$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: Pv3fiKW6kb9FEGsAIy+i9CLyRMkHC0YcXiR/AWqSIE4= Subject key identifier: 67:12:DE:67:1A:68:D5:0F:E2:C7:4A:43:25:B8:50:09:8F:95:7F:0A Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019A8C1C4603969A9BF48F15C783517364D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0B47 Signing time: Sun 16 Nov 2025 10:00:54 +0000 Manifest this update: Sun 16 Nov 2025 10:00:54 +0000 Manifest next update: Mon 17 Nov 2025 10:00:54 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: khIZ9UkGqkjXrd6iFTFcoJm30PRHj6wJUKXPBu2NstU=) 3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=) 4: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 5: HHx5PgT40c8odAvxk1P-fxWePlA.roa (hash: zPsSrq/ptkyDcwkMCUxFQsAp1K70phIRO2z3d5q6bK8=) 6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 9: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) 10: wWtKIfnyuy5Pwsg7v1x01k_AkAs.roa (hash: 9+2f6OaYEE6gwGcro5Uy8iHzJQ0Asb4j3ndklknXQsA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 17 Nov 2025 10:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:8c:1c:46:03:96:9a:9b:f4:8f:15:c7:83:51:73:64:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Nov 16 10:00:54 2025 GMT Not After : Nov 17 10:00:54 2025 GMT Subject: CN=6712de671a68d50fe2c74a4325b850098f957f0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0b:0d:45:3f:9a:18:69:04:e1:a3:08:73:15: 92:54:72:e8:66:44:db:48:f3:06:79:59:64:18:57: 7b:c3:27:ed:9f:a7:b0:9e:c2:e1:d3:fb:71:53:1f: 5a:3a:40:81:cd:c3:f8:22:7e:c7:d8:c2:ce:19:d2: 67:90:17:9a:d6:98:d8:ad:93:55:f9:61:0f:8c:35: 01:24:84:7b:86:40:dd:d5:e2:16:b6:f9:45:56:8f: 21:a3:02:0a:c6:c6:9f:e6:a8:93:1e:53:0f:9f:07: 44:a3:33:57:ae:6b:9a:a4:f4:30:4d:c4:f5:60:65: fd:8b:dd:92:3f:e8:a0:5c:b4:e2:f6:db:aa:66:07: 57:e1:a1:ba:b9:83:9c:2a:13:36:c3:d7:3e:46:10: 13:81:4f:9a:5f:33:42:cd:a1:d9:4b:3e:29:e2:c4: c5:9e:b1:31:96:c6:12:a0:c3:e2:f3:8f:75:3a:93: 80:93:e9:d8:88:97:0d:30:89:8c:90:42:4e:69:1f: 5e:71:5e:b7:ca:0c:4f:f4:06:96:f9:2d:c9:e3:12: 04:cd:ed:7c:82:ef:c6:ab:c6:e4:75:89:6c:cb:de: f7:50:7a:b7:c3:e9:2a:2a:81:ad:2b:f1:49:33:f5: 4c:39:fc:0a:63:c0:5f:6f:1f:32:23:df:11:19:ac: 9f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:12:DE:67:1A:68:D5:0F:E2:C7:4A:43:25:B8:50:09:8F:95:7F:0A X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:0b:dc:05:02:f0:95:d2:37:76:16:04:c8:d2:04:cd:52:4d: e9:e4:f6:ec:55:01:20:3d:73:25:2e:5c:0f:fb:e4:ca:b9:a1: c6:e2:33:aa:b3:e3:07:29:dd:09:c8:44:d5:15:b7:da:5f:37: 2f:b8:52:87:a9:20:bc:b8:cb:cf:ee:a5:e7:98:9d:38:e5:a0: 15:9d:3b:96:3c:7b:bf:a6:e9:25:37:17:5d:72:ff:a1:fc:2f: 4a:41:8f:08:75:cb:ce:9a:41:29:d8:12:90:82:c6:b2:a7:22: 02:d2:e8:d2:63:10:9e:34:6d:76:02:4e:2a:a2:12:1d:f1:56: a5:11:8e:00:e7:79:76:70:90:b5:9b:e5:00:af:d6:43:48:71: 12:85:fb:88:84:18:01:aa:6e:bc:b2:49:4a:ae:a4:ac:00:bc: be:ca:27:46:18:97:4b:0c:de:b6:a9:f2:84:ca:43:bd:9b:ca: f8:e5:dd:ef:44:0d:51:12:27:b0:06:bf:e9:32:9b:93:c3:e9: a8:a0:de:3a:88:26:24:cf:52:9f:45:c0:b1:97:f3:50:06:4d: 43:61:45:c2:5a:6d:62:75:3c:8c:5d:a8:11:e8:89:88:a1:15: ca:18:d9:09:13:5a:3a:84:e2:c0:34:be:80:37:cb:6d:03:01: 9d:5d:5e:d7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZqMHEYDlpqb9I8Vx4NRc2TZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMTE2MTAwMDU0WhcNMjUxMTE3MTAwMDU0WjAzMTEwLwYDVQQD Eyg2NzEyZGU2NzFhNjhkNTBmZTJjNzRhNDMyNWI4NTAwOThmOTU3ZjBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsgsNRT+aGGkE4aMIcxWSVHLoZkTb SPMGeVlkGFd7wyftn6ewnsLh0/txUx9aOkCBzcP4In7H2MLOGdJnkBea1pjYrZNV +WEPjDUBJIR7hkDd1eIWtvlFVo8howIKxsaf5qiTHlMPnwdEozNXrmuapPQwTcT1 YGX9i92SP+igXLTi9tuqZgdX4aG6uYOcKhM2w9c+RhATgU+aXzNCzaHZSz4p4sTF nrExlsYSoMPi8491OpOAk+nYiJcNMImMkEJOaR9ecV63ygxP9AaW+S3J4xIEze18 gu/Gq8bkdYlsy973UHq3w+kqKoGtK/FJM/VMOfwKY8Bfbx8yI98RGayfOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGcS3mcaaNUP4sdKQyW4UAmPlX8KMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPgvcBQLw ldI3dhYEyNIEzVJN6eT27FUBID1zJS5cD/vkyrmhxuIzqrPjByndCchE1RW32l83 L7hSh6kgvLjLz+6l55idOOWgFZ07ljx7v6bpJTcXXXL/ofwvSkGPCHXLzppBKdgS kILGsqciAtLo0mMQnjRtdgJOKqISHfFWpRGOAOd5dnCQtZvlAK/WQ0hxEoX7iIQY AapuvLJJSq6krAC8vsonRhiXSwzetqnyhMpDvZvK+OXd70QNURInsAa/6TKbk8Pp qKDeOogmJM9Sn0XAsZfzUAZNQ2FFwlptYnU8jF2oEeiJiKEVyhjZCRNaOoTiwDS+ gDfLbQMBnV1e1w== -----END CERTIFICATE-----Generated at Sun Nov 16 19:52:37 2025 by rpki-client