$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: NiXOWrRzIQK+TvKnR3VjUU8p+FMsOIHyto08nEjQF/Y= Subject key identifier: 89:48:68:A5:DA:25:A4:6C:31:AE:9B:E0:26:6C:23:62:C2:4E:6B:22 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019F0B1A251F005000D62F16F3D0A2B8253D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 11D0 Signing time: Sat 27 Jun 2026 22:01:30 +0000 Manifest this update: Sat 27 Jun 2026 22:01:30 +0000 Manifest next update: Sun 28 Jun 2026 22:01:30 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: WWUFoEcqkM98WtZSBj6F2g/KJWHq74Ys2Ces6hACiHs=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 10: qOS44k4K1WSKtUKGLEhRxJxPEas.roa (hash: FW03t2tk2X1t0JN65p0CDI9DvEztasvMAKi+nwmwwnw=) 11: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Jun 2026 18:43:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9f:0b:1a:25:1f:00:50:00:d6:2f:16:f3:d0:a2:b8:25:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jun 27 22:01:30 2026 GMT Not After : Jun 28 22:01:30 2026 GMT Subject: CN=894868a5da25a46c31ae9be0266c2362c24e6b22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:56:86:21:d1:7b:fe:03:18:28:d4:d0:d4:7c: 3e:5e:f4:36:24:f4:44:9d:9c:c8:43:44:a4:08:32: 2d:2a:3d:76:7a:68:7e:ed:0f:f1:31:ac:29:89:75: 10:54:db:40:e9:d0:70:83:20:0c:c6:9a:66:38:42: 13:f8:47:de:ad:af:fd:37:38:e4:6e:29:c5:1b:d5: 8c:56:ed:54:7a:2f:1e:45:ed:38:39:e8:2e:41:15: 82:ab:81:7b:81:b2:bd:b4:d0:51:89:4c:e4:b3:de: 35:3e:4e:36:17:41:64:5f:3e:5d:92:b3:9b:82:89: ca:53:c6:e6:9a:60:f6:48:02:69:3d:a1:0f:b4:f1: 75:27:24:b0:8c:f9:80:64:3e:e3:2a:8b:fa:6a:cf: cc:d0:d1:77:04:64:3a:c7:66:15:13:0a:86:ee:ce: cb:9b:ed:ad:1e:e8:52:2d:e8:68:ac:70:c4:74:cd: bf:5f:f6:3c:66:c6:9e:8c:aa:9a:b4:bc:b4:80:db: 6a:c6:a3:90:07:dc:9c:e5:19:2e:a9:ae:34:30:32: 87:84:93:85:6f:f4:5b:65:34:2a:f3:0c:60:d4:f6: d4:34:45:4e:06:16:49:57:72:9e:0a:36:9b:c2:0e: 00:a9:b5:60:14:92:99:34:dd:3a:e6:3f:99:57:99: 44:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:48:68:A5:DA:25:A4:6C:31:AE:9B:E0:26:6C:23:62:C2:4E:6B:22 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:4a:8f:60:07:55:9b:12:90:86:15:46:e1:78:b5:53:25:b6: 85:42:bd:20:26:4f:0d:f2:e4:6d:bd:29:9f:2f:98:58:37:63: e1:0b:2d:1b:3e:b7:5c:00:3f:b3:02:b2:6b:86:3b:e7:45:b0: 6f:23:c2:a9:93:0d:4a:79:77:c8:3e:be:2d:5a:8d:42:f5:a3: 36:49:77:c3:c7:6a:79:cf:2a:c6:52:7e:62:e5:26:18:f1:b2: cf:a8:d9:11:fc:9a:b7:76:c4:2e:45:01:f7:ca:9d:8b:01:4d: e5:a2:0f:7a:e5:da:21:1b:d1:c6:f6:16:e1:42:c7:78:d2:a6: 31:43:40:82:f7:ab:4a:43:1c:cf:9e:62:84:83:08:9d:1d:09: b7:8e:06:ec:f6:81:44:f1:06:5c:73:b4:6d:a4:92:8f:3b:a0: ef:8e:e4:94:94:68:69:33:6c:f2:1e:6c:4f:3d:96:ce:19:b9: c9:c6:3c:e8:e0:ea:5f:7c:a3:3a:5f:b3:38:d2:bf:6e:90:f3: 44:7c:7e:39:29:06:73:0f:53:3e:89:9b:54:08:1c:4e:8f:15: eb:5c:60:75:23:8f:c8:8a:fa:4a:4b:ff:b8:4d:aa:a4:72:c7: 48:1f:11:21:a0:4d:c1:70:bb:88:b2:58:6c:6d:6f:42:e4:07: 51:3b:41:a7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ8LGiUfAFAA1i8W89CiuCU9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwNjI3MjIwMTMwWhcNMjYwNjI4MjIwMTMwWjAzMTEwLwYDVQQD Eyg4OTQ4NjhhNWRhMjVhNDZjMzFhZTliZTAyNjZjMjM2MmMyNGU2YjIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxFaGIdF7/gMYKNTQ1Hw+XvQ2JPRE nZzIQ0SkCDItKj12emh+7Q/xMawpiXUQVNtA6dBwgyAMxppmOEIT+Efera/9Nzjk binFG9WMVu1Uei8eRe04OeguQRWCq4F7gbK9tNBRiUzks941Pk42F0FkXz5dkrOb gonKU8bmmmD2SAJpPaEPtPF1JySwjPmAZD7jKov6as/M0NF3BGQ6x2YVEwqG7s7L m+2tHuhSLehorHDEdM2/X/Y8ZsaejKqatLy0gNtqxqOQB9yc5Rkuqa40MDKHhJOF b/RbZTQq8wxg1PbUNEVOBhZJV3KeCjabwg4AqbVgFJKZNN065j+ZV5lElwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIlIaKXaJaRsMa6b4CZsI2LCTmsiMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASEqPYAdV mxKQhhVG4Xi1UyW2hUK9ICZPDfLkbb0pny+YWDdj4QstGz63XAA/swKya4Y750Ww byPCqZMNSnl3yD6+LVqNQvWjNkl3w8dqec8qxlJ+YuUmGPGyz6jZEfyat3bELkUB 98qdiwFN5aIPeuXaIRvRxvYW4ULHeNKmMUNAgverSkMcz55ihIMInR0Jt44G7PaB RPEGXHO0baSSjzug747klJRoaTNs8h5sTz2Wzhm5ycY86ODqX3yjOl+zONK/bpDz RHx+OSkGcw9TPombVAgcTo8V61xgdSOPyIr6Skv/uE2qpHLHSB8RIaBNwXC7iLJY bG1vQuQHUTtBpw== -----END CERTIFICATE-----Generated at Sun Jun 28 02:25:28 2026 by rpki-client