$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft File: Y2O7ZYlfOlSksyShDHmsmO_ioco.mft (raw, json) Hash identifier: Ft6Pxnz5e+/PKpBMXZIwHX2+FhJBjQFX3ufj/ue9kq0= Subject key identifier: A8:58:5C:7A:D8:5E:13:AE:B1:26:AF:D7:B1:D5:49:A2:35:69:17:5E Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Certificate serial: 019CDF21965D9D3678DB553C6BC7BEE38F16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft Manifest number: 11C5 Signing time: Wed 11 Mar 2026 23:00:46 +0000 Manifest this update: Wed 11 Mar 2026 23:00:46 +0000 Manifest next update: Thu 12 Mar 2026 23:00:46 +0000 Files and hashes: 1: 0qcRgVORJ6l9UlTI2CKPLzjbfog.roa (hash: wvJhHDw0n2QTgzGbPUH8xt0FfoOscXlBHhG0tJvFt98=) 2: 2EkuPAqVHEWEKp6ASw2K5zmACQk.roa (hash: n72y5YkbbuFUJAYmxmxnzR7f3ZsUZLnhTxeGIE67Cko=) 3: 9GNJULiHerXMrZEUQ4iXS5c0poQ.roa (hash: 5AM6hNbc8zX+Kgni42XJxN4NaPkDnj1J+EO7270Xp8o=) 4: LKqcV__iHBkuJmHBTgVTMKe7jfs.roa (hash: LzRNG01pbqOOrg9Ke+0IrSjljXKIcSklaBxsB5gc1AU=) 5: MDqkmVq0wqQhfctEVt435BlVKwE.roa (hash: UBeCi32yoKfsLWvPk9g+GRflHLIlJW/EWzv3Gosv9dk=) 6: PxxNVNL5BOB3QrAZZvS5ahJKLOQ.roa (hash: tFLry/v07lnhSlHBjf2oO0BxwozcI2XhOgOvdmFzcjY=) 7: U74ViGODTud33ngPAmj4w73NK6o.roa (hash: 8g7ud1guSPB+L+sklXn8DfQQ/RtzcbmpgZcJ8hWX/2M=) 8: Y2O7ZYlfOlSksyShDHmsmO_ioco.crl (hash: 4PMHx401Y4BJ84TA6mhrMv7vO3svTPZ8n1/1O/JDId4=) 9: ajUdjtPuTYK4cJ-GDNgzwU_V7QU.roa (hash: zq0p6TTpyxJr1rlBswAzuDS0To2T7g83akxmSzfwXWY=) 10: esQiMgPaySQVW0k54pO3jc5Zyuc.roa (hash: 2aftWcOZmt2bVeY6qt170y22emZnUo4u4rs+oiqH7rU=) 11: n9NpVtjQ4CgC347DPdZBbkrl1rk.roa (hash: F/VcD/rkVFmMD8EIR8zYpeskYz8L7PTmG19l/6//DPo=) 12: qzDK1lhCM39SxM8PACxbyKkom_M.roa (hash: nfWxgyb2gt4+A8mM3hL0XhTI+0dXdf9+3PuS2IdhMMY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 12 Mar 2026 23:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:df:21:96:5d:9d:36:78:db:55:3c:6b:c7:be:e3:8f:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Validity Not Before: Mar 11 23:00:46 2026 GMT Not After : Mar 12 23:00:46 2026 GMT Subject: CN=a8585c7ad85e13aeb126afd7b1d549a23569175e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2c:5e:7e:6c:57:c4:55:dc:fa:b9:48:86:1f: fc:89:de:26:49:a1:07:f2:3f:3a:6a:92:a0:1e:4d: 46:24:e5:71:dc:ed:aa:88:f4:bd:b7:66:b9:eb:17: 7e:f5:65:dd:62:5c:f0:ca:31:6f:b5:8f:da:a7:89: ab:f5:de:b0:7a:08:b5:2a:95:29:12:52:5f:7b:5b: f0:4d:97:4d:3d:b7:c8:f9:e8:69:91:21:ce:a6:1a: 9c:92:07:72:0f:ec:21:07:91:f7:4d:2e:c0:dd:2b: b3:4e:19:c6:9e:7a:44:36:9d:e4:10:23:d4:b5:9f: 99:78:6c:36:77:a9:99:c3:bf:d5:97:4a:8c:49:13: a3:c2:32:6f:d7:8e:57:af:8b:a9:1d:bb:f0:da:a1: ac:c9:4e:10:26:93:ac:dc:9b:a4:ba:c6:11:77:46: 13:2b:cc:29:1f:9b:c6:b5:d6:1c:3c:7c:5c:08:50: d1:d1:80:11:a4:99:2f:40:0f:5a:2c:38:75:60:a8: c1:39:6b:b4:08:a4:54:c7:f9:aa:9f:4a:de:67:36: 2a:bc:8e:7c:82:b1:f9:f6:13:c9:3a:68:93:62:03: 85:39:6d:f0:a0:26:cc:fe:ed:48:54:87:3f:83:80: d3:62:64:5e:86:34:c3:ee:4f:f7:e2:8a:9e:91:e9: 68:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:58:5C:7A:D8:5E:13:AE:B1:26:AF:D7:B1:D5:49:A2:35:69:17:5E X509v3 Authority Key Identifier: keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:ee:91:4d:ef:4a:8c:43:12:a6:89:ef:d3:99:77:9a:4f:6c: 3c:7f:5c:bc:9e:d8:8f:c5:a1:82:f9:3c:ff:c9:58:91:15:7d: 63:f0:5b:a2:ec:a0:04:76:8f:a1:1d:0a:31:15:ec:5e:23:65: 68:9b:45:8a:b5:02:79:99:2f:b0:45:7a:b7:6b:8e:d3:44:62: a8:30:73:34:56:b3:0f:8d:96:51:3e:9d:d8:ba:10:da:36:d3: 4a:81:85:40:78:73:bf:2b:d7:7c:79:36:8b:73:fd:e5:f7:1a: c0:97:e1:32:2e:5e:91:9b:0e:d0:d4:b4:48:17:a4:1f:24:96: 6c:10:cd:f8:b2:e7:e6:07:01:12:59:32:35:be:37:5a:ab:c6: bb:65:04:1a:5b:5d:68:f4:f6:33:d4:2a:b0:23:84:6d:be:80: c3:04:34:1e:0b:56:28:4b:d6:10:39:87:45:44:44:4f:d0:fe: a7:fb:87:e4:21:54:12:be:a2:a6:80:91:aa:6c:b6:93:3d:19: 7e:87:30:c6:42:70:70:d6:d9:4c:3d:b2:73:51:fb:5c:58:59: 46:09:ed:6d:b6:6a:45:64:49:43:d9:1d:0a:34:35:e5:d3:73: bd:70:ab:f3:74:75:d1:b1:a2:0c:b6:29:33:73:04:19:0c:9b: a0:18:d0:9a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZzfIZZdnTZ421U8a8e+448WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNjNiYjY1ODk1ZjNhNTRhNGIzMjRhMTBjNzlhYzk4ZWZl MmExY2EwHhcNMjYwMzExMjMwMDQ2WhcNMjYwMzEyMjMwMDQ2WjAzMTEwLwYDVQQD EyhhODU4NWM3YWQ4NWUxM2FlYjEyNmFmZDdiMWQ1NDlhMjM1NjkxNzVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvCxefmxXxFXc+rlIhh/8id4mSaEH 8j86apKgHk1GJOVx3O2qiPS9t2a56xd+9WXdYlzwyjFvtY/ap4mr9d6wegi1KpUp ElJfe1vwTZdNPbfI+ehpkSHOphqckgdyD+whB5H3TS7A3SuzThnGnnpENp3kECPU tZ+ZeGw2d6mZw7/Vl0qMSROjwjJv145Xr4upHbvw2qGsyU4QJpOs3JukusYRd0YT K8wpH5vGtdYcPHxcCFDR0YARpJkvQA9aLDh1YKjBOWu0CKRUx/mqn0reZzYqvI58 grH59hPJOmiTYgOFOW3woCbM/u1IVIc/g4DTYmRehjTD7k/34oqekelorQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKhYXHrYXhOusSav17HVSaI1aRdeMB8GA1UdIwQY MBaAFGNju2WJXzpUpLMkoQx5rJjv4qHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMt YTZjYTQ1NGRiMmQ3LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMtYTZjYTQ1NGRiMmQ3 LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAu6RTe9K jEMSponv05l3mk9sPH9cvJ7Yj8Whgvk8/8lYkRV9Y/BbouygBHaPoR0KMRXsXiNl aJtFirUCeZkvsEV6t2uO00RiqDBzNFazD42WUT6d2LoQ2jbTSoGFQHhzvyvXfHk2 i3P95fcawJfhMi5ekZsO0NS0SBekHySWbBDN+LLn5gcBElkyNb43WqvGu2UEGltd aPT2M9QqsCOEbb6AwwQ0HgtWKEvWEDmHRURET9D+p/uH5CFUEr6ipoCRqmy2kz0Z focwxkJwcNbZTD2yc1H7XFhZRgntbbZqRWRJQ9kdCjQ15dNzvXCr83R10bGiDLYp M3MEGQyboBjQmg== -----END CERTIFICATE-----Generated at Thu Mar 12 09:31:10 2026 by rpki-client