$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: WGGMVsTooqixDU+vcAoO+h9XJ+U1EiwyNBwg/ic1MF8= Subject key identifier: CE:D8:D2:9A:D0:F6:7D:44:37:42:0A:80:4A:4E:63:76:5D:1C:36:7D Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019C9E8B4F39EC91C397FB4320EC40A05448 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 108D Signing time: Fri 27 Feb 2026 10:00:55 +0000 Manifest this update: Fri 27 Feb 2026 10:00:55 +0000 Manifest next update: Sat 28 Feb 2026 10:00:55 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: 8QHU2z905gXR0cGABQMMWbH8p6IEne2h4gsF7dFK2F0=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 28 Feb 2026 09:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:9e:8b:4f:39:ec:91:c3:97:fb:43:20:ec:40:a0:54:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Feb 27 10:00:55 2026 GMT Not After : Feb 28 10:00:55 2026 GMT Subject: CN=ced8d29ad0f67d4437420a804a4e63765d1c367d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:47:08:a8:ec:8d:57:8b:be:e2:d1:6e:fc:16: fc:a5:1e:e3:32:93:5a:98:98:32:81:67:4d:e9:34: 37:cd:83:0c:c1:8e:fd:8a:a5:83:e0:aa:09:85:4c: c0:d1:8b:a7:fa:44:ad:53:13:5e:67:e4:97:d5:b9: 36:a2:2c:be:2b:ee:55:0b:55:e0:ed:27:da:18:29: b8:0d:75:9c:9c:6b:18:c1:f7:6c:19:b4:38:ba:07: fb:be:2d:6a:1e:9c:0c:61:ff:67:49:18:dc:4f:93: f2:a3:91:e0:f2:f7:f2:b1:aa:94:0c:0f:ae:46:90: 99:95:11:fe:43:47:a5:6e:9f:2e:93:13:e3:1e:89: 68:7b:4d:b1:b3:ac:a4:52:a2:56:cd:2c:62:f7:3b: e2:58:2d:6c:cd:ca:82:40:aa:70:e6:14:0d:e6:2c: 68:6f:a4:d9:cd:46:7c:c3:ec:e5:10:ea:f9:a3:f2: 23:02:d1:76:16:b8:4d:3a:df:8f:5f:a3:56:2f:28: d7:db:57:2a:f1:61:ea:79:2f:15:65:98:39:f1:20: 34:e4:67:e7:b2:db:83:20:a5:9a:4d:61:76:f3:05: 8b:c7:ac:5d:0d:46:28:ab:42:42:3d:98:9b:5e:b2: f6:a5:32:f6:f8:bb:3c:68:f7:34:a5:5e:84:c6:9b: e1:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:D8:D2:9A:D0:F6:7D:44:37:42:0A:80:4A:4E:63:76:5D:1C:36:7D X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:ee:24:c5:de:fb:fc:5f:9f:90:19:e3:31:dd:bc:37:43:eb: af:93:81:ed:d0:4e:7c:8f:9c:30:b8:00:c8:b2:1f:17:9a:28: e3:d2:05:57:ea:f2:77:bb:18:be:8d:7d:7d:43:46:b7:00:00: 64:82:77:4b:30:98:48:bb:88:8e:a2:8d:1a:3e:48:83:ee:d4: 25:1d:4d:a2:67:ab:24:23:3b:8a:3f:0b:c8:ab:18:00:4f:5f: 73:b6:10:00:b5:bb:da:2d:5a:c3:d7:96:73:26:87:81:86:19: 94:72:33:50:84:e4:08:84:d3:36:35:11:12:4e:b3:29:ed:89: de:78:90:fc:20:b9:68:5c:54:25:47:c9:68:38:e3:b6:23:04: cc:90:60:21:7a:0c:02:29:e1:fd:7f:5f:49:45:3a:0e:94:dc: 18:fb:15:0e:da:32:ea:88:23:80:3c:b8:ab:41:08:b4:ca:21: b0:62:fa:c7:e9:3b:8a:58:45:18:fc:72:10:a1:e0:02:e9:fd: bf:1d:c3:5d:40:f3:1b:c4:2d:e5:d1:c9:73:4b:7d:ae:99:f1: 76:f7:b0:8c:17:0d:1f:70:cd:4f:40:b6:42:05:ec:78:14:12: 56:30:8f:34:9b:a5:82:6d:0e:f8:34:d8:13:73:43:fd:ee:35: 83:b0:dd:00 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZyei0857JHDl/tDIOxAoFRIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMjI3MTAwMDU1WhcNMjYwMjI4MTAwMDU1WjAzMTEwLwYDVQQD EyhjZWQ4ZDI5YWQwZjY3ZDQ0Mzc0MjBhODA0YTRlNjM3NjVkMWMzNjdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmEcIqOyNV4u+4tFu/Bb8pR7jMpNa mJgygWdN6TQ3zYMMwY79iqWD4KoJhUzA0Yun+kStUxNeZ+SX1bk2oiy+K+5VC1Xg 7SfaGCm4DXWcnGsYwfdsGbQ4ugf7vi1qHpwMYf9nSRjcT5Pyo5Hg8vfysaqUDA+u RpCZlRH+Q0elbp8ukxPjHoloe02xs6ykUqJWzSxi9zviWC1szcqCQKpw5hQN5ixo b6TZzUZ8w+zlEOr5o/IjAtF2FrhNOt+PX6NWLyjX21cq8WHqeS8VZZg58SA05Gfn stuDIKWaTWF28wWLx6xdDUYoq0JCPZibXrL2pTL2+Ls8aPc0pV6ExpvhgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM7Y0prQ9n1EN0IKgEpOY3ZdHDZ9MB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADO4kxd77 /F+fkBnjMd28N0Prr5OB7dBOfI+cMLgAyLIfF5oo49IFV+ryd7sYvo19fUNGtwAA ZIJ3SzCYSLuIjqKNGj5Ig+7UJR1NomerJCM7ij8LyKsYAE9fc7YQALW72i1aw9eW cyaHgYYZlHIzUITkCITTNjUREk6zKe2J3niQ/CC5aFxUJUfJaDjjtiMEzJBgIXoM Ainh/X9fSUU6DpTcGPsVDtoy6ogjgDy4q0EItMohsGL6x+k7ilhFGPxyEKHgAun9 vx3DXUDzG8Qt5dHJc0t9rpnxdvewjBcNH3DNT0C2QgXseBQSVjCPNJulgm0O+DTY E3ND/e41g7DdAA== -----END CERTIFICATE-----Generated at Fri Feb 27 15:03:48 2026 by rpki-client