$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: FoRZXobHTXFCi49TbMIe0wd/vZs8vzatw3lUomD5Uuo= Subject key identifier: 02:A9:17:C0:73:B9:E2:E6:DB:44:0F:A5:C6:50:31:76:41:D8:40:7A Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019E9D057DF7D2E5E430CB2E605B44357251 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 1197 Signing time: Sat 06 Jun 2026 13:00:43 +0000 Manifest this update: Sat 06 Jun 2026 13:00:43 +0000 Manifest next update: Sun 07 Jun 2026 13:00:43 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: NzkNOa2mld8WLCPjkSRcZAHdzNUWpqtjK7CkjDYMdBk=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 10: qOS44k4K1WSKtUKGLEhRxJxPEas.roa (hash: FW03t2tk2X1t0JN65p0CDI9DvEztasvMAKi+nwmwwnw=) 11: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Jun 2026 13:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:9d:05:7d:f7:d2:e5:e4:30:cb:2e:60:5b:44:35:72:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jun 6 13:00:43 2026 GMT Not After : Jun 7 13:00:43 2026 GMT Subject: CN=02a917c073b9e2e6db440fa5c650317641d8407a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b4:de:6f:17:30:8c:ac:04:a3:13:4b:ae:17: 08:6c:11:f1:5b:82:ea:ac:55:bf:4c:be:1d:80:70: 72:c0:a7:6a:ae:bc:d3:fe:e5:81:98:3b:95:c1:97: f7:e4:44:3e:b4:c9:71:61:57:d8:b9:db:55:57:c3: ba:16:a8:f4:d8:79:a5:5b:d0:7e:71:e8:a5:3f:f1: 2f:6e:80:e2:ac:cc:55:b0:18:81:21:27:44:bd:5b: 50:27:78:52:c1:a9:53:f1:8c:5b:ac:c9:33:5a:35: 11:23:5a:4c:b2:9a:5a:97:18:94:87:e1:26:ad:f3: 39:c2:62:a4:d8:5c:87:ca:3a:20:c1:78:c5:ed:f7: 96:18:dc:5c:8b:18:21:0f:e9:8a:dc:57:8f:0b:02: 67:c7:5e:94:39:81:8e:4c:ff:8b:7a:99:e4:cb:2c: 7e:59:fb:a5:f6:e5:54:51:20:1f:7a:17:0b:95:a1: b1:47:4c:db:ac:4b:5a:a3:6e:98:9c:d7:9b:0d:ce: 78:c4:9e:72:d0:52:0b:36:95:24:2d:d3:13:ba:96: 36:b2:af:0e:9f:d2:39:c7:08:5f:15:67:82:0d:05: 54:b9:68:9d:fb:f8:47:62:3b:50:45:e4:02:83:22: 08:3e:4f:c4:05:83:6d:30:52:75:de:1c:48:d7:ec: ee:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:A9:17:C0:73:B9:E2:E6:DB:44:0F:A5:C6:50:31:76:41:D8:40:7A X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:05:3b:71:e1:bb:50:97:a1:52:2e:4b:1d:2b:ad:3b:32:9b: af:0b:28:24:57:18:0d:84:00:73:7e:5a:f2:4e:49:cd:e4:99: 66:31:28:ae:84:f6:cb:5d:f0:bc:5b:22:72:f0:81:67:ee:bf: be:6d:38:e3:e1:39:b1:55:42:c3:f9:18:49:79:28:6c:2f:32: 9f:95:a5:98:f0:b8:f6:82:3d:05:1c:1a:37:5d:14:8d:c6:b1: 7d:a3:6e:8a:b6:bd:5a:5b:25:c8:5e:cc:a5:0b:f5:14:e7:2b: 50:0a:9e:83:6b:e9:8a:5a:b0:5f:6c:a1:41:e3:2d:fd:46:e3: 91:84:d3:75:9e:c9:1a:a8:1a:ad:09:7b:cc:ce:e2:79:d1:9b: 0a:92:dc:eb:da:40:2f:36:40:28:c0:7b:81:b0:f9:e0:19:83: a0:98:40:a9:f4:0e:38:3b:15:a6:3a:b6:58:aa:8c:90:dd:9c: 6b:86:52:cb:3e:26:63:47:95:87:90:7e:6d:8c:be:ee:8f:b4: 3c:e7:4d:92:03:69:2d:37:71:e7:1f:4c:f4:08:e4:2e:15:51: 6a:8d:fb:c7:e2:b0:e1:82:f6:ab:3e:b6:68:70:6e:78:e3:77: 5a:8c:5e:43:34:2b:1e:93:d9:de:ce:8c:d6:90:00:6c:b7:c1: b9:28:8d:fa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ6dBX330uXkMMsuYFtENXJRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwNjA2MTMwMDQzWhcNMjYwNjA3MTMwMDQzWjAzMTEwLwYDVQQD EygwMmE5MTdjMDczYjllMmU2ZGI0NDBmYTVjNjUwMzE3NjQxZDg0MDdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA07TebxcwjKwEoxNLrhcIbBHxW4Lq rFW/TL4dgHBywKdqrrzT/uWBmDuVwZf35EQ+tMlxYVfYudtVV8O6Fqj02HmlW9B+ ceilP/EvboDirMxVsBiBISdEvVtQJ3hSwalT8YxbrMkzWjURI1pMsppalxiUh+Em rfM5wmKk2FyHyjogwXjF7feWGNxcixghD+mK3FePCwJnx16UOYGOTP+Lepnkyyx+ Wful9uVUUSAfehcLlaGxR0zbrEtao26YnNebDc54xJ5y0FILNpUkLdMTupY2sq8O n9I5xwhfFWeCDQVUuWid+/hHYjtQReQCgyIIPk/EBYNtMFJ13hxI1+zuLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAKpF8BzueLm20QPpcZQMXZB2EB6MB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVAU7ceG7 UJehUi5LHSutOzKbrwsoJFcYDYQAc35a8k5JzeSZZjEoroT2y13wvFsicvCBZ+6/ vm044+E5sVVCw/kYSXkobC8yn5WlmPC49oI9BRwaN10UjcaxfaNuira9WlslyF7M pQv1FOcrUAqeg2vpilqwX2yhQeMt/UbjkYTTdZ7JGqgarQl7zM7iedGbCpLc69pA LzZAKMB7gbD54BmDoJhAqfQOODsVpjq2WKqMkN2ca4ZSyz4mY0eVh5B+bYy+7o+0 POdNkgNpLTdx5x9M9AjkLhVRao37x+Kw4YL2qz62aHBueON3WoxeQzQrHpPZ3s6M 1pAAbLfBuSiN+g== -----END CERTIFICATE-----Generated at Sat Jun 6 19:06:31 2026 by rpki-client