$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: 25ByXqazfC7fXI0GHgQZBwEqn1a8dlsXor1L2PTweeo= Subject key identifier: 9C:B5:CD:89:04:F0:DB:48:64:B5:21:8F:85:FF:77:DE:C2:77:D0:F8 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019EF9214993940A3FC6E5F082BB9C6EE709 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0DA2 Signing time: Wed 24 Jun 2026 10:16:08 +0000 Manifest this update: Wed 24 Jun 2026 10:16:08 +0000 Manifest next update: Thu 25 Jun 2026 10:16:08 +0000 Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: tXzpx+VWgLtKbAS9VDTaIEPLd1gHGCvu+7rJC/nDizU=) 2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 3: OZaDQ0hXuyPtXw0MMtiK4i0Z5Cc.roa (hash: NUQ/hLaY/s6wtpegscjb37Ii8FsiiXqqFFzr8BzeZgs=) 4: StKopN7mKY_G686fwWfLGQIs1ZE.roa (hash: Lt0qVcoh5gF6hn1K+QcayMd775gMjWFzF0XYTOVMzcE=) 5: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=) 6: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 7: kT1MhOs2pjWPveWnnzpZvLwHE8I.roa (hash: PObzTeTNqjikv/tj+DTeCD2L5aW2W4bJwFPcLIU6GHY=) 8: mMhcTAUsEq-DNycXZbZCJR0srtQ.roa (hash: IfB3ppygA/MuKvduBRn6Oad+w/QpUoS9p6uwhj/GpXM=) 9: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 10: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Jun 2026 07:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:f9:21:49:93:94:0a:3f:c6:e5:f0:82:bb:9c:6e:e7:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jun 24 10:16:08 2026 GMT Not After : Jun 25 10:16:08 2026 GMT Subject: CN=9cb5cd8904f0db4864b5218f85ff77dec277d0f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:ba:b4:94:48:5c:41:06:4e:4f:54:86:ba:49: 3c:3c:78:4f:9b:25:f0:bb:fa:40:7d:80:30:fe:6a: 28:e0:1a:ba:86:3d:b5:07:92:f8:ca:eb:cb:95:52: 93:06:d6:b6:0e:65:5a:28:27:f6:84:80:38:17:97: 5d:bc:c6:43:38:c3:eb:d2:c5:42:56:22:cc:34:0a: a5:f4:06:f7:69:90:6a:b2:99:c7:6e:98:95:9b:8b: fa:ad:d3:e4:c5:74:78:e3:41:d2:b0:0a:57:e0:8c: f4:1b:a9:47:b6:65:b1:48:da:52:f7:11:e9:03:fc: e5:bf:2a:8f:b4:37:91:99:a3:e1:d6:f7:72:57:60: 9e:dc:81:d2:97:03:a7:2b:98:fb:b2:34:75:24:24: af:5d:21:c8:d4:52:79:aa:5a:64:06:db:81:62:ef: 1e:0e:95:9c:5a:7c:32:20:f4:58:17:0e:48:6e:32: 11:5a:1e:87:d5:f0:16:90:66:4d:50:98:77:e9:0d: 09:99:70:74:b2:bf:1e:a7:50:a1:68:48:4d:f4:75: 2e:99:15:36:0c:f6:e3:f8:81:43:ee:a1:52:2b:74: 52:26:f2:d5:0f:8d:c2:c1:bb:28:69:ee:e3:f5:3b: 64:2b:8a:26:c2:58:a5:68:01:86:43:5a:98:4a:11: f4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:B5:CD:89:04:F0:DB:48:64:B5:21:8F:85:FF:77:DE:C2:77:D0:F8 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:1b:75:43:4c:af:d9:13:61:50:ec:1e:08:4f:4d:57:2f:59: 2b:11:12:f0:99:78:42:a1:98:40:ac:3b:3c:4a:5b:9c:b1:bd: f9:2d:fb:29:77:0f:b1:6f:06:9b:f8:f5:56:da:46:70:00:6e: 13:a0:e8:41:63:2f:c7:6e:62:c6:e4:ed:4e:cf:6d:d7:71:16: f3:cf:b0:80:36:d1:f1:92:bd:b4:9e:79:d9:5b:ef:b3:5e:dd: 97:5d:f8:a9:7d:2a:72:51:a7:de:0b:4f:df:d4:06:c9:c4:69: 79:56:18:71:f8:7c:86:a2:89:3e:fd:67:00:0f:c8:53:43:07: 92:4f:b6:2d:38:c3:07:b0:39:5c:89:ca:de:46:fc:1c:32:8d: 81:40:b2:0e:51:32:0a:87:54:ec:97:d1:1a:3d:8e:ce:70:af: a7:67:e0:8b:8d:72:bc:ca:b2:8d:81:38:3f:96:8b:90:ee:70: 19:9e:42:86:0c:f2:0d:87:80:9c:4b:88:5f:e4:1a:2f:88:5d: 9f:51:90:0b:da:10:ef:c5:90:67:41:45:1c:6d:f7:4c:9d:97: b8:54:85:8d:c3:5c:de:20:78:42:7f:f9:70:83:4d:fc:a3:f6: c2:38:99:86:b3:fe:8e:3c:7d:37:fd:f8:b4:ad:16:0c:fc:29: 9f:6f:46:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ75IUmTlAo/xuXwgrucbucJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwNjI0MTAxNjA4WhcNMjYwNjI1MTAxNjA4WjAzMTEwLwYDVQQD Eyg5Y2I1Y2Q4OTA0ZjBkYjQ4NjRiNTIxOGY4NWZmNzdkZWMyNzdkMGY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjrq0lEhcQQZOT1SGukk8PHhPmyXw u/pAfYAw/moo4Bq6hj21B5L4yuvLlVKTBta2DmVaKCf2hIA4F5ddvMZDOMPr0sVC ViLMNAql9Ab3aZBqspnHbpiVm4v6rdPkxXR440HSsApX4Iz0G6lHtmWxSNpS9xHp A/zlvyqPtDeRmaPh1vdyV2Ce3IHSlwOnK5j7sjR1JCSvXSHI1FJ5qlpkBtuBYu8e DpWcWnwyIPRYFw5IbjIRWh6H1fAWkGZNUJh36Q0JmXB0sr8ep1ChaEhN9HUumRU2 DPbj+IFD7qFSK3RSJvLVD43Cwbsoae7j9TtkK4omwlilaAGGQ1qYShH0aQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJy1zYkE8NtIZLUhj4X/d97Cd9D4MB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgRt1Q0yv 2RNhUOweCE9NVy9ZKxES8Jl4QqGYQKw7PEpbnLG9+S37KXcPsW8Gm/j1VtpGcABu E6DoQWMvx25ixuTtTs9t13EW88+wgDbR8ZK9tJ552Vvvs17dl134qX0qclGn3gtP 39QGycRpeVYYcfh8hqKJPv1nAA/IU0MHkk+2LTjDB7A5XInK3kb8HDKNgUCyDlEy CodU7JfRGj2OznCvp2fgi41yvMqyjYE4P5aLkO5wGZ5ChgzyDYeAnEuIX+QaL4hd n1GQC9oQ78WQZ0FFHG33TJ2XuFSFjcNc3iB4Qn/5cINN/KP2wjiZhrP+jjx9N/34 tK0WDPwpn29GdA== -----END CERTIFICATE-----Generated at Wed Jun 24 13:53:22 2026 by rpki-client