$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: C/wGXrPFAHDc4YReuqfWgRfPkP7PMDuvVJENw6UcuBw= Subject key identifier: 8C:BB:39:71:92:A6:8F:A4:9B:B0:5E:F8:ED:FD:AA:0E:96:70:20:34 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019ECA8D2FE809811681512B6C94D46F4C9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0D89 Signing time: Mon 15 Jun 2026 09:11:50 +0000 Manifest this update: Mon 15 Jun 2026 09:11:50 +0000 Manifest next update: Tue 16 Jun 2026 09:11:50 +0000 Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: 2OQf0G5CvUQl+/u9LiyftqmNgRGf2Zvzeg++4j3DI2Q=) 2: EOj3AgYdcchPeXzFo3MmkUnpC5c.roa (hash: UJxOCXl/zk57bLmMvjQmQo6So76eGqObXBhqM5bOFjU=) 3: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 4: OZaDQ0hXuyPtXw0MMtiK4i0Z5Cc.roa (hash: NUQ/hLaY/s6wtpegscjb37Ii8FsiiXqqFFzr8BzeZgs=) 5: PXUEThXrMGouCYgr_yi3-daiDvE.roa (hash: iv3ZI6ycGYw3gyGWXsZNQzdt8OIK73JOyd7SS9lf5Dk=) 6: StKopN7mKY_G686fwWfLGQIs1ZE.roa (hash: Lt0qVcoh5gF6hn1K+QcayMd775gMjWFzF0XYTOVMzcE=) 7: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=) 8: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 9: m2aCEWRSbYINPhfk7dIfOHcCZMQ.roa (hash: zF+FldUbeFBdo73eCEVXfBTgillyEx/Bek9AHg5vsQM=) 10: mMhcTAUsEq-DNycXZbZCJR0srtQ.roa (hash: IfB3ppygA/MuKvduBRn6Oad+w/QpUoS9p6uwhj/GpXM=) 11: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 12: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Jun 2026 07:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:ca:8d:2f:e8:09:81:16:81:51:2b:6c:94:d4:6f:4c:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jun 15 09:11:50 2026 GMT Not After : Jun 16 09:11:50 2026 GMT Subject: CN=8cbb397192a68fa49bb05ef8edfdaa0e96702034 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ed:d4:89:a1:7c:e8:7c:b2:9c:7f:99:e7:1b: 09:2c:fd:3a:74:83:11:95:cf:d8:50:01:08:e8:5f: b3:5f:6a:b2:40:9a:eb:03:7f:d6:14:cb:f1:ee:ac: 65:a0:1f:8e:60:57:76:51:34:c2:06:18:be:4b:37: 2d:da:03:e8:dc:30:72:0b:11:53:54:d5:ad:8d:f8: a4:e7:01:43:7d:f3:f6:3b:9e:1e:95:b6:e0:2e:69: 1e:7a:b4:7f:8d:dc:80:37:7a:86:ad:10:6d:53:87: 36:fc:6b:4b:c9:2d:cd:34:25:07:37:b1:ce:bb:d4: bf:07:b0:a9:6c:97:c2:9e:bf:21:d9:be:70:ea:6e: 73:7c:bb:31:aa:7a:5e:51:14:55:3e:44:d6:61:0b: d4:5c:1a:fb:b3:95:f7:02:e7:bc:6d:c6:09:2f:3c: 86:cf:29:d5:2f:cf:31:50:56:89:5e:3d:8a:1e:6d: ee:9d:95:f7:29:e6:88:dd:ab:8d:d6:cc:73:c9:90: 32:56:e1:81:5b:18:60:4d:14:6e:bb:19:68:11:59: 84:4e:f0:e2:0a:9e:d9:6b:12:a0:4f:e1:5c:15:6e: 85:50:60:5d:d5:b5:d8:04:fa:1e:cc:a3:0e:ef:67: 3f:fd:1c:3d:a6:cd:dc:e6:a7:31:c4:20:e5:3e:a4: 8f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:BB:39:71:92:A6:8F:A4:9B:B0:5E:F8:ED:FD:AA:0E:96:70:20:34 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:f5:09:38:6f:f2:f6:e7:9a:7f:3a:ff:03:99:b9:61:42:e8: 42:4a:3d:07:8b:aa:18:ad:85:50:b9:69:e3:a6:ed:52:13:30: 53:8f:2a:49:fb:c3:9e:ac:9c:a1:55:89:2c:29:23:0d:4e:66: 79:12:e2:cd:bc:9c:ff:6c:b9:4d:5f:f9:ac:c4:d4:c1:35:b0: 9f:d3:87:dc:db:65:0f:9b:8b:d9:7a:3d:fb:5e:a2:f7:aa:d9: 54:0d:7f:3a:f7:16:8a:37:7d:ec:35:44:e8:25:6b:f2:45:7d: 12:5f:60:8b:22:2b:61:c2:8c:df:65:7d:58:56:99:b0:95:27: 01:e9:9d:f8:45:32:94:05:be:ca:69:fa:22:ef:ea:14:03:a2: 1a:c5:56:01:23:ee:44:6d:30:b0:c7:b1:f0:bc:b5:5d:96:d2: 8e:c6:94:63:0d:e7:75:09:f4:f9:8b:21:62:de:f0:74:06:1a: 5d:03:63:c4:6c:ed:f8:3b:97:c0:6e:17:bd:39:09:c6:88:6f: 33:10:c7:70:69:6a:b6:d2:a0:a9:2b:ae:db:38:be:32:ad:5b: c2:25:e0:0d:5f:e9:60:09:95:6f:6b:a4:45:e9:72:21:ca:9a: ed:da:14:ff:f4:1a:16:6c:18:93:d0:bc:db:ef:6d:b3:f5:ce: 1f:d8:de:fc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ7KjS/oCYEWgVErbJTUb0yeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwNjE1MDkxMTUwWhcNMjYwNjE2MDkxMTUwWjAzMTEwLwYDVQQD Eyg4Y2JiMzk3MTkyYTY4ZmE0OWJiMDVlZjhlZGZkYWEwZTk2NzAyMDM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvu3UiaF86HyynH+Z5xsJLP06dIMR lc/YUAEI6F+zX2qyQJrrA3/WFMvx7qxloB+OYFd2UTTCBhi+Szct2gPo3DByCxFT VNWtjfik5wFDffP2O54elbbgLmkeerR/jdyAN3qGrRBtU4c2/GtLyS3NNCUHN7HO u9S/B7CpbJfCnr8h2b5w6m5zfLsxqnpeURRVPkTWYQvUXBr7s5X3Aue8bcYJLzyG zynVL88xUFaJXj2KHm3unZX3KeaI3auN1sxzyZAyVuGBWxhgTRRuuxloEVmETvDi Cp7ZaxKgT+FcFW6FUGBd1bXYBPoezKMO72c//Rw9ps3c5qcxxCDlPqSPmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIy7OXGSpo+km7Be+O39qg6WcCA0MB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbfUJOG/y 9ueafzr/A5m5YULoQko9B4uqGK2FULlp46btUhMwU48qSfvDnqycoVWJLCkjDU5m eRLizbyc/2y5TV/5rMTUwTWwn9OH3NtlD5uL2Xo9+16i96rZVA1/OvcWijd97DVE 6CVr8kV9El9giyIrYcKM32V9WFaZsJUnAemd+EUylAW+ymn6Iu/qFAOiGsVWASPu RG0wsMex8Ly1XZbSjsaUYw3ndQn0+YshYt7wdAYaXQNjxGzt+DuXwG4XvTkJxohv MxDHcGlqttKgqSuu2zi+Mq1bwiXgDV/pYAmVb2ukRelyIcqa7doU//QaFmwYk9C8 2+9ts/XOH9je/A== -----END CERTIFICATE-----Generated at Mon Jun 15 13:01:29 2026 by rpki-client