$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: saZC/7cJNzbhfBThuiljERL53uauYAz32icqbuSlvcM= Subject key identifier: 42:7E:66:EB:CA:8F:B0:FC:EB:D2:62:C1:C8:69:40:41:49:32:1C:E2 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019CE2229ADAD99307DF32C3F215F47BD83E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 10B0 Signing time: Thu 12 Mar 2026 13:00:44 +0000 Manifest this update: Thu 12 Mar 2026 13:00:44 +0000 Manifest next update: Fri 13 Mar 2026 13:00:44 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: 9K+bs5Xok6qcAIyy1G4BaCf6aI0p2p9hhwm113nOruM=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 13 Mar 2026 13:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:e2:22:9a:da:d9:93:07:df:32:c3:f2:15:f4:7b:d8:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Mar 12 13:00:44 2026 GMT Not After : Mar 13 13:00:44 2026 GMT Subject: CN=427e66ebca8fb0fcebd262c1c869404149321ce2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:27:75:e8:10:5f:83:44:0f:ec:f6:67:9a:49: 09:86:b3:1b:0a:39:f0:62:53:69:02:d4:3a:8e:9d: 16:0f:df:8d:ae:02:19:c1:ed:27:e7:ef:be:fb:69: e9:a7:30:21:17:6c:47:c8:de:f6:03:8e:e1:ad:b4: 7e:bf:bb:88:58:a1:02:cd:aa:90:eb:43:00:4d:c5: f3:c0:92:4a:0e:27:51:a7:79:b3:76:b4:e0:e9:5e: fa:7a:d4:f0:72:5a:30:33:b1:85:97:42:7b:ef:64: 45:a0:ee:4a:43:ec:99:36:e3:66:5d:56:ca:34:8c: 79:e5:a8:b4:15:ad:59:af:f3:4d:89:9d:f1:2a:7f: 4b:c0:67:bc:52:58:a8:07:bf:b9:5f:ef:00:d3:86: 72:68:10:47:aa:27:ce:05:40:80:86:e0:e8:3a:3d: 00:e1:23:f8:40:49:60:53:24:75:e2:22:f5:5d:2a: ab:2f:33:0b:c4:28:05:f8:5e:cc:b7:a4:cd:9b:36: eb:aa:78:d4:a3:ea:d9:78:f5:18:2b:d8:d1:71:46: 53:57:ac:9d:7a:dc:c8:d9:32:f2:4a:5c:31:92:98: 40:51:2a:91:b3:eb:87:bd:22:1d:29:6a:09:28:ca: b6:d8:e7:f0:fc:f8:dd:9b:3e:67:18:9b:13:4f:10: 37:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:7E:66:EB:CA:8F:B0:FC:EB:D2:62:C1:C8:69:40:41:49:32:1C:E2 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:27:ff:69:30:09:2c:3c:46:b3:f3:b8:4c:e4:b1:ad:45:eb: 42:f7:c2:5a:bc:7c:f9:3b:4a:aa:a5:f4:62:a4:79:08:47:fb: e1:f2:4b:4e:ae:9c:58:80:0a:95:fd:02:3c:79:d2:45:89:f6: 17:a4:64:f6:58:e9:1c:08:3f:b4:d2:28:1e:fd:e7:a6:f0:82: 61:68:b2:37:35:e6:9a:a1:e7:4e:3e:77:2a:32:11:0c:6a:34: 77:8a:63:72:c6:47:13:70:36:47:b4:a9:c3:1d:6f:d4:50:10: 6f:8c:6a:25:62:5b:c1:5f:46:ff:e6:d7:64:1e:1f:48:9d:a2: fa:8c:8b:11:e9:72:9a:75:e6:97:f3:c7:6d:3d:1e:36:76:d4: 94:cd:6d:e8:b8:29:29:fe:d5:c1:82:57:5e:d6:5b:6d:79:5e: 79:f7:43:67:44:22:b1:60:dd:0a:2e:fb:f3:07:bf:1e:b1:79: cb:b5:37:ec:72:23:f8:f6:d8:73:aa:50:c3:b3:da:b5:ac:68: 6c:22:5b:58:cd:58:7f:b5:af:20:52:91:5e:42:76:0e:56:a1: e9:d0:65:ac:af:e9:24:86:49:95:6f:d5:6a:15:66:c4:26:f7: ee:b7:95:14:f7:34:97:1f:4f:17:c1:9e:76:3f:cf:1b:3f:64: 0e:f0:67:df -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZziIpra2ZMH3zLD8hX0e9g+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMzEyMTMwMDQ0WhcNMjYwMzEzMTMwMDQ0WjAzMTEwLwYDVQQD Eyg0MjdlNjZlYmNhOGZiMGZjZWJkMjYyYzFjODY5NDA0MTQ5MzIxY2UyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvyd16BBfg0QP7PZnmkkJhrMbCjnw YlNpAtQ6jp0WD9+NrgIZwe0n5++++2nppzAhF2xHyN72A47hrbR+v7uIWKECzaqQ 60MATcXzwJJKDidRp3mzdrTg6V76etTwclowM7GFl0J772RFoO5KQ+yZNuNmXVbK NIx55ai0Fa1Zr/NNiZ3xKn9LwGe8UlioB7+5X+8A04ZyaBBHqifOBUCAhuDoOj0A 4SP4QElgUyR14iL1XSqrLzMLxCgF+F7Mt6TNmzbrqnjUo+rZePUYK9jRcUZTV6yd etzI2TLySlwxkphAUSqRs+uHvSIdKWoJKMq22Ofw/Pjdmz5nGJsTTxA3CwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEJ+ZuvKj7D869JiwchpQEFJMhziMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKyf/aTAJ LDxGs/O4TOSxrUXrQvfCWrx8+TtKqqX0YqR5CEf74fJLTq6cWIAKlf0CPHnSRYn2 F6Rk9ljpHAg/tNIoHv3npvCCYWiyNzXmmqHnTj53KjIRDGo0d4pjcsZHE3A2R7Sp wx1v1FAQb4xqJWJbwV9G/+bXZB4fSJ2i+oyLEelymnXml/PHbT0eNnbUlM1t6Lgp Kf7VwYJXXtZbbXleefdDZ0QisWDdCi778we/HrF5y7U37HIj+PbYc6pQw7Pataxo bCJbWM1Yf7WvIFKRXkJ2Dlah6dBlrK/pJIZJlW/VahVmxCb37reVFPc0lx9PF8Ge dj/PGz9kDvBn3w== -----END CERTIFICATE-----Generated at Thu Mar 12 22:11:55 2026 by rpki-client