$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: HoPJD9wpl7qzDW1t49nopQpeaXdvOs8qSNuojPPDa0U= Subject key identifier: 36:7D:8F:4E:1A:C5:B0:14:9D:D0:1F:47:03:18:CD:3F:61:3C:D5:8F Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 0199F19DF1DE046E4D16F0E9F770A5E34D50 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0AF7 Signing time: Fri 17 Oct 2025 10:01:24 +0000 Manifest this update: Fri 17 Oct 2025 10:01:24 +0000 Manifest next update: Sat 18 Oct 2025 10:01:24 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: uE2HegW6rh1CnXa8S1T8FOP/hyikfCyojTWRy2tJZBc=) 3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=) 4: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 5: HHx5PgT40c8odAvxk1P-fxWePlA.roa (hash: zPsSrq/ptkyDcwkMCUxFQsAp1K70phIRO2z3d5q6bK8=) 6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 9: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) 10: wWtKIfnyuy5Pwsg7v1x01k_AkAs.roa (hash: 9+2f6OaYEE6gwGcro5Uy8iHzJQ0Asb4j3ndklknXQsA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Oct 2025 09:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:f1:9d:f1:de:04:6e:4d:16:f0:e9:f7:70:a5:e3:4d:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Oct 17 10:01:24 2025 GMT Not After : Oct 18 10:01:24 2025 GMT Subject: CN=367d8f4e1ac5b0149dd01f470318cd3f613cd58f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:d7:75:19:9b:e0:3f:ee:4d:07:44:bb:a6:89: dd:1a:40:2c:2d:4f:73:e8:cf:98:14:93:d1:11:53: 06:33:f0:e6:51:33:e9:89:1d:8b:de:65:98:d8:18: f5:04:a2:8d:76:3d:3e:4b:c0:1a:33:e2:d6:88:1c: 21:67:38:cf:3a:64:0a:04:60:8e:e4:b9:9b:0d:68: 22:00:40:90:de:7c:2b:c4:79:dc:1e:b9:1f:d8:fc: 8d:ec:b9:dd:f1:16:e8:2a:89:c0:65:f2:b3:8c:14: 23:ce:29:8d:a4:cd:c0:77:e4:a6:66:32:5d:2a:47: 09:13:7c:81:a8:d6:cd:b2:42:6d:75:12:79:3a:fd: ba:f9:d0:71:5e:70:8c:27:a8:43:b4:4f:ef:bf:61: 1d:37:13:c4:16:9e:5c:62:41:6d:60:63:05:b8:a4: d8:5b:c7:12:24:ee:17:51:ec:e4:38:ef:87:ec:41: eb:f3:fd:ca:f0:80:bc:38:76:8c:b7:bf:bb:d9:d8: b6:77:3f:40:8e:52:a0:d6:e8:db:91:80:0e:0d:cc: 5a:2c:da:c9:ff:e0:14:62:19:a8:60:af:bc:97:76: 4e:20:9e:22:ad:00:1a:22:9b:6f:4b:c4:46:35:3e: 71:91:4a:55:02:04:3d:de:9e:7a:68:7f:5c:e4:fb: 49:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:7D:8F:4E:1A:C5:B0:14:9D:D0:1F:47:03:18:CD:3F:61:3C:D5:8F X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:7f:4a:b4:5d:08:2f:a5:6f:ad:c0:1d:31:8e:d3:92:61:55: 50:a7:4c:2e:d3:2e:44:57:a6:ab:02:22:60:b3:d5:60:3c:7f: 0c:fb:2a:6c:1f:6a:a9:86:a3:43:ae:ed:71:57:6f:ca:ce:01: 3e:55:34:74:55:d0:26:74:c3:62:60:8c:f6:8c:0b:37:80:16: 6b:cc:81:64:53:20:d8:63:76:cf:4d:77:f8:d6:35:fd:38:20: 05:0c:50:c4:e8:c7:b2:ff:99:1d:3b:f9:6b:49:4d:fb:48:04: 49:a5:51:4e:17:bf:3c:91:7c:67:56:07:07:09:e7:93:da:df: 69:20:10:1c:0d:37:c5:02:87:d1:a6:b9:0f:0b:fc:71:89:c5: 8e:a7:e0:20:a3:f3:22:ce:f1:bd:27:14:6c:29:91:ec:df:ef: 7d:bd:c6:dd:e6:a0:e5:9c:c7:1b:92:00:f4:75:97:d4:f1:57: 39:f5:85:a7:a2:ba:77:e5:fb:0f:85:38:ea:7e:02:1a:e3:c9: cf:e2:e6:95:14:a0:af:90:cd:d9:ab:c8:59:c3:15:84:0c:aa: f0:7b:eb:8f:01:2d:4f:dc:55:98:e5:8c:ba:f0:3b:b5:57:81: 75:73:e4:22:5f:2e:f9:8d:28:69:96:1b:83:b1:88:06:58:5f: ae:86:70:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZnxnfHeBG5NFvDp93Cl401QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMDE3MTAwMTI0WhcNMjUxMDE4MTAwMTI0WjAzMTEwLwYDVQQD EygzNjdkOGY0ZTFhYzViMDE0OWRkMDFmNDcwMzE4Y2QzZjYxM2NkNThmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Nd1GZvgP+5NB0S7pondGkAsLU9z 6M+YFJPREVMGM/DmUTPpiR2L3mWY2Bj1BKKNdj0+S8AaM+LWiBwhZzjPOmQKBGCO 5LmbDWgiAECQ3nwrxHncHrkf2PyN7Lnd8RboKonAZfKzjBQjzimNpM3Ad+SmZjJd KkcJE3yBqNbNskJtdRJ5Ov26+dBxXnCMJ6hDtE/vv2EdNxPEFp5cYkFtYGMFuKTY W8cSJO4XUezkOO+H7EHr8/3K8IC8OHaMt7+72di2dz9AjlKg1ujbkYAODcxaLNrJ /+AUYhmoYK+8l3ZOIJ4irQAaIptvS8RGNT5xkUpVAgQ93p56aH9c5PtJzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDZ9j04axbAUndAfRwMYzT9hPNWPMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb39KtF0I L6VvrcAdMY7TkmFVUKdMLtMuRFemqwIiYLPVYDx/DPsqbB9qqYajQ67tcVdvys4B PlU0dFXQJnTDYmCM9owLN4AWa8yBZFMg2GN2z013+NY1/TggBQxQxOjHsv+ZHTv5 a0lN+0gESaVRThe/PJF8Z1YHBwnnk9rfaSAQHA03xQKH0aa5Dwv8cYnFjqfgIKPz Is7xvScUbCmR7N/vfb3G3eag5ZzHG5IA9HWX1PFXOfWFp6K6d+X7D4U46n4CGuPJ z+LmlRSgr5DN2avIWcMVhAyq8HvrjwEtT9xVmOWMuvA7tVeBdXPkIl8u+Y0oaZYb g7GIBlhfroZwWQ== -----END CERTIFICATE-----Generated at Fri Oct 17 16:13:25 2025 by rpki-client