$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: TzlSWqlQca+Iawc9IjoUe32sHOueMIe4jAY6OuZ6YZQ= Subject key identifier: FB:A2:2A:D7:66:D2:BC:C7:53:73:B4:5E:07:6C:24:4A:A5:EE:24:6A Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019D1A24604990033418CF9F7599E9936139 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 10CD Signing time: Mon 23 Mar 2026 10:01:24 +0000 Manifest this update: Mon 23 Mar 2026 10:01:24 +0000 Manifest next update: Tue 24 Mar 2026 10:01:24 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: J1fCyMr7cR+JwnQjk1EDrw9+qcY6b5PQ6Y4i/zWUDCA=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 24 Mar 2026 09:18:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:1a:24:60:49:90:03:34:18:cf:9f:75:99:e9:93:61:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Mar 23 10:01:24 2026 GMT Not After : Mar 24 10:01:24 2026 GMT Subject: CN=fba22ad766d2bcc75373b45e076c244aa5ee246a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:da:1e:85:81:7c:14:ee:3b:1a:8e:26:40:06: 27:99:75:97:72:0a:b7:cd:20:57:13:c2:4a:51:71: ad:1d:95:93:d2:32:f8:80:d6:56:b3:b2:f5:c1:96: 3d:3e:25:c6:e0:30:9d:44:5e:9f:a4:bd:9a:39:d1: fd:81:8f:a3:8b:30:ef:4a:09:22:05:81:d1:a5:88: 1f:05:36:9d:fb:c6:01:8f:12:e4:e0:ab:f4:a9:76: 26:6f:6b:d0:89:da:3a:e0:37:72:2d:2b:7e:25:05: e5:32:fb:b0:d8:98:ee:70:3a:a2:cf:e5:6c:a7:3c: 41:e2:5c:f4:13:92:f6:b7:3e:5c:2b:91:88:9d:8e: 28:94:e8:f4:f2:9f:6d:fa:e9:98:1c:ef:21:13:67: 60:6f:e8:a4:09:3c:6d:19:34:36:29:18:1e:d8:10: ee:e4:b6:01:49:d8:e9:3a:c8:15:91:36:c0:9d:7e: 04:5e:4e:fa:f9:47:d5:55:7a:1b:1d:48:42:64:b2: 71:ae:6f:61:6b:48:cf:d3:ad:ed:70:e1:45:79:77: ef:14:67:64:85:2f:46:c7:ca:9f:04:7b:55:57:f1: b2:b3:c4:2d:3a:69:83:c7:4f:46:ab:e8:ca:cc:2c: 17:88:e7:cf:16:fb:f1:8f:12:96:08:f0:2a:2e:13: ef:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:A2:2A:D7:66:D2:BC:C7:53:73:B4:5E:07:6C:24:4A:A5:EE:24:6A X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:b4:36:89:21:0d:b0:1c:e3:f4:6e:42:7e:33:65:08:a3:b9: 63:d8:5f:99:0e:a9:f8:2a:8a:7d:b7:7a:67:c2:41:44:8b:9e: 0d:2a:72:9d:c8:4b:c9:1a:2d:a5:68:0d:d2:5f:f8:3c:38:6c: 69:ba:48:4a:64:16:26:9d:af:67:76:e5:d0:16:31:0c:f0:c1: 0c:bc:c3:0a:26:15:bc:65:f9:4e:0a:1c:81:25:df:2d:26:80: e4:f5:7f:40:5b:87:d5:3e:b9:2f:d7:50:40:59:1e:6c:53:61: e2:38:f1:c8:86:5f:06:71:be:fc:f5:d9:58:7e:7c:a8:f1:8e: eb:12:48:02:b2:83:38:5b:d7:4c:e1:a1:92:60:0c:42:76:57: 12:3b:19:4c:48:8c:54:0d:ca:23:9e:bc:bf:5e:c2:a6:89:aa: 8b:f3:c5:cc:e6:00:0d:69:b1:a0:7c:cc:fe:33:de:4b:4a:d3: f7:66:05:26:de:d1:35:ef:38:a7:2f:0f:57:de:ee:f5:d2:cb: 1e:71:f8:8a:2e:7d:ee:39:7b:d1:e8:eb:5c:e2:89:06:1e:57: d0:3a:f4:cf:0b:45:97:4a:38:62:51:0c:54:c0:32:2e:ad:01: ed:5b:3b:54:16:82:b8:1c:0f:ec:55:e6:66:c9:a0:02:6a:3f: 7c:78:77:05 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0aJGBJkAM0GM+fdZnpk2E5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMzIzMTAwMTI0WhcNMjYwMzI0MTAwMTI0WjAzMTEwLwYDVQQD EyhmYmEyMmFkNzY2ZDJiY2M3NTM3M2I0NWUwNzZjMjQ0YWE1ZWUyNDZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx9oehYF8FO47Go4mQAYnmXWXcgq3 zSBXE8JKUXGtHZWT0jL4gNZWs7L1wZY9PiXG4DCdRF6fpL2aOdH9gY+jizDvSgki BYHRpYgfBTad+8YBjxLk4Kv0qXYmb2vQido64DdyLSt+JQXlMvuw2JjucDqiz+Vs pzxB4lz0E5L2tz5cK5GInY4olOj08p9t+umYHO8hE2dgb+ikCTxtGTQ2KRge2BDu 5LYBSdjpOsgVkTbAnX4EXk76+UfVVXobHUhCZLJxrm9ha0jP063tcOFFeXfvFGdk hS9Gx8qfBHtVV/Gys8QtOmmDx09Gq+jKzCwXiOfPFvvxjxKWCPAqLhPvYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPuiKtdm0rzHU3O0XgdsJEql7iRqMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIbQ2iSEN sBzj9G5CfjNlCKO5Y9hfmQ6p+CqKfbd6Z8JBRIueDSpynchLyRotpWgN0l/4PDhs abpISmQWJp2vZ3bl0BYxDPDBDLzDCiYVvGX5TgocgSXfLSaA5PV/QFuH1T65L9dQ QFkebFNh4jjxyIZfBnG+/PXZWH58qPGO6xJIArKDOFvXTOGhkmAMQnZXEjsZTEiM VA3KI568v17Cpomqi/PFzOYADWmxoHzM/jPeS0rT92YFJt7RNe84py8PV97u9dLL HnH4ii597jl70ejrXOKJBh5X0Dr0zwtFl0o4YlEMVMAyLq0B7Vs7VBaCuBwP7FXm ZsmgAmo/fHh3BQ== -----END CERTIFICATE-----Generated at Mon Mar 23 15:19:28 2026 by rpki-client