$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft File: Y2O7ZYlfOlSksyShDHmsmO_ioco.mft (raw, json) Hash identifier: dam62aj0woU327UhhmemSjNQYqjw/qUkwp0DGEfCEZI= Subject key identifier: B6:53:11:01:B3:CE:B4:64:DD:27:68:C4:17:D1:A8:26:22:02:AF:A9 Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Certificate serial: 019EB68E7E7449B8418291CF927C402599F8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft Manifest number: 12BC Signing time: Thu 11 Jun 2026 12:00:52 +0000 Manifest this update: Thu 11 Jun 2026 12:00:52 +0000 Manifest next update: Fri 12 Jun 2026 12:00:52 +0000 Files and hashes: 1: 0qcRgVORJ6l9UlTI2CKPLzjbfog.roa (hash: wvJhHDw0n2QTgzGbPUH8xt0FfoOscXlBHhG0tJvFt98=) 2: 2EkuPAqVHEWEKp6ASw2K5zmACQk.roa (hash: n72y5YkbbuFUJAYmxmxnzR7f3ZsUZLnhTxeGIE67Cko=) 3: FLjvYn5Mu6OSQ1vmJsficIZ3oAg.roa (hash: WAKAnnjMgQbJs7Wfu2NA1DQe3FG0M4jG7s2jCVV8t08=) 4: LKqcV__iHBkuJmHBTgVTMKe7jfs.roa (hash: LzRNG01pbqOOrg9Ke+0IrSjljXKIcSklaBxsB5gc1AU=) 5: PxxNVNL5BOB3QrAZZvS5ahJKLOQ.roa (hash: tFLry/v07lnhSlHBjf2oO0BxwozcI2XhOgOvdmFzcjY=) 6: U74ViGODTud33ngPAmj4w73NK6o.roa (hash: 8g7ud1guSPB+L+sklXn8DfQQ/RtzcbmpgZcJ8hWX/2M=) 7: Uu6kgZoXxkmNniYXRrRma31jomI.roa (hash: SRpT2c+ZtineJthFU2Lj326eHBfCWg/PI6AuJE6p0HE=) 8: Y2O7ZYlfOlSksyShDHmsmO_ioco.crl (hash: +mLmvgBqhOyv0DtRhZNUPLGJebbX3KaO+y6vaI2+7lU=) 9: ajUdjtPuTYK4cJ-GDNgzwU_V7QU.roa (hash: zq0p6TTpyxJr1rlBswAzuDS0To2T7g83akxmSzfwXWY=) 10: esQiMgPaySQVW0k54pO3jc5Zyuc.roa (hash: 2aftWcOZmt2bVeY6qt170y22emZnUo4u4rs+oiqH7rU=) 11: ikf3_u9Wu_UNk6ihdRqAXnsXeWA.roa (hash: spXBGwPpS5VGNMfJIEd9bR+FvD0p9WrBQ4QDpFz4ZGo=) 12: n9NpVtjQ4CgC347DPdZBbkrl1rk.roa (hash: F/VcD/rkVFmMD8EIR8zYpeskYz8L7PTmG19l/6//DPo=) 13: qzDK1lhCM39SxM8PACxbyKkom_M.roa (hash: nfWxgyb2gt4+A8mM3hL0XhTI+0dXdf9+3PuS2IdhMMY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 08:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:b6:8e:7e:74:49:b8:41:82:91:cf:92:7c:40:25:99:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Validity Not Before: Jun 11 12:00:52 2026 GMT Not After : Jun 12 12:00:52 2026 GMT Subject: CN=b6531101b3ceb464dd2768c417d1a8262202afa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:41:1e:8e:aa:bb:00:f7:41:76:e7:67:13:31: 6e:06:3d:a3:7d:d5:54:3a:d0:19:bd:a8:2c:57:5b: d5:7a:82:95:d3:18:c7:a9:48:8a:43:b7:f3:bc:b3: 7e:9e:01:9a:2d:24:40:6d:77:9d:b8:63:1c:3c:21: a5:3b:ab:d0:e0:9e:79:12:14:6e:b2:30:da:06:39: 87:8c:c6:b2:27:0b:2b:3d:07:ea:ee:41:2b:fc:da: f9:3c:99:83:ef:3b:88:2d:e9:d1:2a:d4:fa:b6:53: d5:a3:23:39:4f:49:ff:92:a1:94:70:3a:66:fd:38: 94:62:54:8d:3e:f7:03:6d:8c:89:ea:ce:43:8e:36: 7d:74:fe:ea:12:5d:ce:53:80:50:27:b5:54:73:b0: ef:02:43:73:2f:6a:d3:be:5c:a0:a3:13:79:eb:cd: ae:16:de:f4:a2:27:09:ed:e9:a2:fa:f6:37:30:45: 88:67:f7:e3:7a:12:96:4d:06:db:fb:c5:88:8e:e3: 61:2f:38:bb:22:59:ce:24:4d:33:a1:9a:2f:c4:5c: 89:e6:85:cb:fd:b8:07:9a:ea:ce:8a:dc:64:da:6b: 0f:52:2d:3e:dc:e8:bb:a2:4d:ec:f4:d3:2e:7f:6f: bc:51:9f:01:3e:89:4a:31:7f:b0:20:1f:fa:1c:1b: 25:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:53:11:01:B3:CE:B4:64:DD:27:68:C4:17:D1:A8:26:22:02:AF:A9 X509v3 Authority Key Identifier: keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:f0:3d:36:f8:f2:bb:ad:87:e0:7d:70:de:58:6a:32:12:be: 3f:a2:95:7a:f3:8c:6f:7b:d4:fb:0e:32:1a:61:ce:ff:ae:f1: 56:a5:2b:86:08:35:b9:38:df:2e:5d:e6:5b:bb:da:91:d1:4d: 4d:4c:5f:53:64:28:ea:eb:ef:b3:61:e5:33:d5:ea:de:35:16: 98:f4:2d:49:77:ec:dc:3a:24:55:a9:0e:1b:29:26:cd:4a:fa: ad:3d:2f:6a:f5:7f:fa:5f:85:a9:db:a3:5d:dd:43:ef:a7:6c: 92:3c:9e:bc:41:cb:81:f0:04:55:e6:af:b4:02:90:21:16:a4: 4a:49:bf:18:90:43:e4:03:29:6e:89:58:67:31:3f:b8:1a:0f: 59:21:e3:e4:62:7d:73:69:a5:ca:dc:cf:ba:f8:b6:a4:4a:15: 79:33:6c:15:de:cb:2b:e0:01:fe:64:83:15:03:43:f2:4c:fb: d0:8c:bf:f2:fc:1a:3f:ce:5a:b9:b3:07:01:0f:aa:64:7e:e6: f0:68:d2:90:14:a6:2b:b9:e9:f1:81:34:3a:65:19:05:13:9e: 9b:6e:bb:f4:39:19:1e:9d:b7:4e:02:6f:d2:97:3c:85:49:bf: 38:27:70:fe:7c:21:64:7d:0c:88:bd:cd:b5:40:8c:41:48:ac: 15:a2:54:50 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ62jn50SbhBgpHPknxAJZn4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNjNiYjY1ODk1ZjNhNTRhNGIzMjRhMTBjNzlhYzk4ZWZl MmExY2EwHhcNMjYwNjExMTIwMDUyWhcNMjYwNjEyMTIwMDUyWjAzMTEwLwYDVQQD EyhiNjUzMTEwMWIzY2ViNDY0ZGQyNzY4YzQxN2QxYTgyNjIyMDJhZmE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1EEejqq7APdBdudnEzFuBj2jfdVU OtAZvagsV1vVeoKV0xjHqUiKQ7fzvLN+ngGaLSRAbXeduGMcPCGlO6vQ4J55EhRu sjDaBjmHjMayJwsrPQfq7kEr/Nr5PJmD7zuILenRKtT6tlPVoyM5T0n/kqGUcDpm /TiUYlSNPvcDbYyJ6s5DjjZ9dP7qEl3OU4BQJ7VUc7DvAkNzL2rTvlygoxN5682u Ft70oicJ7emi+vY3MEWIZ/fjehKWTQbb+8WIjuNhLzi7IlnOJE0zoZovxFyJ5oXL /bgHmurOitxk2msPUi0+3Oi7ok3s9NMuf2+8UZ8BPolKMX+wIB/6HBslTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLZTEQGzzrRk3SdoxBfRqCYiAq+pMB8GA1UdIwQY MBaAFGNju2WJXzpUpLMkoQx5rJjv4qHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMt YTZjYTQ1NGRiMmQ3LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMtYTZjYTQ1NGRiMmQ3 LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk/A9Nvjy u62H4H1w3lhqMhK+P6KVevOMb3vU+w4yGmHO/67xVqUrhgg1uTjfLl3mW7vakdFN TUxfU2Qo6uvvs2HlM9Xq3jUWmPQtSXfs3DokVakOGykmzUr6rT0vavV/+l+Fqduj Xd1D76dskjyevEHLgfAEVeavtAKQIRakSkm/GJBD5AMpbolYZzE/uBoPWSHj5GJ9 c2mlytzPuvi2pEoVeTNsFd7LK+AB/mSDFQND8kz70Iy/8vwaP85aubMHAQ+qZH7m 8GjSkBSmK7np8YE0OmUZBROem2679DkZHp23TgJv0pc8hUm/OCdw/nwhZH0MiL3N tUCMQUisFaJUUA== -----END CERTIFICATE-----Generated at Thu Jun 11 15:09:01 2026 by rpki-client