$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: zCTz7ESeLYKv737dkaAdUr5mKKBAqOWUOzDS8VjE0sg= Subject key identifier: A9:DF:73:A3:B0:C4:00:45:D9:E1:7B:41:FC:85:FC:4A:12:6E:50:95 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019EA9AE32761BBB744207CC652536F6D341 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0D78 Signing time: Tue 09 Jun 2026 00:00:26 +0000 Manifest this update: Tue 09 Jun 2026 00:00:26 +0000 Manifest next update: Wed 10 Jun 2026 00:00:26 +0000 Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: EMSkaj8xpoR6JeD/vt7Kk918/MfFCWTAq/o6uVUkesk=) 2: EOj3AgYdcchPeXzFo3MmkUnpC5c.roa (hash: UJxOCXl/zk57bLmMvjQmQo6So76eGqObXBhqM5bOFjU=) 3: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 4: OZaDQ0hXuyPtXw0MMtiK4i0Z5Cc.roa (hash: NUQ/hLaY/s6wtpegscjb37Ii8FsiiXqqFFzr8BzeZgs=) 5: PXUEThXrMGouCYgr_yi3-daiDvE.roa (hash: iv3ZI6ycGYw3gyGWXsZNQzdt8OIK73JOyd7SS9lf5Dk=) 6: StKopN7mKY_G686fwWfLGQIs1ZE.roa (hash: Lt0qVcoh5gF6hn1K+QcayMd775gMjWFzF0XYTOVMzcE=) 7: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=) 8: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 9: m2aCEWRSbYINPhfk7dIfOHcCZMQ.roa (hash: zF+FldUbeFBdo73eCEVXfBTgillyEx/Bek9AHg5vsQM=) 10: mMhcTAUsEq-DNycXZbZCJR0srtQ.roa (hash: IfB3ppygA/MuKvduBRn6Oad+w/QpUoS9p6uwhj/GpXM=) 11: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 12: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 09 Jun 2026 23:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:a9:ae:32:76:1b:bb:74:42:07:cc:65:25:36:f6:d3:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jun 9 00:00:26 2026 GMT Not After : Jun 10 00:00:26 2026 GMT Subject: CN=a9df73a3b0c40045d9e17b41fc85fc4a126e5095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:3b:38:be:db:e1:ba:73:46:d2:37:b1:56:d2: d8:a4:a6:50:77:84:96:08:50:10:d7:f0:25:3c:da: a9:32:a2:14:da:61:37:9b:8d:ed:9f:25:93:2a:0f: ed:ed:95:c6:86:f8:81:a6:00:b0:f3:f5:3d:4e:06: 75:fb:4a:3b:04:16:da:9c:76:72:ba:5b:8d:1d:71: d1:39:7c:d0:61:f2:f5:07:f4:bd:67:ec:62:86:b1: 5c:c3:0b:c8:ae:ca:95:3b:e0:e9:69:a4:8e:32:18: 4a:3f:59:b1:4f:3b:fc:7b:49:ff:43:17:1d:96:b1: 1c:c0:69:00:21:8c:03:f7:ec:95:24:52:f5:44:0b: 1c:6f:54:14:20:1c:f9:e8:5f:a0:26:57:fd:6f:a7: cf:75:ed:87:98:30:40:e6:59:c2:38:62:8a:65:0b: 27:48:d7:16:4c:fc:8c:de:25:27:93:c0:22:3d:cb: e8:b2:a4:85:13:a8:9a:92:32:06:ee:6b:87:b6:5f: b0:a7:f2:3d:a8:b5:56:61:df:75:b0:0d:fb:71:52: 5e:27:6e:f1:4e:e6:d5:6f:f0:b5:ba:97:19:c7:1d: a3:d7:9a:9a:35:dc:1d:6a:e0:b2:a8:8a:27:34:5b: af:5a:2f:77:8e:0b:80:0a:5b:05:26:14:06:77:56: dc:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:DF:73:A3:B0:C4:00:45:D9:E1:7B:41:FC:85:FC:4A:12:6E:50:95 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:15:e6:af:01:90:b1:b3:ad:19:8d:b9:e2:de:6d:62:21:8e: c6:0d:27:2c:d6:93:c5:1a:e3:22:a8:bd:b0:26:2d:87:9a:2e: 5f:34:d2:4b:5e:1c:22:6f:e5:ad:7f:e1:4a:44:26:49:83:02: 97:37:48:9d:9f:46:a4:5b:f9:a0:b1:5c:7f:56:d4:af:7f:9a: 78:c3:2d:b3:ce:2c:a1:f4:64:44:61:35:05:e5:a4:49:15:c5: dd:cf:90:7e:cf:6d:af:7f:8c:a8:91:9d:17:de:fd:7f:a7:02: e2:39:b5:49:a3:c3:d4:72:ee:c0:6f:55:1e:c3:2a:a7:a8:69: e6:2c:d4:05:fd:6f:4f:7b:32:f4:44:b4:9a:eb:3a:a5:65:a3: d8:a5:de:a4:d6:12:e5:fb:89:76:00:f9:98:27:2b:e2:a7:51: 77:c0:6c:21:74:9d:14:49:05:9b:f3:f1:dd:46:cb:8e:40:0c: f4:e7:76:cc:f8:16:f4:21:92:17:8f:b5:48:2a:ba:ed:7a:ad: ae:4f:40:46:ac:4e:89:60:1b:8f:c7:a8:65:25:27:14:e6:1f: ed:45:9e:a6:4d:0c:5a:f0:1f:7d:08:59:16:7a:c9:80:03:9a: 97:f6:95:28:c3:09:27:47:c8:37:a7:9d:3e:53:c4:eb:73:9a: 6d:70:c1:a7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ6prjJ2G7t0QgfMZSU29tNBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwNjA5MDAwMDI2WhcNMjYwNjEwMDAwMDI2WjAzMTEwLwYDVQQD EyhhOWRmNzNhM2IwYzQwMDQ1ZDllMTdiNDFmYzg1ZmM0YTEyNmU1MDk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojs4vtvhunNG0jexVtLYpKZQd4SW CFAQ1/AlPNqpMqIU2mE3m43tnyWTKg/t7ZXGhviBpgCw8/U9TgZ1+0o7BBbanHZy uluNHXHROXzQYfL1B/S9Z+xihrFcwwvIrsqVO+DpaaSOMhhKP1mxTzv8e0n/Qxcd lrEcwGkAIYwD9+yVJFL1RAscb1QUIBz56F+gJlf9b6fPde2HmDBA5lnCOGKKZQsn SNcWTPyM3iUnk8AiPcvosqSFE6iakjIG7muHtl+wp/I9qLVWYd91sA37cVJeJ27x TubVb/C1upcZxx2j15qaNdwdauCyqIonNFuvWi93jguAClsFJhQGd1bc3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKnfc6OwxABF2eF7QfyF/EoSblCVMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdBXmrwGQ sbOtGY254t5tYiGOxg0nLNaTxRrjIqi9sCYth5ouXzTSS14cIm/lrX/hSkQmSYMC lzdInZ9GpFv5oLFcf1bUr3+aeMMts84sofRkRGE1BeWkSRXF3c+Qfs9tr3+MqJGd F979f6cC4jm1SaPD1HLuwG9VHsMqp6hp5izUBf1vT3sy9ES0mus6pWWj2KXepNYS 5fuJdgD5mCcr4qdRd8BsIXSdFEkFm/Px3UbLjkAM9Od2zPgW9CGSF4+1SCq67Xqt rk9ARqxOiWAbj8eoZSUnFOYf7UWepk0MWvAffQhZFnrJgAOal/aVKMMJJ0fIN6ed PlPE63OabXDBpw== -----END CERTIFICATE-----Generated at Tue Jun 9 06:07:39 2026 by rpki-client