$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft File: Y2O7ZYlfOlSksyShDHmsmO_ioco.mft (raw, json) Hash identifier: B++Jk9isjPKIYlyuBoJeXs/mI38mWEzsC+9kuH0VXWs= Subject key identifier: 12:62:2D:7B:10:70:99:A0:A5:A3:CA:99:DF:D6:49:C7:5E:9A:61:C5 Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Certificate serial: 019EBE484DBCCC6BBFC0553B36F1E695976A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft Manifest number: 12C0 Signing time: Sat 13 Jun 2026 00:01:09 +0000 Manifest this update: Sat 13 Jun 2026 00:01:09 +0000 Manifest next update: Sun 14 Jun 2026 00:01:09 +0000 Files and hashes: 1: 0qcRgVORJ6l9UlTI2CKPLzjbfog.roa (hash: wvJhHDw0n2QTgzGbPUH8xt0FfoOscXlBHhG0tJvFt98=) 2: 2EkuPAqVHEWEKp6ASw2K5zmACQk.roa (hash: n72y5YkbbuFUJAYmxmxnzR7f3ZsUZLnhTxeGIE67Cko=) 3: FLjvYn5Mu6OSQ1vmJsficIZ3oAg.roa (hash: WAKAnnjMgQbJs7Wfu2NA1DQe3FG0M4jG7s2jCVV8t08=) 4: LKqcV__iHBkuJmHBTgVTMKe7jfs.roa (hash: LzRNG01pbqOOrg9Ke+0IrSjljXKIcSklaBxsB5gc1AU=) 5: PxxNVNL5BOB3QrAZZvS5ahJKLOQ.roa (hash: tFLry/v07lnhSlHBjf2oO0BxwozcI2XhOgOvdmFzcjY=) 6: U74ViGODTud33ngPAmj4w73NK6o.roa (hash: 8g7ud1guSPB+L+sklXn8DfQQ/RtzcbmpgZcJ8hWX/2M=) 7: Uu6kgZoXxkmNniYXRrRma31jomI.roa (hash: SRpT2c+ZtineJthFU2Lj326eHBfCWg/PI6AuJE6p0HE=) 8: Y2O7ZYlfOlSksyShDHmsmO_ioco.crl (hash: m4/Q9nYPt8d5gVMpcrrTGIspvi3tdUmfj44Fd0A2jKs=) 9: ajUdjtPuTYK4cJ-GDNgzwU_V7QU.roa (hash: zq0p6TTpyxJr1rlBswAzuDS0To2T7g83akxmSzfwXWY=) 10: esQiMgPaySQVW0k54pO3jc5Zyuc.roa (hash: 2aftWcOZmt2bVeY6qt170y22emZnUo4u4rs+oiqH7rU=) 11: ikf3_u9Wu_UNk6ihdRqAXnsXeWA.roa (hash: spXBGwPpS5VGNMfJIEd9bR+FvD0p9WrBQ4QDpFz4ZGo=) 12: n9NpVtjQ4CgC347DPdZBbkrl1rk.roa (hash: F/VcD/rkVFmMD8EIR8zYpeskYz8L7PTmG19l/6//DPo=) 13: qzDK1lhCM39SxM8PACxbyKkom_M.roa (hash: nfWxgyb2gt4+A8mM3hL0XhTI+0dXdf9+3PuS2IdhMMY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 00:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:be:48:4d:bc:cc:6b:bf:c0:55:3b:36:f1:e6:95:97:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Validity Not Before: Jun 13 00:01:09 2026 GMT Not After : Jun 14 00:01:09 2026 GMT Subject: CN=12622d7b107099a0a5a3ca99dfd649c75e9a61c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:d9:0e:c3:8d:13:37:4d:20:e6:4b:78:43:09: 60:bd:a1:49:09:86:2c:bc:b0:18:a7:65:c9:37:f4: 14:1e:3b:29:b9:ec:9a:b1:de:d2:64:3a:11:a8:00: f6:38:11:54:01:78:c1:60:2b:d4:fb:71:e4:52:dd: 8b:eb:ea:34:c9:09:46:26:7e:23:ca:5f:4e:a8:b6: 80:36:85:49:b7:ee:ef:08:c9:30:a9:10:d7:6d:bf: 90:32:1c:ea:6d:1f:52:15:22:5d:9c:70:78:f8:ec: c1:99:24:70:aa:4e:84:cb:b0:43:9b:00:85:c3:ac: 24:56:e4:a9:d8:ae:ec:7d:e5:cf:89:70:ed:68:54: 7f:08:b7:65:0a:ce:f6:b2:0d:41:05:81:61:e2:c9: 0b:3e:a7:56:d4:8a:98:81:f3:5b:f1:b6:f6:dd:61: 96:8c:1b:22:65:7a:03:d2:6e:f8:ef:c0:5b:70:ad: 53:cf:b2:77:86:4f:40:c5:46:e5:58:08:e3:bd:a4: dd:eb:c8:ae:1e:57:41:23:6a:f2:97:83:38:ea:6d: 21:91:a1:d4:b9:3e:e0:91:c2:b2:55:e2:0b:c9:56: 36:54:36:f6:e3:04:f2:37:00:cc:4d:ac:29:78:8c: 60:60:e4:22:d9:9e:0b:06:ba:10:7f:32:d6:1a:2f: 6e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:62:2D:7B:10:70:99:A0:A5:A3:CA:99:DF:D6:49:C7:5E:9A:61:C5 X509v3 Authority Key Identifier: keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:07:26:63:ab:ee:69:b7:a5:ae:1c:d5:ae:47:a3:1d:99:ee: 7e:83:ad:f3:a5:6e:d2:18:7a:07:14:0d:4f:3c:b1:c2:9c:51: e1:5d:e9:89:51:98:f9:24:8e:2a:46:3c:bf:3c:31:1e:1d:97: 2d:f7:fc:84:b5:e7:a1:c9:52:f8:4c:19:d0:c9:c6:f6:d3:24: 07:34:2b:9f:9d:86:b3:14:71:51:63:d6:61:a0:37:57:79:57: 70:8b:a8:68:6e:15:73:e7:f8:e3:3e:fe:60:4c:1d:0f:6e:38: 0e:12:5f:f7:05:cd:0f:08:0c:22:7a:c4:9e:fb:1b:b2:d8:2f: 33:e1:a4:b6:81:86:eb:af:a7:19:56:11:c1:03:3c:be:b1:21: 05:18:94:a9:96:33:e0:05:a4:b3:69:29:81:84:ca:5a:26:31: ad:07:96:26:2f:2b:83:40:f7:95:92:b4:c3:a9:6d:8a:83:42: c8:74:a4:cb:b2:f8:30:96:1e:33:84:ff:d0:7e:1f:1c:2a:4f: 15:1c:9a:b8:e1:fe:aa:28:f7:24:54:34:c2:81:50:d0:36:7c: 38:5c:dd:91:f5:8c:86:70:16:c7:ea:97:ab:3f:f8:bc:18:1a: 39:5b:0b:27:3f:5d:0b:8c:ae:63:b0:ba:c8:d5:10:9d:75:7d: c0:09:a3:df -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ6+SE28zGu/wFU7NvHmlZdqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNjNiYjY1ODk1ZjNhNTRhNGIzMjRhMTBjNzlhYzk4ZWZl MmExY2EwHhcNMjYwNjEzMDAwMTA5WhcNMjYwNjE0MDAwMTA5WjAzMTEwLwYDVQQD EygxMjYyMmQ3YjEwNzA5OWEwYTVhM2NhOTlkZmQ2NDljNzVlOWE2MWM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9dkOw40TN00g5kt4QwlgvaFJCYYs vLAYp2XJN/QUHjspueyasd7SZDoRqAD2OBFUAXjBYCvU+3HkUt2L6+o0yQlGJn4j yl9OqLaANoVJt+7vCMkwqRDXbb+QMhzqbR9SFSJdnHB4+OzBmSRwqk6Ey7BDmwCF w6wkVuSp2K7sfeXPiXDtaFR/CLdlCs72sg1BBYFh4skLPqdW1IqYgfNb8bb23WGW jBsiZXoD0m7478BbcK1Tz7J3hk9AxUblWAjjvaTd68iuHldBI2ryl4M46m0hkaHU uT7gkcKyVeILyVY2VDb24wTyNwDMTawpeIxgYOQi2Z4LBroQfzLWGi9u4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBJiLXsQcJmgpaPKmd/WScdemmHFMB8GA1UdIwQY MBaAFGNju2WJXzpUpLMkoQx5rJjv4qHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMt YTZjYTQ1NGRiMmQ3LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMtYTZjYTQ1NGRiMmQ3 LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaAcmY6vu abelrhzVrkejHZnufoOt86Vu0hh6BxQNTzyxwpxR4V3piVGY+SSOKkY8vzwxHh2X Lff8hLXnoclS+EwZ0MnG9tMkBzQrn52GsxRxUWPWYaA3V3lXcIuoaG4Vc+f44z7+ YEwdD244DhJf9wXNDwgMInrEnvsbstgvM+GktoGG66+nGVYRwQM8vrEhBRiUqZYz 4AWks2kpgYTKWiYxrQeWJi8rg0D3lZK0w6ltioNCyHSky7L4MJYeM4T/0H4fHCpP FRyauOH+qij3JFQ0woFQ0DZ8OFzdkfWMhnAWx+qXqz/4vBgaOVsLJz9dC4yuY7C6 yNUQnXV9wAmj3w== -----END CERTIFICATE-----Generated at Sat Jun 13 08:27:18 2026 by rpki-client