$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: NFDrU6rgppndLM8RTTY+UyTh3B7ymEiV1CJrM5yZxlY= Subject key identifier: 58:FE:EA:26:A0:24:E4:F8:B8:7E:6E:65:F0:16:D3:60:18:54:48:25 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019CEBCACC2BA73B49CF56D4B8C26BA59BBE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 10B5 Signing time: Sat 14 Mar 2026 10:01:02 +0000 Manifest this update: Sat 14 Mar 2026 10:01:02 +0000 Manifest next update: Sun 15 Mar 2026 10:01:02 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: GGnmuRa8V8lThQtt/QK4abdl/Mc+St/zaVOy1/g22FY=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Mar 2026 03:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:eb:ca:cc:2b:a7:3b:49:cf:56:d4:b8:c2:6b:a5:9b:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Mar 14 10:01:02 2026 GMT Not After : Mar 15 10:01:02 2026 GMT Subject: CN=58feea26a024e4f8b87e6e65f016d36018544825 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d2:10:97:9f:c8:02:09:61:c5:9c:ea:32:ec: ed:39:0b:d7:6b:f9:76:1c:cf:3e:8b:ff:61:53:3e: 43:ca:6f:7b:f5:9a:7e:ca:b3:30:a1:3d:20:83:cd: 70:af:62:6b:e7:96:8f:45:37:bf:3c:75:56:ca:e3: ce:61:81:a5:9b:46:da:dd:a7:70:5b:9d:cf:ba:34: 31:1f:ee:b8:71:00:4c:dd:97:2a:28:96:da:ea:ac: 60:b8:67:2f:87:bc:1c:99:41:36:6d:d0:08:49:ce: f8:50:2f:ac:a7:24:30:36:5f:23:98:1a:c2:26:be: b0:ca:2e:69:51:5d:06:01:e8:44:e1:ae:29:de:2d: 89:a4:bd:78:28:64:ed:c2:b0:73:cd:7d:ad:04:fd: bd:24:cf:96:88:7a:46:4c:f2:bb:a9:3d:59:b4:11: 02:48:44:b0:03:8f:58:95:d9:a5:f4:7d:71:58:3d: 82:6e:15:5d:cb:2c:a1:c1:6d:bd:1d:3c:a5:8e:34: 2c:3c:09:d7:70:d7:f3:35:87:88:86:96:76:a4:50: 4e:93:f5:ae:74:96:2b:ee:dc:13:f1:67:79:6e:a3: 56:b1:8f:9e:63:f8:71:6e:4f:0d:99:99:13:0f:db: 65:bf:82:e8:c2:45:52:90:f8:2c:e3:23:63:4a:01: c8:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:FE:EA:26:A0:24:E4:F8:B8:7E:6E:65:F0:16:D3:60:18:54:48:25 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bf:94:c0:d3:b5:76:9d:69:ca:a3:6c:6f:49:0b:eb:a9:1b:a5: 47:38:65:12:b8:00:e5:86:ec:76:5c:b5:c2:74:7c:dd:ad:a4: ad:79:52:5f:98:83:d2:1a:f0:05:c0:88:68:b4:df:84:d5:8f: d8:28:65:94:4e:6f:30:02:a5:fd:31:38:91:3c:03:fd:ae:65: 15:65:00:a1:fd:c1:39:ec:a7:cf:2e:36:3d:3a:98:44:24:18: d0:20:c9:aa:09:4e:56:d6:6b:58:39:03:43:d3:bd:29:b4:97: 63:95:91:70:18:e2:4a:5c:df:06:1b:a7:50:fb:bc:df:84:1e: 02:0e:fb:c9:31:48:7c:27:2c:f1:9d:0d:15:83:ab:59:2d:04: b8:ac:99:74:b6:5b:60:0a:48:f5:57:3e:70:5f:c4:ec:e2:fa: cf:5f:55:ed:58:2a:6a:1d:b2:4a:0e:d6:d6:7f:5a:48:c1:3f: d8:f3:bb:8d:94:c4:ec:33:05:29:fd:b3:7f:07:5d:2b:ac:2d: 1e:c1:f8:0e:b7:b5:e9:33:2b:ed:43:bc:e0:e8:83:7f:2b:fc: d9:39:62:15:c1:6e:3f:99:92:ab:a6:a6:fe:6a:c7:b0:07:58: 39:a6:7a:68:6f:37:ea:cb:7f:d6:1a:58:cd:44:1a:8f:25:ce: ab:15:fd:38 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZzryswrpztJz1bUuMJrpZu+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMzE0MTAwMTAyWhcNMjYwMzE1MTAwMTAyWjAzMTEwLwYDVQQD Eyg1OGZlZWEyNmEwMjRlNGY4Yjg3ZTZlNjVmMDE2ZDM2MDE4NTQ0ODI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApdIQl5/IAglhxZzqMuztOQvXa/l2 HM8+i/9hUz5Dym979Zp+yrMwoT0gg81wr2Jr55aPRTe/PHVWyuPOYYGlm0ba3adw W53PujQxH+64cQBM3ZcqKJba6qxguGcvh7wcmUE2bdAISc74UC+spyQwNl8jmBrC Jr6wyi5pUV0GAehE4a4p3i2JpL14KGTtwrBzzX2tBP29JM+WiHpGTPK7qT1ZtBEC SESwA49Yldml9H1xWD2CbhVdyyyhwW29HTyljjQsPAnXcNfzNYeIhpZ2pFBOk/Wu dJYr7twT8Wd5bqNWsY+eY/hxbk8NmZkTD9tlv4LowkVSkPgs4yNjSgHIWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFj+6iagJOT4uH5uZfAW02AYVEglMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAv5TA07V2 nWnKo2xvSQvrqRulRzhlErgA5Ybsdly1wnR83a2krXlSX5iD0hrwBcCIaLTfhNWP 2ChllE5vMAKl/TE4kTwD/a5lFWUAof3BOeynzy42PTqYRCQY0CDJqglOVtZrWDkD Q9O9KbSXY5WRcBjiSlzfBhunUPu834QeAg77yTFIfCcs8Z0NFYOrWS0EuKyZdLZb YApI9Vc+cF/E7OL6z19V7Vgqah2ySg7W1n9aSME/2PO7jZTE7DMFKf2zfwddK6wt HsH4Dre16TMr7UO84OiDfyv82TliFcFuP5mSq6am/mrHsAdYOaZ6aG836st/1hpY zUQajyXOqxX9OA== -----END CERTIFICATE-----Generated at Sat Mar 14 12:02:16 2026 by rpki-client