$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: tsCwb2W1gcpEnlMTiaJrHDsU/VcflQhfNS6T0O6DQRM= Subject key identifier: AB:D5:E0:C9:6B:F3:03:09:FB:A7:33:19:66:C2:48:2A:4F:F2:AB:09 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 01994F656871566C65B9C73B1493EF3DFBE3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0AA3 Signing time: Mon 15 Sep 2025 22:01:09 +0000 Manifest this update: Mon 15 Sep 2025 22:01:09 +0000 Manifest next update: Tue 16 Sep 2025 22:01:09 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: utAOB8pATs2cOx2aZ2vJfU0TIRcwL72UP73IeXq6W28=) 3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=) 4: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 5: HHx5PgT40c8odAvxk1P-fxWePlA.roa (hash: zPsSrq/ptkyDcwkMCUxFQsAp1K70phIRO2z3d5q6bK8=) 6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 9: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) 10: wWtKIfnyuy5Pwsg7v1x01k_AkAs.roa (hash: 9+2f6OaYEE6gwGcro5Uy8iHzJQ0Asb4j3ndklknXQsA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Sep 2025 22:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:4f:65:68:71:56:6c:65:b9:c7:3b:14:93:ef:3d:fb:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Sep 15 22:01:09 2025 GMT Not After : Sep 16 22:01:09 2025 GMT Subject: CN=abd5e0c96bf30309fba7331966c2482a4ff2ab09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b7:22:f2:ca:13:7a:8c:2d:e3:44:8c:39:0e: ad:da:e4:f0:64:cf:3b:e0:36:bb:f7:be:d4:36:a2: ca:11:86:a1:1d:75:39:5f:ee:c4:bd:3a:69:da:a5: e5:48:21:d6:68:96:e6:0e:84:5d:3f:e5:72:65:d9: 71:a2:c5:c1:fe:8d:c9:24:97:31:ca:26:24:26:7a: 1e:ab:ee:77:71:05:b4:98:3a:4d:bc:4e:75:ce:1b: 00:a5:86:09:a9:48:8d:e8:c8:12:90:fe:7c:d4:69: a0:4d:a4:8b:74:84:a7:37:7d:0e:45:41:c6:a1:b8: de:2d:84:a6:72:53:10:be:a0:34:12:6e:36:60:95: b7:c1:1d:8a:6a:f5:84:56:84:5b:21:70:b3:88:79: 46:64:4f:bc:b5:0d:76:97:2d:41:55:d9:f6:12:09: 2f:f7:68:95:fa:7b:ed:2c:eb:3d:bb:3f:f3:a5:83: bb:d0:4f:0d:52:26:ac:82:df:8f:0d:2f:1d:6f:8a: 0d:36:76:12:88:10:29:ff:7e:97:87:82:99:22:4e: 42:72:72:03:01:fa:ce:00:50:06:aa:a3:1b:d8:d8: 4b:de:15:97:7d:85:9e:20:98:69:45:76:73:a5:84: a1:2b:18:82:47:a4:d4:38:1c:9e:65:68:d9:06:bc: 95:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:D5:E0:C9:6B:F3:03:09:FB:A7:33:19:66:C2:48:2A:4F:F2:AB:09 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:d0:56:f6:23:2d:96:65:d7:9d:91:c6:3c:77:e9:cf:cf:96: bf:ba:62:0a:8b:82:4f:7f:a8:f4:50:3b:b8:47:3d:bb:47:a1: 04:3b:3a:d2:42:97:be:03:66:1d:54:25:15:06:a8:3f:0b:69: f1:96:1c:3d:87:4a:a9:ab:7e:e5:51:2a:bb:fa:66:b5:be:43: 48:f6:0f:0f:10:f2:09:5a:74:bc:e5:88:a4:24:47:f1:f1:ee: c7:27:42:b7:d7:d6:82:e7:2b:90:87:d3:4a:ee:f8:6d:24:32: 2e:38:54:69:fd:46:96:f4:8f:9d:95:f6:45:f2:3c:16:39:8b: 55:f2:1a:d0:97:eb:ed:b6:5d:50:50:88:0a:73:2e:a3:63:5d: b0:a6:25:ab:61:ed:f9:25:ff:e7:50:67:24:b4:7e:60:07:23: 67:fc:46:f5:b8:65:92:82:ec:ef:8f:b7:23:c7:cf:ca:08:cd: e5:49:d5:ec:dc:d7:00:b7:5d:9d:db:33:14:35:47:6f:78:5f: d3:a9:73:59:7c:5d:d7:f8:88:91:48:05:a4:89:26:e0:d8:8e: 6f:47:e2:9d:3e:f0:23:73:f8:2d:45:27:67:20:6e:3f:0a:3b: 59:ac:68:70:ad:5c:ec:2d:75:c6:68:54:fb:7e:90:76:70:fd: 4b:ae:86:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZlPZWhxVmxlucc7FJPvPfvjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUwOTE1MjIwMTA5WhcNMjUwOTE2MjIwMTA5WjAzMTEwLwYDVQQD EyhhYmQ1ZTBjOTZiZjMwMzA5ZmJhNzMzMTk2NmMyNDgyYTRmZjJhYjA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7ci8soTeowt40SMOQ6t2uTwZM87 4Da7977UNqLKEYahHXU5X+7EvTpp2qXlSCHWaJbmDoRdP+VyZdlxosXB/o3JJJcx yiYkJnoeq+53cQW0mDpNvE51zhsApYYJqUiN6MgSkP581GmgTaSLdISnN30ORUHG objeLYSmclMQvqA0Em42YJW3wR2KavWEVoRbIXCziHlGZE+8tQ12ly1BVdn2Egkv 92iV+nvtLOs9uz/zpYO70E8NUiasgt+PDS8db4oNNnYSiBAp/36Xh4KZIk5CcnID AfrOAFAGqqMb2NhL3hWXfYWeIJhpRXZzpYShKxiCR6TUOByeZWjZBryV0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKvV4Mlr8wMJ+6czGWbCSCpP8qsJMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPtBW9iMt lmXXnZHGPHfpz8+Wv7piCouCT3+o9FA7uEc9u0ehBDs60kKXvgNmHVQlFQaoPwtp 8ZYcPYdKqat+5VEqu/pmtb5DSPYPDxDyCVp0vOWIpCRH8fHuxydCt9fWgucrkIfT Su74bSQyLjhUaf1GlvSPnZX2RfI8FjmLVfIa0Jfr7bZdUFCICnMuo2NdsKYlq2Ht +SX/51BnJLR+YAcjZ/xG9bhlkoLs74+3I8fPygjN5UnV7NzXALddndszFDVHb3hf 06lzWXxd1/iIkUgFpIkm4NiOb0finT7wI3P4LUUnZyBuPwo7WaxocK1c7C11xmhU +36QdnD9S66GMg== -----END CERTIFICATE-----Generated at Tue Sep 16 04:52:47 2025 by rpki-client