$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: ktCOgn3HYl0+IU7MOoE+Bd7ANSYUcSPf6GygxsizQtw= Subject key identifier: 34:4D:24:C1:07:96:28:91:07:4F:0B:C5:DF:EC:F5:0C:81:1F:28:05 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019E0E1D2B5976013D1C339AC520AB1DC1CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 114D Signing time: Sat 09 May 2026 19:00:53 +0000 Manifest this update: Sat 09 May 2026 19:00:53 +0000 Manifest next update: Sun 10 May 2026 19:00:53 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: bJ0ervQBVZNPseneFdVa1ZG/7QKx+gahwsUsAREcX/0=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 10: qOS44k4K1WSKtUKGLEhRxJxPEas.roa (hash: FW03t2tk2X1t0JN65p0CDI9DvEztasvMAKi+nwmwwnw=) 11: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 10 May 2026 18:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:0e:1d:2b:59:76:01:3d:1c:33:9a:c5:20:ab:1d:c1:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: May 9 19:00:53 2026 GMT Not After : May 10 19:00:53 2026 GMT Subject: CN=344d24c107962891074f0bc5dfecf50c811f2805 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ec:d2:06:0d:fc:dc:3f:09:d7:a9:7b:4e:aa: 18:62:38:f3:fb:55:12:49:d7:42:ce:66:e9:a7:6c: eb:c2:6c:a1:06:69:0c:ad:42:70:78:8d:ea:b8:3d: a8:a4:17:13:8d:b5:d2:91:ca:ce:28:78:34:d4:e9: de:46:87:b5:b5:fb:4d:48:83:26:1b:8a:e2:88:02: 00:f1:4c:45:86:f1:0c:b3:98:12:3a:2d:fb:ae:95: f6:67:d3:00:09:74:81:4b:d4:d3:be:80:ee:19:7e: dd:34:1e:1c:d5:57:3d:10:a3:62:8d:af:67:e1:0b: 39:59:1a:2b:f3:18:e4:bd:7a:e2:d7:2e:b0:f8:11: fd:cb:df:c2:c4:0f:59:46:53:9f:f0:11:bf:56:44: 89:b6:a5:09:d7:6d:cc:d4:84:42:af:4a:38:55:2d: 8a:98:14:b0:06:04:f8:ab:32:d2:95:34:2f:8d:43: 3c:3b:d2:30:d1:5c:84:bf:ad:22:51:b9:c9:d2:4b: 5c:32:67:44:63:9c:2b:26:c9:aa:59:62:ba:49:b1: 49:a5:16:e8:da:e4:42:1e:9e:2e:16:e4:02:eb:05: d0:dd:c4:05:77:15:cc:91:c1:5d:76:0a:a9:2a:a5: 99:6d:78:6e:be:80:d0:d8:ff:3c:5a:32:64:f3:ac: d1:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:4D:24:C1:07:96:28:91:07:4F:0B:C5:DF:EC:F5:0C:81:1F:28:05 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:59:a0:1d:c5:46:d5:46:b4:ae:3a:4c:dd:25:f5:71:0e:2b: e4:4b:d9:fa:c5:46:da:22:46:11:e4:50:92:64:44:7f:ce:13: 70:02:04:7c:e2:df:ca:55:9e:6d:b3:f6:6a:36:af:91:38:2a: b3:65:11:07:ea:d9:d3:54:86:5d:61:20:de:12:8e:b2:2e:2d: 30:31:24:25:fd:b1:1e:59:47:af:b3:25:7f:d2:d3:0c:b9:07: af:fc:bc:8f:d2:de:bf:d5:b9:b9:9c:37:74:c6:a9:e5:d0:d0: da:44:88:e3:96:fc:98:d5:66:60:2e:9b:68:b6:e9:ba:3f:17: 48:6c:b7:5e:3c:ce:16:bb:10:ba:7a:34:33:53:ea:8a:93:6d: 52:b7:4a:d4:f8:c0:d1:54:29:8a:ef:73:3d:eb:42:cd:42:1c: 6e:8a:ed:86:2c:c2:2f:78:5b:48:b7:a6:7d:fc:ef:8c:e4:97: 9e:86:44:81:56:08:37:a4:e5:3c:47:1f:b7:eb:96:21:46:9a: 02:c8:3d:27:45:04:52:b2:3c:4b:2e:fd:2a:16:fb:42:79:11: a7:7c:e6:92:ad:85:9f:17:c5:ff:92:e4:b2:7d:2d:f1:1a:82: 13:2f:20:fc:2c:46:21:02:a5:fa:91:21:cd:d3:88:1b:fb:e0: a9:71:e5:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4OHStZdgE9HDOaxSCrHcHLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwNTA5MTkwMDUzWhcNMjYwNTEwMTkwMDUzWjAzMTEwLwYDVQQD EygzNDRkMjRjMTA3OTYyODkxMDc0ZjBiYzVkZmVjZjUwYzgxMWYyODA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ezSBg383D8J16l7TqoYYjjz+1US SddCzmbpp2zrwmyhBmkMrUJweI3quD2opBcTjbXSkcrOKHg01OneRoe1tftNSIMm G4riiAIA8UxFhvEMs5gSOi37rpX2Z9MACXSBS9TTvoDuGX7dNB4c1Vc9EKNija9n 4Qs5WRor8xjkvXri1y6w+BH9y9/CxA9ZRlOf8BG/VkSJtqUJ123M1IRCr0o4VS2K mBSwBgT4qzLSlTQvjUM8O9Iw0VyEv60iUbnJ0ktcMmdEY5wrJsmqWWK6SbFJpRbo 2uRCHp4uFuQC6wXQ3cQFdxXMkcFddgqpKqWZbXhuvoDQ2P88WjJk86zRJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDRNJMEHliiRB08Lxd/s9QyBHygFMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ1mgHcVG 1Ua0rjpM3SX1cQ4r5EvZ+sVG2iJGEeRQkmREf84TcAIEfOLfylWebbP2ajavkTgq s2URB+rZ01SGXWEg3hKOsi4tMDEkJf2xHllHr7Mlf9LTDLkHr/y8j9Lev9W5uZw3 dMap5dDQ2kSI45b8mNVmYC6baLbpuj8XSGy3XjzOFrsQuno0M1PqipNtUrdK1PjA 0VQpiu9zPetCzUIcborthizCL3hbSLemffzvjOSXnoZEgVYIN6TlPEcft+uWIUaa Asg9J0UEUrI8Sy79Khb7QnkRp3zmkq2FnxfF/5Lksn0t8RqCEy8g/CxGIQKl+pEh zdOIG/vgqXHl+Q== -----END CERTIFICATE-----Generated at Sat May 9 22:01:00 2026 by rpki-client