$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: 63RxZtNxt65shea7g1UeXpgSnGKNCxVeFSsjokHlKgU= Subject key identifier: 97:9D:25:77:DE:6E:BE:8A:FF:58:A9:E6:6E:F2:E1:57:4A:08:28:AE Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019A7CA95F1C00848FAF1F43955287E60488 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0B3F Signing time: Thu 13 Nov 2025 10:01:05 +0000 Manifest this update: Thu 13 Nov 2025 10:01:05 +0000 Manifest next update: Fri 14 Nov 2025 10:01:05 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: eyjKcj2nyX45jb15emqCslvWW6uz/Y09nP7FKlEEAlY=) 3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=) 4: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 5: HHx5PgT40c8odAvxk1P-fxWePlA.roa (hash: zPsSrq/ptkyDcwkMCUxFQsAp1K70phIRO2z3d5q6bK8=) 6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 9: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) 10: wWtKIfnyuy5Pwsg7v1x01k_AkAs.roa (hash: 9+2f6OaYEE6gwGcro5Uy8iHzJQ0Asb4j3ndklknXQsA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 14 Nov 2025 10:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:7c:a9:5f:1c:00:84:8f:af:1f:43:95:52:87:e6:04:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Nov 13 10:01:05 2025 GMT Not After : Nov 14 10:01:05 2025 GMT Subject: CN=979d2577de6ebe8aff58a9e66ef2e1574a0828ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:5c:5f:61:53:92:cb:f6:cf:50:aa:bb:ae:0e: c2:1f:06:f8:c0:ab:7e:7e:e7:f8:86:bf:83:ca:64: ee:dc:ca:ab:d4:d0:47:af:82:cb:6b:9f:04:aa:98: 00:bf:3e:fa:d4:60:d8:62:e4:36:2c:5e:ef:8a:80: f3:72:59:1e:62:53:fc:52:b0:2e:bd:e0:c9:64:80: 22:8a:cf:fa:01:46:36:e3:9d:e8:22:7a:8a:4b:80: ff:48:70:c9:be:f8:80:d3:71:90:c4:4c:f8:1b:7f: 35:13:4b:91:1e:21:d2:e3:67:4b:66:f9:42:89:17: 8f:1f:bd:83:df:ff:68:93:a9:07:b9:45:a4:37:e4: 92:fd:ea:32:76:54:a7:a7:3b:8a:bd:62:80:ef:3e: d6:1c:86:21:d0:86:57:36:62:89:8d:f6:ce:6e:a7: e9:95:95:af:97:71:52:8b:99:4c:ab:8f:48:1c:74: 76:90:a7:e8:79:5f:d6:ea:43:42:08:04:b4:1e:b1: 9b:10:05:02:f9:86:a0:5f:3d:6a:f0:32:4e:d7:e5: f1:fc:79:ce:d5:00:15:11:4f:4f:0e:79:84:9e:b2: 18:ec:91:d2:5d:05:12:73:46:91:52:0c:b5:09:50: 86:71:70:ae:2e:c4:16:00:da:3f:8e:74:ff:6f:ac: 34:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:9D:25:77:DE:6E:BE:8A:FF:58:A9:E6:6E:F2:E1:57:4A:08:28:AE X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:c5:f7:fd:c5:b0:9f:ac:5c:b6:9e:56:02:7b:0f:72:46:6f: 73:a4:ce:ca:52:e0:82:9c:19:04:dd:6a:02:28:ec:4a:9f:de: e9:0b:76:23:12:0b:f6:15:1b:44:1e:0a:ad:b3:d1:36:a2:a5: 21:49:a8:73:94:f9:02:26:77:5c:65:83:e3:d3:f7:fa:9a:c3: fc:75:fd:fa:a7:61:cd:23:05:16:87:d8:4c:6f:da:bc:59:fa: 17:b2:0a:6e:60:d7:98:a5:3d:e9:08:69:58:e8:60:73:3b:b3: fe:43:03:cf:67:6b:0f:0d:4e:7e:8a:a8:51:0b:47:f0:c9:49: 3f:8c:21:54:0c:25:0a:5d:ad:28:b4:7f:07:76:d2:52:22:36: 84:46:d8:86:56:1d:18:c9:2b:25:44:fd:ae:8c:66:87:4e:a7: 27:d1:9f:70:60:78:bf:00:96:82:e1:89:fd:f6:f1:c2:12:d0: 65:2e:6a:60:d6:4a:0f:df:e8:ea:b5:ad:a5:08:a8:3a:61:af: eb:e9:79:01:c9:c1:b3:4e:7e:59:6d:c5:e0:2f:37:29:c0:cb: 49:d0:1e:44:f1:bc:16:dd:45:ae:62:4f:8f:83:42:45:53:ce: 2b:43:09:a4:6f:1c:cf:ec:bb:11:53:26:d9:01:a6:c5:28:c1: 90:57:12:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZp8qV8cAISPrx9DlVKH5gSIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMTEzMTAwMTA1WhcNMjUxMTE0MTAwMTA1WjAzMTEwLwYDVQQD Eyg5NzlkMjU3N2RlNmViZThhZmY1OGE5ZTY2ZWYyZTE1NzRhMDgyOGFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnFxfYVOSy/bPUKq7rg7CHwb4wKt+ fuf4hr+DymTu3Mqr1NBHr4LLa58EqpgAvz761GDYYuQ2LF7vioDzclkeYlP8UrAu veDJZIAiis/6AUY2453oInqKS4D/SHDJvviA03GQxEz4G381E0uRHiHS42dLZvlC iRePH72D3/9ok6kHuUWkN+SS/eoydlSnpzuKvWKA7z7WHIYh0IZXNmKJjfbObqfp lZWvl3FSi5lMq49IHHR2kKfoeV/W6kNCCAS0HrGbEAUC+YagXz1q8DJO1+Xx/HnO 1QAVEU9PDnmEnrIY7JHSXQUSc0aRUgy1CVCGcXCuLsQWANo/jnT/b6w0gQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJedJXfebr6K/1ip5m7y4VdKCCiuMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAsX3/cWw n6xctp5WAnsPckZvc6TOylLggpwZBN1qAijsSp/e6Qt2IxIL9hUbRB4KrbPRNqKl IUmoc5T5AiZ3XGWD49P3+prD/HX9+qdhzSMFFofYTG/avFn6F7IKbmDXmKU96Qhp WOhgczuz/kMDz2drDw1OfoqoUQtH8MlJP4whVAwlCl2tKLR/B3bSUiI2hEbYhlYd GMkrJUT9roxmh06nJ9GfcGB4vwCWguGJ/fbxwhLQZS5qYNZKD9/o6rWtpQioOmGv 6+l5AcnBs05+WW3F4C83KcDLSdAeRPG8Ft1FrmJPj4NCRVPOK0MJpG8cz+y7EVMm 2QGmxSjBkFcSRg== -----END CERTIFICATE-----Generated at Thu Nov 13 14:06:19 2025 by rpki-client