$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: h8a9W57esdPOI6dihr5viWbzK3AcqLHM9Bzkaj+KxbI= Subject key identifier: 39:AD:3E:3B:A3:CE:C9:75:9A:A6:DB:C5:16:78:B1:70:C0:7D:CC:9F Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019E7AE77C117F55A41E4BCAF85259B440DD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0D5E Signing time: Sat 30 May 2026 22:00:51 +0000 Manifest this update: Sat 30 May 2026 22:00:51 +0000 Manifest next update: Sun 31 May 2026 22:00:51 +0000 Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: V+dN4W/vOi1FRMYhCMcXzwhu5v4tkDX3aYk5MOpAWN0=) 2: EOj3AgYdcchPeXzFo3MmkUnpC5c.roa (hash: UJxOCXl/zk57bLmMvjQmQo6So76eGqObXBhqM5bOFjU=) 3: FWMBoEPbEZJ9LWll1hHdYguPc1Q.roa (hash: D3IyHTq+1EEVMSrIYYDUg4SrD3tjS/LwJPAsUzG8Cnk=) 4: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 5: NFV8_rlpMbYJWC5GtsaC08jVRLk.roa (hash: bXitEDnu53nb2nGB6+lObhnl3YIH0YhpwjL7l9qv+QU=) 6: OZaDQ0hXuyPtXw0MMtiK4i0Z5Cc.roa (hash: NUQ/hLaY/s6wtpegscjb37Ii8FsiiXqqFFzr8BzeZgs=) 7: Vfrj1CjwXIt_tA2vbVO6W0Q8sww.roa (hash: mvOhadzyYlNh3bwJh8QRN9BDoPYKpsh/DrQUaDTKRJg=) 8: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=) 9: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 10: m2aCEWRSbYINPhfk7dIfOHcCZMQ.roa (hash: zF+FldUbeFBdo73eCEVXfBTgillyEx/Bek9AHg5vsQM=) 11: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 12: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 31 May 2026 19:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:7a:e7:7c:11:7f:55:a4:1e:4b:ca:f8:52:59:b4:40:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: May 30 22:00:51 2026 GMT Not After : May 31 22:00:51 2026 GMT Subject: CN=39ad3e3ba3cec9759aa6dbc51678b170c07dcc9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d7:84:a6:9e:60:5f:6e:9a:23:bb:bb:4f:fa: 6f:da:82:dd:e8:9b:82:bc:25:cb:c1:51:e4:fb:67: b1:51:d5:75:21:fb:7d:7c:19:52:08:90:1f:51:0e: 6d:4a:42:76:79:e6:fd:e2:c2:a1:80:c5:6d:3a:8e: 2d:59:15:76:25:c6:32:fa:d0:05:c7:c2:d2:08:47: 77:4e:15:0f:7d:4a:73:29:dc:59:eb:b3:3c:56:db: 61:a2:a0:01:17:d7:31:97:a6:31:33:32:6e:82:b1: 8a:d0:9e:d7:e7:c1:b3:1d:09:d9:9c:45:15:0c:57: b4:e4:d9:ed:de:67:44:19:b9:c1:b7:82:3e:7b:9e: ea:b0:79:2c:9f:21:ab:1b:9a:40:a1:cf:96:d4:fd: d4:87:02:8f:5e:7a:0d:ee:ef:0f:80:ec:8e:d4:36: 71:b7:d6:98:cc:5b:5a:e1:50:4b:8d:d2:7e:db:4d: 96:0a:96:29:96:31:a3:ac:0e:32:0c:a2:e1:18:06: ee:41:55:8c:31:12:24:13:08:17:43:5e:e3:34:af: 56:6e:45:e9:08:e7:62:10:d8:34:47:31:c9:26:6f: df:f2:b8:3e:be:5b:7f:2b:0f:21:5d:67:b7:91:7e: 3e:4f:eb:8f:41:e3:4e:10:e2:6c:b5:53:32:d9:95: 63:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:AD:3E:3B:A3:CE:C9:75:9A:A6:DB:C5:16:78:B1:70:C0:7D:CC:9F X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:6d:47:48:d4:fd:c3:7e:3f:19:73:2d:c1:e2:a3:e1:fd:17: 24:79:99:f8:a0:05:9b:55:53:31:b4:57:e5:e3:5d:c9:5e:42: 6b:76:f7:df:9a:f2:f8:85:f7:52:37:04:00:d6:ec:d9:c7:be: 1d:08:11:ae:e1:31:45:fe:f5:d3:8e:9b:81:b6:f5:db:01:79: 44:5a:f0:0c:9d:9c:53:ff:e1:02:20:bc:f1:1a:56:d0:7f:a8: f3:4c:c1:09:66:33:52:c4:92:a2:40:91:9d:2f:96:4c:34:53: 2d:4c:a5:d9:73:76:45:7c:2f:d5:58:cc:11:5c:77:ad:aa:a8: 5b:bf:2b:34:ac:b2:67:c5:31:16:94:37:7f:87:c6:3a:3a:9d: e3:25:15:2b:f3:54:f4:2c:12:bd:3e:97:67:cb:ac:1a:23:83: e9:dc:22:51:15:dd:8b:17:a3:6f:b2:f2:e0:c5:03:b4:d2:bd: e8:bd:cf:a2:e4:ad:e6:95:7b:10:f2:32:19:1e:eb:7f:8a:f7: e2:75:6f:28:74:63:dd:67:30:0d:5f:b7:b9:4f:17:a2:b0:42: fe:d1:06:05:36:15:db:ca:0c:f5:0c:27:8d:80:21:cd:70:6a: 50:7b:ef:24:4e:8f:dd:8e:45:78:12:0d:d2:f5:b6:85:8e:f4: d5:87:1d:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ5653wRf1WkHkvK+FJZtEDdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwNTMwMjIwMDUxWhcNMjYwNTMxMjIwMDUxWjAzMTEwLwYDVQQD EygzOWFkM2UzYmEzY2VjOTc1OWFhNmRiYzUxNjc4YjE3MGMwN2RjYzlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx9eEpp5gX26aI7u7T/pv2oLd6JuC vCXLwVHk+2exUdV1Ift9fBlSCJAfUQ5tSkJ2eeb94sKhgMVtOo4tWRV2JcYy+tAF x8LSCEd3ThUPfUpzKdxZ67M8VtthoqABF9cxl6YxMzJugrGK0J7X58GzHQnZnEUV DFe05Nnt3mdEGbnBt4I+e57qsHksnyGrG5pAoc+W1P3UhwKPXnoN7u8PgOyO1DZx t9aYzFta4VBLjdJ+202WCpYpljGjrA4yDKLhGAbuQVWMMRIkEwgXQ17jNK9WbkXp COdiENg0RzHJJm/f8rg+vlt/Kw8hXWe3kX4+T+uPQeNOEOJstVMy2ZVjFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDmtPjujzsl1mqbbxRZ4sXDAfcyfMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEG1HSNT9 w34/GXMtweKj4f0XJHmZ+KAFm1VTMbRX5eNdyV5Ca3b335ry+IX3UjcEANbs2ce+ HQgRruExRf71046bgbb12wF5RFrwDJ2cU//hAiC88RpW0H+o80zBCWYzUsSSokCR nS+WTDRTLUyl2XN2RXwv1VjMEVx3raqoW78rNKyyZ8UxFpQ3f4fGOjqd4yUVK/NU 9CwSvT6XZ8usGiOD6dwiURXdixejb7Ly4MUDtNK96L3PouSt5pV7EPIyGR7rf4r3 4nVvKHRj3WcwDV+3uU8XorBC/tEGBTYV28oM9QwnjYAhzXBqUHvvJE6P3Y5FeBIN 0vW2hY701YcdWA== -----END CERTIFICATE-----Generated at Sun May 31 04:12:03 2026 by rpki-client