$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: sLVmtD2xkEAaydoIvJmqoZUFVd19WQse/moj5YenqzQ= Subject key identifier: 6B:CD:A4:28:A1:A5:C8:51:6B:78:EA:C9:37:9F:05:93:5E:6A:D5:D5 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019A676B0BAE692417DF9F7C07599A480D46 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0B34 Signing time: Sun 09 Nov 2025 07:00:59 +0000 Manifest this update: Sun 09 Nov 2025 07:00:59 +0000 Manifest next update: Mon 10 Nov 2025 07:00:59 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: c6vcgq9VQzPa9HqK94g5TKmxeWWZxKSPhm9NIoKzQlM=) 3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=) 4: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 5: HHx5PgT40c8odAvxk1P-fxWePlA.roa (hash: zPsSrq/ptkyDcwkMCUxFQsAp1K70phIRO2z3d5q6bK8=) 6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 9: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) 10: wWtKIfnyuy5Pwsg7v1x01k_AkAs.roa (hash: 9+2f6OaYEE6gwGcro5Uy8iHzJQ0Asb4j3ndklknXQsA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 10 Nov 2025 05:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:67:6b:0b:ae:69:24:17:df:9f:7c:07:59:9a:48:0d:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Nov 9 07:00:59 2025 GMT Not After : Nov 10 07:00:59 2025 GMT Subject: CN=6bcda428a1a5c8516b78eac9379f05935e6ad5d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:31:fa:7e:9b:0c:2f:97:d2:98:60:58:94:82: a5:67:10:71:db:e0:d6:4f:13:7d:c8:4e:a4:18:62: 67:1d:30:71:0a:54:78:40:8e:99:1d:b2:c1:90:72: c3:ff:c2:69:ab:87:1f:f3:60:4c:b3:8b:fe:d1:9c: 94:79:44:1b:05:d7:a8:a4:2f:3d:a7:1e:f1:1f:3d: ce:cf:f5:cb:9d:2c:3d:24:99:f6:6a:97:ce:8f:e4: 86:06:67:5c:ae:c7:a0:44:2d:f1:2a:d8:14:76:0f: c4:8c:a1:0c:0d:6d:35:83:33:b6:09:c3:4c:65:24: fc:31:70:d8:e2:cf:10:b4:da:d3:9e:56:3f:62:e0: 14:e4:70:13:62:b9:6c:83:74:c5:3b:c2:61:3a:a3: 0b:87:f1:2d:45:6a:4c:65:bd:4c:47:ad:cd:4e:85: f5:40:5e:f2:19:6a:05:01:10:30:b2:b8:f5:c0:ca: 47:c7:cd:14:49:a6:87:b4:70:fd:0e:ef:f1:bb:3c: 5e:da:33:10:be:df:75:78:0a:75:7d:6f:91:c0:14: c5:b5:d7:7b:91:15:c3:ff:88:51:1d:3f:4b:9a:34: 90:ba:1b:b9:75:17:8d:2f:ee:1e:e4:ae:5e:79:ad: c3:b1:59:d2:b8:f6:c9:f3:58:6d:60:a2:a3:46:1c: 3c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:CD:A4:28:A1:A5:C8:51:6B:78:EA:C9:37:9F:05:93:5E:6A:D5:D5 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:78:0d:11:10:66:79:ac:a4:d4:6a:07:57:4e:af:4b:ac:76: 72:9a:72:6e:08:f4:1c:21:0c:26:8d:37:a4:f2:5c:8d:4f:f2: 59:74:ee:7c:39:32:83:74:d0:48:1e:0e:61:3e:c6:42:03:54: 7b:d7:6d:8f:26:0c:71:3b:89:bd:d9:c3:41:2f:88:60:15:41: 4b:c2:1f:3d:c3:8f:50:c4:b8:d8:c7:e2:f6:77:4e:57:1b:e2: c8:38:02:f7:fb:d0:b4:2c:be:77:b9:b3:39:e3:9d:77:fb:76: 95:55:58:fc:84:e9:03:a0:e3:96:ac:ae:4f:8a:e6:df:e9:57: 6f:92:73:cd:c2:db:e3:80:dc:a4:24:c0:ef:64:1c:32:8c:c0: 3f:ba:ca:bb:cf:0d:3e:38:4c:57:f2:0a:c2:7e:5f:bd:4e:23: 34:f6:c3:16:1d:b0:2b:39:ac:c8:d1:a6:e8:24:05:ca:4a:12: 22:54:87:3d:d1:50:ae:be:8c:8b:22:c6:a1:01:59:bf:db:dd: aa:39:50:38:be:36:a1:be:fb:fd:51:f0:6f:d1:de:53:9b:23: ae:3a:0c:6c:1b:1a:28:6a:0f:9d:61:1c:78:90:b9:88:2d:de: c6:cf:3c:07:8b:3f:61:b7:1f:5d:9d:68:86:3b:e8:14:73:92: 00:2d:c9:62 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZpnawuuaSQX3598B1maSA1GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMTA5MDcwMDU5WhcNMjUxMTEwMDcwMDU5WjAzMTEwLwYDVQQD Eyg2YmNkYTQyOGExYTVjODUxNmI3OGVhYzkzNzlmMDU5MzVlNmFkNWQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtTH6fpsML5fSmGBYlIKlZxBx2+DW TxN9yE6kGGJnHTBxClR4QI6ZHbLBkHLD/8Jpq4cf82BMs4v+0ZyUeUQbBdeopC89 px7xHz3Oz/XLnSw9JJn2apfOj+SGBmdcrsegRC3xKtgUdg/EjKEMDW01gzO2CcNM ZST8MXDY4s8QtNrTnlY/YuAU5HATYrlsg3TFO8JhOqMLh/EtRWpMZb1MR63NToX1 QF7yGWoFARAwsrj1wMpHx80USaaHtHD9Du/xuzxe2jMQvt91eAp1fW+RwBTFtdd7 kRXD/4hRHT9LmjSQuhu5dReNL+4e5K5eea3DsVnSuPbJ81htYKKjRhw8rwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGvNpCihpchRa3jqyTefBZNeatXVMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgHgNERBm eayk1GoHV06vS6x2cppybgj0HCEMJo03pPJcjU/yWXTufDkyg3TQSB4OYT7GQgNU e9dtjyYMcTuJvdnDQS+IYBVBS8IfPcOPUMS42Mfi9ndOVxviyDgC9/vQtCy+d7mz OeOdd/t2lVVY/ITpA6DjlqyuT4rm3+lXb5JzzcLb44DcpCTA72QcMozAP7rKu88N PjhMV/IKwn5fvU4jNPbDFh2wKzmsyNGm6CQFykoSIlSHPdFQrr6MiyLGoQFZv9vd qjlQOL42ob77/VHwb9HeU5sjrjoMbBsaKGoPnWEceJC5iC3exs88B4s/YbcfXZ1o hjvoFHOSAC3JYg== -----END CERTIFICATE-----Generated at Sun Nov 9 13:51:17 2025 by rpki-client