$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: H6Viz357zjyHkhqjsRr4B1PWjyQjklW+FLelxTJGb7g= Subject key identifier: 7D:2D:51:6C:DE:9D:A9:A0:BE:CB:0E:AA:93:C5:03:DB:48:85:70:5E Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019A522C1CBABCFB29D636E798FDF85103D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0F55 Signing time: Wed 05 Nov 2025 04:00:13 +0000 Manifest this update: Wed 05 Nov 2025 04:00:13 +0000 Manifest next update: Thu 06 Nov 2025 04:00:13 +0000 Files and hashes: 1: 0qafQTKpUINoCVOYOkW5UnOWR94.roa (hash: MusUL5944aEPud+AesWo0c3hbkne3BfD5w+aqIADrZU=) 2: 3BwQGvtGG9EzTodyzZ_T_NlKH8c.roa (hash: 3YVq+Q3Pxf3bX0RyqLEPepY9xeWnJNOauq8KUa99lAY=) 3: 3jf0qN8pQHNEeZXSK9GB9T1D4_E.roa (hash: DRAm1n/nD8B8BQj+jf77wLhiQpGtxWx72r8uwhAFjaU=) 4: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 5: 89lMNrhD2F5x0Ke_v2bBXPEQYgU.roa (hash: K5oebEL4UYGbpI6omznf50HWdMyeoL9B3ezd2prsxV4=) 6: E_3-qae-50qWA7R56c8VnNml0ZU.roa (hash: nkgMixGbN46lHgT97kcU8QjXRmEi7iabVPw78zf1uq4=) 7: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 8: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: TH6SKwY26wT6W4RZMJa1JxIKeSPpUsEoMsVoxNE9Xxk=) 9: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 10: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 11: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 12: jFuP-GeZY6Z37SVSGqClEWTPyy4.roa (hash: 65ZwPuCoL1Qqn8JPgxAd7UOuJekWTxCoLNYfjh3KVJo=) 13: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) 14: vmyAzNx7YC2gCU3FErnhSsG464E.roa (hash: b2H/65WWZwau4OQRXdpkdBOUisTMki5wQZ0WO+I8q90=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Nov 2025 03:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:52:2c:1c:ba:bc:fb:29:d6:36:e7:98:fd:f8:51:03:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Nov 5 04:00:13 2025 GMT Not After : Nov 6 04:00:13 2025 GMT Subject: CN=7d2d516cde9da9a0becb0eaa93c503db4885705e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3d:25:6a:e3:c1:de:2e:e4:ef:bc:f5:df:54: dc:d3:e9:49:64:38:2f:fe:1e:62:c6:0f:2f:76:ea: ea:95:28:f5:f3:d4:4d:36:97:05:8f:be:9d:0d:a4: ae:1b:58:43:27:dc:79:a5:08:d1:94:e8:bb:fb:bc: 20:f6:5d:84:d3:9c:b0:af:e2:28:64:bf:6a:39:34: 0e:20:42:2e:b1:3b:27:6f:8c:5c:5c:de:92:ba:d8: 37:d7:6c:a1:08:cc:cb:70:c0:fd:62:31:5e:7e:f1: 88:6e:d9:e5:0a:f4:3e:10:3e:64:26:65:52:fa:98: 04:15:f7:85:66:5d:84:27:97:81:c5:a9:9e:68:26: 88:e1:c7:a0:44:0d:50:ba:95:33:87:66:ad:f1:2c: 12:ea:6c:f8:97:fb:b7:11:ab:9a:09:d2:f8:98:a7: 71:0b:5b:db:9d:5b:7b:b7:c7:b9:69:05:ed:e6:41: 78:fb:d6:4f:5d:eb:68:9a:e9:4b:f7:74:00:e5:38: ce:88:4c:af:36:9f:27:51:e7:44:4e:78:19:6d:b0: 8c:67:69:fd:c9:b0:ca:44:d6:f0:65:a9:dc:be:fc: d8:97:5c:87:c3:02:22:86:be:77:93:6a:a8:fc:50: 67:53:b2:cb:c1:45:e7:04:db:e9:50:32:90:c0:23: 99:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:2D:51:6C:DE:9D:A9:A0:BE:CB:0E:AA:93:C5:03:DB:48:85:70:5E X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:f1:f0:d1:4f:dd:1f:f8:2e:05:f2:7c:f4:f8:e4:88:89:51: ad:7b:f4:07:88:5d:1a:29:6d:3b:14:33:93:a0:b0:0a:be:d4: ed:be:41:14:bf:3d:ff:c6:cf:22:4f:97:c2:da:1e:92:4e:54: 0f:49:9c:12:31:f7:8c:56:63:c6:f2:8d:da:42:11:5b:2b:0e: 8e:98:1c:77:03:b3:e7:39:00:40:ce:11:c6:2f:b2:f2:e9:e7: 55:1e:28:30:de:a5:13:1c:f3:77:ad:0c:e3:1a:8e:4c:0e:11: 27:ce:25:d7:52:9d:22:c9:66:ce:e0:1a:2c:51:88:88:52:73: 97:93:84:9e:c7:5d:c3:cb:b7:f5:36:fb:42:74:0b:f4:cd:8f: c8:ad:ce:8d:89:cc:c6:54:ef:9d:a7:11:9e:a3:cf:bd:a6:3f: b9:ce:96:e0:ac:7b:0d:f0:c8:24:73:ec:fa:b6:0c:45:e4:c6: 28:9e:cf:29:49:94:51:68:da:f2:d8:b9:73:a2:08:a0:5f:b1: 56:23:eb:d9:b2:40:b0:1d:a2:cc:b2:f3:52:84:c2:95:6d:03: ef:c7:fb:4f:5e:d5:a5:f7:88:aa:0b:16:f3:3e:cb:f2:bc:74: 26:c3:00:b2:c6:64:2a:9f:5e:ef:f6:f6:46:ed:17:20:51:20: 3c:e0:e6:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZpSLBy6vPsp1jbnmP34UQPTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUxMTA1MDQwMDEzWhcNMjUxMTA2MDQwMDEzWjAzMTEwLwYDVQQD Eyg3ZDJkNTE2Y2RlOWRhOWEwYmVjYjBlYWE5M2M1MDNkYjQ4ODU3MDVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzz0lauPB3i7k77z131Tc0+lJZDgv /h5ixg8vdurqlSj189RNNpcFj76dDaSuG1hDJ9x5pQjRlOi7+7wg9l2E05ywr+Io ZL9qOTQOIEIusTsnb4xcXN6Sutg312yhCMzLcMD9YjFefvGIbtnlCvQ+ED5kJmVS +pgEFfeFZl2EJ5eBxameaCaI4cegRA1QupUzh2at8SwS6mz4l/u3EauaCdL4mKdx C1vbnVt7t8e5aQXt5kF4+9ZPXetomulL93QA5TjOiEyvNp8nUedETngZbbCMZ2n9 ybDKRNbwZancvvzYl1yHwwIihr53k2qo/FBnU7LLwUXnBNvpUDKQwCOZAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH0tUWzenamgvssOqpPFA9tIhXBeMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWfHw0U/d H/guBfJ89PjkiIlRrXv0B4hdGiltOxQzk6CwCr7U7b5BFL89/8bPIk+Xwtoekk5U D0mcEjH3jFZjxvKN2kIRWysOjpgcdwOz5zkAQM4Rxi+y8unnVR4oMN6lExzzd60M 4xqOTA4RJ84l11KdIslmzuAaLFGIiFJzl5OEnsddw8u39Tb7QnQL9M2PyK3OjYnM xlTvnacRnqPPvaY/uc6W4Kx7DfDIJHPs+rYMReTGKJ7PKUmUUWja8ti5c6IIoF+x ViPr2bJAsB2izLLzUoTClW0D78f7T17VpfeIqgsW8z7L8rx0JsMAssZkKp9e7/b2 Ru0XIFEgPODmSQ== -----END CERTIFICATE-----Generated at Wed Nov 5 08:47:12 2025 by rpki-client