$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft File: Y2O7ZYlfOlSksyShDHmsmO_ioco.mft (raw, json) Hash identifier: ViZdO0xwXAPJS34w1jdhkC1kKOUhlyrh8++HIpytQCQ= Subject key identifier: CE:B8:DB:30:17:10:B1:0E:BC:35:93:F0:D7:32:F9:9D:80:55:F6:E1 Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Certificate serial: 019A4F9949F7CC86DE13DB2FD8361CD04CB4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft Manifest number: 1069 Signing time: Tue 04 Nov 2025 16:00:37 +0000 Manifest this update: Tue 04 Nov 2025 16:00:37 +0000 Manifest next update: Wed 05 Nov 2025 16:00:37 +0000 Files and hashes: 1: 1-YME93lc1AWh4-bMqvVDZYenQg0.roa (hash: Euu0W5ctvY2bfvnvaMrD1zBWGCi2DVPvkYQ6p9zTjts=) 2: HdvJhluj0mmgaFdPVm0s0ofNMQM.roa (hash: p1LONhiWBtnwDM/uG7ENsu+2YSQKoESJAbc98yta6C4=) 3: PG5DPUzHhisMDmHNMi2OiyC4Krk.roa (hash: 5vgSE6xpOM3tTVvShPg0nfAqcYxZUDm3VYRogPEs1nM=) 4: QWifAQ3dSu8nhEAeOh_F1BphWro.roa (hash: itO7AV5EF/O+Sl0fYRa8cl6eA4q/nRa0iBG6sGElFQI=) 5: Y2O7ZYlfOlSksyShDHmsmO_ioco.crl (hash: uBfR0YWIT86q9fokP++Zfyz8rdqFeilt6wUFNHhyrzw=) 6: Z6ubH84vQbgEnifkNYkjjYx5LIg.roa (hash: A5Iyh12sixazcVNr3007j9RNY5bFIJZSLARvNvwI0hI=) 7: cWGszmobGgkTRu82roBLKR9vgkE.roa (hash: bXFzT/7+8yagPIwyKl0fdIxc7uJ/wfFRRzbV8w0a7yI=) 8: flrC_8zXbr01pJXgtmy__huZXOA.roa (hash: vzxZLPURPSKJVHe6QAWg0rqm4QhuQOuF7VBOWspThjA=) 9: lms_h40r3-LvmvS_QZG5u3K67Uw.roa (hash: sioeVX/bhxcVhyyVff9dr3QSj+48OLBpgP5/WVrFXzw=) 10: nGntDaqcmONxUi1sd87UMvT9x4I.roa (hash: JUPdqbOgdaD6LXB1MI+aJwuym5PZcQO3ILLdGvRsfU8=) 11: nzJ1VVo_PG7VRYK1qXbMx1rFS50.roa (hash: /GaOWlamFjP2Dj79UI9A1USxEJfBxcpOsY5WVrDbQNw=) 12: p_iHNwwqh2be0OjT5JQIUHp4Uvs.roa (hash: iKYw9dWKEOaAlzn5AmL4rdC2+rWU6FDA6bFijDgxb2w=) 13: qXSDx6qMLmAkAg9CUQzF6i4iyY0.roa (hash: wdkB7sltE+pNfWEVP8+xe0pE2lM5C0vVvLdbwwyDf04=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 16:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:4f:99:49:f7:cc:86:de:13:db:2f:d8:36:1c:d0:4c:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Validity Not Before: Nov 4 16:00:37 2025 GMT Not After : Nov 5 16:00:37 2025 GMT Subject: CN=ceb8db301710b10ebc3593f0d732f99d8055f6e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f4:46:29:d8:e0:27:95:a9:e7:0d:47:a5:0c: 65:65:8a:ae:fe:93:aa:10:e1:ca:1c:89:bd:8c:61: e6:a2:92:37:12:27:73:8a:9c:31:55:c5:10:c6:52: c6:e3:6a:80:69:7a:ef:ec:35:73:39:6e:98:be:50: f8:f9:40:8b:fa:b1:77:01:13:d8:ea:60:19:2a:ce: 1f:12:a9:e5:bf:2e:6f:3d:f9:65:11:86:9f:aa:9f: 9c:36:a9:4c:a8:4c:f5:bc:43:d7:10:8b:a3:74:5f: 36:f9:2b:83:86:5e:ce:d8:7d:f5:31:18:a6:23:d4: 08:41:03:42:69:d5:1b:4c:e3:c7:56:3c:b0:a7:e5: db:eb:eb:b3:be:06:bf:93:78:3d:62:a4:8b:87:1c: 7c:6a:13:77:23:e2:ec:db:56:18:3d:5b:ae:16:aa: f6:9c:e7:65:00:b1:99:2d:68:93:db:eb:13:e5:ed: 62:56:2d:30:3e:22:f1:bf:05:cc:66:e6:07:e1:cc: 92:c9:db:65:fb:2b:30:cc:fd:c4:23:b0:06:4e:f2: 5e:6a:51:f1:4e:99:3c:dc:b7:13:49:55:0c:46:14: 16:94:e5:5c:5d:b4:b0:e1:19:4d:ff:41:7f:02:5d: 8c:63:a5:74:cc:61:ba:63:fb:f4:94:2a:05:cb:54: 7d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:B8:DB:30:17:10:B1:0E:BC:35:93:F0:D7:32:F9:9D:80:55:F6:E1 X509v3 Authority Key Identifier: keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:d5:da:83:5d:dd:b2:f6:0f:24:e5:4b:8b:83:20:31:a6:30: db:9d:ae:6e:40:23:0e:66:21:99:72:92:1a:88:63:24:4a:2d: 98:ba:3b:5e:cc:d4:d7:6a:ee:c0:70:fd:64:b4:e7:18:0d:28: 38:4b:34:f6:59:9a:5f:a3:24:fe:e8:c7:4d:1d:f0:85:7c:3d: e1:6d:4b:c0:72:fe:f4:54:b5:87:3f:f9:5e:99:4e:17:5f:3c: 2a:f6:c9:9d:51:b7:46:bf:c8:48:2f:72:64:19:2c:69:d2:a5: a2:c0:81:86:ae:f8:b7:7d:32:2d:05:a6:5b:8e:05:33:76:1c: 9f:42:55:bd:b0:0a:03:68:5f:fe:01:f0:4f:d6:69:66:20:62: 83:c4:bb:18:30:ba:8a:cf:60:0d:ab:ff:ff:c6:1e:8c:f0:ac: 58:d8:51:01:ec:92:a6:80:ff:05:ec:0c:21:6e:a0:13:f3:e3: 7c:d7:44:98:14:d9:10:72:5a:e9:74:7a:69:d8:b1:51:81:1e: d8:36:c6:8e:3d:e9:64:1d:08:47:56:29:41:f0:cc:1a:7c:f6: 77:89:6f:9d:7b:cb:e2:19:d1:94:c5:44:30:0c:59:2a:4f:be: 9d:c3:af:73:75:dc:10:e5:f1:c5:6f:b9:0a:4a:67:44:03:35: ca:fe:f5:f8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZpPmUn3zIbeE9sv2DYc0Ey0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNjNiYjY1ODk1ZjNhNTRhNGIzMjRhMTBjNzlhYzk4ZWZl MmExY2EwHhcNMjUxMTA0MTYwMDM3WhcNMjUxMTA1MTYwMDM3WjAzMTEwLwYDVQQD EyhjZWI4ZGIzMDE3MTBiMTBlYmMzNTkzZjBkNzMyZjk5ZDgwNTVmNmUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvfRGKdjgJ5Wp5w1HpQxlZYqu/pOq EOHKHIm9jGHmopI3EidzipwxVcUQxlLG42qAaXrv7DVzOW6YvlD4+UCL+rF3ARPY 6mAZKs4fEqnlvy5vPfllEYafqp+cNqlMqEz1vEPXEIujdF82+SuDhl7O2H31MRim I9QIQQNCadUbTOPHVjywp+Xb6+uzvga/k3g9YqSLhxx8ahN3I+Ls21YYPVuuFqr2 nOdlALGZLWiT2+sT5e1iVi0wPiLxvwXMZuYH4cySydtl+yswzP3EI7AGTvJealHx Tpk83LcTSVUMRhQWlOVcXbSw4RlN/0F/Al2MY6V0zGG6Y/v0lCoFy1R9ZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM642zAXELEOvDWT8Ncy+Z2AVfbhMB8GA1UdIwQY MBaAFGNju2WJXzpUpLMkoQx5rJjv4qHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMt YTZjYTQ1NGRiMmQ3LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMtYTZjYTQ1NGRiMmQ3 LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS9Xag13d svYPJOVLi4MgMaYw252ubkAjDmYhmXKSGohjJEotmLo7XszU12ruwHD9ZLTnGA0o OEs09lmaX6Mk/ujHTR3whXw94W1LwHL+9FS1hz/5XplOF188KvbJnVG3Rr/ISC9y ZBksadKlosCBhq74t30yLQWmW44FM3Ycn0JVvbAKA2hf/gHwT9ZpZiBig8S7GDC6 is9gDav//8YejPCsWNhRAeySpoD/BewMIW6gE/PjfNdEmBTZEHJa6XR6adixUYEe 2DbGjj3pZB0IR1YpQfDMGnz2d4lvnXvL4hnRlMVEMAxZKk++ncOvc3XcEOXxxW+5 CkpnRAM1yv71+A== -----END CERTIFICATE-----Generated at Tue Nov 4 22:55:27 2025 by rpki-client