$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: mqIzxwUoUW/yNepXf1tQ/ppQsmM+jFu62fb947+bjzY= Subject key identifier: 3E:98:C5:6F:36:11:7C:2D:EF:FE:AB:5D:3C:23:43:77:77:34:73:53 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019E6B753AF116E6F763B260DBAFD7BC6CAF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0D56 Signing time: Wed 27 May 2026 22:01:45 +0000 Manifest this update: Wed 27 May 2026 22:01:45 +0000 Manifest next update: Thu 28 May 2026 22:01:45 +0000 Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: fMYrudfchYW4TSQZAtA5RvJnB56Ha53syuy6KuTrwf4=) 2: EOj3AgYdcchPeXzFo3MmkUnpC5c.roa (hash: UJxOCXl/zk57bLmMvjQmQo6So76eGqObXBhqM5bOFjU=) 3: FWMBoEPbEZJ9LWll1hHdYguPc1Q.roa (hash: D3IyHTq+1EEVMSrIYYDUg4SrD3tjS/LwJPAsUzG8Cnk=) 4: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 5: NFV8_rlpMbYJWC5GtsaC08jVRLk.roa (hash: bXitEDnu53nb2nGB6+lObhnl3YIH0YhpwjL7l9qv+QU=) 6: OZaDQ0hXuyPtXw0MMtiK4i0Z5Cc.roa (hash: NUQ/hLaY/s6wtpegscjb37Ii8FsiiXqqFFzr8BzeZgs=) 7: Vfrj1CjwXIt_tA2vbVO6W0Q8sww.roa (hash: mvOhadzyYlNh3bwJh8QRN9BDoPYKpsh/DrQUaDTKRJg=) 8: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=) 9: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 10: m2aCEWRSbYINPhfk7dIfOHcCZMQ.roa (hash: zF+FldUbeFBdo73eCEVXfBTgillyEx/Bek9AHg5vsQM=) 11: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 12: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 28 May 2026 22:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:6b:75:3a:f1:16:e6:f7:63:b2:60:db:af:d7:bc:6c:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: May 27 22:01:45 2026 GMT Not After : May 28 22:01:45 2026 GMT Subject: CN=3e98c56f36117c2deffeab5d3c23437777347353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ee:b7:f7:59:2a:f3:92:09:50:fa:29:69:c7: 48:dd:57:ff:f9:2d:e4:93:54:0d:57:ca:f6:59:b6: cc:ac:5b:e2:b0:43:0c:f1:a3:d3:c8:2e:73:e6:23: d9:26:fb:e0:5d:a5:0b:a0:28:f3:d8:ca:1e:ae:ad: 0d:df:e4:9d:95:73:e5:38:05:80:5e:16:dc:d2:a4: 61:0b:c7:9a:1c:95:6b:ec:79:73:cf:9b:e0:b2:d0: bb:5b:9b:17:37:1d:bf:7b:01:7d:0d:fa:d0:29:db: 98:29:4a:b2:91:db:d9:7b:58:6b:18:d0:d3:e6:18: b5:d7:2a:10:09:1e:18:c1:bb:a2:f8:66:4d:05:57: c1:5a:f0:dc:ab:1b:fa:8b:29:6f:78:e0:b0:e6:7d: 41:4a:e7:47:02:c6:e9:20:a6:6e:cc:27:07:95:33: 54:80:dc:73:9d:89:10:c2:df:b4:1c:dd:68:07:ad: 87:0f:2e:68:2f:0e:86:56:a2:7f:7a:ab:0d:26:80: e9:a4:fc:14:15:e7:58:01:12:fa:3b:68:55:7c:00: 53:05:59:6d:08:9a:51:e2:b8:4a:f6:4e:03:9b:54: ba:8d:a4:cb:ba:41:d2:3b:4e:ff:02:b4:f2:1c:f6: 68:5b:aa:89:1f:52:c4:2e:34:7b:70:34:79:5e:5a: b3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:98:C5:6F:36:11:7C:2D:EF:FE:AB:5D:3C:23:43:77:77:34:73:53 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:ff:6a:67:d8:f5:ab:8b:bb:0b:ba:7c:5d:f7:26:a1:fb:1c: 8d:0e:95:a1:a3:1a:f2:81:4e:09:fa:3e:9d:e5:5a:36:e8:6e: e9:d1:13:32:e7:eb:09:68:8f:2a:b1:84:12:ad:19:25:5a:50: 1a:65:72:13:2f:26:86:29:ca:5a:2f:74:3f:49:7c:d4:71:61: 80:bd:5d:6f:d8:d1:4b:95:2d:d4:62:6b:1f:51:34:bf:56:6e: 06:aa:e2:7a:5d:eb:8f:35:11:b9:6e:b5:7b:4d:76:58:48:06: 66:1e:f1:a5:8c:79:8a:b9:08:b8:4f:3c:90:88:d2:da:bc:ab: e5:d4:68:2c:12:61:08:93:1b:23:90:ef:b5:61:e2:fa:21:ec: 04:04:17:c3:da:23:92:ae:50:f0:58:d1:5b:9b:35:6d:f6:4f: 12:65:31:02:b0:e2:7f:df:a2:5e:3c:27:03:90:a9:38:45:21: ef:3e:72:0e:eb:75:08:47:5f:0d:8e:b1:d4:76:20:e3:5e:42: 0f:56:8b:2d:55:81:9f:86:42:34:29:7d:f5:30:57:5b:74:b3: b6:3d:5e:95:41:05:02:58:95:2e:c6:b8:d4:c4:9b:11:45:6f: fa:3f:97:af:4f:42:b4:2c:e7:ee:67:73:3a:a8:37:b1:26:c0: 60:64:88:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ5rdTrxFub3Y7Jg26/XvGyvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwNTI3MjIwMTQ1WhcNMjYwNTI4MjIwMTQ1WjAzMTEwLwYDVQQD EygzZTk4YzU2ZjM2MTE3YzJkZWZmZWFiNWQzYzIzNDM3Nzc3MzQ3MzUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2O6391kq85IJUPopacdI3Vf/+S3k k1QNV8r2WbbMrFvisEMM8aPTyC5z5iPZJvvgXaULoCjz2Moerq0N3+SdlXPlOAWA Xhbc0qRhC8eaHJVr7Hlzz5vgstC7W5sXNx2/ewF9DfrQKduYKUqykdvZe1hrGNDT 5hi11yoQCR4Ywbui+GZNBVfBWvDcqxv6iylveOCw5n1BSudHAsbpIKZuzCcHlTNU gNxznYkQwt+0HN1oB62HDy5oLw6GVqJ/eqsNJoDppPwUFedYARL6O2hVfABTBVlt CJpR4rhK9k4Dm1S6jaTLukHSO07/ArTyHPZoW6qJH1LELjR7cDR5XlqzsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD6YxW82EXwt7/6rXTwjQ3d3NHNTMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXP9qZ9j1 q4u7C7p8XfcmofscjQ6VoaMa8oFOCfo+neVaNuhu6dETMufrCWiPKrGEEq0ZJVpQ GmVyEy8mhinKWi90P0l81HFhgL1db9jRS5Ut1GJrH1E0v1ZuBqriel3rjzURuW61 e012WEgGZh7xpYx5irkIuE88kIjS2ryr5dRoLBJhCJMbI5DvtWHi+iHsBAQXw9oj kq5Q8FjRW5s1bfZPEmUxArDif9+iXjwnA5CpOEUh7z5yDut1CEdfDY6x1HYg415C D1aLLVWBn4ZCNCl99TBXW3Sztj1elUEFAliVLsa41MSbEUVv+j+Xr09CtCzn7mdz Oqg3sSbAYGSIyg== -----END CERTIFICATE-----Generated at Thu May 28 02:19:31 2026 by rpki-client