$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: Y/ilC5CS93Qchw+u3eQ5JseP841kLRnlo143YpxQE5o= Subject key identifier: 6B:07:87:D4:F5:A7:9C:31:67:5A:21:DD:21:E3:97:9E:1B:75:11:15 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019E5591E5BF36C1E89661346950BA5A627C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 1172 Signing time: Sat 23 May 2026 16:01:25 +0000 Manifest this update: Sat 23 May 2026 16:01:25 +0000 Manifest next update: Sun 24 May 2026 16:01:25 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: hzE0ipvNmaFi6lUMAV+6D6MZtGVXeels+53kGQksNqE=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 10: qOS44k4K1WSKtUKGLEhRxJxPEas.roa (hash: FW03t2tk2X1t0JN65p0CDI9DvEztasvMAKi+nwmwwnw=) 11: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 May 2026 14:09:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:55:91:e5:bf:36:c1:e8:96:61:34:69:50:ba:5a:62:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: May 23 16:01:25 2026 GMT Not After : May 24 16:01:25 2026 GMT Subject: CN=6b0787d4f5a79c31675a21dd21e3979e1b751115 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7e:30:97:23:f9:bb:40:ea:1b:d4:e6:6d:d8: f7:fa:9f:5c:09:a1:bb:76:aa:47:1b:b4:12:95:1c: 14:34:12:8a:49:1a:85:68:a6:cc:56:88:59:91:94: e0:ff:24:88:b3:20:d5:66:31:b9:ce:c9:90:ae:b3: 6e:20:df:34:b6:40:a9:bb:65:98:54:7d:69:7a:31: dd:a6:4d:f2:b2:20:7f:9f:1d:dc:87:3f:e1:8f:a5: 54:a8:05:c2:81:ed:ff:fd:3e:a8:65:fc:e1:e1:b4: 64:2a:70:59:82:85:d7:9e:05:f5:39:ce:19:34:3d: 4c:93:4f:12:be:09:29:2d:6f:f4:96:ea:fb:9b:0b: c3:d3:21:70:73:5f:a1:21:61:88:b6:be:67:cd:8f: 23:6c:ae:58:bb:73:65:5a:5c:14:bd:7e:3e:92:63: 91:41:11:0a:77:89:32:62:34:2b:0f:a1:2b:f7:b5: 54:6e:2e:d2:15:88:a1:5b:67:d4:5e:ae:7d:ab:39: ef:33:21:02:4a:44:85:b3:7b:a3:7a:8d:23:7d:ab: e2:8f:43:f5:f9:4c:d4:00:6c:8e:83:12:44:ae:bc: 49:cc:a2:b8:00:a4:9d:61:03:62:ab:03:15:f8:07: 29:9e:39:da:e7:b8:69:ac:b8:0a:f8:58:3f:53:11: 93:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:07:87:D4:F5:A7:9C:31:67:5A:21:DD:21:E3:97:9E:1B:75:11:15 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:ef:bc:f8:5a:a0:61:48:fe:bd:a6:50:9d:34:a4:1b:41:72: 09:aa:e7:40:ee:59:42:8a:fb:c0:69:24:58:66:69:88:be:d0: eb:68:01:05:05:1b:0a:fc:64:3e:c8:ec:e9:00:69:04:5f:5e: c7:ab:fe:db:15:b1:30:c8:47:ea:99:78:ff:2b:fb:8e:bf:5d: 68:cf:e6:48:93:10:8c:45:d6:c6:4b:5c:07:24:fd:a9:6a:47: 7c:23:9f:f8:f2:a7:cc:25:4a:87:55:8b:5f:99:f8:ca:56:46: 9f:7a:2c:e7:e7:da:92:08:56:df:90:bb:5f:44:93:fd:02:a0: 1d:aa:04:e7:33:e7:97:26:ac:8b:fb:8e:cc:a4:51:c8:d7:d6: 0d:42:0f:26:1e:aa:26:70:6f:f9:84:1a:5e:a6:04:3b:8a:9f: a1:10:8d:74:56:5e:37:0b:8a:35:11:db:da:c9:8b:62:11:52: 9a:6f:86:a1:24:a7:33:e9:99:2c:6c:56:55:4b:f1:82:5e:4c: 7f:b9:e3:b2:10:e6:bf:fa:b9:2d:d9:df:c9:88:62:7d:9c:e4: fd:73:41:27:a0:fd:08:b1:4a:bc:ca:74:03:41:42:fb:64:af: d2:4f:d7:ca:b7:c9:73:d2:db:5c:7f:43:2e:af:9c:b1:54:a5: f1:95:ce:42 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ5VkeW/NsHolmE0aVC6WmJ8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwNTIzMTYwMTI1WhcNMjYwNTI0MTYwMTI1WjAzMTEwLwYDVQQD Eyg2YjA3ODdkNGY1YTc5YzMxNjc1YTIxZGQyMWUzOTc5ZTFiNzUxMTE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArn4wlyP5u0DqG9Tmbdj3+p9cCaG7 dqpHG7QSlRwUNBKKSRqFaKbMVohZkZTg/ySIsyDVZjG5zsmQrrNuIN80tkCpu2WY VH1pejHdpk3ysiB/nx3chz/hj6VUqAXCge3//T6oZfzh4bRkKnBZgoXXngX1Oc4Z ND1Mk08SvgkpLW/0lur7mwvD0yFwc1+hIWGItr5nzY8jbK5Yu3NlWlwUvX4+kmOR QREKd4kyYjQrD6Er97VUbi7SFYihW2fUXq59qznvMyECSkSFs3ujeo0jfavij0P1 +UzUAGyOgxJErrxJzKK4AKSdYQNiqwMV+Acpnjna57hprLgK+Fg/UxGTaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGsHh9T1p5wxZ1oh3SHjl54bdREVMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALe+8+Fqg YUj+vaZQnTSkG0FyCarnQO5ZQor7wGkkWGZpiL7Q62gBBQUbCvxkPsjs6QBpBF9e x6v+2xWxMMhH6pl4/yv7jr9daM/mSJMQjEXWxktcByT9qWpHfCOf+PKnzCVKh1WL X5n4ylZGn3os5+fakghW35C7X0ST/QKgHaoE5zPnlyasi/uOzKRRyNfWDUIPJh6q JnBv+YQaXqYEO4qfoRCNdFZeNwuKNRHb2smLYhFSmm+GoSSnM+mZLGxWVUvxgl5M f7njshDmv/q5LdnfyYhifZzk/XNBJ6D9CLFKvMp0A0FC+2Sv0k/XyrfJc9LbXH9D Lq+csVSl8ZXOQg== -----END CERTIFICATE-----Generated at Sun May 24 00:20:02 2026 by rpki-client