$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: 7wiFN5qkUEa1ie8+U8/qNlloxO1zu8K5CcxGg8W90HU= Subject key identifier: B6:26:30:CC:15:D1:4B:33:98:B6:0F:9C:D4:E2:41:92:C8:21:C7:7C Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 0199571F69EEB2BFB2491E0846B73984C302 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0ED2 Signing time: Wed 17 Sep 2025 10:01:40 +0000 Manifest this update: Wed 17 Sep 2025 10:01:40 +0000 Manifest next update: Thu 18 Sep 2025 10:01:40 +0000 Files and hashes: 1: 3BwQGvtGG9EzTodyzZ_T_NlKH8c.roa (hash: 3YVq+Q3Pxf3bX0RyqLEPepY9xeWnJNOauq8KUa99lAY=) 2: 3jf0qN8pQHNEeZXSK9GB9T1D4_E.roa (hash: DRAm1n/nD8B8BQj+jf77wLhiQpGtxWx72r8uwhAFjaU=) 3: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 4: 89lMNrhD2F5x0Ke_v2bBXPEQYgU.roa (hash: K5oebEL4UYGbpI6omznf50HWdMyeoL9B3ezd2prsxV4=) 5: E_3-qae-50qWA7R56c8VnNml0ZU.roa (hash: nkgMixGbN46lHgT97kcU8QjXRmEi7iabVPw78zf1uq4=) 6: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 7: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: U5o7SNWyN4vPPFSSCLDVCEL+oJGfiAE4mL5QizVIADI=) 8: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 9: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 10: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 11: jFuP-GeZY6Z37SVSGqClEWTPyy4.roa (hash: 65ZwPuCoL1Qqn8JPgxAd7UOuJekWTxCoLNYfjh3KVJo=) 12: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) 13: oEuyAAJZN4XAHoWmGWmvPb4FubQ.roa (hash: esXNrVEA5MkO3OsllRSKIYSvaqpShmC/xd9y//cEJ8g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Sep 2025 10:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:57:1f:69:ee:b2:bf:b2:49:1e:08:46:b7:39:84:c3:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Sep 17 10:01:40 2025 GMT Not After : Sep 18 10:01:40 2025 GMT Subject: CN=b62630cc15d14b3398b60f9cd4e24192c821c77c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ad:a6:b8:65:9d:c2:e2:ab:0a:d4:18:a8:f4: 38:56:80:b3:c7:88:88:c9:0c:a6:5f:ba:75:32:e5: 07:6b:f2:ba:a2:4d:5d:bd:10:ce:ef:bc:b6:80:6e: 1e:26:a6:59:a1:2e:7c:2a:15:76:99:e1:b2:d0:bb: f1:6c:02:75:e8:20:a2:92:16:46:a8:96:5c:a6:f8: d9:75:06:20:a6:3a:23:a1:b3:21:40:f5:4a:e2:a5: a0:15:80:65:36:0c:94:1d:db:58:5a:2e:12:66:96: b8:0c:3f:55:74:dd:27:2a:a5:3d:e9:a4:ea:aa:3c: 18:37:f2:c1:33:0d:d9:d0:1c:06:2a:6d:11:4d:76: 36:c9:cc:7e:2d:45:89:7e:51:58:04:7d:c1:62:6b: 40:46:ff:b0:9c:b5:89:42:38:b0:67:49:aa:4f:f8: d1:44:14:7b:50:42:70:4d:b6:d4:d7:53:f1:85:1d: 0f:24:65:e2:e0:08:3e:f3:bb:2a:19:b0:b1:0f:fe: 94:fb:00:ca:4a:8d:73:5d:cc:8b:8d:5f:31:ce:56: 30:d1:27:e8:de:d3:30:18:3c:c4:40:20:f5:56:57: d4:5d:8f:fe:ad:98:43:5a:9b:42:3b:46:44:86:5a: e3:ca:51:56:ab:38:fc:eb:55:07:74:b8:d6:a9:9b: cd:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:26:30:CC:15:D1:4B:33:98:B6:0F:9C:D4:E2:41:92:C8:21:C7:7C X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:eb:1c:29:cc:51:00:94:93:9d:81:5c:2d:ae:8a:d0:84:60: f3:2f:dc:88:68:00:9b:08:62:3c:8f:9f:11:bf:c8:90:eb:36: 62:a2:60:b9:8e:6e:21:32:4f:e6:3f:5d:82:b3:6b:de:e5:d4: 5c:ce:c7:70:a8:f8:c2:a7:4a:c3:46:ee:3e:41:91:ea:6d:ae: 97:23:60:68:c4:dd:1a:a4:07:88:fe:0d:c6:e9:7d:e7:03:43: 7e:58:57:31:2d:36:de:7f:20:49:b5:57:45:89:48:08:ef:56: 82:55:63:75:89:9d:dc:15:d7:70:ad:2c:40:79:db:0b:b2:09: f2:f4:89:0d:84:7d:17:73:8a:e0:76:4b:22:03:7f:b8:2a:48: 74:34:e0:b4:56:d5:dc:12:d0:85:20:aa:cb:dc:47:3f:53:0c: 28:2a:51:8b:6f:ed:06:eb:18:73:bf:e6:1b:5f:26:34:8b:08: c1:34:e7:4c:d8:e4:db:54:65:a5:0f:0a:25:15:7a:b5:80:71: 3f:60:d5:cd:f6:ec:9b:c1:6e:08:04:f6:a9:42:8e:e2:83:b7: 6d:4b:8f:c3:a6:2d:89:e4:64:36:df:f7:23:80:6d:4b:dc:cb: 03:c3:76:2c:49:fb:8d:dd:6a:63:03:3a:7a:f2:fe:51:7c:60: 3f:ac:ff:a7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZlXH2nusr+ySR4IRrc5hMMCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUwOTE3MTAwMTQwWhcNMjUwOTE4MTAwMTQwWjAzMTEwLwYDVQQD EyhiNjI2MzBjYzE1ZDE0YjMzOThiNjBmOWNkNGUyNDE5MmM4MjFjNzdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyq2muGWdwuKrCtQYqPQ4VoCzx4iI yQymX7p1MuUHa/K6ok1dvRDO77y2gG4eJqZZoS58KhV2meGy0LvxbAJ16CCikhZG qJZcpvjZdQYgpjojobMhQPVK4qWgFYBlNgyUHdtYWi4SZpa4DD9VdN0nKqU96aTq qjwYN/LBMw3Z0BwGKm0RTXY2ycx+LUWJflFYBH3BYmtARv+wnLWJQjiwZ0mqT/jR RBR7UEJwTbbU11PxhR0PJGXi4Ag+87sqGbCxD/6U+wDKSo1zXcyLjV8xzlYw0Sfo 3tMwGDzEQCD1VlfUXY/+rZhDWptCO0ZEhlrjylFWqzj861UHdLjWqZvNpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLYmMMwV0UszmLYPnNTiQZLIIcd8MB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfuscKcxR AJSTnYFcLa6K0IRg8y/ciGgAmwhiPI+fEb/IkOs2YqJguY5uITJP5j9dgrNr3uXU XM7HcKj4wqdKw0buPkGR6m2ulyNgaMTdGqQHiP4Nxul95wNDflhXMS023n8gSbVX RYlICO9WglVjdYmd3BXXcK0sQHnbC7IJ8vSJDYR9F3OK4HZLIgN/uCpIdDTgtFbV 3BLQhSCqy9xHP1MMKCpRi2/tBusYc7/mG18mNIsIwTTnTNjk21RlpQ8KJRV6tYBx P2DVzfbsm8FuCAT2qUKO4oO3bUuPw6YtieRkNt/3I4BtS9zLA8N2LEn7jd1qYwM6 evL+UXxgP6z/pw== -----END CERTIFICATE-----Generated at Wed Sep 17 18:16:10 2025 by rpki-client