$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: yhyEyDwS+1xK0wa1NJRbvC24xDbTrL96um0e85BSr4I= Subject key identifier: 74:FE:DF:84:F2:8A:A3:DF:52:EB:C6:3C:02:11:C1:F5:7A:91:C4:CB Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019E5AEEE5CC5DE29E733D4E45660885952C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0D4D Signing time: Sun 24 May 2026 17:01:06 +0000 Manifest this update: Sun 24 May 2026 17:01:06 +0000 Manifest next update: Mon 25 May 2026 17:01:06 +0000 Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: HOpC0wETDWSNyW4DTSZE5ZV+hZyWqBoraF0YLOzEDrk=) 2: EOj3AgYdcchPeXzFo3MmkUnpC5c.roa (hash: UJxOCXl/zk57bLmMvjQmQo6So76eGqObXBhqM5bOFjU=) 3: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 4: OZaDQ0hXuyPtXw0MMtiK4i0Z5Cc.roa (hash: NUQ/hLaY/s6wtpegscjb37Ii8FsiiXqqFFzr8BzeZgs=) 5: Vfrj1CjwXIt_tA2vbVO6W0Q8sww.roa (hash: mvOhadzyYlNh3bwJh8QRN9BDoPYKpsh/DrQUaDTKRJg=) 6: dazbjQKPx5PG8Kn6MfNc-0C7xAE.roa (hash: 7gr0wAtYEjRjBQY+9SWNmYmDIlOWaFZnN/rA0YLabZE=) 7: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=) 8: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 9: m2aCEWRSbYINPhfk7dIfOHcCZMQ.roa (hash: zF+FldUbeFBdo73eCEVXfBTgillyEx/Bek9AHg5vsQM=) 10: no2DAadLlyCgfJ3yGfXMXAle7ss.roa (hash: wO/hILyjAZxEBMqsImhYXJk4hOHjBmxpFt4GY+g4M0Q=) 11: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 12: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 May 2026 17:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:5a:ee:e5:cc:5d:e2:9e:73:3d:4e:45:66:08:85:95:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: May 24 17:01:06 2026 GMT Not After : May 25 17:01:06 2026 GMT Subject: CN=74fedf84f28aa3df52ebc63c0211c1f57a91c4cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:9b:77:ae:29:b0:1d:34:ea:01:05:ab:96:47: b4:55:f7:ad:ce:35:ca:50:89:d6:de:b3:88:68:aa: 67:be:9b:77:ed:16:15:2d:25:8d:e6:15:5f:3e:ef: c1:88:d7:21:20:f5:ba:20:c4:89:d2:91:71:63:0a: 5a:8d:fd:e0:8d:d9:88:a9:05:b7:70:00:cd:76:49: 00:83:98:3f:2b:7e:bf:f6:16:3c:be:40:4c:6f:24: 1a:01:ab:08:d1:81:cd:12:7d:56:e2:82:3c:07:c3: c3:ea:1b:ab:33:d9:95:af:64:d1:d3:a7:c2:5d:07: a4:02:66:ad:20:51:07:35:3b:d4:e9:b1:87:a9:3f: c2:ee:61:16:c1:f3:b3:c5:61:c8:43:ce:95:9a:97: 7f:7f:38:19:0c:d2:8c:f6:e1:24:5d:05:d4:3f:57: 3a:25:60:e7:5e:fd:60:de:17:67:f7:99:95:f8:9c: 40:84:31:c8:c3:ab:15:ba:00:52:8b:2a:d0:3e:af: 0d:d9:8e:88:71:4c:13:0b:ea:ac:99:42:27:7e:64: 91:14:57:63:86:ac:63:4f:83:08:88:ea:bb:a8:e9: 89:cd:b7:65:7c:05:9f:9c:a2:93:7e:e8:b0:0b:b7: 2e:bc:9c:37:fa:f0:20:f2:d7:a2:7d:ae:3f:9d:80: 3a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:FE:DF:84:F2:8A:A3:DF:52:EB:C6:3C:02:11:C1:F5:7A:91:C4:CB X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:94:0e:7d:b6:cf:e4:27:8d:b2:95:0d:9f:06:6e:c3:ae:9e: f8:12:5c:8d:88:5a:97:33:35:86:d9:c4:aa:0f:d0:81:06:d1: e7:47:ff:d1:42:e3:26:70:37:0f:52:8d:fb:a0:2e:c9:dc:33: ce:4d:bc:32:61:e1:94:32:81:15:5c:82:62:d7:6f:d0:29:d2: 72:69:23:15:21:f3:dd:65:bb:f4:e5:79:e7:8d:9d:22:36:f0: 91:98:7c:09:96:7b:53:b7:55:c6:a1:1e:e9:56:e3:0a:5f:e1: b0:8d:c9:8e:11:1e:fc:96:c0:90:d9:7c:d5:80:c2:b3:0f:50: 27:20:0b:4c:ff:56:4e:bb:16:ce:1d:1f:62:ae:4f:d0:11:1e: d2:0f:2e:11:4b:f2:7a:0e:e5:9e:b0:95:dd:94:ea:97:09:09: 73:57:09:11:38:88:45:ee:4e:e6:09:37:1a:e7:ef:37:a2:1c: 15:74:85:6b:1f:b6:c5:e4:20:c9:25:02:f4:ea:03:69:d2:3d: 09:24:22:fb:26:f1:66:42:25:34:4a:b5:f5:cb:32:82:bc:1c: 76:9f:07:ec:74:39:4d:f8:06:6e:74:a4:c2:02:75:1c:f5:22: d9:b0:28:2a:05:cf:6f:4f:f8:91:cb:4a:cf:fd:d8:7e:1f:86: 06:fc:79:ec -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ5a7uXMXeKecz1ORWYIhZUsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwNTI0MTcwMTA2WhcNMjYwNTI1MTcwMTA2WjAzMTEwLwYDVQQD Eyg3NGZlZGY4NGYyOGFhM2RmNTJlYmM2M2MwMjExYzFmNTdhOTFjNGNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA55t3rimwHTTqAQWrlke0VfetzjXK UInW3rOIaKpnvpt37RYVLSWN5hVfPu/BiNchIPW6IMSJ0pFxYwpajf3gjdmIqQW3 cADNdkkAg5g/K36/9hY8vkBMbyQaAasI0YHNEn1W4oI8B8PD6hurM9mVr2TR06fC XQekAmatIFEHNTvU6bGHqT/C7mEWwfOzxWHIQ86Vmpd/fzgZDNKM9uEkXQXUP1c6 JWDnXv1g3hdn95mV+JxAhDHIw6sVugBSiyrQPq8N2Y6IcUwTC+qsmUInfmSRFFdj hqxjT4MIiOq7qOmJzbdlfAWfnKKTfuiwC7cuvJw3+vAg8teifa4/nYA6pwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHT+34TyiqPfUuvGPAIRwfV6kcTLMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL5QOfbbP 5CeNspUNnwZuw66e+BJcjYhalzM1htnEqg/QgQbR50f/0ULjJnA3D1KN+6Auydwz zk28MmHhlDKBFVyCYtdv0CnScmkjFSHz3WW79OV5542dIjbwkZh8CZZ7U7dVxqEe 6VbjCl/hsI3JjhEe/JbAkNl81YDCsw9QJyALTP9WTrsWzh0fYq5P0BEe0g8uEUvy eg7lnrCV3ZTqlwkJc1cJETiIRe5O5gk3GufvN6IcFXSFax+2xeQgySUC9OoDadI9 CSQi+ybxZkIlNEq19csygrwcdp8H7HQ5TfgGbnSkwgJ1HPUi2bAoKgXPb0/4kctK z/3Yfh+GBvx57A== -----END CERTIFICATE-----Generated at Mon May 25 01:56:17 2026 by rpki-client