
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: aXLpoDsAWZ7NXV6v+S7VC+LXQcgXKQhr4nMYUZGCz5s=
Subject key identifier: BF:44:F0:F5:12:42:6C:B2:69:FA:18:BB:6F:17:52:88:BC:8C:A9:10
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019A883FA1413D93D809B5A611F3A6AACD55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0B45
Signing time: Sat 15 Nov 2025 16:01:02 +0000
Manifest this update: Sat 15 Nov 2025 16:01:02 +0000
Manifest next update: Sun 16 Nov 2025 16:01:02 +0000
Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=)
2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: nGJJ2TCL0DtcR85MHmD33SoYLjZepkrL4ngzcEjVuNo=)
3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=)
4: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=)
5: HHx5PgT40c8odAvxk1P-fxWePlA.roa (hash: zPsSrq/ptkyDcwkMCUxFQsAp1K70phIRO2z3d5q6bK8=)
6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=)
7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=)
8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=)
9: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=)
10: wWtKIfnyuy5Pwsg7v1x01k_AkAs.roa (hash: 9+2f6OaYEE6gwGcro5Uy8iHzJQ0Asb4j3ndklknXQsA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Nov 2025 12:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:88:3f:a1:41:3d:93:d8:09:b5:a6:11:f3:a6:aa:cd:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Nov 15 16:01:02 2025 GMT
Not After : Nov 16 16:01:02 2025 GMT
Subject: CN=bf44f0f512426cb269fa18bb6f175288bc8ca910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f9:47:2c:0b:f8:a9:98:69:32:5c:be:2c:24:
b5:cd:93:e5:bf:4a:b5:61:d3:e0:e8:fe:fc:e7:cf:
60:3d:e3:06:99:7a:c3:70:af:9c:a6:cb:21:99:5d:
24:ef:45:01:44:6c:ba:e9:e7:25:ec:f7:e3:ce:be:
f7:0c:1d:e1:f1:8f:ed:f4:77:ae:98:c0:49:73:48:
ce:46:4c:8e:d0:ad:ec:ab:a1:7a:0a:28:88:8a:0f:
e3:bd:4c:14:69:86:d4:37:1b:66:7a:50:eb:c7:09:
10:37:a2:fb:d6:3e:17:2b:e0:9f:66:53:f1:e5:68:
bb:78:d6:5d:ba:65:1c:c1:0a:26:ba:7e:5e:4d:f3:
ee:e3:f6:d2:ee:bd:cc:17:c7:b0:08:50:d0:fe:ab:
84:0d:21:17:de:00:5d:23:2c:c3:eb:07:1b:41:7d:
62:5e:8c:28:33:c6:df:bf:67:80:7b:1f:37:9b:64:
23:2d:a1:4d:47:0f:d0:9a:11:4d:ed:df:4a:a3:87:
c5:7d:aa:be:10:cf:49:2e:aa:bc:b2:4d:69:2e:18:
cc:4c:c9:98:b3:66:a3:cd:d6:51:f2:b0:9e:74:e5:
05:53:74:4e:19:33:09:68:76:b4:60:db:68:3c:0d:
bd:bd:ff:da:6d:ad:c0:bf:fd:d5:08:1f:c3:1d:28:
8c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:44:F0:F5:12:42:6C:B2:69:FA:18:BB:6F:17:52:88:BC:8C:A9:10
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:33:34:5e:2c:af:cd:f0:9d:c1:36:da:13:2f:9e:3d:3f:6f:
88:90:91:e6:47:ca:65:4f:dc:ed:a3:78:92:06:69:b0:4d:0d:
a1:8f:9b:77:a1:32:6a:09:c5:14:81:fc:2b:91:bb:19:05:d1:
97:8d:81:59:93:cf:8f:a3:7c:e8:01:11:80:82:a9:6e:a6:74:
7f:17:40:d0:49:b2:68:16:01:0e:54:7a:03:44:6c:c5:7a:a2:
e0:67:45:72:bf:ca:1e:58:e6:a6:36:21:b9:ca:b8:16:27:33:
70:a3:84:fe:0b:b9:20:0b:bf:13:1b:dc:c7:7b:11:52:3c:ed:
69:b1:09:e4:34:53:38:d2:ff:f2:4a:ed:57:c1:9a:cd:54:df:
be:b4:ec:a1:93:c7:f1:6d:59:17:76:92:e7:b9:a5:47:1c:f9:
90:76:e3:52:00:3f:d8:9d:fd:76:c9:5b:b5:a6:22:78:ef:be:
e3:90:5b:ee:55:99:51:36:86:b6:8b:6f:be:c7:32:84:6d:00:
fa:eb:fb:6e:bb:3f:7b:ac:6e:8d:ad:e9:ed:0d:04:f1:3b:2b:
92:77:f4:e5:4a:25:b3:55:50:da:c5:02:30:04:53:51:d1:0d:
2e:81:5e:da:15:c9:51:df:cf:2f:9c:17:6a:35:1c:89:53:9b:
a5:25:29:8c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZqIP6FBPZPYCbWmEfOmqs1VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1
NmRiZmQwHhcNMjUxMTE1MTYwMTAyWhcNMjUxMTE2MTYwMTAyWjAzMTEwLwYDVQQD
EyhiZjQ0ZjBmNTEyNDI2Y2IyNjlmYTE4YmI2ZjE3NTI4OGJjOGNhOTEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApflHLAv4qZhpMly+LCS1zZPlv0q1
YdPg6P78589gPeMGmXrDcK+cpsshmV0k70UBRGy66ecl7Pfjzr73DB3h8Y/t9Heu
mMBJc0jORkyO0K3sq6F6CiiIig/jvUwUaYbUNxtmelDrxwkQN6L71j4XK+CfZlPx
5Wi7eNZdumUcwQomun5eTfPu4/bS7r3MF8ewCFDQ/quEDSEX3gBdIyzD6wcbQX1i
XowoM8bfv2eAex83m2QjLaFNRw/QmhFN7d9Ko4fFfaq+EM9JLqq8sk1pLhjMTMmY
s2ajzdZR8rCedOUFU3ROGTMJaHa0YNtoPA29vf/aba3Av/3VCB/DHSiMLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL9E8PUSQmyyafoYu28XUoi8jKkQMB8GA1UdIwQY
MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt
ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm
LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGDM0Xiyv
zfCdwTbaEy+ePT9viJCR5kfKZU/c7aN4kgZpsE0NoY+bd6EyagnFFIH8K5G7GQXR
l42BWZPPj6N86AERgIKpbqZ0fxdA0EmyaBYBDlR6A0RsxXqi4GdFcr/KHljmpjYh
ucq4FiczcKOE/gu5IAu/Exvcx3sRUjztabEJ5DRTONL/8krtV8GazVTfvrTsoZPH
8W1ZF3aS57mlRxz5kHbjUgA/2J39dslbtaYieO++45Bb7lWZUTaGtotvvscyhG0A
+uv7brs/e6xuja3p7Q0E8Tsrknf05Uols1VQ2sUCMARTUdENLoFe2hXJUd/PL5wX
ajUciVObpSUpjA==
-----END CERTIFICATE-----
Generated at Sat Nov 15 18:21:15 2025 by rpki-client