$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: 6hPl6Vn4Em3dRqbejQJrprHyOsirDr0a2xtbTKdRtKk= Subject key identifier: F2:E4:AA:6B:5D:48:19:67:C3:8A:12:E7:D2:47:12:20:AD:81:F5:F6 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019A74EFCF33B7A9899140229F9F59A17F6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0F67 Signing time: Tue 11 Nov 2025 22:01:04 +0000 Manifest this update: Tue 11 Nov 2025 22:01:04 +0000 Manifest next update: Wed 12 Nov 2025 22:01:04 +0000 Files and hashes: 1: 0qafQTKpUINoCVOYOkW5UnOWR94.roa (hash: MusUL5944aEPud+AesWo0c3hbkne3BfD5w+aqIADrZU=) 2: 3BwQGvtGG9EzTodyzZ_T_NlKH8c.roa (hash: 3YVq+Q3Pxf3bX0RyqLEPepY9xeWnJNOauq8KUa99lAY=) 3: 3jf0qN8pQHNEeZXSK9GB9T1D4_E.roa (hash: DRAm1n/nD8B8BQj+jf77wLhiQpGtxWx72r8uwhAFjaU=) 4: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 5: 89lMNrhD2F5x0Ke_v2bBXPEQYgU.roa (hash: K5oebEL4UYGbpI6omznf50HWdMyeoL9B3ezd2prsxV4=) 6: E_3-qae-50qWA7R56c8VnNml0ZU.roa (hash: nkgMixGbN46lHgT97kcU8QjXRmEi7iabVPw78zf1uq4=) 7: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 8: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: F+Td0OuuUuHKPjV0M3FAL7u+SITSHiHqcXbDffflf/w=) 9: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 10: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 11: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 12: jFuP-GeZY6Z37SVSGqClEWTPyy4.roa (hash: 65ZwPuCoL1Qqn8JPgxAd7UOuJekWTxCoLNYfjh3KVJo=) 13: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) 14: vmyAzNx7YC2gCU3FErnhSsG464E.roa (hash: b2H/65WWZwau4OQRXdpkdBOUisTMki5wQZ0WO+I8q90=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 12 Nov 2025 22:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:74:ef:cf:33:b7:a9:89:91:40:22:9f:9f:59:a1:7f:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Nov 11 22:01:04 2025 GMT Not After : Nov 12 22:01:04 2025 GMT Subject: CN=f2e4aa6b5d481967c38a12e7d2471220ad81f5f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a1:9a:0c:a0:e6:8a:ea:4b:33:57:a5:64:d0: 50:54:48:4b:3b:8d:f7:33:06:5b:00:50:91:57:a4: 1e:e5:6f:aa:f9:8c:d2:bf:89:2b:06:fc:2f:b6:1a: 24:8e:6e:ce:d0:90:29:0e:ee:eb:e3:92:e4:a4:31: 83:83:af:7b:b4:ba:1a:d0:75:07:eb:85:30:d6:09: 19:a4:8f:36:d9:0b:83:74:de:c1:19:37:26:8e:44: 95:69:04:6e:dd:72:63:7e:ba:d0:05:2f:88:4d:10: a0:c6:9b:5d:41:73:e4:0d:87:5d:48:0f:9e:f8:c1: ac:1c:da:02:6e:fe:a9:87:36:54:86:5d:70:a2:b1: 53:61:0e:56:ff:64:7f:3a:d6:b4:ad:09:55:a4:75: 17:f1:96:ff:7d:43:e3:f0:0a:2b:5f:d3:ee:28:2a: 7d:94:14:9f:65:81:1c:9c:22:26:9c:e8:53:22:ae: 36:7e:bd:db:10:9a:8b:9f:77:b4:aa:e3:33:14:14: b5:f8:00:09:84:b2:9f:1f:fa:c9:db:5e:c8:fe:f6: 0c:7a:90:52:08:b8:96:5a:41:1c:d2:a3:fc:7e:20: 53:96:bb:02:de:54:d5:7d:2e:dc:fb:a6:75:b7:4c: e5:f1:23:5c:70:4c:aa:bc:32:e0:59:2c:90:31:1d: cd:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:E4:AA:6B:5D:48:19:67:C3:8A:12:E7:D2:47:12:20:AD:81:F5:F6 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:e4:c0:60:06:6d:44:b0:36:1b:18:1f:fd:45:6e:00:b1:38: 65:48:9d:c6:fa:55:60:df:40:10:18:5a:4f:95:a0:fd:d9:a0: 96:3a:18:de:1d:2c:cc:97:5f:ee:90:34:c1:cb:17:1c:0e:e4: a4:08:28:c0:49:32:37:9b:0d:4d:08:83:5d:5f:2a:2a:25:52: b7:c3:5d:e0:b6:60:41:d7:45:09:08:48:7c:8c:38:61:ad:60: 66:53:82:2d:49:bf:db:50:46:84:ca:85:03:45:89:73:6e:e6: b1:bf:b3:13:d7:f5:ad:e1:6b:ff:84:51:d6:55:d2:0a:5d:49: 1f:25:0e:ff:b2:03:8b:36:62:d5:19:2a:40:80:75:f0:42:ee: 86:36:61:fb:1d:f2:a9:e3:ab:61:f0:40:35:ac:21:d0:65:e2: 01:36:a2:eb:a1:ce:4f:38:b2:20:b5:13:ba:5b:35:2b:52:58: 6f:1b:0d:b9:74:56:52:4c:09:86:5d:b4:c3:53:eb:7b:3d:a7: 4c:9d:5b:d8:0a:b7:c5:e2:1a:b9:a1:41:f7:a7:21:ff:04:ac: c7:1b:94:35:5d:86:d5:5e:95:7a:ca:6c:f7:1d:c3:66:66:fd: ed:bb:88:4e:77:e9:be:76:2c:85:d3:94:e5:d4:d1:6a:52:0e: f3:77:a9:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZp0788zt6mJkUAin59ZoX9qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUxMTExMjIwMTA0WhcNMjUxMTEyMjIwMTA0WjAzMTEwLwYDVQQD EyhmMmU0YWE2YjVkNDgxOTY3YzM4YTEyZTdkMjQ3MTIyMGFkODFmNWY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuqGaDKDmiupLM1elZNBQVEhLO433 MwZbAFCRV6Qe5W+q+YzSv4krBvwvthokjm7O0JApDu7r45LkpDGDg697tLoa0HUH 64Uw1gkZpI822QuDdN7BGTcmjkSVaQRu3XJjfrrQBS+ITRCgxptdQXPkDYddSA+e +MGsHNoCbv6phzZUhl1worFTYQ5W/2R/Ota0rQlVpHUX8Zb/fUPj8AorX9PuKCp9 lBSfZYEcnCImnOhTIq42fr3bEJqLn3e0quMzFBS1+AAJhLKfH/rJ217I/vYMepBS CLiWWkEc0qP8fiBTlrsC3lTVfS7c+6Z1t0zl8SNccEyqvDLgWSyQMR3NGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPLkqmtdSBlnw4oS59JHEiCtgfX2MB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfOTAYAZt RLA2Gxgf/UVuALE4ZUidxvpVYN9AEBhaT5Wg/dmgljoY3h0szJdf7pA0wcsXHA7k pAgowEkyN5sNTQiDXV8qKiVSt8Nd4LZgQddFCQhIfIw4Ya1gZlOCLUm/21BGhMqF A0WJc27msb+zE9f1reFr/4RR1lXSCl1JHyUO/7IDizZi1RkqQIB18ELuhjZh+x3y qeOrYfBANawh0GXiATai66HOTziyILUTuls1K1JYbxsNuXRWUkwJhl20w1Prez2n TJ1b2Aq3xeIauaFB96ch/wSsxxuUNV2G1V6Vesps9x3DZmb97buITnfpvnYshdOU 5dTRalIO83ep0A== -----END CERTIFICATE-----Generated at Wed Nov 12 07:47:37 2025 by rpki-client