$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: vZz6yPltD5Io96Qr1BYf9bomqua+jNcv1JeUuS4Ojag= Subject key identifier: F2:54:C3:10:A0:C1:F3:6E:D5:7E:8D:DC:14:74:D7:0D:A0:E7:34:69 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019CADFE9E4770A3205E888C4C8EB7CBC8F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 1095 Signing time: Mon 02 Mar 2026 10:01:10 +0000 Manifest this update: Mon 02 Mar 2026 10:01:10 +0000 Manifest next update: Tue 03 Mar 2026 10:01:10 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: 6X/apanQhw07e1QrhJdzI14qh+f2wd0V4xEIZJFclLE=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Mar 2026 10:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:ad:fe:9e:47:70:a3:20:5e:88:8c:4c:8e:b7:cb:c8:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Mar 2 10:01:10 2026 GMT Not After : Mar 3 10:01:10 2026 GMT Subject: CN=f254c310a0c1f36ed57e8ddc1474d70da0e73469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ba:27:f9:43:d1:61:23:34:2c:63:07:b1:b3: 4e:5c:52:d2:94:9b:52:d8:6b:96:be:95:22:aa:03: f2:92:e6:db:14:b5:7d:ef:8c:44:28:38:ca:b1:19: bc:98:94:66:be:77:fe:5d:fa:9e:5f:0b:6e:8c:05: 7a:cd:f4:dd:1f:b2:14:f6:ec:95:18:58:2f:c5:48: 44:c1:c9:12:f2:c5:af:b9:22:2a:b9:6d:18:e2:6a: cc:37:ef:c4:97:b6:d5:ea:f5:d8:ed:09:5b:a0:1b: 23:51:ad:36:fe:04:85:8a:99:b3:16:11:fc:12:59: 31:59:8d:ef:b0:85:06:73:02:b5:e4:44:bb:c3:98: 1b:19:1f:ce:f8:cd:59:90:ad:b1:60:04:b3:6e:a6: 24:f7:24:0d:6f:1e:4b:40:60:12:6d:cd:07:af:43: 73:df:60:84:06:7a:f8:da:b1:2b:ce:de:d2:22:09: 24:40:fd:55:47:f6:b2:51:61:37:7b:73:e5:95:8c: f8:23:e5:39:b3:f0:83:73:07:df:75:c4:07:bb:03: 73:41:bc:45:e4:32:ee:e9:bd:72:8a:ad:a0:ea:c1: 62:4d:68:89:04:08:b5:77:0c:9a:9f:26:94:92:b0: 5a:eb:88:d7:68:54:4e:60:b4:fb:1f:57:14:fc:6b: 48:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:54:C3:10:A0:C1:F3:6E:D5:7E:8D:DC:14:74:D7:0D:A0:E7:34:69 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:77:09:4b:42:3a:b8:6a:a2:00:30:3b:12:3c:c1:66:7c:f7: 3b:47:08:6b:0e:0a:f7:1e:5a:3c:50:e6:85:7f:ba:ed:c1:71: e1:da:18:45:48:d1:ea:3a:16:bc:d0:37:d4:90:36:41:1a:cf: ab:e8:11:5b:a0:2c:37:00:b0:1e:89:86:01:fa:33:a0:81:51: 8c:91:24:ff:90:c4:51:af:fa:4a:19:d6:21:53:ce:e6:dc:99: d6:07:42:c7:b0:42:e6:65:57:3d:1d:4e:88:b3:58:ce:35:1c: 0a:c3:0a:64:93:3a:ad:47:31:68:8c:7f:cc:a4:4f:23:a2:ba: 2c:97:94:cd:97:6d:42:5b:0a:6c:ee:1b:ad:6c:37:4b:e2:0b: 9d:67:f5:f8:39:7b:27:4a:40:01:c8:46:22:dc:eb:93:6a:d7: fa:05:b6:7b:81:00:fa:e1:aa:af:86:cc:bb:32:e9:17:45:c4: 74:0e:58:a6:73:d5:71:df:ea:46:19:8a:1f:6d:18:ea:cc:c2: 0e:84:1b:a2:84:ef:d1:56:22:e6:77:cf:ba:a6:f2:b9:a2:36: be:93:c9:e1:89:77:9d:68:7b:98:b6:ad:1a:30:2c:55:36:fc: 97:a3:37:da:71:34:b4:2b:5f:eb:c3:b4:13:e5:a4:54:5c:f6: 12:73:24:c9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZyt/p5HcKMgXoiMTI63y8j1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMzAyMTAwMTEwWhcNMjYwMzAzMTAwMTEwWjAzMTEwLwYDVQQD EyhmMjU0YzMxMGEwYzFmMzZlZDU3ZThkZGMxNDc0ZDcwZGEwZTczNDY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmron+UPRYSM0LGMHsbNOXFLSlJtS 2GuWvpUiqgPykubbFLV974xEKDjKsRm8mJRmvnf+XfqeXwtujAV6zfTdH7IU9uyV GFgvxUhEwckS8sWvuSIquW0Y4mrMN+/El7bV6vXY7QlboBsjUa02/gSFipmzFhH8 ElkxWY3vsIUGcwK15ES7w5gbGR/O+M1ZkK2xYASzbqYk9yQNbx5LQGASbc0Hr0Nz 32CEBnr42rErzt7SIgkkQP1VR/ayUWE3e3PllYz4I+U5s/CDcwffdcQHuwNzQbxF 5DLu6b1yiq2g6sFiTWiJBAi1dwyanyaUkrBa64jXaFROYLT7H1cU/GtIJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPJUwxCgwfNu1X6N3BR01w2g5zRpMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABHcJS0I6 uGqiADA7EjzBZnz3O0cIaw4K9x5aPFDmhX+67cFx4doYRUjR6joWvNA31JA2QRrP q+gRW6AsNwCwHomGAfozoIFRjJEk/5DEUa/6ShnWIVPO5tyZ1gdCx7BC5mVXPR1O iLNYzjUcCsMKZJM6rUcxaIx/zKRPI6K6LJeUzZdtQlsKbO4brWw3S+ILnWf1+Dl7 J0pAAchGItzrk2rX+gW2e4EA+uGqr4bMuzLpF0XEdA5YpnPVcd/qRhmKH20Y6szC DoQbooTv0VYi5nfPuqbyuaI2vpPJ4Yl3nWh7mLatGjAsVTb8l6M32nE0tCtf68O0 E+WkVFz2EnMkyQ== -----END CERTIFICATE-----Generated at Mon Mar 2 19:07:04 2026 by rpki-client