$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft File: Y2O7ZYlfOlSksyShDHmsmO_ioco.mft (raw, json) Hash identifier: HaEvDWHbBsXoN6gzZjFkaYBsLl9eJiG9bsDBoz3nOnY= Subject key identifier: 66:9C:3B:7D:66:93:5E:46:94:67:2D:00:DD:67:21:C4:78:2C:AD:6C Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Certificate serial: 01976929B563810B4E812C9AC935C59951A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft Manifest number: 0EE2 Signing time: Fri 13 Jun 2025 12:00:30 +0000 Manifest this update: Fri 13 Jun 2025 12:00:30 +0000 Manifest next update: Sat 14 Jun 2025 12:00:30 +0000 Files and hashes: 1: 1-YME93lc1AWh4-bMqvVDZYenQg0.roa (hash: Euu0W5ctvY2bfvnvaMrD1zBWGCi2DVPvkYQ6p9zTjts=) 2: B-5_egLdEl752iv9qxYdq8eosj8.roa (hash: Cdvp7KAkC+/9T90gVhhsMGICo5DVTrNIRp6EnoCK4JA=) 3: HdvJhluj0mmgaFdPVm0s0ofNMQM.roa (hash: p1LONhiWBtnwDM/uG7ENsu+2YSQKoESJAbc98yta6C4=) 4: PG5DPUzHhisMDmHNMi2OiyC4Krk.roa (hash: 5vgSE6xpOM3tTVvShPg0nfAqcYxZUDm3VYRogPEs1nM=) 5: QWifAQ3dSu8nhEAeOh_F1BphWro.roa (hash: itO7AV5EF/O+Sl0fYRa8cl6eA4q/nRa0iBG6sGElFQI=) 6: Y2O7ZYlfOlSksyShDHmsmO_ioco.crl (hash: 7UFObaQ5UcymnTjalo6N2dO5aDC4UQ60g8mRMwIIlWI=) 7: _3Pc_4Bz2D0phEqm40JUBCMBOMs.roa (hash: jKpdz+/oy9afZUNmdPkZDx7RzPY3Ab/FuG9Hux6Exr8=) 8: cWGszmobGgkTRu82roBLKR9vgkE.roa (hash: bXFzT/7+8yagPIwyKl0fdIxc7uJ/wfFRRzbV8w0a7yI=) 9: flrC_8zXbr01pJXgtmy__huZXOA.roa (hash: vzxZLPURPSKJVHe6QAWg0rqm4QhuQOuF7VBOWspThjA=) 10: nGntDaqcmONxUi1sd87UMvT9x4I.roa (hash: JUPdqbOgdaD6LXB1MI+aJwuym5PZcQO3ILLdGvRsfU8=) 11: p_iHNwwqh2be0OjT5JQIUHp4Uvs.roa (hash: iKYw9dWKEOaAlzn5AmL4rdC2+rWU6FDA6bFijDgxb2w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 14 Jun 2025 12:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:69:29:b5:63:81:0b:4e:81:2c:9a:c9:35:c5:99:51:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Validity Not Before: Jun 13 12:00:30 2025 GMT Not After : Jun 14 12:00:30 2025 GMT Subject: CN=669c3b7d66935e4694672d00dd6721c4782cad6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:77:1b:f5:4f:71:d6:27:08:03:3a:cc:3e:7c: 29:3e:32:a3:e3:e2:6b:67:ca:9e:c5:36:8a:e8:24: 3c:13:cd:3a:01:81:8d:c0:69:cd:27:40:69:cc:06: f3:b5:25:bd:12:0d:70:6c:4a:ea:06:1d:aa:34:de: ea:cf:9a:e7:5e:e0:7a:0c:b8:03:94:7c:a6:9a:aa: 6a:04:76:d8:69:59:88:58:b3:58:a4:d4:1c:22:79: e2:ae:b3:cb:45:55:14:fc:cc:02:65:9c:21:d4:8a: e3:a5:56:80:67:9a:1a:72:8f:9a:65:f2:68:5d:46: 8f:87:c3:25:09:25:b6:8e:25:87:82:5b:0d:e1:be: 57:5c:2d:a5:16:ce:f5:61:67:bd:72:55:44:8d:5b: 0a:db:31:27:09:ec:af:b1:b3:fa:fd:8f:17:08:aa: c5:c1:48:40:09:52:e8:43:d1:9b:0b:ab:c6:fb:3e: fb:5d:f6:d2:96:4f:56:80:3a:52:b8:fc:d9:84:ed: 99:a2:3b:40:a6:64:e8:9c:26:5c:2d:1d:8d:4f:a1: 6e:aa:82:07:2e:4a:3e:40:71:e0:cf:0c:3e:fd:e7: 62:2d:27:d9:9f:1d:6d:04:bc:49:18:65:6b:e5:46: 6e:96:45:ad:02:f0:17:fa:23:69:25:d5:30:8a:89: f0:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:9C:3B:7D:66:93:5E:46:94:67:2D:00:DD:67:21:C4:78:2C:AD:6C X509v3 Authority Key Identifier: keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:19:7b:97:91:1d:3d:07:32:17:e5:54:6d:34:59:65:e3:9f: 18:8e:77:3e:5a:f8:d8:c0:59:d4:44:d5:30:b8:2a:cb:3b:d0: a8:63:c2:3f:2b:af:40:b0:a5:bc:3c:94:ef:12:88:65:f4:c2: ce:e0:0f:ef:60:26:44:3e:1c:c8:3f:c3:3c:85:19:57:96:b2: 40:10:e3:03:6c:ae:07:fc:e9:ae:ee:32:74:39:ca:a9:37:20: 41:82:50:79:55:bf:7e:4e:61:e8:6f:bb:d1:5f:72:80:66:7f: a2:e1:e6:50:50:9f:2b:ad:e6:d9:5d:5e:6e:94:19:94:6d:4a: a0:f3:ee:55:7b:46:97:e2:5e:20:11:82:3a:18:8d:9f:fb:e0: 9e:19:79:9e:2c:79:57:7a:d5:f2:85:f4:33:3b:1a:1a:ca:5f: dd:a9:58:41:5a:cb:58:c6:67:2c:06:ce:bb:c7:be:06:8b:70: 92:ba:00:ee:4e:4f:09:8e:49:ea:76:4a:93:16:9c:a8:54:62: fb:50:06:80:c7:c7:95:22:00:7b:95:df:c6:80:cc:00:1b:fb: aa:db:c3:33:0c:06:3e:ac:e2:a8:e8:a0:ff:b5:25:ff:26:ed: 30:d9:de:7f:39:85:f0:0f:d1:9a:a2:a1:93:ec:ad:f8:7c:96: fc:9e:a2:8d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdpKbVjgQtOgSyayTXFmVGlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNjNiYjY1ODk1ZjNhNTRhNGIzMjRhMTBjNzlhYzk4ZWZl MmExY2EwHhcNMjUwNjEzMTIwMDMwWhcNMjUwNjE0MTIwMDMwWjAzMTEwLwYDVQQD Eyg2NjljM2I3ZDY2OTM1ZTQ2OTQ2NzJkMDBkZDY3MjFjNDc4MmNhZDZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt3cb9U9x1icIAzrMPnwpPjKj4+Jr Z8qexTaK6CQ8E806AYGNwGnNJ0BpzAbztSW9Eg1wbErqBh2qNN7qz5rnXuB6DLgD lHymmqpqBHbYaVmIWLNYpNQcInnirrPLRVUU/MwCZZwh1IrjpVaAZ5oaco+aZfJo XUaPh8MlCSW2jiWHglsN4b5XXC2lFs71YWe9clVEjVsK2zEnCeyvsbP6/Y8XCKrF wUhACVLoQ9GbC6vG+z77XfbSlk9WgDpSuPzZhO2ZojtApmTonCZcLR2NT6FuqoIH Lko+QHHgzww+/ediLSfZnx1tBLxJGGVr5UZulkWtAvAX+iNpJdUwionwuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGacO31mk15GlGctAN1nIcR4LK1sMB8GA1UdIwQY MBaAFGNju2WJXzpUpLMkoQx5rJjv4qHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMt YTZjYTQ1NGRiMmQ3LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMtYTZjYTQ1NGRiMmQ3 LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGhl7l5Ed PQcyF+VUbTRZZeOfGI53Plr42MBZ1ETVMLgqyzvQqGPCPyuvQLClvDyU7xKIZfTC zuAP72AmRD4cyD/DPIUZV5ayQBDjA2yuB/zpru4ydDnKqTcgQYJQeVW/fk5h6G+7 0V9ygGZ/ouHmUFCfK63m2V1ebpQZlG1KoPPuVXtGl+JeIBGCOhiNn/vgnhl5nix5 V3rV8oX0MzsaGspf3alYQVrLWMZnLAbOu8e+BotwkroA7k5PCY5J6nZKkxacqFRi +1AGgMfHlSIAe5XfxoDMABv7qtvDMwwGPqziqOig/7Ul/ybtMNnefzmF8A/RmqKh k+yt+HyW/J6ijQ== -----END CERTIFICATE-----Generated at Fri Jun 13 18:57:34 2025 by rpki-client