$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft File: Y2O7ZYlfOlSksyShDHmsmO_ioco.mft (raw, json) Hash identifier: aw66lF/T5CI+P/FjMERNrrQ9/OMMK3H0ICqF/DHksUI= Subject key identifier: 49:70:6A:2D:9E:D6:62:DC:53:FE:35:1F:28:12:50:5B:0C:33:24:8D Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Certificate serial: 019874192DDD8156933EA8F0B8CBB44216E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft Manifest number: 0F71 Signing time: Mon 04 Aug 2025 08:01:03 +0000 Manifest this update: Mon 04 Aug 2025 08:01:03 +0000 Manifest next update: Tue 05 Aug 2025 08:01:03 +0000 Files and hashes: 1: 1-YME93lc1AWh4-bMqvVDZYenQg0.roa (hash: Euu0W5ctvY2bfvnvaMrD1zBWGCi2DVPvkYQ6p9zTjts=) 2: B-5_egLdEl752iv9qxYdq8eosj8.roa (hash: Cdvp7KAkC+/9T90gVhhsMGICo5DVTrNIRp6EnoCK4JA=) 3: HdvJhluj0mmgaFdPVm0s0ofNMQM.roa (hash: p1LONhiWBtnwDM/uG7ENsu+2YSQKoESJAbc98yta6C4=) 4: PG5DPUzHhisMDmHNMi2OiyC4Krk.roa (hash: 5vgSE6xpOM3tTVvShPg0nfAqcYxZUDm3VYRogPEs1nM=) 5: QWifAQ3dSu8nhEAeOh_F1BphWro.roa (hash: itO7AV5EF/O+Sl0fYRa8cl6eA4q/nRa0iBG6sGElFQI=) 6: Y2O7ZYlfOlSksyShDHmsmO_ioco.crl (hash: bCTDX60+tcQ5zieP6ZrSVV/Spgaeil7o7NbqlzCLGgU=) 7: Z6ubH84vQbgEnifkNYkjjYx5LIg.roa (hash: A5Iyh12sixazcVNr3007j9RNY5bFIJZSLARvNvwI0hI=) 8: cWGszmobGgkTRu82roBLKR9vgkE.roa (hash: bXFzT/7+8yagPIwyKl0fdIxc7uJ/wfFRRzbV8w0a7yI=) 9: flrC_8zXbr01pJXgtmy__huZXOA.roa (hash: vzxZLPURPSKJVHe6QAWg0rqm4QhuQOuF7VBOWspThjA=) 10: nGntDaqcmONxUi1sd87UMvT9x4I.roa (hash: JUPdqbOgdaD6LXB1MI+aJwuym5PZcQO3ILLdGvRsfU8=) 11: nzJ1VVo_PG7VRYK1qXbMx1rFS50.roa (hash: /GaOWlamFjP2Dj79UI9A1USxEJfBxcpOsY5WVrDbQNw=) 12: p_iHNwwqh2be0OjT5JQIUHp4Uvs.roa (hash: iKYw9dWKEOaAlzn5AmL4rdC2+rWU6FDA6bFijDgxb2w=) 13: qXSDx6qMLmAkAg9CUQzF6i4iyY0.roa (hash: wdkB7sltE+pNfWEVP8+xe0pE2lM5C0vVvLdbwwyDf04=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 05 Aug 2025 08:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:74:19:2d:dd:81:56:93:3e:a8:f0:b8:cb:b4:42:16:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Validity Not Before: Aug 4 08:01:03 2025 GMT Not After : Aug 5 08:01:03 2025 GMT Subject: CN=49706a2d9ed662dc53fe351f2812505b0c33248d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:4e:69:68:78:1f:f0:28:9d:ad:2b:1e:33:e2: 5e:67:a7:95:e4:c6:70:74:4d:d8:5f:8b:e7:ee:79: 98:8c:0d:8a:c2:26:94:6a:fa:87:57:a5:e3:1d:5d: eb:62:72:1b:e0:cf:ca:c9:00:84:84:6c:ba:cb:d7: 8e:ae:bd:19:97:28:30:81:cc:e5:41:cc:0e:0c:50: 90:3d:b2:3c:4f:f6:4f:55:e4:81:8d:09:99:c7:b8: 1c:eb:fc:43:f7:f5:cb:35:71:a3:d5:00:c1:05:8c: 1a:c1:5d:c2:2d:18:e6:df:14:3a:51:02:60:6b:26: 53:79:4c:79:30:58:59:a1:fa:fc:96:f7:3b:7a:a2: 1d:e9:23:c6:ed:93:07:09:92:7d:6b:00:e2:56:0f: 4d:13:77:ea:0e:a8:c1:b7:29:5a:34:84:e5:06:42: b4:e9:3b:5f:65:fb:d9:3e:5e:f6:43:4f:db:3f:56: c4:0a:0f:ee:5d:6c:cf:df:bb:b6:bf:3a:86:42:5a: 6c:a5:54:15:04:34:3d:2e:0b:78:72:cc:33:ce:34: 81:13:6f:5e:2d:ca:39:2d:16:46:b2:01:42:a7:26: c1:27:78:bb:dd:f2:02:8f:ac:0f:2a:a7:92:20:ee: 4f:7e:97:d9:e3:9b:0a:86:46:3b:f1:e3:bc:7d:e9: 87:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:70:6A:2D:9E:D6:62:DC:53:FE:35:1F:28:12:50:5B:0C:33:24:8D X509v3 Authority Key Identifier: keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:2c:25:0c:b2:f0:37:cd:42:65:3c:a6:cd:ec:8b:37:cd:51: 32:18:15:76:be:a1:90:cd:a5:01:4f:e2:e0:c6:d5:41:2d:01: 06:36:65:bd:65:e2:0d:31:fd:b6:9d:13:5a:5a:0f:90:3b:1d: 71:41:c9:40:55:52:26:13:1f:51:28:93:13:c1:4e:9c:4a:fa: f4:12:ee:d4:31:d7:7c:b3:fd:d8:eb:b3:68:9b:5b:c5:7b:62: 77:d9:59:eb:cf:79:3e:e7:7c:e6:1c:1f:f2:38:b5:f3:c9:6d: 21:7c:a2:87:42:ae:11:2b:50:db:14:1d:f5:3c:d1:fa:ed:c8: a5:79:4b:b3:84:90:91:e9:b8:dc:23:97:d9:9f:92:7c:9f:f1: ee:7c:79:d8:9c:a3:ab:96:05:5a:12:0b:b7:8e:3b:9e:6e:17: 2e:af:78:f3:f8:87:0a:e9:8b:a8:2c:d7:d6:63:06:1c:97:13: d7:0e:64:3d:c7:d0:d8:65:90:3b:ab:12:d1:13:18:02:18:96: b1:1d:ba:6e:bc:2a:3d:70:c6:92:f6:d9:71:f4:18:b2:08:0a: 11:af:ad:a5:ce:43:00:d2:da:e3:c8:e6:cb:6f:6c:57:cc:45: 0b:ab:9e:a9:f0:19:65:18:ed:7a:9c:e1:bb:9c:01:1b:ee:d9: e2:63:ef:4e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZh0GS3dgVaTPqjwuMu0QhbmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNjNiYjY1ODk1ZjNhNTRhNGIzMjRhMTBjNzlhYzk4ZWZl MmExY2EwHhcNMjUwODA0MDgwMTAzWhcNMjUwODA1MDgwMTAzWjAzMTEwLwYDVQQD Eyg0OTcwNmEyZDllZDY2MmRjNTNmZTM1MWYyODEyNTA1YjBjMzMyNDhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA205paHgf8CidrSseM+JeZ6eV5MZw dE3YX4vn7nmYjA2KwiaUavqHV6XjHV3rYnIb4M/KyQCEhGy6y9eOrr0Zlygwgczl QcwODFCQPbI8T/ZPVeSBjQmZx7gc6/xD9/XLNXGj1QDBBYwawV3CLRjm3xQ6UQJg ayZTeUx5MFhZofr8lvc7eqId6SPG7ZMHCZJ9awDiVg9NE3fqDqjBtylaNITlBkK0 6TtfZfvZPl72Q0/bP1bECg/uXWzP37u2vzqGQlpspVQVBDQ9Lgt4cswzzjSBE29e Lco5LRZGsgFCpybBJ3i73fICj6wPKqeSIO5PfpfZ45sKhkY78eO8femHCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFElwai2e1mLcU/41HygSUFsMMySNMB8GA1UdIwQY MBaAFGNju2WJXzpUpLMkoQx5rJjv4qHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMt YTZjYTQ1NGRiMmQ3LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMtYTZjYTQ1NGRiMmQ3 LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJCwlDLLw N81CZTymzeyLN81RMhgVdr6hkM2lAU/i4MbVQS0BBjZlvWXiDTH9tp0TWloPkDsd cUHJQFVSJhMfUSiTE8FOnEr69BLu1DHXfLP92OuzaJtbxXtid9lZ6895Pud85hwf 8ji188ltIXyih0KuEStQ2xQd9TzR+u3IpXlLs4SQkem43COX2Z+SfJ/x7nx52Jyj q5YFWhILt447nm4XLq948/iHCumLqCzX1mMGHJcT1w5kPcfQ2GWQO6sS0RMYAhiW sR26brwqPXDGkvbZcfQYsggKEa+tpc5DANLa48jmy29sV8xFC6ueqfAZZRjtepzh u5wBG+7Z4mPvTg== -----END CERTIFICATE-----Generated at Mon Aug 4 14:00:19 2025 by rpki-client