$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: aXLpoDsAWZ7NXV6v+S7VC+LXQcgXKQhr4nMYUZGCz5s= Subject key identifier: BF:44:F0:F5:12:42:6C:B2:69:FA:18:BB:6F:17:52:88:BC:8C:A9:10 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019A883FA1413D93D809B5A611F3A6AACD55 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0B45 Signing time: Sat 15 Nov 2025 16:01:02 +0000 Manifest this update: Sat 15 Nov 2025 16:01:02 +0000 Manifest next update: Sun 16 Nov 2025 16:01:02 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: nGJJ2TCL0DtcR85MHmD33SoYLjZepkrL4ngzcEjVuNo=) 3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=) 4: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 5: HHx5PgT40c8odAvxk1P-fxWePlA.roa (hash: zPsSrq/ptkyDcwkMCUxFQsAp1K70phIRO2z3d5q6bK8=) 6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 9: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) 10: wWtKIfnyuy5Pwsg7v1x01k_AkAs.roa (hash: 9+2f6OaYEE6gwGcro5Uy8iHzJQ0Asb4j3ndklknXQsA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 16 Nov 2025 12:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:88:3f:a1:41:3d:93:d8:09:b5:a6:11:f3:a6:aa:cd:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Nov 15 16:01:02 2025 GMT Not After : Nov 16 16:01:02 2025 GMT Subject: CN=bf44f0f512426cb269fa18bb6f175288bc8ca910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f9:47:2c:0b:f8:a9:98:69:32:5c:be:2c:24: b5:cd:93:e5:bf:4a:b5:61:d3:e0:e8:fe:fc:e7:cf: 60:3d:e3:06:99:7a:c3:70:af:9c:a6:cb:21:99:5d: 24:ef:45:01:44:6c:ba:e9:e7:25:ec:f7:e3:ce:be: f7:0c:1d:e1:f1:8f:ed:f4:77:ae:98:c0:49:73:48: ce:46:4c:8e:d0:ad:ec:ab:a1:7a:0a:28:88:8a:0f: e3:bd:4c:14:69:86:d4:37:1b:66:7a:50:eb:c7:09: 10:37:a2:fb:d6:3e:17:2b:e0:9f:66:53:f1:e5:68: bb:78:d6:5d:ba:65:1c:c1:0a:26:ba:7e:5e:4d:f3: ee:e3:f6:d2:ee:bd:cc:17:c7:b0:08:50:d0:fe:ab: 84:0d:21:17:de:00:5d:23:2c:c3:eb:07:1b:41:7d: 62:5e:8c:28:33:c6:df:bf:67:80:7b:1f:37:9b:64: 23:2d:a1:4d:47:0f:d0:9a:11:4d:ed:df:4a:a3:87: c5:7d:aa:be:10:cf:49:2e:aa:bc:b2:4d:69:2e:18: cc:4c:c9:98:b3:66:a3:cd:d6:51:f2:b0:9e:74:e5: 05:53:74:4e:19:33:09:68:76:b4:60:db:68:3c:0d: bd:bd:ff:da:6d:ad:c0:bf:fd:d5:08:1f:c3:1d:28: 8c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:44:F0:F5:12:42:6C:B2:69:FA:18:BB:6F:17:52:88:BC:8C:A9:10 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:33:34:5e:2c:af:cd:f0:9d:c1:36:da:13:2f:9e:3d:3f:6f: 88:90:91:e6:47:ca:65:4f:dc:ed:a3:78:92:06:69:b0:4d:0d: a1:8f:9b:77:a1:32:6a:09:c5:14:81:fc:2b:91:bb:19:05:d1: 97:8d:81:59:93:cf:8f:a3:7c:e8:01:11:80:82:a9:6e:a6:74: 7f:17:40:d0:49:b2:68:16:01:0e:54:7a:03:44:6c:c5:7a:a2: e0:67:45:72:bf:ca:1e:58:e6:a6:36:21:b9:ca:b8:16:27:33: 70:a3:84:fe:0b:b9:20:0b:bf:13:1b:dc:c7:7b:11:52:3c:ed: 69:b1:09:e4:34:53:38:d2:ff:f2:4a:ed:57:c1:9a:cd:54:df: be:b4:ec:a1:93:c7:f1:6d:59:17:76:92:e7:b9:a5:47:1c:f9: 90:76:e3:52:00:3f:d8:9d:fd:76:c9:5b:b5:a6:22:78:ef:be: e3:90:5b:ee:55:99:51:36:86:b6:8b:6f:be:c7:32:84:6d:00: fa:eb:fb:6e:bb:3f:7b:ac:6e:8d:ad:e9:ed:0d:04:f1:3b:2b: 92:77:f4:e5:4a:25:b3:55:50:da:c5:02:30:04:53:51:d1:0d: 2e:81:5e:da:15:c9:51:df:cf:2f:9c:17:6a:35:1c:89:53:9b: a5:25:29:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZqIP6FBPZPYCbWmEfOmqs1VMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMTE1MTYwMTAyWhcNMjUxMTE2MTYwMTAyWjAzMTEwLwYDVQQD EyhiZjQ0ZjBmNTEyNDI2Y2IyNjlmYTE4YmI2ZjE3NTI4OGJjOGNhOTEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApflHLAv4qZhpMly+LCS1zZPlv0q1 YdPg6P78589gPeMGmXrDcK+cpsshmV0k70UBRGy66ecl7Pfjzr73DB3h8Y/t9Heu mMBJc0jORkyO0K3sq6F6CiiIig/jvUwUaYbUNxtmelDrxwkQN6L71j4XK+CfZlPx 5Wi7eNZdumUcwQomun5eTfPu4/bS7r3MF8ewCFDQ/quEDSEX3gBdIyzD6wcbQX1i XowoM8bfv2eAex83m2QjLaFNRw/QmhFN7d9Ko4fFfaq+EM9JLqq8sk1pLhjMTMmY s2ajzdZR8rCedOUFU3ROGTMJaHa0YNtoPA29vf/aba3Av/3VCB/DHSiMLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL9E8PUSQmyyafoYu28XUoi8jKkQMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGDM0Xiyv zfCdwTbaEy+ePT9viJCR5kfKZU/c7aN4kgZpsE0NoY+bd6EyagnFFIH8K5G7GQXR l42BWZPPj6N86AERgIKpbqZ0fxdA0EmyaBYBDlR6A0RsxXqi4GdFcr/KHljmpjYh ucq4FiczcKOE/gu5IAu/Exvcx3sRUjztabEJ5DRTONL/8krtV8GazVTfvrTsoZPH 8W1ZF3aS57mlRxz5kHbjUgA/2J39dslbtaYieO++45Bb7lWZUTaGtotvvscyhG0A +uv7brs/e6xuja3p7Q0E8Tsrknf05Uols1VQ2sUCMARTUdENLoFe2hXJUd/PL5wX ajUciVObpSUpjA== -----END CERTIFICATE-----Generated at Sat Nov 15 18:21:15 2025 by rpki-client