$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: trpjPNdAgkv5Omkt7gXECwISnEkJuZ5krBMzrBt6KRM= Subject key identifier: B4:12:39:3B:7C:D1:F4:84:3A:AD:D3:78:1C:B8:1D:91:55:31:AA:09 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019D90967838CBF08EBC7BB2C060D870C196 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 110C Signing time: Wed 15 Apr 2026 10:01:13 +0000 Manifest this update: Wed 15 Apr 2026 10:01:13 +0000 Manifest next update: Thu 16 Apr 2026 10:01:13 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: r/E/qkKILkDJx1X6Q7TfJeUNG95j07rUWFIy6mq0oZM=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 10: qOS44k4K1WSKtUKGLEhRxJxPEas.roa (hash: FW03t2tk2X1t0JN65p0CDI9DvEztasvMAKi+nwmwwnw=) 11: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 16 Apr 2026 10:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:90:96:78:38:cb:f0:8e:bc:7b:b2:c0:60:d8:70:c1:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Apr 15 10:01:13 2026 GMT Not After : Apr 16 10:01:13 2026 GMT Subject: CN=b412393b7cd1f4843aadd3781cb81d915531aa09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fd:7b:b5:4f:4f:40:4d:83:d8:20:97:3b:d2: 1f:35:43:f6:2a:6f:16:92:7d:38:88:db:17:c5:3a: 0b:89:12:58:ef:29:db:da:5c:74:f5:3f:84:f3:a0: 15:ef:4b:ba:ea:38:90:de:c6:69:a1:e1:01:d1:25: 23:d5:bf:db:1e:5d:f4:d5:43:71:e5:07:5f:ca:ce: cf:2a:8f:57:1b:e4:f8:69:48:77:f5:14:30:c2:d7: 05:c7:37:73:55:6e:ec:36:5c:be:98:86:c3:d1:6a: ad:70:cb:e2:79:40:74:3b:04:c3:d1:b1:33:a9:6a: 3b:8a:b8:4e:67:8c:1d:bf:36:47:40:ba:bd:65:6d: fd:06:9b:0d:d6:df:5d:1c:72:e5:de:7e:64:0a:f1: 85:16:06:4a:2f:9a:6a:5c:07:f6:15:f3:f5:93:32: 67:c0:46:3d:4e:86:6e:52:e0:12:07:ed:da:39:c1: 31:9e:d6:f4:cf:fa:f1:1a:d4:37:61:a6:3b:8c:ef: f5:35:72:1a:39:a9:66:ed:a1:b7:cd:8a:4f:10:f6: 69:ba:0f:40:2d:08:fb:a5:4d:59:35:95:e5:db:93: d0:5b:d7:31:61:1e:e1:96:f2:86:dc:f8:ed:5e:f7: e0:e5:9d:cb:be:ae:af:f5:b7:14:20:60:fb:ff:fa: cf:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:12:39:3B:7C:D1:F4:84:3A:AD:D3:78:1C:B8:1D:91:55:31:AA:09 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:d8:c4:56:cd:23:35:08:00:33:81:72:5c:cd:2c:33:04:d0: 33:38:07:f2:94:3f:b4:3e:43:fc:0f:40:2a:18:49:cf:c1:1b: d6:55:aa:5a:58:c5:71:91:11:dc:8e:c3:c5:f3:dd:78:8e:aa: 8c:2f:ee:c7:14:ba:5b:76:be:14:02:b0:d3:ad:9f:00:50:45: 2e:7c:ab:66:f0:ff:e6:ea:1c:1d:59:3f:c8:d6:60:6a:07:82: a3:d0:e3:d4:a3:da:22:9d:f1:7b:f7:6a:76:9b:20:8a:43:40: 89:bb:bc:cb:f2:db:09:89:90:33:c4:fc:f8:1b:87:41:00:e6: ca:f5:22:89:fa:e8:cb:ae:65:2f:10:8b:4e:8e:ba:84:63:31: de:dd:14:20:38:14:56:40:9d:27:96:ef:6c:11:8e:ef:36:37: 48:82:53:d3:40:63:17:15:a4:7e:70:9a:2d:03:f0:c3:8c:73: 1c:73:d2:15:df:44:ea:56:8c:a2:b3:4a:1a:56:20:a5:14:f6: 3e:ac:ab:48:ee:88:93:01:ad:d4:84:07:b9:c6:20:fb:d8:4a: 06:32:04:83:38:ac:e2:94:34:c4:c0:09:3f:1a:2e:d4:42:d6: 89:6b:be:a7:90:ad:4f:45:65:62:ee:a0:a9:8d:0f:1f:e3:54: 80:cb:72:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2Qlng4y/COvHuywGDYcMGWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwNDE1MTAwMTEzWhcNMjYwNDE2MTAwMTEzWjAzMTEwLwYDVQQD EyhiNDEyMzkzYjdjZDFmNDg0M2FhZGQzNzgxY2I4MWQ5MTU1MzFhYTA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxP17tU9PQE2D2CCXO9IfNUP2Km8W kn04iNsXxToLiRJY7ynb2lx09T+E86AV70u66jiQ3sZpoeEB0SUj1b/bHl301UNx 5Qdfys7PKo9XG+T4aUh39RQwwtcFxzdzVW7sNly+mIbD0WqtcMvieUB0OwTD0bEz qWo7irhOZ4wdvzZHQLq9ZW39BpsN1t9dHHLl3n5kCvGFFgZKL5pqXAf2FfP1kzJn wEY9ToZuUuASB+3aOcExntb0z/rxGtQ3YaY7jO/1NXIaOalm7aG3zYpPEPZpug9A LQj7pU1ZNZXl25PQW9cxYR7hlvKG3PjtXvfg5Z3Lvq6v9bcUIGD7//rPHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLQSOTt80fSEOq3TeBy4HZFVMaoJMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJNjEVs0j NQgAM4FyXM0sMwTQMzgH8pQ/tD5D/A9AKhhJz8Eb1lWqWljFcZER3I7DxfPdeI6q jC/uxxS6W3a+FAKw062fAFBFLnyrZvD/5uocHVk/yNZgageCo9Dj1KPaIp3xe/dq dpsgikNAibu8y/LbCYmQM8T8+BuHQQDmyvUiifroy65lLxCLTo66hGMx3t0UIDgU VkCdJ5bvbBGO7zY3SIJT00BjFxWkfnCaLQPww4xzHHPSFd9E6laMorNKGlYgpRT2 PqyrSO6IkwGt1IQHucYg+9hKBjIEgzis4pQ0xMAJPxou1ELWiWu+p5CtT0VlYu6g qY0PH+NUgMtyKA== -----END CERTIFICATE-----Generated at Wed Apr 15 19:43:27 2026 by rpki-client