$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: ENfbspfJT3Fbv9dxr/yKtMJRFOeYjySUeG1KNc6l0Fo= Subject key identifier: A3:ED:DA:1B:C5:3D:24:E7:58:A7:79:F0:2B:8E:60:46:54:C7:E3:77 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019EB9223A2E7A4619A0B19F8563D814D4AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0D80 Signing time: Fri 12 Jun 2026 00:01:28 +0000 Manifest this update: Fri 12 Jun 2026 00:01:28 +0000 Manifest next update: Sat 13 Jun 2026 00:01:28 +0000 Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: nKGPn3aY56nKIQv7WeDfb0eZKt80WNktyXLju7IS3j8=) 2: EOj3AgYdcchPeXzFo3MmkUnpC5c.roa (hash: UJxOCXl/zk57bLmMvjQmQo6So76eGqObXBhqM5bOFjU=) 3: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 4: OZaDQ0hXuyPtXw0MMtiK4i0Z5Cc.roa (hash: NUQ/hLaY/s6wtpegscjb37Ii8FsiiXqqFFzr8BzeZgs=) 5: PXUEThXrMGouCYgr_yi3-daiDvE.roa (hash: iv3ZI6ycGYw3gyGWXsZNQzdt8OIK73JOyd7SS9lf5Dk=) 6: StKopN7mKY_G686fwWfLGQIs1ZE.roa (hash: Lt0qVcoh5gF6hn1K+QcayMd775gMjWFzF0XYTOVMzcE=) 7: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=) 8: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 9: m2aCEWRSbYINPhfk7dIfOHcCZMQ.roa (hash: zF+FldUbeFBdo73eCEVXfBTgillyEx/Bek9AHg5vsQM=) 10: mMhcTAUsEq-DNycXZbZCJR0srtQ.roa (hash: IfB3ppygA/MuKvduBRn6Oad+w/QpUoS9p6uwhj/GpXM=) 11: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 12: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 00:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:b9:22:3a:2e:7a:46:19:a0:b1:9f:85:63:d8:14:d4:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jun 12 00:01:28 2026 GMT Not After : Jun 13 00:01:28 2026 GMT Subject: CN=a3edda1bc53d24e758a779f02b8e604654c7e377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:74:b9:3d:b1:1c:28:b5:26:33:8a:0a:59:ee: ac:2f:47:80:b9:1f:4d:0a:b2:74:56:e1:76:d1:e9: 69:c8:12:84:ca:95:6b:80:5e:ca:b3:13:b7:65:61: cf:71:5d:42:50:06:7c:0c:18:35:84:84:61:db:9f: 36:8c:29:ed:af:c5:ef:e0:a9:09:74:f6:f4:ad:bd: 59:d2:92:04:13:ca:24:fc:9a:4d:4c:57:65:5c:75: 1d:41:16:17:c4:d4:c6:63:62:ef:70:d8:4d:95:88: c2:e6:42:8e:95:da:24:41:d4:57:21:63:6e:f0:2e: 05:3b:9f:d7:99:23:c4:3f:0e:2b:58:50:8d:32:33: d0:c5:21:e8:e3:78:25:e9:19:ea:9b:88:e1:9e:55: c9:b5:22:f1:47:8e:73:e4:9b:09:64:1f:d9:32:98: 92:89:74:1e:8a:7e:4f:0f:88:ae:63:c8:13:14:ae: 9e:e0:b7:d5:a1:fb:da:e5:83:17:ae:87:18:a6:24: cd:9d:44:dc:26:23:bb:c1:b5:22:8d:5f:22:aa:06: fb:84:4d:52:15:04:61:ee:31:65:74:48:b2:da:d1: 64:12:bb:34:d6:fe:9d:05:72:6b:7d:21:48:ca:55: 48:3c:1e:a5:94:7c:77:ef:06:89:7f:37:51:86:61: c5:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:ED:DA:1B:C5:3D:24:E7:58:A7:79:F0:2B:8E:60:46:54:C7:E3:77 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:22:e4:bf:41:da:78:80:a3:fe:cd:41:8b:4f:96:38:72:1f: 2a:3d:da:ba:08:37:00:e4:0b:d5:a8:5a:47:ec:b6:da:28:65: 12:4a:ad:52:1d:a8:e1:91:91:f8:91:3d:17:8e:27:31:af:b1: 8a:71:d0:7f:ba:2f:86:d0:e7:61:c8:9d:3b:c6:af:a9:09:35: 4f:ed:bf:5a:ef:7a:8e:9e:65:9a:45:d3:7d:5e:68:18:9b:48: c9:de:f6:97:8f:7b:98:f1:ae:78:ff:ad:aa:38:44:79:bb:dc: 8e:ec:11:9a:b6:09:50:46:9b:e5:a7:dd:bd:ef:2d:ee:74:ea: 86:3d:8c:13:d3:b5:0f:a1:cc:bf:f4:81:a2:54:a2:60:cc:8f: c1:6c:bd:2f:c9:d5:81:08:bf:aa:d4:82:a8:6d:1b:9b:17:80: 5d:81:59:c9:fa:c8:31:33:2f:72:1f:6f:4a:ae:58:0a:26:cc: fd:64:88:2c:9f:d0:0d:9f:b0:6d:5e:bf:7c:79:6a:56:f9:66: 62:1d:66:af:27:32:15:7c:0f:24:6c:41:f3:80:63:e7:98:d3: 22:88:a3:f0:1b:45:fa:01:d3:39:93:46:63:0b:9a:82:5a:80: 54:89:1b:6f:0c:92:e9:4f:09:e8:74:1a:5f:ac:98:87:9a:44: bd:9a:30:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ65IjouekYZoLGfhWPYFNSvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwNjEyMDAwMTI4WhcNMjYwNjEzMDAwMTI4WjAzMTEwLwYDVQQD EyhhM2VkZGExYmM1M2QyNGU3NThhNzc5ZjAyYjhlNjA0NjU0YzdlMzc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA63S5PbEcKLUmM4oKWe6sL0eAuR9N CrJ0VuF20elpyBKEypVrgF7KsxO3ZWHPcV1CUAZ8DBg1hIRh2582jCntr8Xv4KkJ dPb0rb1Z0pIEE8ok/JpNTFdlXHUdQRYXxNTGY2LvcNhNlYjC5kKOldokQdRXIWNu 8C4FO5/XmSPEPw4rWFCNMjPQxSHo43gl6Rnqm4jhnlXJtSLxR45z5JsJZB/ZMpiS iXQein5PD4iuY8gTFK6e4LfVofva5YMXrocYpiTNnUTcJiO7wbUijV8iqgb7hE1S FQRh7jFldEiy2tFkErs01v6dBXJrfSFIylVIPB6llHx37waJfzdRhmHFaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKPt2hvFPSTnWKd58CuOYEZUx+N3MB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATCLkv0Ha eICj/s1Bi0+WOHIfKj3augg3AOQL1ahaR+y22ihlEkqtUh2o4ZGR+JE9F44nMa+x inHQf7ovhtDnYcidO8avqQk1T+2/Wu96jp5lmkXTfV5oGJtIyd72l497mPGueP+t qjhEebvcjuwRmrYJUEab5afdve8t7nTqhj2ME9O1D6HMv/SBolSiYMyPwWy9L8nV gQi/qtSCqG0bmxeAXYFZyfrIMTMvch9vSq5YCibM/WSILJ/QDZ+wbV6/fHlqVvlm Yh1mrycyFXwPJGxB84Bj55jTIoij8BtF+gHTOZNGYwuaglqAVIkbbwyS6U8J6HQa X6yYh5pEvZowyw== -----END CERTIFICATE-----Generated at Fri Jun 12 10:24:04 2026 by rpki-client