$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft File: Y2O7ZYlfOlSksyShDHmsmO_ioco.mft (raw, json) Hash identifier: Pwzigb+7/mEdolDieFuIHEixIqPYY3ys0O9/iyoF2/E= Subject key identifier: 12:5D:F8:61:82:4A:01:2E:DE:C9:BC:74:F7:A2:1D:7C:AB:1B:50:69 Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Certificate serial: 019A5187B093A4BD60599DD3B278104387E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft Manifest number: 106A Signing time: Wed 05 Nov 2025 01:00:38 +0000 Manifest this update: Wed 05 Nov 2025 01:00:38 +0000 Manifest next update: Thu 06 Nov 2025 01:00:38 +0000 Files and hashes: 1: 1-YME93lc1AWh4-bMqvVDZYenQg0.roa (hash: Euu0W5ctvY2bfvnvaMrD1zBWGCi2DVPvkYQ6p9zTjts=) 2: HdvJhluj0mmgaFdPVm0s0ofNMQM.roa (hash: p1LONhiWBtnwDM/uG7ENsu+2YSQKoESJAbc98yta6C4=) 3: PG5DPUzHhisMDmHNMi2OiyC4Krk.roa (hash: 5vgSE6xpOM3tTVvShPg0nfAqcYxZUDm3VYRogPEs1nM=) 4: QWifAQ3dSu8nhEAeOh_F1BphWro.roa (hash: itO7AV5EF/O+Sl0fYRa8cl6eA4q/nRa0iBG6sGElFQI=) 5: Y2O7ZYlfOlSksyShDHmsmO_ioco.crl (hash: h4D9guIrAFccLqPLhqprX2jka+Kdi3CyygCjM5d2ZQw=) 6: Z6ubH84vQbgEnifkNYkjjYx5LIg.roa (hash: A5Iyh12sixazcVNr3007j9RNY5bFIJZSLARvNvwI0hI=) 7: cWGszmobGgkTRu82roBLKR9vgkE.roa (hash: bXFzT/7+8yagPIwyKl0fdIxc7uJ/wfFRRzbV8w0a7yI=) 8: flrC_8zXbr01pJXgtmy__huZXOA.roa (hash: vzxZLPURPSKJVHe6QAWg0rqm4QhuQOuF7VBOWspThjA=) 9: lms_h40r3-LvmvS_QZG5u3K67Uw.roa (hash: sioeVX/bhxcVhyyVff9dr3QSj+48OLBpgP5/WVrFXzw=) 10: nGntDaqcmONxUi1sd87UMvT9x4I.roa (hash: JUPdqbOgdaD6LXB1MI+aJwuym5PZcQO3ILLdGvRsfU8=) 11: nzJ1VVo_PG7VRYK1qXbMx1rFS50.roa (hash: /GaOWlamFjP2Dj79UI9A1USxEJfBxcpOsY5WVrDbQNw=) 12: p_iHNwwqh2be0OjT5JQIUHp4Uvs.roa (hash: iKYw9dWKEOaAlzn5AmL4rdC2+rWU6FDA6bFijDgxb2w=) 13: qXSDx6qMLmAkAg9CUQzF6i4iyY0.roa (hash: wdkB7sltE+pNfWEVP8+xe0pE2lM5C0vVvLdbwwyDf04=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 18:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:51:87:b0:93:a4:bd:60:59:9d:d3:b2:78:10:43:87:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Validity Not Before: Nov 5 01:00:38 2025 GMT Not After : Nov 6 01:00:38 2025 GMT Subject: CN=125df861824a012edec9bc74f7a21d7cab1b5069 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:04:c3:92:92:97:67:cb:ea:e2:73:19:77:bf: 36:4f:c9:dc:82:59:de:05:43:97:af:0e:19:87:ab: 3d:0d:ab:bc:22:b4:36:6a:12:d3:a2:7e:7b:d9:cc: 00:46:33:93:b5:64:d2:d5:cf:60:14:d5:2b:f3:54: a1:11:11:86:a4:ed:59:51:8f:8d:e0:ff:1b:bf:87: 82:47:6f:cc:8e:49:2e:e8:88:9e:bb:b6:2e:54:15: c5:50:87:6c:20:11:15:0b:52:24:ca:cc:7e:e2:6a: c8:1e:cf:0d:d1:81:8d:9c:e8:27:6d:c0:76:85:e6: 86:2c:e3:c7:73:9c:74:75:fc:5d:79:6c:3e:4c:3f: 8a:24:c2:8b:77:a1:02:65:7f:1e:b7:62:6e:b6:36: e1:8b:0a:d2:99:6f:ee:6c:3f:0b:c0:7e:69:f0:29: 6c:bc:de:73:15:db:d1:07:11:d3:94:b2:67:a3:90: 0f:7c:b7:c3:ce:d6:9c:f5:41:75:33:48:ed:12:71: ff:db:29:82:c1:fd:80:a8:06:c4:b6:46:b7:6c:d1: ad:e3:d4:fe:5a:b7:48:42:fd:47:4b:16:88:4d:59: f7:11:20:49:91:91:af:2c:05:72:8d:12:f0:cc:9c: 9d:02:8b:68:7b:fd:37:22:d6:10:ef:dd:f6:81:e2: ac:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:5D:F8:61:82:4A:01:2E:DE:C9:BC:74:F7:A2:1D:7C:AB:1B:50:69 X509v3 Authority Key Identifier: keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:39:c0:2b:1a:3f:2d:bd:db:73:b5:ee:be:92:ef:9e:58:26: 16:ab:4e:29:fc:1f:e6:3a:79:72:b4:ff:08:58:08:5c:5a:56: 81:53:5e:85:d3:e0:24:5a:08:10:89:3f:96:e5:06:b4:a9:55: 74:40:79:3a:04:e3:43:cb:ad:61:39:59:6e:87:d5:5e:c5:25: 4f:39:dd:6e:d7:ac:83:67:09:dc:61:81:0a:9a:4b:72:b9:38: 9d:41:75:f4:4e:cb:30:bb:ec:30:5f:36:66:fc:0d:05:4e:9f: 1a:31:21:72:32:80:42:ef:46:22:46:f8:a6:39:08:59:6f:49: 65:ae:bd:b6:12:0e:76:c0:b6:4a:d6:a5:b9:0d:e1:77:6b:ce: 6a:5d:19:a5:63:dd:de:67:fb:d1:61:ba:58:86:2f:25:8c:56: af:b7:f8:cc:45:40:48:3c:4b:22:45:9a:61:37:72:74:d3:f4: 7f:50:55:e9:d4:ee:9d:4f:0e:4f:da:f5:a6:e9:cc:af:ef:1d: 15:04:81:59:94:39:06:a1:31:cb:92:e1:2d:eb:6a:11:9b:27: 09:5b:dc:db:60:06:06:99:3d:e2:05:dc:1e:2a:79:13:ba:24: ab:d9:6e:f4:8c:74:06:6e:97:1e:db:eb:61:04:40:e4:85:87: d8:d5:1e:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZpRh7CTpL1gWZ3TsngQQ4fkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNjNiYjY1ODk1ZjNhNTRhNGIzMjRhMTBjNzlhYzk4ZWZl MmExY2EwHhcNMjUxMTA1MDEwMDM4WhcNMjUxMTA2MDEwMDM4WjAzMTEwLwYDVQQD EygxMjVkZjg2MTgyNGEwMTJlZGVjOWJjNzRmN2EyMWQ3Y2FiMWI1MDY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwATDkpKXZ8vq4nMZd782T8ncglne BUOXrw4Zh6s9Dau8IrQ2ahLTon572cwARjOTtWTS1c9gFNUr81ShERGGpO1ZUY+N 4P8bv4eCR2/Mjkku6Iieu7YuVBXFUIdsIBEVC1Ikysx+4mrIHs8N0YGNnOgnbcB2 heaGLOPHc5x0dfxdeWw+TD+KJMKLd6ECZX8et2JutjbhiwrSmW/ubD8LwH5p8Cls vN5zFdvRBxHTlLJno5APfLfDztac9UF1M0jtEnH/2ymCwf2AqAbEtka3bNGt49T+ WrdIQv1HSxaITVn3ESBJkZGvLAVyjRLwzJydAotoe/03ItYQ7932geKsUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBJd+GGCSgEu3sm8dPeiHXyrG1BpMB8GA1UdIwQY MBaAFGNju2WJXzpUpLMkoQx5rJjv4qHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMt YTZjYTQ1NGRiMmQ3LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMtYTZjYTQ1NGRiMmQ3 LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlDnAKxo/ Lb3bc7XuvpLvnlgmFqtOKfwf5jp5crT/CFgIXFpWgVNehdPgJFoIEIk/luUGtKlV dEB5OgTjQ8utYTlZbofVXsUlTzndbtesg2cJ3GGBCppLcrk4nUF19E7LMLvsMF82 ZvwNBU6fGjEhcjKAQu9GIkb4pjkIWW9JZa69thIOdsC2StaluQ3hd2vOal0ZpWPd 3mf70WG6WIYvJYxWr7f4zEVASDxLIkWaYTdydNP0f1BV6dTunU8OT9r1punMr+8d FQSBWZQ5BqExy5LhLetqEZsnCVvc22AGBpk94gXcHip5E7okq9lu9Ix0Bm6XHtvr YQRA5IWH2NUekw== -----END CERTIFICATE-----Generated at Wed Nov 5 03:26:59 2025 by rpki-client