$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: xcyRDiC/ecGIsJg/i2TL5oZLjBsYvWLNejs5aKxBS1o= Subject key identifier: 08:80:1F:46:1D:DB:43:E3:41:09:97:7F:96:0F:B1:8C:84:12:64:B1 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019C8F183EB88A7B7102524F1234F3183C85 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 1085 Signing time: Tue 24 Feb 2026 10:00:56 +0000 Manifest this update: Tue 24 Feb 2026 10:00:56 +0000 Manifest next update: Wed 25 Feb 2026 10:00:56 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: FrAiwMFnMr9mcM1AbHsXDCyFuEdiBCy7HOaD5i6aqi4=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 25 Feb 2026 07:20:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:8f:18:3e:b8:8a:7b:71:02:52:4f:12:34:f3:18:3c:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Feb 24 10:00:56 2026 GMT Not After : Feb 25 10:00:56 2026 GMT Subject: CN=08801f461ddb43e34109977f960fb18c841264b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b0:a4:f7:55:c9:6a:5c:bc:6c:fd:41:56:63: c0:fb:39:65:cc:3e:24:6f:33:cd:22:b2:27:0b:f4: b0:fa:ae:36:0e:db:43:7d:6a:20:f8:4d:21:b4:21: a8:0c:dd:1b:41:7f:2e:dc:3d:c2:44:91:86:54:3a: 94:d6:db:c5:b4:87:f9:ee:97:6e:69:02:38:1c:ba: 75:a6:02:ee:9a:6f:3b:93:69:74:bf:29:34:ee:8b: f0:f1:b8:f5:ef:3d:bc:f5:72:52:a3:58:d5:2d:a2: e3:ab:e5:a1:a5:5e:7d:54:9f:3c:46:01:e4:39:53: 69:81:9a:85:89:8d:c1:bd:b9:73:5a:56:af:0b:75: f2:f1:64:5c:57:a5:8a:22:e0:03:26:33:26:71:3a: 7c:8d:00:9a:68:b7:a0:46:cc:ad:d4:74:d1:03:ce: ce:04:08:8a:a2:31:83:5a:31:75:29:30:07:1a:10: ce:6a:95:5e:a7:c8:7e:e1:e8:55:e3:a8:6e:a6:52: cf:ed:6d:2d:15:92:b5:63:d9:b7:0a:fe:6f:64:9c: 43:20:87:da:ea:f9:14:34:d9:b5:94:29:45:fb:90: d7:0a:36:c2:b3:48:11:d6:87:e5:8f:51:30:97:80: dc:de:53:43:65:75:ca:88:d1:2c:19:62:1e:68:0d: 8a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:80:1F:46:1D:DB:43:E3:41:09:97:7F:96:0F:B1:8C:84:12:64:B1 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:75:ad:84:00:04:d2:0f:51:96:40:ed:5a:61:d2:1c:14:4f: ec:3f:05:a5:4e:7d:91:d4:b6:3a:df:ef:43:01:77:7a:8b:f3: 26:2a:cf:52:70:da:b0:d8:5f:ab:10:04:04:1c:41:d9:ff:c9: 48:f5:41:1e:37:0e:c9:76:c8:96:e1:46:d3:e2:88:9a:57:20: d3:7a:ca:8d:7d:9f:39:b4:52:85:dc:02:a7:c8:f3:d5:c2:67: 70:dc:60:0c:4a:68:1b:58:3f:64:53:05:8d:cc:1a:a2:ce:ba: da:a1:d9:10:58:da:2e:55:68:a6:e6:ef:b4:a0:fa:13:7f:e7: c8:9c:da:5e:7b:5e:1d:01:4f:64:9c:99:44:cd:38:f6:a8:3a: 7e:aa:2e:d1:f6:ba:e7:f6:74:7f:7c:93:db:38:9a:da:cd:21: 63:aa:ea:bc:51:be:34:dd:c0:3c:60:7d:f1:94:b0:6a:c7:50: c5:88:90:bc:a6:f0:89:7a:3b:fd:79:8f:8f:95:51:ae:4e:40: db:43:1b:9e:02:d0:4b:77:14:1c:0f:12:b9:12:f9:d2:e6:b1: d1:fd:52:3d:30:39:7f:5a:a5:67:0b:49:98:26:ba:d2:fe:c7: 2c:0e:0b:63:5c:c4:16:cc:2e:ee:98:da:ed:fa:69:17:02:65: 4d:7d:79:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZyPGD64intxAlJPEjTzGDyFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMjI0MTAwMDU2WhcNMjYwMjI1MTAwMDU2WjAzMTEwLwYDVQQD EygwODgwMWY0NjFkZGI0M2UzNDEwOTk3N2Y5NjBmYjE4Yzg0MTI2NGIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAybCk91XJaly8bP1BVmPA+zllzD4k bzPNIrInC/Sw+q42DttDfWog+E0htCGoDN0bQX8u3D3CRJGGVDqU1tvFtIf57pdu aQI4HLp1pgLumm87k2l0vyk07ovw8bj17z289XJSo1jVLaLjq+WhpV59VJ88RgHk OVNpgZqFiY3BvblzWlavC3Xy8WRcV6WKIuADJjMmcTp8jQCaaLegRsyt1HTRA87O BAiKojGDWjF1KTAHGhDOapVep8h+4ehV46huplLP7W0tFZK1Y9m3Cv5vZJxDIIfa 6vkUNNm1lClF+5DXCjbCs0gR1oflj1Ewl4Dc3lNDZXXKiNEsGWIeaA2KkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAiAH0Yd20PjQQmXf5YPsYyEEmSxMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOXWthAAE 0g9RlkDtWmHSHBRP7D8FpU59kdS2Ot/vQwF3eovzJirPUnDasNhfqxAEBBxB2f/J SPVBHjcOyXbIluFG0+KImlcg03rKjX2fObRShdwCp8jz1cJncNxgDEpoG1g/ZFMF jcwaos662qHZEFjaLlVopubvtKD6E3/nyJzaXnteHQFPZJyZRM049qg6fqou0fa6 5/Z0f3yT2zia2s0hY6rqvFG+NN3APGB98ZSwasdQxYiQvKbwiXo7/XmPj5VRrk5A 20MbngLQS3cUHA8SuRL50uax0f1SPTA5f1qlZwtJmCa60v7HLA4LY1zEFswu7pja 7fppFwJlTX15bg== -----END CERTIFICATE-----Generated at Tue Feb 24 14:34:56 2026 by rpki-client