$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft File: Y2O7ZYlfOlSksyShDHmsmO_ioco.mft (raw, json) Hash identifier: 4cbcyAS5j7lGD5wAWqU7TJc8/r8X6xzQQ/cT8eULsks= Subject key identifier: 22:D0:B8:B1:60:30:E5:FD:9C:89:0F:53:01:98:39:D8:7B:00:1E:ED Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Certificate serial: 019A13BAF7E5783B58BE44D436DF6F815D21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft Manifest number: 104A Signing time: Fri 24 Oct 2025 01:00:11 +0000 Manifest this update: Fri 24 Oct 2025 01:00:11 +0000 Manifest next update: Sat 25 Oct 2025 01:00:11 +0000 Files and hashes: 1: 1-YME93lc1AWh4-bMqvVDZYenQg0.roa (hash: Euu0W5ctvY2bfvnvaMrD1zBWGCi2DVPvkYQ6p9zTjts=) 2: HdvJhluj0mmgaFdPVm0s0ofNMQM.roa (hash: p1LONhiWBtnwDM/uG7ENsu+2YSQKoESJAbc98yta6C4=) 3: PG5DPUzHhisMDmHNMi2OiyC4Krk.roa (hash: 5vgSE6xpOM3tTVvShPg0nfAqcYxZUDm3VYRogPEs1nM=) 4: QWifAQ3dSu8nhEAeOh_F1BphWro.roa (hash: itO7AV5EF/O+Sl0fYRa8cl6eA4q/nRa0iBG6sGElFQI=) 5: Y2O7ZYlfOlSksyShDHmsmO_ioco.crl (hash: RvAitCZanEgw5FOXFqsMKZOC3AztUGb0ZPSSDo77+1g=) 6: Z6ubH84vQbgEnifkNYkjjYx5LIg.roa (hash: A5Iyh12sixazcVNr3007j9RNY5bFIJZSLARvNvwI0hI=) 7: cWGszmobGgkTRu82roBLKR9vgkE.roa (hash: bXFzT/7+8yagPIwyKl0fdIxc7uJ/wfFRRzbV8w0a7yI=) 8: flrC_8zXbr01pJXgtmy__huZXOA.roa (hash: vzxZLPURPSKJVHe6QAWg0rqm4QhuQOuF7VBOWspThjA=) 9: lms_h40r3-LvmvS_QZG5u3K67Uw.roa (hash: sioeVX/bhxcVhyyVff9dr3QSj+48OLBpgP5/WVrFXzw=) 10: nGntDaqcmONxUi1sd87UMvT9x4I.roa (hash: JUPdqbOgdaD6LXB1MI+aJwuym5PZcQO3ILLdGvRsfU8=) 11: nzJ1VVo_PG7VRYK1qXbMx1rFS50.roa (hash: /GaOWlamFjP2Dj79UI9A1USxEJfBxcpOsY5WVrDbQNw=) 12: p_iHNwwqh2be0OjT5JQIUHp4Uvs.roa (hash: iKYw9dWKEOaAlzn5AmL4rdC2+rWU6FDA6bFijDgxb2w=) 13: qXSDx6qMLmAkAg9CUQzF6i4iyY0.roa (hash: wdkB7sltE+pNfWEVP8+xe0pE2lM5C0vVvLdbwwyDf04=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 25 Oct 2025 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:13:ba:f7:e5:78:3b:58:be:44:d4:36:df:6f:81:5d:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Validity Not Before: Oct 24 01:00:11 2025 GMT Not After : Oct 25 01:00:11 2025 GMT Subject: CN=22d0b8b16030e5fd9c890f53019839d87b001eed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:fa:18:d1:61:67:c8:7e:09:f9:cd:ba:22:bb: 97:de:1a:30:c4:8e:84:a8:c3:8c:61:9a:77:37:a5: eb:e9:df:79:e9:fb:5b:be:b1:e1:93:cc:34:67:02: 30:b7:70:00:81:81:01:5f:84:2b:6d:b0:90:39:51: e8:06:98:84:9a:8e:bd:22:79:e9:c2:2e:f0:a6:a3: 7b:7e:5f:17:51:f3:c7:91:6f:c5:fc:20:d0:7d:ee: 13:5d:8b:80:3d:71:c3:c2:14:05:11:43:65:72:26: 0e:97:9d:8f:f8:76:84:ea:01:dd:a4:7b:33:4e:16: 4e:65:f2:50:a0:0f:f5:95:c2:f6:4c:fd:d9:52:bc: 72:5c:f9:23:fc:10:3f:38:1d:0a:b8:4c:c4:6f:9d: f1:f2:64:18:b7:d9:fa:64:ac:9b:a5:ae:d9:f1:91: 09:91:70:f9:3f:dc:43:7b:db:e5:4a:6f:68:16:1b: fe:54:d6:ca:14:3d:ce:22:4b:6e:a2:80:3e:06:eb: 09:55:d3:01:ad:af:6a:2e:de:57:41:15:d8:ea:16: 25:b2:d3:69:89:dc:e6:08:8a:1c:d3:04:75:aa:f2: 4a:23:b5:a4:86:d6:dd:b1:d3:f0:6e:ec:67:c1:69: 2f:ef:6e:a0:c9:ff:4d:0a:14:91:79:13:87:f9:7d: ab:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:D0:B8:B1:60:30:E5:FD:9C:89:0F:53:01:98:39:D8:7B:00:1E:ED X509v3 Authority Key Identifier: keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:85:41:52:9a:9e:2b:6f:23:80:22:81:ba:68:85:4c:0d:8e: e2:55:ad:6d:8d:bc:2d:a0:e1:79:af:02:c7:07:83:38:88:84: ba:0e:c3:4a:96:11:73:36:4b:54:1e:39:a7:82:19:62:b2:38: 97:f1:1f:20:37:93:91:1f:91:dc:0c:6b:93:71:7d:c8:21:85: 02:8c:52:45:70:ec:18:38:32:d3:97:da:34:a9:e8:b7:74:94: 5b:6d:79:26:11:8a:26:81:a9:74:04:7b:41:e3:5b:97:2d:43: ce:87:cd:a1:3d:77:66:7c:f7:08:a3:6c:95:69:7f:9d:d9:15: 63:bd:73:ba:36:a3:78:d8:36:b3:1c:9c:77:b4:bb:39:1c:78: a5:cf:eb:e0:30:ac:43:a5:aa:f7:aa:45:f5:0e:06:23:1d:1f: 49:05:49:42:70:a9:b4:19:d3:73:88:52:e4:cb:56:18:6f:6b: a1:2f:d6:55:50:07:02:fa:cc:0a:9e:38:97:92:6e:0d:9f:8a: fb:58:4c:38:ce:9f:87:83:fb:87:cc:81:bd:d5:ea:6c:6f:81: 68:85:fb:97:d1:04:9a:aa:c7:bb:dc:6a:36:51:67:49:dc:d4: 2f:e1:88:c6:13:32:6f:37:71:c4:4c:b1:75:2e:24:b6:2b:02: 09:b9:4b:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZoTuvfleDtYvkTUNt9vgV0hMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNjNiYjY1ODk1ZjNhNTRhNGIzMjRhMTBjNzlhYzk4ZWZl MmExY2EwHhcNMjUxMDI0MDEwMDExWhcNMjUxMDI1MDEwMDExWjAzMTEwLwYDVQQD EygyMmQwYjhiMTYwMzBlNWZkOWM4OTBmNTMwMTk4MzlkODdiMDAxZWVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnvoY0WFnyH4J+c26IruX3howxI6E qMOMYZp3N6Xr6d956ftbvrHhk8w0ZwIwt3AAgYEBX4QrbbCQOVHoBpiEmo69Innp wi7wpqN7fl8XUfPHkW/F/CDQfe4TXYuAPXHDwhQFEUNlciYOl52P+HaE6gHdpHsz ThZOZfJQoA/1lcL2TP3ZUrxyXPkj/BA/OB0KuEzEb53x8mQYt9n6ZKybpa7Z8ZEJ kXD5P9xDe9vlSm9oFhv+VNbKFD3OIktuooA+BusJVdMBra9qLt5XQRXY6hYlstNp idzmCIoc0wR1qvJKI7WkhtbdsdPwbuxnwWkv726gyf9NChSReROH+X2rDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCLQuLFgMOX9nIkPUwGYOdh7AB7tMB8GA1UdIwQY MBaAFGNju2WJXzpUpLMkoQx5rJjv4qHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMt YTZjYTQ1NGRiMmQ3LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMtYTZjYTQ1NGRiMmQ3 LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAboVBUpqe K28jgCKBumiFTA2O4lWtbY28LaDhea8CxweDOIiEug7DSpYRczZLVB45p4IZYrI4 l/EfIDeTkR+R3Axrk3F9yCGFAoxSRXDsGDgy05faNKnot3SUW215JhGKJoGpdAR7 QeNbly1DzofNoT13Znz3CKNslWl/ndkVY71zujajeNg2sxycd7S7ORx4pc/r4DCs Q6Wq96pF9Q4GIx0fSQVJQnCptBnTc4hS5MtWGG9roS/WVVAHAvrMCp44l5JuDZ+K +1hMOM6fh4P7h8yBvdXqbG+BaIX7l9EEmqrHu9xqNlFnSdzUL+GIxhMybzdxxEyx dS4ktisCCblLNQ== -----END CERTIFICATE-----Generated at Fri Oct 24 09:37:18 2025 by rpki-client