f9:83:f0:ba:af:13:9c:b0:25:aa: 76:48:06:0f:04:bf:36:70:93:a9:c0:4f:ab:30:d9: 93:b8:56:68:24:8d:c5:0b:76:1d:48:d3:4c:50:fa: d0:15:f3:eb:66:80:0b:14:4f:00:f3:0c:ae:9b:bd: a3:d1:36:4f:c9:b6:bd:a3:b0:1f:02:ad:f6:cf:cb: a3:8a:c2:58:e9:b5:50:48:aa:aa:80:81:de:db:9e: b8:d0:b6:1a:2d:1a:27:0e:3c:8e:dc:b6:3f:d7:17: ab:08:21:5a:14:8c:18:e4:a6:d9:77:97:d8:82:a0: 4e:0c:ce:c4:07:c0:41:c9:57:97:8a:be:24:13:12: 88:0f:41:24:f7:6c:f1:67:85:4e:4b:82:91:01:60: 38:49:37:8d:ba:40:e7:88:8a:e1:a4:e8:6e:28:b2: 84:82:28:7d:96:5e:0f:07:83:a2:38:fc:56:a0:a0: b2:1e:0a:ec:9d:31:dd:d5:9c:db:2d:57:37:42:e8: 01:d3:cf:6a:31:38:0f:63:23:09:bf:9a:92:44:e1: 75:20:ec:46:c1:cb:1e:96:89:7f:cc:7d:36:e5:b6: 64:c5:1d:1d:e2:ca:46:e1:27:39:da:55:be:be:b8: cf:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:EB:C0:D8:9E:3B:54:E3:71:17:9B:19:C0:7E:BB:0F:18:67:C6:89 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:e4:16:9e:4f:e5:07:c0:71:d2:05:69:91:ba:c9:db:db:fe: 35:b0:d6:55:a2:26:ec:15:39:8c:b3:da:49:96:98:88:8b:5d: 7e:e1:05:79:06:2d:41:e5:ed:6e:78:20:37:b9:f0:62:d3:22: 7e:db:5f:77:ac:f2:a3:cf:5e:60:82:31:01:d3:74:2c:5b:e2: f7:0e:0e:51:0c:ba:71:2f:92:53:ba:16:95:78:32:c3:9d:48: 05:99:6c:13:ec:9e:4b:f8:6a:43:b1:f4:cc:42:48:46:34:8b: e3:0e:65:d0:7c:10:6c:5c:90:12:fa:82:45:86:71:90:3d:a3: 46:f2:0e:aa:12:83:ba:86:52:7a:6d:8e:b8:fa:39:ca:39:c2: 41:a4:d3:52:7f:68:27:44:44:9e:4f:2b:f3:3f:5c:22:8a:4a: 68:a3:bc:b5:f7:39:ff:e4:dc:f6:59:ec:c3:20:0c:24:fe:f0: a8:c8:fc:b0:13:e4:e4:62:cc:2a:fb:88:fb:a6:2c:4d:5a:5d: 4f:f5:0b:25:b0:3f:a0:da:2e:7a:4a:86:c0:76:0c:a2:b2:e6: 01:3f:68:4a:e6:f7:fa:2b:fd:20:2e:f6:c9:ed:b6:51:cd:35: dd:a1:4e:74:a6:68:e3:de:30:f6:88:7e:53:72:6d:78:8e:f0: 85:a3:a1:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2l1NoK1XcIc3EHBtDgB8ZMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwNDE5MTMwMTIzWhcNMjYwNDIwMTMwMTIzWjAzMTEwLwYDVQQD Eyg1ZGViYzBkODllM2I1NGUzNzExNzliMTljMDdlYmIwZjE4NjdjNjg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs9CHzqg5JTnqp8EeZMYLg3uMa/mD 8LqvE5ywJap2SAYPBL82cJOpwE+rMNmTuFZoJI3FC3YdSNNMUPrQFfPrZoALFE8A 8wyum72j0TZPyba9o7AfAq32z8ujisJY6bVQSKqqgIHe25640LYaLRonDjyO3LY/ 1xerCCFaFIwY5KbZd5fYgqBODM7EB8BByVeXir4kExKID0Ek92zxZ4VOS4KRAWA4 STeNukDniIrhpOhuKLKEgih9ll4PB4OiOPxWoKCyHgrsnTHd1ZzbLVc3QugB089q MTgPYyMJv5qSROF1IOxGwcselol/zH025bZkxR0d4spG4Sc52lW+vrjP7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF3rwNieO1TjcRebGcB+uw8YZ8aJMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWeQWnk/l B8Bx0gVpkbrJ29v+NbDWVaIm7BU5jLPaSZaYiItdfuEFeQYtQeXtbnggN7nwYtMi fttfd6zyo89eYIIxAdN0LFvi9w4OUQy6cS+SU7oWlXgyw51IBZlsE+yeS/hqQ7H0 zEJIRjSL4w5l0HwQbFyQEvqCRYZxkD2jRvIOqhKDuoZSem2OuPo5yjnCQaTTUn9o J0REnk8r8z9cIopKaKO8tfc5/+Tc9lnswyAMJP7wqMj8sBPk5GLMKvuI+6YsTVpd T/ULJbA/oNouekqGwHYMorLmAT9oSub3+iv9IC72ye22Uc013aFOdKZo494w9oh+ U3JteI7whaOh2Q== -----END CERTIFICATE-----Generated at Sun Apr 19 20:33:54 2026 by rpki-client