$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: OYKSyERBC0XZ7C6fMxLpOSreFevGfBZ66Pn+Cnzk2qs= Subject key identifier: 5D:D3:DC:0B:FF:71:D7:BC:35:81:95:92:3E:94:21:86:21:10:06:B8 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019A7E976AB82C09A3E10BD2D46E9D6EBDC3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0B40 Signing time: Thu 13 Nov 2025 19:00:43 +0000 Manifest this update: Thu 13 Nov 2025 19:00:43 +0000 Manifest next update: Fri 14 Nov 2025 19:00:43 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: Y++5nucPm7bqArdv6dT56s1226X8jkPCK5JURUqLzm8=) 3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=) 4: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 5: HHx5PgT40c8odAvxk1P-fxWePlA.roa (hash: zPsSrq/ptkyDcwkMCUxFQsAp1K70phIRO2z3d5q6bK8=) 6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 9: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) 10: wWtKIfnyuy5Pwsg7v1x01k_AkAs.roa (hash: 9+2f6OaYEE6gwGcro5Uy8iHzJQ0Asb4j3ndklknXQsA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 14 Nov 2025 19:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:7e:97:6a:b8:2c:09:a3:e1:0b:d2:d4:6e:9d:6e:bd:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Nov 13 19:00:43 2025 GMT Not After : Nov 14 19:00:43 2025 GMT Subject: CN=5dd3dc0bff71d7bc358195923e942186211006b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:07:48:c1:b6:e9:0d:ec:95:97:87:5e:ca:43: 88:df:3d:2e:07:67:70:1e:ea:77:d7:c6:e5:ff:1e: 5b:98:9e:35:2d:52:d4:58:3e:3c:f5:6e:3e:52:c4: b3:20:7b:83:12:83:2d:df:58:be:da:4c:77:b4:b9: 78:d8:d8:4a:71:06:98:78:ed:7e:5f:76:f1:1d:70: 77:42:22:00:5f:98:8b:7c:f1:93:29:ff:53:46:c5: 4c:4b:42:2c:9c:95:83:f6:5f:a4:ab:b8:b6:f9:ba: 0d:de:fc:73:29:d7:20:66:7b:a3:b0:4c:2c:d6:72: 51:14:9f:d9:93:ce:33:7f:34:90:ac:38:90:a0:2b: 47:78:5e:e1:01:0e:4a:36:d8:5d:5c:24:58:19:97: c5:8a:fa:c2:37:8d:5f:c2:e8:f1:89:c0:ac:0a:a5: 8e:73:55:56:b4:fb:cf:7d:86:b9:ed:26:7d:3d:42: a8:9f:bd:70:c9:f3:05:13:39:20:cd:20:ea:e9:c9: 8b:61:b8:0d:c2:a3:d8:02:c5:fd:7a:9d:9c:23:1d: 3e:8d:19:4a:90:f0:5b:87:0f:89:97:03:88:de:03: 3d:38:f5:20:aa:d2:04:8e:60:a9:15:cd:d8:22:bd: 5d:c2:74:9a:a2:9e:41:db:98:72:20:0c:42:53:52: e3:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:D3:DC:0B:FF:71:D7:BC:35:81:95:92:3E:94:21:86:21:10:06:B8 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:8a:f1:31:37:3e:d1:28:c6:f5:91:75:07:6b:1b:1a:82:80: 5c:2a:aa:fe:8b:71:0c:2c:dd:5b:02:f9:8c:65:73:da:5d:e6: 9d:e7:bd:84:1e:ce:bf:e7:8d:e3:6f:d5:15:aa:63:cf:6b:02: 63:4e:19:92:d2:9b:78:2e:47:43:69:1e:92:91:02:0d:9d:12: 68:75:08:22:60:f2:92:d4:1d:71:1d:40:1e:36:e3:88:b8:f8: 3e:e8:81:f9:7d:13:85:56:6b:d5:40:f3:25:28:9a:d0:0c:31: 07:4a:ec:ea:8d:2e:d2:a6:13:97:c6:99:fb:b1:9b:1b:46:5a: c9:f9:e9:88:89:ac:80:70:57:bb:7f:80:69:3b:0b:b1:6d:7b: f6:c2:b0:7d:4a:b1:f4:aa:47:85:bb:7a:ac:e5:aa:fb:17:8c: ba:2d:cd:44:91:7f:51:3a:22:93:70:2b:d3:9a:e9:eb:f0:69: b4:7a:7f:7e:d6:c4:80:a5:d3:f4:76:f1:cb:fd:c9:bf:84:a4: d4:d2:bb:88:2b:12:a1:50:46:21:c9:11:71:0d:f4:bb:14:1d: ce:86:75:da:46:ee:08:c0:ab:8d:41:84:82:3b:0d:e2:49:98: 31:55:82:62:77:f5:50:e4:45:71:d8:c1:72:56:92:c8:3b:1c: e1:6b:f7:4e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZp+l2q4LAmj4QvS1G6dbr3DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMTEzMTkwMDQzWhcNMjUxMTE0MTkwMDQzWjAzMTEwLwYDVQQD Eyg1ZGQzZGMwYmZmNzFkN2JjMzU4MTk1OTIzZTk0MjE4NjIxMTAwNmI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxwdIwbbpDeyVl4deykOI3z0uB2dw Hup318bl/x5bmJ41LVLUWD489W4+UsSzIHuDEoMt31i+2kx3tLl42NhKcQaYeO1+ X3bxHXB3QiIAX5iLfPGTKf9TRsVMS0IsnJWD9l+kq7i2+boN3vxzKdcgZnujsEws 1nJRFJ/Zk84zfzSQrDiQoCtHeF7hAQ5KNthdXCRYGZfFivrCN41fwujxicCsCqWO c1VWtPvPfYa57SZ9PUKon71wyfMFEzkgzSDq6cmLYbgNwqPYAsX9ep2cIx0+jRlK kPBbhw+JlwOI3gM9OPUgqtIEjmCpFc3YIr1dwnSaop5B25hyIAxCU1Lj6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF3T3Av/cde8NYGVkj6UIYYhEAa4MB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGorxMTc+ 0SjG9ZF1B2sbGoKAXCqq/otxDCzdWwL5jGVz2l3mnee9hB7Ov+eN42/VFapjz2sC Y04ZktKbeC5HQ2kekpECDZ0SaHUIImDyktQdcR1AHjbjiLj4PuiB+X0ThVZr1UDz JSia0AwxB0rs6o0u0qYTl8aZ+7GbG0ZayfnpiImsgHBXu3+AaTsLsW179sKwfUqx 9KpHhbt6rOWq+xeMui3NRJF/UToik3Ar05rp6/BptHp/ftbEgKXT9Hbxy/3Jv4Sk 1NK7iCsSoVBGIckRcQ30uxQdzoZ12kbuCMCrjUGEgjsN4kmYMVWCYnf1UORFcdjB claSyDsc4Wv3Tg== -----END CERTIFICATE-----Generated at Fri Nov 14 02:55:41 2025 by rpki-client