$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: B6POs1ZSQCB47Wt+GLPbAsoYUE9CVU8cD7k3RUkfGD0= Subject key identifier: 63:20:90:87:9E:B8:2E:9A:67:94:A4:07:74:E5:83:C5:6D:86:7E:3D Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019EE969AEB43D25655CF9C5F55584396A37 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0D99 Signing time: Sun 21 Jun 2026 09:01:17 +0000 Manifest this update: Sun 21 Jun 2026 09:01:17 +0000 Manifest next update: Mon 22 Jun 2026 09:01:17 +0000 Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: IwSght//qD+fe7LeA62+YVlt/BW5uMVMhBeFTjE0+ww=) 2: EOj3AgYdcchPeXzFo3MmkUnpC5c.roa (hash: UJxOCXl/zk57bLmMvjQmQo6So76eGqObXBhqM5bOFjU=) 3: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 4: OZaDQ0hXuyPtXw0MMtiK4i0Z5Cc.roa (hash: NUQ/hLaY/s6wtpegscjb37Ii8FsiiXqqFFzr8BzeZgs=) 5: PXUEThXrMGouCYgr_yi3-daiDvE.roa (hash: iv3ZI6ycGYw3gyGWXsZNQzdt8OIK73JOyd7SS9lf5Dk=) 6: StKopN7mKY_G686fwWfLGQIs1ZE.roa (hash: Lt0qVcoh5gF6hn1K+QcayMd775gMjWFzF0XYTOVMzcE=) 7: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=) 8: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 9: m2aCEWRSbYINPhfk7dIfOHcCZMQ.roa (hash: zF+FldUbeFBdo73eCEVXfBTgillyEx/Bek9AHg5vsQM=) 10: mMhcTAUsEq-DNycXZbZCJR0srtQ.roa (hash: IfB3ppygA/MuKvduBRn6Oad+w/QpUoS9p6uwhj/GpXM=) 11: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 12: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Jun 2026 02:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:e9:69:ae:b4:3d:25:65:5c:f9:c5:f5:55:84:39:6a:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jun 21 09:01:17 2026 GMT Not After : Jun 22 09:01:17 2026 GMT Subject: CN=632090879eb82e9a6794a40774e583c56d867e3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9d:00:fb:1a:a0:a3:29:98:f8:42:d5:a9:c7: 58:ea:6c:46:e3:16:39:c9:fc:22:d7:ae:1b:b9:5d: 02:3d:77:ac:33:c2:97:0a:ba:2c:bd:48:14:fe:0f: 45:66:2a:97:18:a2:3f:1e:16:a3:ef:88:dc:88:cb: 76:3d:7f:94:19:10:80:a5:44:a6:7a:59:c8:11:28: a6:98:d3:fa:6c:fb:2a:35:72:b9:18:f9:07:9f:fb: ff:3c:6d:1e:15:b3:52:7f:fe:b1:ce:7a:6a:4d:73: c0:0a:3d:f8:4f:98:3e:e1:48:11:3a:f1:7a:a5:7c: 37:77:be:eb:8a:b8:b1:46:97:43:b2:5a:a5:99:46: b1:f8:66:79:71:1d:11:3c:ef:5e:24:dc:9a:39:e8: 33:c0:3a:08:43:40:85:a5:c8:b6:10:d6:78:94:80: 29:50:55:a4:eb:3e:ca:e5:27:ed:a8:bd:41:6a:22: 66:7a:e5:28:39:01:59:f6:6a:25:74:a8:4e:0a:ec: 30:99:15:1c:16:ae:b3:a6:0f:95:09:42:50:4e:0c: 8f:0b:97:ab:e5:7d:59:b5:13:9a:fb:c9:b8:90:9e: e8:4e:00:ac:6d:22:b9:c7:86:30:ff:8e:5b:8f:06: 0c:23:64:47:8f:3c:b0:63:3b:17:80:89:7e:be:78: 1b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:20:90:87:9E:B8:2E:9A:67:94:A4:07:74:E5:83:C5:6D:86:7E:3D X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:06:57:00:97:85:2c:0e:9d:bd:12:91:2a:d7:77:09:92:6e: db:0c:72:b7:f6:9c:fa:18:26:c6:c9:0a:94:45:8a:92:f2:68: 5e:2c:d5:36:bd:eb:7b:2c:5f:f9:04:df:c1:1b:bb:27:9d:52: 5c:2e:f7:d8:62:b8:84:8f:4e:cf:4e:42:c3:42:dd:6b:79:07: 88:42:59:61:94:b3:1d:9d:c9:ab:f2:93:23:a7:f1:55:68:ae: fb:8e:21:74:9d:3a:cc:55:fa:d0:89:a0:90:31:02:be:c8:27: 83:3c:66:9e:69:f7:bb:ab:e5:ae:f7:2a:70:f0:47:07:48:5b: 4c:2f:b9:96:d8:03:48:69:41:77:c7:f5:bb:f4:3a:66:e1:cc: fc:4a:3c:d3:2e:9b:16:2b:5d:da:a0:f9:79:d2:5f:44:89:b3: 2f:fe:42:a2:2a:8c:d7:f7:68:fd:06:2c:42:35:b9:06:4d:16: e3:9b:be:80:b7:0f:cd:b4:af:a0:91:86:92:8f:0b:6c:16:a0: e3:e1:c2:1e:ba:29:dc:b4:5c:b1:51:7c:61:f3:21:28:16:1b: f6:35:bb:b1:bf:0a:42:6e:f6:39:ed:fb:85:76:0d:50:4f:54: 32:ef:4f:a3:03:9a:9f:9e:61:15:93:b8:e4:70:ae:61:b9:ca: 62:99:05:b3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ7paa60PSVlXPnF9VWEOWo3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwNjIxMDkwMTE3WhcNMjYwNjIyMDkwMTE3WjAzMTEwLwYDVQQD Eyg2MzIwOTA4NzllYjgyZTlhNjc5NGE0MDc3NGU1ODNjNTZkODY3ZTNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzJ0A+xqgoymY+ELVqcdY6mxG4xY5 yfwi164buV0CPXesM8KXCrosvUgU/g9FZiqXGKI/Hhaj74jciMt2PX+UGRCApUSm elnIESimmNP6bPsqNXK5GPkHn/v/PG0eFbNSf/6xznpqTXPACj34T5g+4UgROvF6 pXw3d77ririxRpdDslqlmUax+GZ5cR0RPO9eJNyaOegzwDoIQ0CFpci2ENZ4lIAp UFWk6z7K5SftqL1BaiJmeuUoOQFZ9moldKhOCuwwmRUcFq6zpg+VCUJQTgyPC5er 5X1ZtROa+8m4kJ7oTgCsbSK5x4Yw/45bjwYMI2RHjzywYzsXgIl+vngbtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGMgkIeeuC6aZ5SkB3Tlg8Vthn49MB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQwZXAJeF LA6dvRKRKtd3CZJu2wxyt/ac+hgmxskKlEWKkvJoXizVNr3reyxf+QTfwRu7J51S XC732GK4hI9Oz05Cw0Lda3kHiEJZYZSzHZ3Jq/KTI6fxVWiu+44hdJ06zFX60Img kDECvsgngzxmnmn3u6vlrvcqcPBHB0hbTC+5ltgDSGlBd8f1u/Q6ZuHM/Eo80y6b Fitd2qD5edJfRImzL/5CoiqM1/do/QYsQjW5Bk0W45u+gLcPzbSvoJGGko8LbBag 4+HCHrop3LRcsVF8YfMhKBYb9jW7sb8KQm72Oe37hXYNUE9UMu9PowOan55hFZO4 5HCuYbnKYpkFsw== -----END CERTIFICATE-----Generated at Sun Jun 21 13:17:42 2026 by rpki-client