$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: dp+tDRsaRkupBR4jvwv0EA1upgH6VqtDHp3Vs52rftA= Subject key identifier: 83:2B:B0:36:6F:2C:69:D1:FE:C3:9A:08:F1:5C:A5:98:0D:EC:12:8F Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 0197469DD2C813E70D7A21ACE7942E95E3A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0990 Signing time: Fri 06 Jun 2025 19:00:37 +0000 Manifest this update: Fri 06 Jun 2025 19:00:37 +0000 Manifest next update: Sat 07 Jun 2025 19:00:37 +0000 Files and hashes: 1: 6HdpHxLcX1yJjOzlOGgPAGgCNb0.roa (hash: y1XUmT2PqLYoWjVJT6WyKQER242J2k/RPKz4Xs0cE9k=) 2: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 3: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: X7evxnIBREgF/mapSOEvnS5jtZb6tdfXjwG6Lu52QwU=) 4: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=) 5: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 6: HHx5PgT40c8odAvxk1P-fxWePlA.roa (hash: zPsSrq/ptkyDcwkMCUxFQsAp1K70phIRO2z3d5q6bK8=) 7: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 8: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 9: mEeEQY0ey8CTsOe4ojz1GXXgLAY.roa (hash: UNpewFCfGryY81edEZKVL/+q37bqXwMGckJf/qXqj3E=) 10: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 19:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:46:9d:d2:c8:13:e7:0d:7a:21:ac:e7:94:2e:95:e3:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jun 6 19:00:37 2025 GMT Not After : Jun 7 19:00:37 2025 GMT Subject: CN=832bb0366f2c69d1fec39a08f15ca5980dec128f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:1d:eb:8c:29:da:68:ee:14:fa:25:b7:e8:0d: 08:bf:97:35:43:0c:54:d8:9f:a5:72:9f:c0:c6:09: cf:91:08:50:3b:e0:67:d9:25:40:1e:ec:95:8c:99: a7:04:e4:fc:db:fb:dc:ca:b5:f8:9c:6c:1f:bb:ae: f4:e7:05:02:bd:6d:63:9f:a4:1d:22:30:86:61:1b: 6a:26:66:21:1e:4c:46:2b:5e:0b:5e:8b:18:0f:6f: fb:a6:dc:2e:38:87:a9:fe:1e:4d:e6:83:26:d0:26: 07:7a:67:65:cd:55:cb:bb:27:ca:d3:2e:56:e3:70: a1:d8:5e:46:52:52:c4:ab:3b:2e:9e:5a:23:72:8d: ba:cf:b6:47:f3:81:70:0f:c0:e5:55:53:ac:78:09: 67:89:fd:e5:b3:54:0a:88:78:97:88:c4:15:1b:77: 37:26:a1:2f:85:fb:82:75:5c:e7:b0:54:24:8b:a6: 65:c2:52:21:37:9c:ce:21:dd:da:44:60:b1:ae:ca: 33:80:62:57:cb:40:db:8e:f1:38:c2:a0:11:71:0f: 5c:06:96:10:41:4e:32:26:d3:0d:b5:d5:b7:07:5c: 16:9f:d2:87:88:b2:2d:3b:1e:89:ce:20:67:bb:1c: f8:1b:8e:d9:23:1e:8b:48:6c:76:b1:51:19:e4:a1: de:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:2B:B0:36:6F:2C:69:D1:FE:C3:9A:08:F1:5C:A5:98:0D:EC:12:8F X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:96:63:40:1d:3e:5d:54:87:6d:87:03:13:90:f2:1f:69:38: 0b:03:3a:06:fb:fb:75:2a:1c:79:6c:d0:e0:a2:48:08:f1:25: 3f:73:b4:98:cf:5c:b6:11:8f:9f:c2:37:d4:8a:bc:32:b1:90: b3:74:a1:e3:31:59:0f:8a:77:e4:92:c5:39:73:54:9b:2c:c1: 41:bc:1b:6a:cf:72:59:c2:02:cc:55:26:bd:2a:a8:9e:b1:15: 05:71:ba:4c:5e:31:9d:46:7a:06:46:a5:d0:d8:f9:9c:82:87: a3:0d:11:bc:4b:a5:2a:61:40:1f:ae:43:88:d4:b0:64:c7:33: 87:5d:7f:3f:1a:17:0b:9d:5a:a3:d0:4e:1d:54:3f:65:72:10: cf:2a:67:0a:f4:b4:50:30:a4:9c:fd:a5:b3:b6:eb:8c:de:b7: 51:43:61:48:0c:1c:2b:02:db:06:fb:fc:cf:17:ef:d5:b1:45: 76:0a:bf:e5:32:4c:90:fa:9d:a5:50:fd:1d:d2:21:4c:f2:0e: 3a:e6:d7:92:f3:dd:1e:f4:58:d9:6f:05:4e:c0:27:3e:f3:f8: b5:90:20:f7:b2:12:38:d2:fc:e1:af:43:c4:25:f8:f7:3f:16: 9c:c4:7e:39:7e:25:77:55:1e:9d:ae:08:37:2e:e8:7b:5d:72: a4:8d:4e:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdGndLIE+cNeiGs55QuleOhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUwNjA2MTkwMDM3WhcNMjUwNjA3MTkwMDM3WjAzMTEwLwYDVQQD Eyg4MzJiYjAzNjZmMmM2OWQxZmVjMzlhMDhmMTVjYTU5ODBkZWMxMjhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtx3rjCnaaO4U+iW36A0Iv5c1QwxU 2J+lcp/AxgnPkQhQO+Bn2SVAHuyVjJmnBOT82/vcyrX4nGwfu6705wUCvW1jn6Qd IjCGYRtqJmYhHkxGK14LXosYD2/7ptwuOIep/h5N5oMm0CYHemdlzVXLuyfK0y5W 43Ch2F5GUlLEqzsunlojco26z7ZH84FwD8DlVVOseAlnif3ls1QKiHiXiMQVG3c3 JqEvhfuCdVznsFQki6ZlwlIhN5zOId3aRGCxrsozgGJXy0DbjvE4wqARcQ9cBpYQ QU4yJtMNtdW3B1wWn9KHiLItOx6JziBnuxz4G47ZIx6LSGx2sVEZ5KHeXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIMrsDZvLGnR/sOaCPFcpZgN7BKPMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa5ZjQB0+ XVSHbYcDE5DyH2k4CwM6Bvv7dSoceWzQ4KJICPElP3O0mM9cthGPn8I31Iq8MrGQ s3Sh4zFZD4p35JLFOXNUmyzBQbwbas9yWcICzFUmvSqonrEVBXG6TF4xnUZ6Bkal 0Nj5nIKHow0RvEulKmFAH65DiNSwZMczh11/PxoXC51ao9BOHVQ/ZXIQzypnCvS0 UDCknP2ls7brjN63UUNhSAwcKwLbBvv8zxfv1bFFdgq/5TJMkPqdpVD9HdIhTPIO OubXkvPdHvRY2W8FTsAnPvP4tZAg97ISONL84a9DxCX49z8WnMR+OX4ld1Uena4I Ny7oe11ypI1O2g== -----END CERTIFICATE-----Generated at Sat Jun 7 05:01:48 2025 by rpki-client