$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: sOpJpCkf/Oj/X+uJ91tOGt8HjoB0zKgZNKA7Z7wqP78= Subject key identifier: AE:D7:6F:2F:A7:21:02:AC:62:F8:CD:0F:EC:50:20:8F:AC:AF:E8:22 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019E8A5AC7CD277D0F0CFEF7F733DF5BED5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0D66 Signing time: Tue 02 Jun 2026 22:01:05 +0000 Manifest this update: Tue 02 Jun 2026 22:01:05 +0000 Manifest next update: Wed 03 Jun 2026 22:01:05 +0000 Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: XLKxZkcBe5gERmukR5yEVvnPRxUUJeZr8QQJdiJmoXM=) 2: EOj3AgYdcchPeXzFo3MmkUnpC5c.roa (hash: UJxOCXl/zk57bLmMvjQmQo6So76eGqObXBhqM5bOFjU=) 3: FWMBoEPbEZJ9LWll1hHdYguPc1Q.roa (hash: D3IyHTq+1EEVMSrIYYDUg4SrD3tjS/LwJPAsUzG8Cnk=) 4: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 5: NFV8_rlpMbYJWC5GtsaC08jVRLk.roa (hash: bXitEDnu53nb2nGB6+lObhnl3YIH0YhpwjL7l9qv+QU=) 6: OZaDQ0hXuyPtXw0MMtiK4i0Z5Cc.roa (hash: NUQ/hLaY/s6wtpegscjb37Ii8FsiiXqqFFzr8BzeZgs=) 7: Vfrj1CjwXIt_tA2vbVO6W0Q8sww.roa (hash: mvOhadzyYlNh3bwJh8QRN9BDoPYKpsh/DrQUaDTKRJg=) 8: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=) 9: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 10: m2aCEWRSbYINPhfk7dIfOHcCZMQ.roa (hash: zF+FldUbeFBdo73eCEVXfBTgillyEx/Bek9AHg5vsQM=) 11: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 12: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 03 Jun 2026 22:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:8a:5a:c7:cd:27:7d:0f:0c:fe:f7:f7:33:df:5b:ed:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jun 2 22:01:05 2026 GMT Not After : Jun 3 22:01:05 2026 GMT Subject: CN=aed76f2fa72102ac62f8cd0fec50208facafe822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:69:95:a4:4f:fd:ea:ca:8b:7d:a7:6f:33:33: 49:a7:61:1f:90:19:d7:a6:3f:87:66:e7:5c:aa:51: 13:46:8c:08:e9:a3:ae:3f:40:3c:6f:98:8e:b2:4b: 25:71:54:fa:84:99:62:02:14:9d:a6:a2:c7:b5:f1: 62:4e:71:b8:67:ef:2c:0b:49:07:5c:dd:3f:3e:4a: 55:56:7d:14:cc:de:2f:60:7a:9f:52:0f:ae:c9:1b: 95:a8:35:f5:71:9f:a7:4d:4b:e2:6b:70:b5:0c:a1: 0a:38:1e:c1:9c:3f:aa:10:cc:f8:ca:d9:16:81:12: d5:51:3a:17:75:a5:57:a3:fd:c5:72:d1:29:b5:95: 1f:59:bc:2a:b7:2b:9e:dc:76:d1:be:e8:7a:4a:1f: 71:ea:5d:b8:34:68:25:10:88:80:a2:5f:20:b9:b3: ce:16:29:6f:97:21:2e:fc:cf:ca:ad:1d:40:71:c0: e7:2b:a3:64:31:e1:4c:81:85:86:3f:b4:bb:08:8a: 20:d6:6d:4b:e3:38:11:5f:7a:f8:81:b1:25:b0:f5: 56:4b:a7:40:99:56:49:c1:d5:9e:7a:7f:3c:f6:8f: 1f:01:37:8c:2e:0c:09:ad:3b:61:f7:71:95:8b:8c: e2:89:9d:71:dd:e6:1c:78:e2:fb:e9:9a:17:33:11: 2e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:D7:6F:2F:A7:21:02:AC:62:F8:CD:0F:EC:50:20:8F:AC:AF:E8:22 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:03:e2:e8:7d:5f:b1:be:98:b4:98:40:79:5f:a8:27:ad:b9: d1:ea:ff:db:da:a8:9a:9c:20:c1:ce:31:28:cf:bb:ae:dc:aa: cf:40:af:b4:fb:be:cb:15:61:12:0f:fa:b2:ab:31:bf:cd:97: 53:84:c8:49:d5:06:12:cf:08:be:13:7e:ee:0b:51:41:f7:2d: e4:4a:75:b0:af:3c:b6:35:d0:ea:54:4a:9d:17:7d:ab:2c:df: 7e:7d:29:1b:f5:e9:96:a2:6d:f4:5d:ac:83:ed:42:2e:78:cd: 8a:a0:ba:0a:99:12:f5:35:b2:6f:cc:64:eb:07:75:f4:bf:d9: 07:f2:d2:3e:9b:96:25:a5:7b:d8:7a:53:03:b1:df:c4:ab:a2: 8f:47:0f:07:a6:47:7d:4e:0e:b2:30:a5:13:33:54:9c:6f:ba: fe:3e:54:fe:34:cc:04:5a:1c:6e:93:99:fc:ee:61:5d:e6:62: 96:74:2a:a1:2b:ea:22:1e:aa:23:a1:07:88:aa:34:e8:e3:09: 55:da:a3:cb:18:9a:1e:7d:60:80:15:39:0a:c0:4a:f8:5d:ca: ab:67:a1:ea:2c:d2:17:a1:2c:19:18:f9:5d:0d:66:fa:4c:a4: f2:45:2c:15:ec:25:70:64:a0:ad:59:aa:9e:64:07:82:67:f5: 02:47:dc:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ6KWsfNJ30PDP739zPfW+1dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwNjAyMjIwMTA1WhcNMjYwNjAzMjIwMTA1WjAzMTEwLwYDVQQD EyhhZWQ3NmYyZmE3MjEwMmFjNjJmOGNkMGZlYzUwMjA4ZmFjYWZlODIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1WmVpE/96sqLfadvMzNJp2EfkBnX pj+HZudcqlETRowI6aOuP0A8b5iOskslcVT6hJliAhSdpqLHtfFiTnG4Z+8sC0kH XN0/PkpVVn0UzN4vYHqfUg+uyRuVqDX1cZ+nTUvia3C1DKEKOB7BnD+qEMz4ytkW gRLVUToXdaVXo/3FctEptZUfWbwqtyue3HbRvuh6Sh9x6l24NGglEIiAol8gubPO FilvlyEu/M/KrR1AccDnK6NkMeFMgYWGP7S7CIog1m1L4zgRX3r4gbElsPVWS6dA mVZJwdWeen889o8fATeMLgwJrTth93GVi4ziiZ1x3eYceOL76ZoXMxEu9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK7Xby+nIQKsYvjND+xQII+sr+giMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASgPi6H1f sb6YtJhAeV+oJ6250er/29qompwgwc4xKM+7rtyqz0CvtPu+yxVhEg/6sqsxv82X U4TISdUGEs8IvhN+7gtRQfct5Ep1sK88tjXQ6lRKnRd9qyzffn0pG/XplqJt9F2s g+1CLnjNiqC6CpkS9TWyb8xk6wd19L/ZB/LSPpuWJaV72HpTA7HfxKuij0cPB6ZH fU4OsjClEzNUnG+6/j5U/jTMBFocbpOZ/O5hXeZilnQqoSvqIh6qI6EHiKo06OMJ VdqjyxiaHn1ggBU5CsBK+F3Kq2eh6izSF6EsGRj5XQ1m+kyk8kUsFewlcGSgrVmq nmQHgmf1AkfcSA== -----END CERTIFICATE-----Generated at Wed Jun 3 03:58:34 2026 by rpki-client