$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: Apj10fWRD1CcI1vvZuScbKC9U5AO9HkKbq+BASbxLxA= Subject key identifier: 62:14:57:EF:A2:F7:BF:31:76:E4:11:DF:F0:D0:66:A0:9E:47:C1:D2 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019A8A2E654226B127DDEB090961B42B15B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0F72 Signing time: Sun 16 Nov 2025 01:01:27 +0000 Manifest this update: Sun 16 Nov 2025 01:01:27 +0000 Manifest next update: Mon 17 Nov 2025 01:01:27 +0000 Files and hashes: 1: 0qafQTKpUINoCVOYOkW5UnOWR94.roa (hash: MusUL5944aEPud+AesWo0c3hbkne3BfD5w+aqIADrZU=) 2: 3BwQGvtGG9EzTodyzZ_T_NlKH8c.roa (hash: 3YVq+Q3Pxf3bX0RyqLEPepY9xeWnJNOauq8KUa99lAY=) 3: 3jf0qN8pQHNEeZXSK9GB9T1D4_E.roa (hash: DRAm1n/nD8B8BQj+jf77wLhiQpGtxWx72r8uwhAFjaU=) 4: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 5: 89lMNrhD2F5x0Ke_v2bBXPEQYgU.roa (hash: K5oebEL4UYGbpI6omznf50HWdMyeoL9B3ezd2prsxV4=) 6: E_3-qae-50qWA7R56c8VnNml0ZU.roa (hash: nkgMixGbN46lHgT97kcU8QjXRmEi7iabVPw78zf1uq4=) 7: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 8: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: YA9cd9eODFPw2jXw2XyrJ+xWC8aHtlw8I4jb64QJId0=) 9: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 10: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 11: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 12: jFuP-GeZY6Z37SVSGqClEWTPyy4.roa (hash: 65ZwPuCoL1Qqn8JPgxAd7UOuJekWTxCoLNYfjh3KVJo=) 13: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) 14: vmyAzNx7YC2gCU3FErnhSsG464E.roa (hash: b2H/65WWZwau4OQRXdpkdBOUisTMki5wQZ0WO+I8q90=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 17 Nov 2025 00:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:8a:2e:65:42:26:b1:27:dd:eb:09:09:61:b4:2b:15:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Nov 16 01:01:27 2025 GMT Not After : Nov 17 01:01:27 2025 GMT Subject: CN=621457efa2f7bf3176e411dff0d066a09e47c1d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ba:d5:99:72:00:f0:d8:d1:ab:2b:2d:65:03: 24:c8:69:2c:4d:fe:46:04:33:a7:d1:13:18:12:b3: e6:c1:ed:c2:25:54:a2:5b:63:f6:52:2a:ed:68:ba: bf:6f:bf:54:fa:6f:c5:c0:78:98:97:a9:f6:85:0a: 8b:b9:46:08:08:64:2f:f9:f9:b9:45:36:73:16:b8: dc:bf:1c:0e:05:06:ea:cb:ba:60:87:22:4b:9f:d9: 44:28:3a:b7:28:36:80:2d:6b:f0:07:9e:f5:2b:93: a0:aa:02:06:80:a7:4c:a5:ae:2e:08:bd:2e:ac:a1: 1b:79:1a:b1:25:71:eb:c4:79:bb:bd:22:ba:2b:e9: a3:8c:fd:9a:6b:72:5d:12:f4:1d:52:b2:b3:1f:8b: a1:35:43:eb:21:b9:08:9a:b7:67:a1:32:29:d9:89: 11:2f:bc:15:65:6d:7c:44:0d:a8:53:3b:9c:e9:09: e6:17:b6:d1:d3:2a:94:bd:dc:ee:f3:b4:79:60:33: 0a:db:31:81:c7:57:f8:f0:97:6c:3b:5c:a0:a3:f8: 1c:e7:a5:dd:5a:c1:e6:ef:1e:ef:38:ad:76:2c:fe: f7:c1:44:68:0c:aa:11:3e:f0:1c:60:65:5c:a2:34: 6f:42:93:39:ed:a8:6c:76:cc:9a:aa:50:3b:eb:a0: e1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:14:57:EF:A2:F7:BF:31:76:E4:11:DF:F0:D0:66:A0:9E:47:C1:D2 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:d9:b1:46:c0:d0:a1:04:01:94:78:8a:89:75:ab:04:6e:8d: 69:2f:65:cd:14:cc:d1:32:21:49:4c:94:64:8a:f8:61:d6:80: ef:db:fb:c5:7b:17:67:f9:b5:29:34:1f:6d:79:ed:70:07:c9: a6:13:78:ab:80:1f:08:f4:0e:2f:ca:31:68:dc:48:2c:6d:f0: 4e:be:92:e0:25:45:96:76:ca:19:02:da:68:9b:f8:35:a7:59: 9b:7f:46:e1:3d:4c:c5:0e:34:2b:e3:82:f8:d1:64:28:98:a5: c5:73:c9:8d:44:86:0b:e9:25:95:ee:ed:44:8e:41:a3:fa:2a: de:1e:80:53:76:0a:58:67:d1:b0:88:6d:8f:de:78:38:6f:66: 9d:8c:a2:61:26:64:8c:5a:30:39:e5:66:a4:ce:51:6c:65:7a: 90:4d:c1:ed:66:b4:52:1d:48:9c:a8:f0:a3:e9:43:7f:77:63: 87:17:a7:93:f9:7a:ed:99:e8:36:69:5d:14:0d:4a:d5:bc:4d: 83:17:80:1b:73:50:fa:39:b8:c8:9d:77:23:55:fd:1e:64:b8: 11:fb:14:e7:f2:d6:02:53:1e:cc:8a:f8:30:e4:af:46:c7:9d: fc:68:20:8e:14:a6:78:d2:6a:8e:a7:88:f2:9a:78:29:81:12: 55:5f:cd:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZqKLmVCJrEn3esJCWG0KxW0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUxMTE2MDEwMTI3WhcNMjUxMTE3MDEwMTI3WjAzMTEwLwYDVQQD Eyg2MjE0NTdlZmEyZjdiZjMxNzZlNDExZGZmMGQwNjZhMDllNDdjMWQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtbrVmXIA8NjRqystZQMkyGksTf5G BDOn0RMYErPmwe3CJVSiW2P2UirtaLq/b79U+m/FwHiYl6n2hQqLuUYICGQv+fm5 RTZzFrjcvxwOBQbqy7pghyJLn9lEKDq3KDaALWvwB571K5OgqgIGgKdMpa4uCL0u rKEbeRqxJXHrxHm7vSK6K+mjjP2aa3JdEvQdUrKzH4uhNUPrIbkImrdnoTIp2YkR L7wVZW18RA2oUzuc6QnmF7bR0yqUvdzu87R5YDMK2zGBx1f48JdsO1ygo/gc56Xd WsHm7x7vOK12LP73wURoDKoRPvAcYGVcojRvQpM57ahsdsyaqlA766Dh/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGIUV++i978xduQR3/DQZqCeR8HSMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQdmxRsDQ oQQBlHiKiXWrBG6NaS9lzRTM0TIhSUyUZIr4YdaA79v7xXsXZ/m1KTQfbXntcAfJ phN4q4AfCPQOL8oxaNxILG3wTr6S4CVFlnbKGQLaaJv4NadZm39G4T1MxQ40K+OC +NFkKJilxXPJjUSGC+klle7tRI5Bo/oq3h6AU3YKWGfRsIhtj954OG9mnYyiYSZk jFowOeVmpM5RbGV6kE3B7Wa0Uh1InKjwo+lDf3djhxenk/l67ZnoNmldFA1K1bxN gxeAG3NQ+jm4yJ13I1X9HmS4EfsU5/LWAlMezIr4MOSvRsed/GggjhSmeNJqjqeI 8pp4KYESVV/NOg== -----END CERTIFICATE-----Generated at Sun Nov 16 09:50:56 2025 by rpki-client