$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft File: zYMT5B5kagnNAeLm9HOdO9I2xP8.mft (raw, json) Hash identifier: 8TlB/6umYN2nzO0s11DZkpys8k3m8BThzvPCsbZBYQE= Subject key identifier: 12:81:2B:70:79:B4:63:15:B8:4C:37:84:93:08:9D:96:4C:47:6B:4A Authority key identifier: CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF Certificate issuer: /CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff Certificate serial: 019A210996373BAA32B707B4CC4F22683B1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft Manifest number: 1703 Signing time: Sun 26 Oct 2025 15:01:07 +0000 Manifest this update: Sun 26 Oct 2025 15:01:07 +0000 Manifest next update: Mon 27 Oct 2025 15:01:07 +0000 Files and hashes: 1: CMjm3mT93yGkp8LUoyzkdQ6l3EE.roa (hash: TkauNWMtnY8DBb4v5VsfB1yBCMV9bCsSOJxWA8/FXoo=) 2: HkTCrKZqDwa8EUL4YflDFIxvuSo.roa (hash: zO36rkW4iEPf0HW9ThqXz35RBy/UdvCTSm39AhOu1Wg=) 3: KcTcayFrsZLodbwf3DiREG7aMgQ.roa (hash: 8/vbDhWMe2EfxMGVicJi+/pUGnJZy6R4MjOjEjkxjUk=) 4: LsmwcIccA3zM4d7kxqt3XhLcSa0.roa (hash: 98WTFaz7XPqlrJj7+XyfBTJEw1Sf7UEiPzA9D8zWsIw=) 5: PneAThfusF70GWHWywmhFb0vzKg.roa (hash: 0kjnbKbpSjxRU2te032pdWFUGrUsCjxiyKJ48H1DPUU=) 6: QPCXSoVGqmo5YTCi73-CSDuyZ-M.roa (hash: BYlFE9CUTQ67gGcO7goW8z5RieIlu+Sp4h/7HCES0Bg=) 7: SYW7vJR8jh6OnS0xw0zxS3bgN60.roa (hash: RRdRxhUDlZPMyyr5BdAFCoJYcDMXRiJFFRNcVSSyJoQ=) 8: T-x5NWBWP7z0RtMavKGuf9lbyTk.roa (hash: 5meL33wuT4ICoWjsr5JwrdL6iizp93b+W5Vq2RQt4cs=) 9: YPhWBSPHGs5SvVUlaCiCKWmqFfE.roa (hash: 5GbYaE22J8Owy6TgFxnM856qPEXWo4AxIXtfMEPnMxs=) 10: Yqt3Kg8k1YJOv7s88RcINuiKaCE.roa (hash: nWZ5K8Cmhazakp99a9slUSDcrdtW/sXazmS+lE8qgb8=) 11: d-qZVEez3-tqSbLZHyKHdZ5qcJA.roa (hash: +81/qDkled7/tuehBezhqXR9TX8Qi/57Cwe4Hugu7Ps=) 12: e3hNMZozjl2a8wTj5jqUKt2netU.roa (hash: z65fVe11ggvNgyomVpHPZ3mT5uEYvV6n9cNO6WIVkOQ=) 13: jcSJxEfFuIOqv-vUuvBQckyf-ZI.roa (hash: V8+8ahCoa4BEtoKDRdWiWxQzrt5GRgWy4qkSi1g/uZs=) 14: lcN6tqSn03IPMO2AvpfpxpGgDQY.roa (hash: 8fvPqg+8qqIeW9Kd8tRNl8Xlys8MO8b9CTy9FA3u9tA=) 15: lzFclAiK-AKgH976Yl_uXg9r5wM.roa (hash: H/cy8Ymyjy+9oeeIlZQHYMPSRfjOx2uqFxTFGhSTiGE=) 16: oLt7xT_rHP-Hxh3lUeggtdVEvTs.roa (hash: hblIrYC6F95+wg2sH5P/uCfjsNRvIhmQ2s3oU6U1S/g=) 17: ogeSaiZjPO4Kd4PF4MmZ3E0M2dA.roa (hash: Y6nye2lCZkZiTnuBzh99LMq3fLt8LGMzc9QAvB3SwlM=) 18: p-aeeSEszU3aapQ0yEslN0bhQQ8.roa (hash: Mh/Q23651bJq9potJm5ecJKYPprCxzH57rPx/Ooy5iY=) 19: r40XtPdgr8Y3RxrHTUe0xVuomM0.roa (hash: t4ySxCeAxHkHkDK1q9KhuYpYVZshrBVi3KJ4uODs/8Q=) 20: rD4_vnlr510eZLzrr2aCnfyAvEE.roa (hash: dL+NP4nhH4zwWo5a+tL5dbCaIelO5RMTVy2uI8g69YI=) 21: rdclR5rmMPPiGdub64u9CAD4cr0.roa (hash: wXgXLOiDxEJK62XQ7DLJMuxi7/zXmFbGyGpgUuOv+8k=) 22: tNteV-bYipxacIdsneN2kRS27vI.roa (hash: DK40xOAWm2KZPWxZ02RGtb+aUbxm0wIjZBTHx/mZzWs=) 23: uzMFOnPKpMqU8CP0ss6Mpv56PiE.roa (hash: F8nsfvroSbli8FdaVZTheRyMCu5cUrtu6qwv9yns62A=) 24: zYMT5B5kagnNAeLm9HOdO9I2xP8.crl (hash: e9jDMGo8xiRXQr6CntN242EgYaObuCtYLaZvvmDuZYo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 27 Oct 2025 15:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:21:09:96:37:3b:aa:32:b7:07:b4:cc:4f:22:68:3b:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff Validity Not Before: Oct 26 15:01:07 2025 GMT Not After : Oct 27 15:01:07 2025 GMT Subject: CN=12812b7079b46315b84c378493089d964c476b4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5c:c1:66:8e:8d:04:b5:d2:e3:9b:26:4a:7a: 87:1b:42:da:4b:e9:30:f0:51:7a:a5:24:5f:3d:ec: 78:c4:98:4c:98:6f:60:5a:95:be:0a:a6:a7:cc:27: f7:a9:1d:16:92:86:c2:2d:7f:c6:31:44:94:29:d0: de:8a:e6:16:36:40:a8:ba:3e:38:d9:9d:9d:70:08: 72:d7:2f:b8:f1:33:96:c3:04:91:84:09:62:b2:66: 48:12:4b:21:9b:29:0a:b3:b2:cb:0b:a1:a6:09:71: 7f:b3:65:e2:27:79:66:a9:05:12:0f:13:b4:f2:5a: 02:f4:90:7a:97:0c:b2:da:5d:69:17:1f:f2:ab:47: 29:88:ca:83:a2:eb:0e:db:af:b8:17:a1:ba:39:89: 4b:cb:30:21:a1:2d:c2:3b:29:29:11:80:55:59:13: 98:76:e8:78:87:33:6a:7f:83:53:a4:57:b2:f4:64: 47:2b:0b:8a:2f:61:ba:91:e9:d4:24:a7:e8:94:8f: 3f:d3:c9:cd:3a:a6:a1:cc:34:0d:eb:14:21:37:83: be:70:d9:78:d4:af:ec:fe:21:98:fe:4a:a6:0f:47: ad:55:6c:67:52:08:80:e0:89:68:0c:8f:d2:18:2d: b2:e2:39:66:41:32:b3:1b:47:b2:f2:9f:0b:74:15: dd:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:81:2B:70:79:B4:63:15:B8:4C:37:84:93:08:9D:96:4C:47:6B:4A X509v3 Authority Key Identifier: keyid:CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:2e:53:b4:7b:44:83:39:fc:e0:00:dd:1e:67:11:2e:90:b6: 5b:6e:ee:9b:4a:34:44:e3:d0:3d:50:82:f4:fb:21:2c:91:d0: eb:96:76:25:ff:8b:a7:9e:0f:99:a0:b2:7a:53:10:7e:44:4a: 64:6c:2e:17:ed:50:35:a8:d1:28:bd:b5:ec:4e:fe:5e:59:3f: 43:e2:8b:e7:99:20:b9:86:cd:2d:fa:ab:58:91:28:88:57:af: 56:fe:d2:f7:57:1c:3c:9d:a0:7d:7a:4e:a7:d4:e3:02:89:9c: e5:43:c1:8a:c1:be:3f:04:17:53:26:04:51:03:15:8f:11:ee: f1:7b:d7:63:6b:f6:45:c3:91:d1:ff:54:24:12:e3:eb:f1:8a: 50:0f:77:0b:3e:26:ee:16:57:3d:14:89:06:fb:ba:5a:7c:67: 21:99:8c:a4:8c:c9:88:15:a7:a2:3d:9b:01:b1:cc:01:b1:e3: 03:ec:d1:6d:08:d7:35:43:08:e6:75:0e:ce:da:76:a3:1b:58: 30:c4:3a:ca:1e:31:78:8f:8a:b1:13:2d:6d:34:f4:b9:b6:b2: 56:34:e2:61:f2:53:78:fa:3f:35:b0:55:39:13:9e:25:77:f7: 91:f9:41:b3:83:bc:26:c4:31:cd:84:2b:31:1d:3b:9d:03:f5: fe:73:a1:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZohCZY3O6oytwe0zE8iaDsfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkODMxM2U0MWU2NDZhMDljZDAxZTJlNmY0NzM5ZDNiZDIz NmM0ZmYwHhcNMjUxMDI2MTUwMTA3WhcNMjUxMDI3MTUwMTA3WjAzMTEwLwYDVQQD EygxMjgxMmI3MDc5YjQ2MzE1Yjg0YzM3ODQ5MzA4OWQ5NjRjNDc2YjRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArVzBZo6NBLXS45smSnqHG0LaS+kw 8FF6pSRfPex4xJhMmG9gWpW+CqanzCf3qR0WkobCLX/GMUSUKdDeiuYWNkCouj44 2Z2dcAhy1y+48TOWwwSRhAlismZIEkshmykKs7LLC6GmCXF/s2XiJ3lmqQUSDxO0 8loC9JB6lwyy2l1pFx/yq0cpiMqDousO26+4F6G6OYlLyzAhoS3COykpEYBVWROY duh4hzNqf4NTpFey9GRHKwuKL2G6kenUJKfolI8/08nNOqahzDQN6xQhN4O+cNl4 1K/s/iGY/kqmD0etVWxnUgiA4IloDI/SGC2y4jlmQTKzG0ey8p8LdBXdNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBKBK3B5tGMVuEw3hJMInZZMR2tKMB8GA1UdIwQY MBaAFM2DE+QeZGoJzQHi5vRznTvSNsT/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQt ODg2MmI1MTczMTdjLzEvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQtODg2MmI1MTczMTdj LzEvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOi5TtHtE gzn84ADdHmcRLpC2W27um0o0ROPQPVCC9PshLJHQ65Z2Jf+Lp54PmaCyelMQfkRK ZGwuF+1QNajRKL217E7+Xlk/Q+KL55kguYbNLfqrWJEoiFevVv7S91ccPJ2gfXpO p9TjAomc5UPBisG+PwQXUyYEUQMVjxHu8XvXY2v2RcOR0f9UJBLj6/GKUA93Cz4m 7hZXPRSJBvu6WnxnIZmMpIzJiBWnoj2bAbHMAbHjA+zRbQjXNUMI5nUOztp2oxtY MMQ6yh4xeI+KsRMtbTT0ubayVjTiYfJTePo/NbBVOROeJXf3kflBs4O8JsQxzYQr MR07nQP1/nOhSQ== -----END CERTIFICATE-----Generated at Mon Oct 27 01:17:24 2025 by rpki-client