$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft File: zYMT5B5kagnNAeLm9HOdO9I2xP8.mft (raw, json) Hash identifier: +lulMqdsazW+OBMJXauGXs92kZhHHxpU8lExGyKJrxo= Subject key identifier: 29:4F:F5:5A:95:0D:E4:9A:71:CA:65:D2:89:7B:EE:A6:85:C1:BC:10 Authority key identifier: CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF Certificate issuer: /CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff Certificate serial: 019DCE2B6466C0AFAAD33882A255E0738330 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft Manifest number: 18ED Signing time: Mon 27 Apr 2026 09:00:43 +0000 Manifest this update: Mon 27 Apr 2026 09:00:43 +0000 Manifest next update: Tue 28 Apr 2026 09:00:43 +0000 Files and hashes: 1: 6SfzyA20maGiI5XJBQeDm_u97nY.roa (hash: u3qBuRlWiB0K8K8vlPB1p6jUd1Xd8XzeiX/KEClwly8=) 2: 9FhDVq2bIcKPVT4-LNeLhleMtsU.roa (hash: 9KYuP3D+C7cw6iLbwhFcurqEz58uGe5Kg9G2sCqyt6U=) 3: DOxf14855Ag2AnO7jsSUueM5c-o.roa (hash: zgUJGFH5ZEpoQ9vBA8CvM2rtyQHfUvV/kzB3FtSEmYc=) 4: GGlyShlisJFPILLShUxi5K1FZvI.roa (hash: 8pEqvT44UHyALFkAUNaY4Zmjw5paANUkCryLrc0xDp0=) 5: GfgJL-lqR4cMbYOXW8gqE4t7HG4.roa (hash: kNPKoBDHTv7uxrRwNWkfM9yLpH77LlGXaUe+iObPj+0=) 6: GokcGb-P0NB7nLtMvW5A8ngZQgE.roa (hash: ZnAqIOIHh01hnkaJVPAholM5RdM/M+SxoO9A/Xev0yk=) 7: LFRJzkmgIAiGnpUGS9-bXzuIMLs.roa (hash: 46deT7TNnqX9MlHzhsUcZQAr19c/pEqoQrpaQ/72qGo=) 8: NbGRLoG_Gu4CVHGU2oYeQquSVC4.roa (hash: UI6Whsfm0XLotsIB2pUQkPKCVhCu0FIJUxPDYs/HA7Q=) 9: OhSGFuxiOE6u1yxeHuxozU-P634.roa (hash: 6Mmr2aFRyJOyiCmrE7LHa7GVo3hy9dAsRMv8rAlCtH8=) 10: PvCNmMuHcK2-0lwoP1YXz8fG1-4.roa (hash: ZcKVkYaVisIZB6lNJ9Oj7RdZ3ktv/iO+kT0iuJRn4G8=) 11: S7VSB8bMnzHem9-PYRKs7CJpYpg.roa (hash: Xkmt3ivNtM5U/VoznrjL63MFyqBi5WkWlVP9ktx+/Dc=) 12: SMW63T_0136aeLowZZQWjjrfsXk.roa (hash: 3ilHXV2UYPUXB+nKjinPtba67c0zOMGagZjCJHP3jcE=) 13: SbsNPH1Ntij3qyUVffsCiIKkGeE.roa (hash: hjAPDCld8Xta1vPhgXAeIRi+/mILiMGsU19jsuHqOac=) 14: Tcb9LIMv15mBq9nuN_lyx7EDWvI.roa (hash: AVbi90aopaltK4BW7qKfcZ+tcE+N0R+vLT2QnDiHoBo=) 15: UWaCKuifSAXQ_q_qbqARMjeLkuk.roa (hash: xqvi3BTcN1RVOAgMAoZQMY8MT30m6KbWtN2qeSF/sR8=) 16: WbuHsYRVEwtxjohFVduo42yY0BA.roa (hash: XRpJ203bgOZcZmoeOkpQMh/toy8YP0Drzt5W89I939s=) 17: bnK4p1zEjjMpHGYBWVHlrBkLh7g.roa (hash: FTLJfN5i2b+RptkaFlN3Il1kzjhjI+oXWg1vZs6H4k0=) 18: cE7jgFPedRUF8ap_cKImzYVddl8.roa (hash: zb4n0pfJOMFHA1alvI9W5X6cLuKCPOK3ES0MN3ZZTkE=) 19: enntkJ9MJgt_xpOfkD8kOLdtBJU.roa (hash: JIM8qg9/iO+d/Qq84yLmkyLF8sGbWGM70xRqLp4QZrk=) 20: fFA6Tc1793n-r3BnGi87lZEg-eE.roa (hash: yKcGEOfvNP+8jvQZLXGNhmpwiIIwq6NoShkHAH7kres=) 21: rXmLdpESy3JXHba6GMZpxFBce7Y.roa (hash: eJTs9WPxSlrRs5HsS9oqFD3SzVRLHXq/UsVoUjviM0A=) 22: rtiE1g00ygxdO1tTtGobMSI8MfQ.roa (hash: 1+qhvfyyWdOjy7p4VdnyDBwRoLGDkk0RvotZmYLEvbM=) 23: rtnNKdzuer1cLaHeVd2Efr32DmI.roa (hash: hrsJtWgWWgXT2uF4n4YErrta4DlZR555cIdEsyDsEYM=) 24: sUa1qZfE6YDq3QMgLH1F6vdwxUU.roa (hash: fTQiV/tRslTYxHykfit6SFwjZkI2ltHIm9g/9F6nVW0=) 25: tk19XDIbs2abJC_w7m3eyvCxcz0.roa (hash: NU3TfhMXPP24pf7R4GaRkyWoD5b0T4TNRSVTKMLyWEo=) 26: zYMT5B5kagnNAeLm9HOdO9I2xP8.crl (hash: 7MVnfBBnA4gOAat5L4euml6b8o44o1dphJb5O3uZOEo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 28 Apr 2026 09:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:ce:2b:64:66:c0:af:aa:d3:38:82:a2:55:e0:73:83:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff Validity Not Before: Apr 27 09:00:43 2026 GMT Not After : Apr 28 09:00:43 2026 GMT Subject: CN=294ff55a950de49a71ca65d2897beea685c1bc10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:b7:89:bb:ef:1c:5e:e9:85:03:83:7d:f1:d3: b7:9e:5e:fb:1a:9d:cc:7e:50:3b:22:35:27:84:b1: 8d:5a:45:d4:c3:fc:df:ec:34:59:bb:3f:42:c0:f3: 60:df:e6:02:21:7c:4d:16:b3:b6:01:f7:cc:fc:80: 7a:a5:cd:8d:c1:5b:fc:56:f7:e1:0e:ab:0c:94:fe: cc:c6:9e:09:0c:ff:42:bf:e3:99:f6:68:a9:da:4d: f8:11:40:6a:5d:f5:e6:84:76:ae:59:17:92:4a:07: 02:46:84:b0:79:f2:4c:4a:35:bf:82:ad:2b:be:ba: c8:67:25:33:b1:f3:6a:5b:d3:9c:2d:d7:83:41:b6: 97:b8:b5:96:b9:71:92:d2:ce:ad:91:1f:93:f9:52: 8c:65:11:a7:32:0c:94:b2:38:2c:6c:a4:ff:bb:f6: 93:4e:ad:65:83:35:d7:fd:6d:f5:25:0c:ec:f7:6b: 9d:ec:ae:6f:74:01:2c:db:ec:11:5c:d8:c0:0c:1a: 53:fb:6f:4d:64:9a:d3:a0:68:cb:5f:e5:95:97:b4: 47:d0:24:dc:66:2d:c7:af:f5:2c:81:c1:82:b2:a4: e9:12:6d:cf:0a:13:31:17:30:d9:51:61:49:9e:4d: be:c1:2c:93:d5:f7:5a:e2:34:2b:4e:42:f9:2a:ce: 1a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:4F:F5:5A:95:0D:E4:9A:71:CA:65:D2:89:7B:EE:A6:85:C1:BC:10 X509v3 Authority Key Identifier: keyid:CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:da:b6:2d:79:43:16:48:fb:55:b0:b9:d6:44:49:0a:f2:8d: 49:ab:bb:9d:e6:fc:bb:f1:7b:2f:2d:d0:e0:a5:ab:86:40:21: 86:20:1e:c8:0a:8a:a0:9c:0f:ee:ff:e4:ee:87:70:df:e2:85: fb:4c:dc:34:a1:ba:91:da:b4:88:64:12:de:af:d4:63:01:71: 6d:97:09:a4:98:6e:a6:b5:d7:22:f3:75:6e:02:ee:09:a1:85: df:d5:25:df:b7:9a:a2:41:42:37:5a:83:fb:8b:aa:1e:6d:66: 7d:a1:40:18:51:9a:cf:14:ab:4b:34:79:fd:bf:24:2f:e6:6e: f6:80:72:d5:ba:65:46:13:c5:48:84:85:b6:b9:82:0e:18:19: 89:50:de:4a:de:50:49:25:1a:a8:6c:37:9d:ac:ce:7d:30:3a: 1f:c4:71:9f:28:78:83:fe:2d:3b:cd:95:08:4f:04:bb:69:84: 1e:d0:19:cb:58:cc:9b:e4:73:30:19:9b:93:ad:48:85:23:c3: 67:83:43:28:be:83:dd:8b:28:78:e4:1d:92:ff:be:1a:e0:38: 79:07:2f:cb:55:52:0f:92:ba:9e:07:29:4e:f8:99:e2:ae:c0: 80:37:65:f0:c8:75:02:2c:7a:df:9c:1e:28:e9:2c:9e:dd:4e: 79:3e:a0:4f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ3OK2RmwK+q0ziColXgc4MwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkODMxM2U0MWU2NDZhMDljZDAxZTJlNmY0NzM5ZDNiZDIz NmM0ZmYwHhcNMjYwNDI3MDkwMDQzWhcNMjYwNDI4MDkwMDQzWjAzMTEwLwYDVQQD EygyOTRmZjU1YTk1MGRlNDlhNzFjYTY1ZDI4OTdiZWVhNjg1YzFiYzEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlreJu+8cXumFA4N98dO3nl77Gp3M flA7IjUnhLGNWkXUw/zf7DRZuz9CwPNg3+YCIXxNFrO2AffM/IB6pc2NwVv8Vvfh DqsMlP7Mxp4JDP9Cv+OZ9mip2k34EUBqXfXmhHauWReSSgcCRoSwefJMSjW/gq0r vrrIZyUzsfNqW9OcLdeDQbaXuLWWuXGS0s6tkR+T+VKMZRGnMgyUsjgsbKT/u/aT Tq1lgzXX/W31JQzs92ud7K5vdAEs2+wRXNjADBpT+29NZJrToGjLX+WVl7RH0CTc Zi3Hr/UsgcGCsqTpEm3PChMxFzDZUWFJnk2+wSyT1fda4jQrTkL5Ks4arwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFClP9VqVDeSaccpl0ol77qaFwbwQMB8GA1UdIwQY MBaAFM2DE+QeZGoJzQHi5vRznTvSNsT/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQt ODg2MmI1MTczMTdjLzEvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQtODg2MmI1MTczMTdj LzEvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOdq2LXlD Fkj7VbC51kRJCvKNSau7neb8u/F7Ly3Q4KWrhkAhhiAeyAqKoJwP7v/k7odw3+KF +0zcNKG6kdq0iGQS3q/UYwFxbZcJpJhuprXXIvN1bgLuCaGF39Ul37eaokFCN1qD +4uqHm1mfaFAGFGazxSrSzR5/b8kL+Zu9oBy1bplRhPFSISFtrmCDhgZiVDeSt5Q SSUaqGw3nazOfTA6H8Rxnyh4g/4tO82VCE8Eu2mEHtAZy1jMm+RzMBmbk61IhSPD Z4NDKL6D3YsoeOQdkv++GuA4eQcvy1VSD5K6ngcpTviZ4q7AgDdl8Mh1Aix635we KOksnt1OeT6gTw== -----END CERTIFICATE-----Generated at Mon Apr 27 18:36:35 2026 by rpki-client