
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json)
Hash identifier: uZAOTjAkZPC0tBBkg3tZiZQDwCYGueLpbDG1GJI2ygY=
Subject key identifier: 7F:26:7E:EC:3B:A0:D2:F3:78:45:E9:B2:86:B9:8D:78:71:17:35:00
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 019F2DDCF6CAB9C29A92B0C1C64F7BBBF28C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
Manifest number: 11E2
Signing time: Sat 04 Jul 2026 16:01:23 +0000
Manifest this update: Sat 04 Jul 2026 16:01:23 +0000
Manifest next update: Sun 05 Jul 2026 16:01:23 +0000
Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=)
2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=)
3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=)
4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=)
5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=)
6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: UFsXL6uNLSiFcXLU/+tK8o9apJlfKdcf12LPuGn+Qc8=)
7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=)
8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=)
9: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=)
10: qOS44k4K1WSKtUKGLEhRxJxPEas.roa (hash: FW03t2tk2X1t0JN65p0CDI9DvEztasvMAKi+nwmwwnw=)
11: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 Jul 2026 14:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:2d:dc:f6:ca:b9:c2:9a:92:b0:c1:c6:4f:7b:bb:f2:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: Jul 4 16:01:23 2026 GMT
Not After : Jul 5 16:01:23 2026 GMT
Subject: CN=7f267eec3ba0d2f37845e9b286b98d7871173500
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:26:37:d2:c3:76:77:73:08:5c:b0:49:35:19:
e3:2e:d5:5f:4b:5d:91:ad:7e:94:1c:67:96:d5:86:
61:3f:2a:10:8e:b5:de:81:b8:25:64:75:8d:0d:66:
32:96:33:9f:58:69:3a:c7:9b:6a:27:9b:0d:dc:7c:
2e:4b:ca:05:02:3a:43:69:29:21:2e:1b:4d:86:79:
c0:7a:32:ec:f2:22:98:03:09:71:ab:3c:01:db:bf:
b5:f5:ea:ca:d1:da:40:8b:06:dd:0d:5f:9e:9c:4d:
1f:8e:82:4b:be:fd:5c:3b:a4:93:68:cc:bb:3f:4a:
15:cb:ed:48:5f:de:88:1b:14:9f:35:6b:a8:10:23:
dc:de:ee:56:cc:2f:3f:9d:d8:18:15:b6:1e:75:82:
92:d0:a5:7f:53:bf:ef:10:17:0c:99:c0:d4:d1:42:
a0:a9:c0:fe:9f:25:4c:50:3f:b5:1c:2a:6a:74:b6:
12:60:2d:19:04:ee:ec:ff:72:ac:56:05:ba:ae:5f:
b1:ae:de:24:7b:7b:67:33:22:73:67:ff:d4:e6:41:
c3:03:3f:cd:33:76:6d:d4:60:23:5d:ad:73:20:08:
ac:8d:f6:f3:8f:9f:41:57:43:ce:9f:b7:04:4c:c9:
f4:7e:d3:a8:ee:fd:94:fe:ab:63:f3:f1:b4:ac:31:
41:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:26:7E:EC:3B:A0:D2:F3:78:45:E9:B2:86:B9:8D:78:71:17:35:00
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:ed:e1:d3:bd:2e:4a:54:46:c0:81:1d:2b:32:be:32:fd:62:
28:ee:9b:d0:b6:b1:5f:67:46:b5:58:50:c0:fa:82:03:a2:73:
f2:84:37:f9:85:35:55:71:9c:2a:d1:94:1f:89:e2:a3:a4:a4:
bb:0d:c4:bc:dd:e8:83:a2:a2:e4:2b:ce:63:7f:b1:0d:6a:f4:
ea:c8:75:6f:f7:7f:7c:5e:8a:a6:48:a4:3b:16:03:ae:13:9e:
c1:95:7e:98:4e:b1:12:86:56:79:fe:48:f5:8d:7b:80:3d:31:
ab:58:2e:fb:5a:15:94:20:b9:d6:16:61:e6:e1:85:9d:aa:13:
75:2b:01:40:5d:9c:52:2b:05:49:b2:92:97:4a:7d:a4:e1:0f:
55:b2:b2:a7:29:53:74:b5:4b:11:4b:3c:bc:9c:38:a8:f3:bf:
3a:92:3e:47:50:eb:fd:0c:ea:0c:28:97:2a:70:48:cd:68:85:
3a:ff:6e:6f:72:ed:88:fe:bb:f1:4d:40:73:94:6a:a6:8a:60:
1f:8a:5b:9e:8e:30:39:84:83:2a:f0:20:a7:6e:f2:9a:5a:e7:
0e:6c:31:d0:3a:ee:1a:6d:55:03:5e:23:94:17:d5:4d:58:58:
16:03:26:88:bb:62:10:c0:7f:9b:b2:ea:2f:5f:c7:f8:6e:be:
4f:cd:a5:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 4 23:20:36 2026 by rpki-client