$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft File: Y2O7ZYlfOlSksyShDHmsmO_ioco.mft (raw, json) Hash identifier: /rWdZGkq7Vl5BfCD6Q8kPbgey+50lkb7seVyktxhHUY= Subject key identifier: 27:2C:65:41:27:21:42:57:B2:03:0E:43:A2:74:D5:7B:A6:6B:45:88 Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Certificate serial: 0197428A25D69E10E226A32CF336160602D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft Manifest number: 0ECE Signing time: Fri 06 Jun 2025 00:00:39 +0000 Manifest this update: Fri 06 Jun 2025 00:00:39 +0000 Manifest next update: Sat 07 Jun 2025 00:00:39 +0000 Files and hashes: 1: 1-YME93lc1AWh4-bMqvVDZYenQg0.roa (hash: Euu0W5ctvY2bfvnvaMrD1zBWGCi2DVPvkYQ6p9zTjts=) 2: B-5_egLdEl752iv9qxYdq8eosj8.roa (hash: Cdvp7KAkC+/9T90gVhhsMGICo5DVTrNIRp6EnoCK4JA=) 3: HdvJhluj0mmgaFdPVm0s0ofNMQM.roa (hash: p1LONhiWBtnwDM/uG7ENsu+2YSQKoESJAbc98yta6C4=) 4: PG5DPUzHhisMDmHNMi2OiyC4Krk.roa (hash: 5vgSE6xpOM3tTVvShPg0nfAqcYxZUDm3VYRogPEs1nM=) 5: QWifAQ3dSu8nhEAeOh_F1BphWro.roa (hash: itO7AV5EF/O+Sl0fYRa8cl6eA4q/nRa0iBG6sGElFQI=) 6: Y2O7ZYlfOlSksyShDHmsmO_ioco.crl (hash: L/Cf3UpQY6JE78wpCh38WQEOI8p1EsJMn38uQ6Soakc=) 7: _3Pc_4Bz2D0phEqm40JUBCMBOMs.roa (hash: jKpdz+/oy9afZUNmdPkZDx7RzPY3Ab/FuG9Hux6Exr8=) 8: cWGszmobGgkTRu82roBLKR9vgkE.roa (hash: bXFzT/7+8yagPIwyKl0fdIxc7uJ/wfFRRzbV8w0a7yI=) 9: flrC_8zXbr01pJXgtmy__huZXOA.roa (hash: vzxZLPURPSKJVHe6QAWg0rqm4QhuQOuF7VBOWspThjA=) 10: nGntDaqcmONxUi1sd87UMvT9x4I.roa (hash: JUPdqbOgdaD6LXB1MI+aJwuym5PZcQO3ILLdGvRsfU8=) 11: p_iHNwwqh2be0OjT5JQIUHp4Uvs.roa (hash: iKYw9dWKEOaAlzn5AmL4rdC2+rWU6FDA6bFijDgxb2w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Jun 2025 20:42:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:42:8a:25:d6:9e:10:e2:26:a3:2c:f3:36:16:06:02:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Validity Not Before: Jun 6 00:00:39 2025 GMT Not After : Jun 7 00:00:39 2025 GMT Subject: CN=272c654127214257b2030e43a274d57ba66b4588 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:61:be:ac:5d:a3:e1:64:4d:38:9d:83:2d:97: 19:ad:a4:74:68:9f:99:6a:72:35:ff:c8:66:1b:54: 92:25:64:e6:28:e0:84:7e:5f:4a:c9:ea:5f:5d:d4: db:92:cf:66:bd:48:22:77:af:89:df:d9:6f:26:ca: db:b9:4c:1e:a1:8a:f5:8d:03:98:3d:1e:f8:70:ca: 42:5b:12:ef:7b:51:d2:7d:2e:1f:8a:4f:64:57:ba: 21:01:ea:e9:de:20:2c:79:18:9a:1b:47:49:a3:12: 49:53:bd:a5:58:7c:38:fe:c4:c8:10:44:c5:55:11: 23:e8:8a:e3:58:87:7e:ed:42:f8:a2:a9:30:9e:3a: 36:b0:e9:19:22:f1:9d:3c:f9:11:ee:92:88:1a:10: c3:3d:26:93:17:62:37:13:58:99:96:96:c6:65:37: 24:e5:33:c7:28:be:06:fa:e5:54:00:76:bf:c8:f4: 44:34:9f:cd:ac:fa:ef:ad:95:91:94:08:ab:5b:78: 10:57:19:e8:cf:1a:7c:fc:e0:92:b5:9e:a2:2a:e3: fe:20:da:58:ff:51:0c:79:6a:df:7b:11:9c:4b:c1: 21:bb:b3:a2:4a:c6:95:0d:f5:87:32:7e:87:d4:5b: 81:86:06:57:6f:48:e5:a2:0b:51:66:76:e4:f0:b5: ce:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:2C:65:41:27:21:42:57:B2:03:0E:43:A2:74:D5:7B:A6:6B:45:88 X509v3 Authority Key Identifier: keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:e0:ff:aa:84:e3:b0:88:bf:39:16:30:e6:b1:4d:ee:09:fa: 1b:7b:87:dc:d7:61:51:a2:5c:09:dd:d1:35:08:86:7e:45:dc: a3:c1:da:67:ce:69:80:9d:28:39:89:40:56:29:fa:46:6d:d3: 9b:a8:cc:fd:9e:f3:a9:07:03:ae:37:41:ad:5c:dd:c8:63:b5: 0c:c3:a2:b5:8c:cd:b2:3c:de:14:f5:4e:89:a4:e7:96:51:7f: 91:cb:79:80:f0:32:23:3f:b0:84:d5:65:c2:c4:92:75:1c:f8: 34:da:dd:8a:d8:cf:07:3c:78:ce:ee:71:cd:75:df:68:5d:2c: cf:c0:92:b2:6d:38:7d:67:5b:5b:02:70:09:f3:84:11:ea:7e: 40:8b:80:9c:0c:61:54:5c:c8:85:09:58:d8:71:29:52:2b:b3: d0:73:ec:5f:14:32:e4:d0:e8:fa:4c:2b:e5:d3:d7:0b:89:32: d0:76:69:a6:2d:45:ef:f9:e8:29:3e:bb:46:40:e7:82:f6:d4: 8a:b4:cd:06:2f:ee:be:16:9b:a3:bb:77:47:ac:9e:69:1d:20: fb:c6:01:90:6a:91:63:fb:24:0e:52:65:cf:db:24:01:fe:4c: 47:11:99:e7:44:70:c7:7a:11:57:ae:83:57:c5:5c:39:28:5a: 8f:a2:5c:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdCiiXWnhDiJqMs8zYWBgLYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNjNiYjY1ODk1ZjNhNTRhNGIzMjRhMTBjNzlhYzk4ZWZl MmExY2EwHhcNMjUwNjA2MDAwMDM5WhcNMjUwNjA3MDAwMDM5WjAzMTEwLwYDVQQD EygyNzJjNjU0MTI3MjE0MjU3YjIwMzBlNDNhMjc0ZDU3YmE2NmI0NTg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3WG+rF2j4WRNOJ2DLZcZraR0aJ+Z anI1/8hmG1SSJWTmKOCEfl9KyepfXdTbks9mvUgid6+J39lvJsrbuUweoYr1jQOY PR74cMpCWxLve1HSfS4fik9kV7ohAerp3iAseRiaG0dJoxJJU72lWHw4/sTIEETF VREj6IrjWId+7UL4oqkwnjo2sOkZIvGdPPkR7pKIGhDDPSaTF2I3E1iZlpbGZTck 5TPHKL4G+uVUAHa/yPRENJ/NrPrvrZWRlAirW3gQVxnozxp8/OCStZ6iKuP+INpY /1EMeWrfexGcS8Ehu7OiSsaVDfWHMn6H1FuBhgZXb0jlogtRZnbk8LXO9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCcsZUEnIUJXsgMOQ6J01Xuma0WIMB8GA1UdIwQY MBaAFGNju2WJXzpUpLMkoQx5rJjv4qHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMt YTZjYTQ1NGRiMmQ3LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMtYTZjYTQ1NGRiMmQ3 LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEeD/qoTj sIi/ORYw5rFN7gn6G3uH3NdhUaJcCd3RNQiGfkXco8HaZ85pgJ0oOYlAVin6Rm3T m6jM/Z7zqQcDrjdBrVzdyGO1DMOitYzNsjzeFPVOiaTnllF/kct5gPAyIz+whNVl wsSSdRz4NNrditjPBzx4zu5xzXXfaF0sz8CSsm04fWdbWwJwCfOEEep+QIuAnAxh VFzIhQlY2HEpUiuz0HPsXxQy5NDo+kwr5dPXC4ky0HZppi1F7/noKT67RkDngvbU irTNBi/uvhabo7t3R6yeaR0g+8YBkGqRY/skDlJlz9skAf5MRxGZ50Rwx3oRV66D V8VcOShaj6JcPA== -----END CERTIFICATE-----Generated at Fri Jun 6 06:15:59 2025 by rpki-client