$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: 7Qb/t8CB3PRQ2NqzZRM4WhNzbzGRYcnZgh99evMhMmA= Subject key identifier: 15:0F:1C:0A:75:46:64:C6:75:67:22:03:C7:36:A2:54:13:2D:97:34 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019CBD710EEAA8C2376AB2DCA5F892296A4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 109D Signing time: Thu 05 Mar 2026 10:00:28 +0000 Manifest this update: Thu 05 Mar 2026 10:00:28 +0000 Manifest next update: Fri 06 Mar 2026 10:00:28 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: mx4B+0xjN0gMs5MjkkAYlqr1jOmBzsiZS35kLxL2VLM=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Mar 2026 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:bd:71:0e:ea:a8:c2:37:6a:b2:dc:a5:f8:92:29:6a:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Mar 5 10:00:28 2026 GMT Not After : Mar 6 10:00:28 2026 GMT Subject: CN=150f1c0a754664c675672203c736a254132d9734 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9c:ed:82:e8:ee:87:a5:0e:b1:eb:e0:6a:fb: 1e:00:f7:01:49:52:af:42:55:6f:72:a1:9b:06:a5: 6a:6d:1e:7a:12:5f:84:cf:18:a5:72:86:bd:7a:e3: b9:3e:e7:56:b5:b1:3e:96:8c:c8:88:3a:56:87:3f: 4e:49:d4:f9:2c:41:54:7b:51:4d:cc:b1:6b:48:6d: 46:34:b3:85:52:c9:3d:42:7b:47:38:b3:3a:9d:26: 55:06:b3:91:8d:be:3d:5a:60:ec:46:ca:d0:bb:fe: da:ec:f5:75:f1:f0:99:4b:bb:9a:8d:95:48:19:3a: ed:64:94:6a:70:94:7a:33:26:7c:c4:c3:a2:a2:b8: c0:84:46:c3:89:d4:24:29:c7:1d:d9:a5:ed:4d:e3: 51:a5:d0:79:af:a9:49:3c:1c:e4:6c:c6:90:b2:74: 1c:d9:42:b6:ee:d7:d6:8e:7b:50:23:7a:60:4d:6e: 4d:07:5a:f5:0f:53:09:ac:25:89:c9:bf:a7:7b:6d: 93:b9:8a:1e:dd:91:ff:0b:9b:d7:c7:8c:31:90:62: 8f:03:27:93:e5:07:c0:81:27:0b:8d:96:d8:c2:0b: 16:4b:04:33:5f:a3:80:b3:03:51:b9:b4:7d:91:93: 45:06:4c:78:e9:73:f5:a2:b0:71:e5:48:77:55:d3: 44:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:0F:1C:0A:75:46:64:C6:75:67:22:03:C7:36:A2:54:13:2D:97:34 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:9e:25:a8:12:77:51:6f:19:a3:9c:b3:af:f5:a8:5c:82:7b: e3:f9:aa:95:a3:ea:2e:7a:59:be:41:a2:66:aa:1b:50:db:62: 5c:2e:4c:48:61:85:d5:54:d3:53:bc:be:81:28:6c:ca:17:8a: 50:ad:31:50:05:13:b1:9c:34:50:49:6e:d2:36:25:50:f8:9f: 50:94:e2:14:4b:e3:45:b9:20:9d:f5:52:fc:ef:0c:5e:64:77: 51:1c:f6:bc:54:76:dd:bd:9f:70:03:d7:90:41:05:e6:c3:c0: e2:9a:2c:8e:38:22:c1:52:4f:f1:18:bf:5a:65:43:ea:e7:ca: b0:ae:8c:28:2c:b0:d1:4e:2d:f0:39:9a:3b:be:d1:6c:0f:20: 75:71:f3:c1:d1:af:39:87:74:01:d9:80:a1:77:a6:b3:6e:9b: 74:3c:5a:6e:d8:8f:87:eb:34:95:30:82:10:62:ab:41:b5:8c: e1:6d:22:63:64:41:a2:3c:40:3b:fc:d2:2b:a5:3a:97:00:4e: c8:52:9e:e4:9e:88:02:37:62:d3:54:8b:5a:46:b5:11:0f:b0: fa:0b:7b:ec:9e:87:e8:cf:cc:7f:24:77:88:8b:0f:c2:5b:c1: d1:5d:28:90:38:40:a4:d2:83:0e:28:4c:ba:95:4e:2e:03:1a: 53:cf:0e:00 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZy9cQ7qqMI3arLcpfiSKWpMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMzA1MTAwMDI4WhcNMjYwMzA2MTAwMDI4WjAzMTEwLwYDVQQD EygxNTBmMWMwYTc1NDY2NGM2NzU2NzIyMDNjNzM2YTI1NDEzMmQ5NzM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspztgujuh6UOsevgavseAPcBSVKv QlVvcqGbBqVqbR56El+Ezxilcoa9euO5PudWtbE+lozIiDpWhz9OSdT5LEFUe1FN zLFrSG1GNLOFUsk9QntHOLM6nSZVBrORjb49WmDsRsrQu/7a7PV18fCZS7uajZVI GTrtZJRqcJR6MyZ8xMOiorjAhEbDidQkKccd2aXtTeNRpdB5r6lJPBzkbMaQsnQc 2UK27tfWjntQI3pgTW5NB1r1D1MJrCWJyb+ne22TuYoe3ZH/C5vXx4wxkGKPAyeT 5QfAgScLjZbYwgsWSwQzX6OAswNRubR9kZNFBkx46XP1orBx5Uh3VdNE3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBUPHAp1RmTGdWciA8c2olQTLZc0MB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdJ4lqBJ3 UW8Zo5yzr/WoXIJ74/mqlaPqLnpZvkGiZqobUNtiXC5MSGGF1VTTU7y+gShsyheK UK0xUAUTsZw0UElu0jYlUPifUJTiFEvjRbkgnfVS/O8MXmR3URz2vFR23b2fcAPX kEEF5sPA4posjjgiwVJP8Ri/WmVD6ufKsK6MKCyw0U4t8DmaO77RbA8gdXHzwdGv OYd0AdmAoXems26bdDxabtiPh+s0lTCCEGKrQbWM4W0iY2RBojxAO/zSK6U6lwBO yFKe5J6IAjdi01SLWka1EQ+w+gt77J6H6M/MfyR3iIsPwlvB0V0okDhApNKDDihM upVOLgMaU88OAA== -----END CERTIFICATE-----Generated at Thu Mar 5 19:54:47 2026 by rpki-client