$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: hW9xDFyYr5VZwnj2eNYblnFK/Plp9nR+n8hdktAwSmg= Subject key identifier: 93:01:7F:E5:97:AF:73:9E:87:7C:2C:6E:34:4F:13:B1:A9:55:36:35 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019ED9F6E21306F02218792EDBF3390345BD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0D91 Signing time: Thu 18 Jun 2026 09:01:35 +0000 Manifest this update: Thu 18 Jun 2026 09:01:35 +0000 Manifest next update: Fri 19 Jun 2026 09:01:35 +0000 Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: Tyq31r8LsD1++IoxgIBraplwbTANPmeyQLjhRcHuFoo=) 2: EOj3AgYdcchPeXzFo3MmkUnpC5c.roa (hash: UJxOCXl/zk57bLmMvjQmQo6So76eGqObXBhqM5bOFjU=) 3: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 4: OZaDQ0hXuyPtXw0MMtiK4i0Z5Cc.roa (hash: NUQ/hLaY/s6wtpegscjb37Ii8FsiiXqqFFzr8BzeZgs=) 5: PXUEThXrMGouCYgr_yi3-daiDvE.roa (hash: iv3ZI6ycGYw3gyGWXsZNQzdt8OIK73JOyd7SS9lf5Dk=) 6: StKopN7mKY_G686fwWfLGQIs1ZE.roa (hash: Lt0qVcoh5gF6hn1K+QcayMd775gMjWFzF0XYTOVMzcE=) 7: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=) 8: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 9: m2aCEWRSbYINPhfk7dIfOHcCZMQ.roa (hash: zF+FldUbeFBdo73eCEVXfBTgillyEx/Bek9AHg5vsQM=) 10: mMhcTAUsEq-DNycXZbZCJR0srtQ.roa (hash: IfB3ppygA/MuKvduBRn6Oad+w/QpUoS9p6uwhj/GpXM=) 11: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 12: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Jun 2026 02:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:d9:f6:e2:13:06:f0:22:18:79:2e:db:f3:39:03:45:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jun 18 09:01:35 2026 GMT Not After : Jun 19 09:01:35 2026 GMT Subject: CN=93017fe597af739e877c2c6e344f13b1a9553635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:31:95:11:90:d7:e8:21:57:61:15:fd:26:53: 16:ec:71:df:2d:17:47:97:c2:a5:2c:d9:14:93:23: 3a:bc:75:d9:83:ad:1d:12:70:24:a8:ef:a7:da:e8: 75:93:16:7a:2d:d6:12:ab:95:e5:c6:83:66:04:56: ea:31:1e:81:db:eb:b5:eb:bf:da:27:f5:8a:38:45: a4:3b:70:c7:fd:0b:17:ad:68:f6:d7:d3:c1:66:5f: 91:e6:76:91:37:01:a9:e1:a9:f2:73:c4:f5:2c:77: 22:61:dc:1c:40:41:0b:dd:c2:0e:3c:1a:a2:04:ba: 1f:c9:14:d8:0a:29:ec:fd:14:e9:bd:29:3c:e3:cd: de:84:6b:51:98:ae:3d:e8:75:de:8d:1a:78:0d:66: 7c:72:a5:e9:42:65:75:8a:d2:08:8b:b2:73:4d:49: 33:7d:7e:93:9d:e6:4b:7a:de:f9:e6:5d:e8:18:49: 26:2f:58:c6:5d:18:f1:f6:4e:aa:25:89:c9:2f:b9: 21:5a:e7:0a:0d:5c:4d:cd:83:17:67:ff:af:42:bf: b8:f7:e8:73:50:f6:fd:ef:99:d7:94:d8:d7:51:be: 6d:73:41:bd:01:d9:57:94:69:96:cc:07:8c:f5:a4: 82:a2:4a:49:fa:53:33:77:03:52:07:00:4d:a1:c6: 48:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:01:7F:E5:97:AF:73:9E:87:7C:2C:6E:34:4F:13:B1:A9:55:36:35 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:af:6c:5e:fe:24:10:44:00:5e:1e:99:0e:c5:05:27:66:cf: db:5e:22:be:11:da:0b:90:b6:e2:1f:ce:70:aa:a9:ae:44:64: e0:ed:85:f3:16:60:0e:33:07:52:3c:75:1e:03:56:10:c6:92: 48:2d:93:1b:f8:db:01:59:1e:74:44:8b:9d:66:c4:a4:2a:52: 6d:09:4b:50:93:d8:3b:a3:43:85:f1:ac:c9:dc:c4:bf:86:d5: ae:2a:b2:24:9c:8b:6f:05:58:79:f2:ab:8e:87:35:4a:fd:2b: 2b:51:44:ef:83:4a:6a:c9:ef:e0:86:8a:dc:9c:73:18:91:a8: 95:d6:cb:49:76:c8:68:49:26:b6:0a:07:e1:a8:74:bd:c7:5a: 81:73:cb:72:73:c5:0e:e0:42:87:0c:91:aa:e5:7d:8f:1a:6e: 91:93:53:8c:96:7e:d1:36:c2:0e:f7:a0:2c:5d:86:1b:df:53: ed:3b:89:ce:47:9e:c9:ca:4e:ec:62:76:72:e2:f4:2c:58:64: 2c:5e:31:aa:1b:9b:f6:b3:3c:af:29:63:46:9e:f1:96:f2:7a: c6:a0:fc:88:31:a7:e5:f2:e0:94:0a:8c:4e:2a:f2:52:af:e7: ee:b0:f4:96:f6:fb:0b:55:c9:b4:c0:a9:4d:7e:6a:de:01:22: 38:ce:d9:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ7Z9uITBvAiGHku2/M5A0W9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwNjE4MDkwMTM1WhcNMjYwNjE5MDkwMTM1WjAzMTEwLwYDVQQD Eyg5MzAxN2ZlNTk3YWY3MzllODc3YzJjNmUzNDRmMTNiMWE5NTUzNjM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzTGVEZDX6CFXYRX9JlMW7HHfLRdH l8KlLNkUkyM6vHXZg60dEnAkqO+n2uh1kxZ6LdYSq5XlxoNmBFbqMR6B2+u167/a J/WKOEWkO3DH/QsXrWj219PBZl+R5naRNwGp4anyc8T1LHciYdwcQEEL3cIOPBqi BLofyRTYCins/RTpvSk8483ehGtRmK496HXejRp4DWZ8cqXpQmV1itIIi7JzTUkz fX6TneZLet755l3oGEkmL1jGXRjx9k6qJYnJL7khWucKDVxNzYMXZ/+vQr+49+hz UPb975nXlNjXUb5tc0G9AdlXlGmWzAeM9aSCokpJ+lMzdwNSBwBNocZIXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJMBf+WXr3Oeh3wsbjRPE7GpVTY1MB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIa9sXv4k EEQAXh6ZDsUFJ2bP214ivhHaC5C24h/OcKqprkRk4O2F8xZgDjMHUjx1HgNWEMaS SC2TG/jbAVkedESLnWbEpCpSbQlLUJPYO6NDhfGsydzEv4bVriqyJJyLbwVYefKr joc1Sv0rK1FE74NKasnv4IaK3JxzGJGoldbLSXbIaEkmtgoH4ah0vcdagXPLcnPF DuBChwyRquV9jxpukZNTjJZ+0TbCDvegLF2GG99T7TuJzkeeycpO7GJ2cuL0LFhk LF4xqhub9rM8ryljRp7xlvJ6xqD8iDGn5fLglAqMTiryUq/n7rD0lvb7C1XJtMCp TX5q3gEiOM7ZJQ== -----END CERTIFICATE-----Generated at Thu Jun 18 13:14:22 2026 by rpki-client