$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft File: Y2O7ZYlfOlSksyShDHmsmO_ioco.mft (raw, json) Hash identifier: k1ISHIbTkuU7lCeINNPWljI/qYNm8HY7eqHxP2CTULE= Subject key identifier: 5E:59:E9:6E:BB:A3:7B:A2:D7:9F:53:8F:1F:EB:5F:10:B5:D4:0B:8F Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Certificate serial: 019923D5AF58872CE2167D76869CAD1AFD32 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft Manifest number: 0FCC Signing time: Sun 07 Sep 2025 11:00:30 +0000 Manifest this update: Sun 07 Sep 2025 11:00:30 +0000 Manifest next update: Mon 08 Sep 2025 11:00:30 +0000 Files and hashes: 1: 1-YME93lc1AWh4-bMqvVDZYenQg0.roa (hash: Euu0W5ctvY2bfvnvaMrD1zBWGCi2DVPvkYQ6p9zTjts=) 2: B-5_egLdEl752iv9qxYdq8eosj8.roa (hash: Cdvp7KAkC+/9T90gVhhsMGICo5DVTrNIRp6EnoCK4JA=) 3: HdvJhluj0mmgaFdPVm0s0ofNMQM.roa (hash: p1LONhiWBtnwDM/uG7ENsu+2YSQKoESJAbc98yta6C4=) 4: PG5DPUzHhisMDmHNMi2OiyC4Krk.roa (hash: 5vgSE6xpOM3tTVvShPg0nfAqcYxZUDm3VYRogPEs1nM=) 5: QWifAQ3dSu8nhEAeOh_F1BphWro.roa (hash: itO7AV5EF/O+Sl0fYRa8cl6eA4q/nRa0iBG6sGElFQI=) 6: Y2O7ZYlfOlSksyShDHmsmO_ioco.crl (hash: Q7gzI2DO9qy4ZWRKsnn4B4h7EToesakvflH1a7/iqYg=) 7: Z6ubH84vQbgEnifkNYkjjYx5LIg.roa (hash: A5Iyh12sixazcVNr3007j9RNY5bFIJZSLARvNvwI0hI=) 8: cWGszmobGgkTRu82roBLKR9vgkE.roa (hash: bXFzT/7+8yagPIwyKl0fdIxc7uJ/wfFRRzbV8w0a7yI=) 9: flrC_8zXbr01pJXgtmy__huZXOA.roa (hash: vzxZLPURPSKJVHe6QAWg0rqm4QhuQOuF7VBOWspThjA=) 10: nGntDaqcmONxUi1sd87UMvT9x4I.roa (hash: JUPdqbOgdaD6LXB1MI+aJwuym5PZcQO3ILLdGvRsfU8=) 11: nzJ1VVo_PG7VRYK1qXbMx1rFS50.roa (hash: /GaOWlamFjP2Dj79UI9A1USxEJfBxcpOsY5WVrDbQNw=) 12: p_iHNwwqh2be0OjT5JQIUHp4Uvs.roa (hash: iKYw9dWKEOaAlzn5AmL4rdC2+rWU6FDA6bFijDgxb2w=) 13: qXSDx6qMLmAkAg9CUQzF6i4iyY0.roa (hash: wdkB7sltE+pNfWEVP8+xe0pE2lM5C0vVvLdbwwyDf04=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 08 Sep 2025 05:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:23:d5:af:58:87:2c:e2:16:7d:76:86:9c:ad:1a:fd:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Validity Not Before: Sep 7 11:00:30 2025 GMT Not After : Sep 8 11:00:30 2025 GMT Subject: CN=5e59e96ebba37ba2d79f538f1feb5f10b5d40b8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5e:6f:c5:5d:47:d5:18:82:f2:ba:fb:70:d7: be:1c:1e:30:2a:5c:5c:7b:5d:fb:70:fa:69:ad:59: a7:23:07:60:4b:10:14:2b:24:64:8e:12:d2:fc:9b: 41:84:8e:eb:82:48:24:f0:f5:17:63:6c:40:f0:a6: 97:20:fd:38:0d:83:de:a7:e6:9d:28:c6:8f:59:19: 4f:9b:0d:6a:4f:21:ed:68:ae:4c:f6:7c:c1:45:af: 05:aa:0c:70:ed:74:f6:df:f9:e8:c1:70:52:f2:e1: 7f:46:7b:a6:17:92:63:e3:1e:c9:bc:00:8b:60:87: 6c:e9:6f:36:8e:ae:7d:3f:03:cb:64:6c:d5:29:ef: ea:8d:07:df:83:ee:81:96:4d:0d:ab:16:0f:98:ee: 6d:5f:e7:fc:bd:52:3a:da:df:be:d7:bf:39:cf:56: 75:ba:3a:b8:27:e7:f2:3c:85:3b:7a:a1:b9:32:83: 91:6e:06:71:73:cc:a8:18:31:26:76:8d:7d:48:d7: 0e:f6:bf:2e:51:3d:9f:04:f3:16:ec:a9:81:9d:10: d0:86:d0:cd:c7:36:fa:3f:92:d9:43:d8:b2:7f:2b: 98:7e:5e:29:0c:2f:3f:5d:ea:2b:f9:47:af:ba:5f: ee:7f:66:a4:2f:e0:5b:e5:ca:7c:a5:ab:99:bb:50: a8:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:59:E9:6E:BB:A3:7B:A2:D7:9F:53:8F:1F:EB:5F:10:B5:D4:0B:8F X509v3 Authority Key Identifier: keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:62:f0:72:72:33:26:bc:88:66:85:14:78:00:72:c0:02:54: 24:58:23:f4:dc:c9:85:8d:ea:59:cd:33:2f:07:a9:5e:67:9f: b6:54:b9:cb:db:fd:50:05:c1:5a:c5:ec:ab:88:f1:65:5b:a1: 52:fe:73:11:21:f6:54:bd:a0:89:be:95:2b:c7:dc:c0:35:ff: 30:11:09:1f:95:cd:41:e6:99:06:72:d8:2a:02:3e:e2:55:ff: 9e:8f:68:d0:18:30:98:6a:78:98:8c:57:2c:78:3c:f8:d7:6a: ee:5a:8e:86:b4:71:06:13:c2:16:10:c9:0a:54:81:fd:50:ff: a0:c4:af:dc:25:49:87:01:6f:9f:33:46:59:c1:4e:31:18:45: 07:05:b5:88:42:c7:82:16:d2:4c:ac:85:c8:7e:2e:03:29:15: f3:dc:b3:74:a8:aa:dc:84:2d:8b:94:d7:87:28:65:d6:a3:59: ae:6c:9e:63:0b:06:84:df:96:cd:81:ad:84:d9:40:d3:d5:2e: 1c:ff:84:60:e7:25:9c:6f:03:35:26:03:63:9f:b8:c7:5c:57: 76:2f:ed:a4:ef:e8:3c:7b:7a:eb:2e:44:50:49:69:68:90:79: 8a:84:3c:fd:20:b5:b6:cf:2f:65:c4:f3:79:f8:c2:bb:70:a1: 70:51:80:d1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZkj1a9YhyziFn12hpytGv0yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNjNiYjY1ODk1ZjNhNTRhNGIzMjRhMTBjNzlhYzk4ZWZl MmExY2EwHhcNMjUwOTA3MTEwMDMwWhcNMjUwOTA4MTEwMDMwWjAzMTEwLwYDVQQD Eyg1ZTU5ZTk2ZWJiYTM3YmEyZDc5ZjUzOGYxZmViNWYxMGI1ZDQwYjhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy15vxV1H1RiC8rr7cNe+HB4wKlxc e137cPpprVmnIwdgSxAUKyRkjhLS/JtBhI7rgkgk8PUXY2xA8KaXIP04DYPep+ad KMaPWRlPmw1qTyHtaK5M9nzBRa8Fqgxw7XT23/nowXBS8uF/RnumF5Jj4x7JvACL YIds6W82jq59PwPLZGzVKe/qjQffg+6Blk0NqxYPmO5tX+f8vVI62t++1785z1Z1 ujq4J+fyPIU7eqG5MoORbgZxc8yoGDEmdo19SNcO9r8uUT2fBPMW7KmBnRDQhtDN xzb6P5LZQ9iyfyuYfl4pDC8/Xeor+Uevul/uf2akL+Bb5cp8pauZu1CoQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF5Z6W67o3ui159Tjx/rXxC11AuPMB8GA1UdIwQY MBaAFGNju2WJXzpUpLMkoQx5rJjv4qHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMt YTZjYTQ1NGRiMmQ3LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMtYTZjYTQ1NGRiMmQ3 LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXmLwcnIz JryIZoUUeABywAJUJFgj9NzJhY3qWc0zLwepXmeftlS5y9v9UAXBWsXsq4jxZVuh Uv5zESH2VL2gib6VK8fcwDX/MBEJH5XNQeaZBnLYKgI+4lX/no9o0BgwmGp4mIxX LHg8+Ndq7lqOhrRxBhPCFhDJClSB/VD/oMSv3CVJhwFvnzNGWcFOMRhFBwW1iELH ghbSTKyFyH4uAykV89yzdKiq3IQti5TXhyhl1qNZrmyeYwsGhN+WzYGthNlA09Uu HP+EYOclnG8DNSYDY5+4x1xXdi/tpO/oPHt66y5EUElpaJB5ioQ8/SC1ts8vZcTz efjCu3ChcFGA0Q== -----END CERTIFICATE-----Generated at Sun Sep 7 12:20:34 2025 by rpki-client