$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: 1NCKwToMbAP1cIwGUGtBwHMWlXgRmu9qm5IDy9zWTOs= Subject key identifier: B6:D9:64:0F:B3:06:07:F8:C7:79:97:59:A5:D8:A1:6B:B3:74:A9:B2 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 0198C835C80843220BB19189FE1C440F678E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0A5A Signing time: Wed 20 Aug 2025 16:00:24 +0000 Manifest this update: Wed 20 Aug 2025 16:00:24 +0000 Manifest next update: Thu 21 Aug 2025 16:00:24 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: qt2wBrDBj1RYreAc6BbDwk0ehHG4s0OfMbt7+wDtYLw=) 3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=) 4: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 5: HHx5PgT40c8odAvxk1P-fxWePlA.roa (hash: zPsSrq/ptkyDcwkMCUxFQsAp1K70phIRO2z3d5q6bK8=) 6: Mo-GiiM2sNe-eBz_JyMl4sLvpMo.roa (hash: S6ZzEosIiFeiJ1KKDxx2F81o6c+HfdnMbY4tAkCKBFE=) 7: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 8: jMIl0-AsPbFxzuSdnTOvL0GZyZY.roa (hash: vp7N55mHbj1atM+G1AaTEaDl/C1DAcMrBbixu2jF2UI=) 9: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 10: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 21 Aug 2025 16:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:c8:35:c8:08:43:22:0b:b1:91:89:fe:1c:44:0f:67:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Aug 20 16:00:24 2025 GMT Not After : Aug 21 16:00:24 2025 GMT Subject: CN=b6d9640fb30607f8c7799759a5d8a16bb374a9b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f3:66:f9:c1:19:55:bb:7d:5a:5c:8e:34:a3: 19:6e:22:9d:33:1c:df:3d:a4:cf:f3:a4:aa:84:c6: 5c:b9:0b:30:5b:5d:b1:63:fb:5c:09:86:28:0d:c0: 8e:c4:fa:54:7f:71:28:ee:99:43:a1:c2:b4:96:d7: 29:51:e2:b0:5f:cb:f0:58:20:95:2f:bd:fc:04:63: 69:20:b4:ae:57:e8:01:2f:33:c3:1c:e6:55:24:eb: 79:cb:fd:f1:8f:07:98:a7:bd:d1:b1:4f:ac:27:55: 60:57:f8:f9:a5:a9:00:8d:ca:84:75:2f:fe:d7:a6: 9b:25:48:73:b6:d8:94:01:9b:2d:08:ba:9e:2e:c0: 44:57:65:e3:2e:d3:fa:15:56:6d:59:5f:b5:0b:ee: 31:09:18:62:de:d3:01:90:71:40:66:a7:2a:ac:74: 1d:6a:2b:f3:0f:ac:fc:41:f8:31:18:e5:9d:6d:ac: 71:06:7a:21:5a:4b:63:60:f4:f9:5c:57:22:f1:bd: ee:6e:4f:a8:5f:bc:fb:2a:22:fc:74:8e:02:8f:ba: 19:ae:c9:9a:fe:a8:7e:cf:36:2c:f9:c1:1e:d1:90: c1:da:c9:5b:43:da:ba:76:56:dd:15:50:e9:48:db: e7:97:e3:42:51:6a:98:44:6e:5e:33:a8:22:a8:58: bc:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:D9:64:0F:B3:06:07:F8:C7:79:97:59:A5:D8:A1:6B:B3:74:A9:B2 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:0e:95:42:b6:c8:1e:20:c0:9e:14:cc:23:38:01:2b:de:63: 36:a8:f7:3d:cd:a0:c4:54:19:53:22:ed:92:ac:e2:60:a1:2a: 51:21:5a:5c:1f:33:59:26:fd:d0:c4:db:c8:b6:9b:55:e2:63: b3:52:c3:9f:43:b5:60:f1:b7:94:7b:32:95:b9:98:b9:2e:f6: 20:dc:6a:db:78:69:38:21:79:ce:57:ac:d7:30:16:6e:6b:2e: c3:d9:46:66:12:90:38:e3:fe:e6:7f:0e:83:41:f3:e8:1d:d5: f3:bc:73:79:b8:4f:25:47:65:ba:88:2e:85:53:ec:11:b6:86: b2:d1:b3:5d:c3:1e:c1:07:7b:6a:62:05:d3:d0:db:87:18:17: bc:b0:38:98:d7:dd:8a:e5:e2:b6:21:72:b1:c7:33:00:bb:d6: cf:92:12:12:4e:57:eb:f1:6d:72:3f:82:3f:77:3b:b3:2a:29: 2a:41:20:ae:b6:00:43:13:44:cb:80:cb:85:04:d0:fa:4d:57: 67:e3:3f:1b:3b:01:fa:d5:cd:d6:d5:4a:0b:f3:27:b0:a1:90: 79:2b:46:da:08:ab:03:ef:ee:3c:5d:69:fe:89:e3:e6:27:08: 62:f2:ad:fd:83:ff:8f:fc:5b:d7:1d:cd:93:9f:0f:b4:28:be: d8:9e:d1:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjINcgIQyILsZGJ/hxED2eOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUwODIwMTYwMDI0WhcNMjUwODIxMTYwMDI0WjAzMTEwLwYDVQQD EyhiNmQ5NjQwZmIzMDYwN2Y4Yzc3OTk3NTlhNWQ4YTE2YmIzNzRhOWIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3fNm+cEZVbt9WlyONKMZbiKdMxzf PaTP86SqhMZcuQswW12xY/tcCYYoDcCOxPpUf3Eo7plDocK0ltcpUeKwX8vwWCCV L738BGNpILSuV+gBLzPDHOZVJOt5y/3xjweYp73RsU+sJ1VgV/j5pakAjcqEdS/+ 16abJUhzttiUAZstCLqeLsBEV2XjLtP6FVZtWV+1C+4xCRhi3tMBkHFAZqcqrHQd aivzD6z8QfgxGOWdbaxxBnohWktjYPT5XFci8b3ubk+oX7z7KiL8dI4Cj7oZrsma /qh+zzYs+cEe0ZDB2slbQ9q6dlbdFVDpSNvnl+NCUWqYRG5eM6giqFi84QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLbZZA+zBgf4x3mXWaXYoWuzdKmyMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcQ6VQrbI HiDAnhTMIzgBK95jNqj3Pc2gxFQZUyLtkqziYKEqUSFaXB8zWSb90MTbyLabVeJj s1LDn0O1YPG3lHsylbmYuS72INxq23hpOCF5zles1zAWbmsuw9lGZhKQOOP+5n8O g0Hz6B3V87xzebhPJUdluoguhVPsEbaGstGzXcMewQd7amIF09DbhxgXvLA4mNfd iuXitiFyscczALvWz5ISEk5X6/Ftcj+CP3c7syopKkEgrrYAQxNEy4DLhQTQ+k1X Z+M/GzsB+tXN1tVKC/MnsKGQeStG2girA+/uPF1p/onj5icIYvKt/YP/j/xb1x3N k58PtCi+2J7RPg== -----END CERTIFICATE-----Generated at Thu Aug 21 01:00:37 2025 by rpki-client