$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: wqqmJlsy3L/8tqSAT13o5ohnUpXXWI54tViKHbpBfkk= Subject key identifier: F0:85:CE:B4:28:05:EB:FE:30:CC:FA:F5:67:83:BE:82:6A:6B:9D:AB Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019A76DE0C1970641D2B7D1AFA8CBC40B940 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0B3C Signing time: Wed 12 Nov 2025 07:00:54 +0000 Manifest this update: Wed 12 Nov 2025 07:00:54 +0000 Manifest next update: Thu 13 Nov 2025 07:00:54 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: CN3zL9vM/+Qx5nWqtL1/EM3UD5mgJIwodvixptO9QXY=) 3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=) 4: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 5: HHx5PgT40c8odAvxk1P-fxWePlA.roa (hash: zPsSrq/ptkyDcwkMCUxFQsAp1K70phIRO2z3d5q6bK8=) 6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 9: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) 10: wWtKIfnyuy5Pwsg7v1x01k_AkAs.roa (hash: 9+2f6OaYEE6gwGcro5Uy8iHzJQ0Asb4j3ndklknXQsA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 13 Nov 2025 07:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:76:de:0c:19:70:64:1d:2b:7d:1a:fa:8c:bc:40:b9:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Nov 12 07:00:54 2025 GMT Not After : Nov 13 07:00:54 2025 GMT Subject: CN=f085ceb42805ebfe30ccfaf56783be826a6b9dab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b6:cb:ad:d7:33:e1:67:12:67:38:8c:75:02: aa:44:2e:89:0d:ae:91:27:9f:cd:d7:1b:8c:c9:f4: e9:dd:81:d7:05:b4:1b:a4:4f:94:fc:09:4a:c2:9b: cd:bf:ac:a0:6d:eb:1b:25:b0:21:5e:ab:74:54:f2: ea:de:6c:e6:22:f8:3b:27:d2:48:ba:42:1e:9a:83: 4a:8d:0c:c5:ec:c3:eb:71:ef:e6:09:9f:67:2b:4c: 44:18:97:b1:f1:17:81:3b:3b:03:bd:b0:21:6c:0b: c4:cf:3b:ea:66:04:ea:93:35:8a:ca:f0:11:5a:70: 4a:16:10:19:eb:f1:1b:a8:db:46:c0:c2:e8:3d:a7: 99:fd:98:19:3c:2d:33:17:2e:20:53:f6:21:66:34: 4f:82:67:02:7b:7e:ca:f5:c5:20:7c:b8:b1:af:bf: b6:0a:b3:a8:1f:3a:f9:e1:7c:65:69:bd:bf:2c:c9: 91:fe:35:cc:5f:51:21:41:00:a7:03:b2:a4:aa:fa: 9b:9d:e0:da:d6:13:9f:7b:dd:1b:19:b5:66:b0:25: 6b:c4:ea:47:05:30:02:11:50:c3:84:c7:df:da:61: 04:a6:9d:b6:b9:9c:da:17:4c:ac:b4:e9:96:fe:64: 6b:10:af:6b:cd:f7:1d:71:9c:b6:65:cd:96:71:b6: 56:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:85:CE:B4:28:05:EB:FE:30:CC:FA:F5:67:83:BE:82:6A:6B:9D:AB X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:45:d7:7e:af:f3:0e:fd:36:4d:e6:ae:49:0c:08:9d:a4:6b: be:01:23:05:17:ee:42:2a:be:af:6b:b2:cd:33:1c:d9:69:93: 40:e0:ca:6d:cd:b3:56:e8:e7:be:e3:0e:2e:f2:a6:ed:44:d2: f3:83:19:60:95:0f:7a:9d:8a:0b:77:30:99:f9:28:0c:96:1e: c7:02:4e:3f:49:1a:0c:7a:f7:48:bc:24:20:bf:e6:cd:a1:20: ba:46:61:c5:59:1b:86:f3:1c:a5:61:9d:14:a5:78:c2:28:2d: 1c:66:92:6b:19:59:d0:81:f8:4f:f7:3d:03:bf:32:d3:1a:1e: 4c:f7:a2:5b:a4:94:ab:29:41:87:89:50:8e:ad:2f:af:5c:18: a3:e4:25:19:38:f9:3f:e6:54:1e:72:e2:41:90:1c:3f:83:6c: 5d:38:fd:ad:dd:36:7e:d4:d0:95:b9:b6:01:51:15:96:57:47: 89:88:42:9e:15:d9:f3:9f:97:e2:78:46:dd:ee:d4:b9:ed:23: 89:18:57:e6:9d:3a:3b:36:d1:12:d3:79:6d:1e:b4:1a:90:28: e7:43:22:ca:69:29:2a:3d:77:ff:7b:72:69:8c:75:ec:b5:09: dc:a7:eb:bf:8b:f2:e8:a3:d0:ea:1a:c3:79:25:e3:1b:ad:5a: e5:11:b4:4f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZp23gwZcGQdK30a+oy8QLlAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMTEyMDcwMDU0WhcNMjUxMTEzMDcwMDU0WjAzMTEwLwYDVQQD EyhmMDg1Y2ViNDI4MDVlYmZlMzBjY2ZhZjU2NzgzYmU4MjZhNmI5ZGFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArLbLrdcz4WcSZziMdQKqRC6JDa6R J5/N1xuMyfTp3YHXBbQbpE+U/AlKwpvNv6ygbesbJbAhXqt0VPLq3mzmIvg7J9JI ukIemoNKjQzF7MPrce/mCZ9nK0xEGJex8ReBOzsDvbAhbAvEzzvqZgTqkzWKyvAR WnBKFhAZ6/EbqNtGwMLoPaeZ/ZgZPC0zFy4gU/YhZjRPgmcCe37K9cUgfLixr7+2 CrOoHzr54Xxlab2/LMmR/jXMX1EhQQCnA7KkqvqbneDa1hOfe90bGbVmsCVrxOpH BTACEVDDhMff2mEEpp22uZzaF0ystOmW/mRrEK9rzfcdcZy2Zc2WcbZW9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPCFzrQoBev+MMz69WeDvoJqa52rMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIUXXfq/z Dv02TeauSQwInaRrvgEjBRfuQiq+r2uyzTMc2WmTQODKbc2zVujnvuMOLvKm7UTS 84MZYJUPep2KC3cwmfkoDJYexwJOP0kaDHr3SLwkIL/mzaEgukZhxVkbhvMcpWGd FKV4wigtHGaSaxlZ0IH4T/c9A78y0xoeTPeiW6SUqylBh4lQjq0vr1wYo+QlGTj5 P+ZUHnLiQZAcP4NsXTj9rd02ftTQlbm2AVEVlldHiYhCnhXZ85+X4nhG3e7Uue0j iRhX5p06OzbREtN5bR60GpAo50MiymkpKj13/3tyaYx17LUJ3Kfrv4vy6KPQ6hrD eSXjG61a5RG0Tw== -----END CERTIFICATE-----Generated at Wed Nov 12 13:49:51 2025 by rpki-client