$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft File: zYMT5B5kagnNAeLm9HOdO9I2xP8.mft (raw, json) Hash identifier: xPAscv0Dr8cgmlTSB6MGVf8d93WDSVZA1/tyyJ8NPK0= Subject key identifier: AA:55:F0:B7:E5:A5:CB:1C:B4:41:B4:78:E9:B2:32:D2:66:14:9E:AD Authority key identifier: CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF Certificate issuer: /CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff Certificate serial: 019CE4B5EF987317DAAFDC5B17D6A734F9F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft Manifest number: 1873 Signing time: Fri 13 Mar 2026 01:00:54 +0000 Manifest this update: Fri 13 Mar 2026 01:00:54 +0000 Manifest next update: Sat 14 Mar 2026 01:00:54 +0000 Files and hashes: 1: 9FhDVq2bIcKPVT4-LNeLhleMtsU.roa (hash: 9KYuP3D+C7cw6iLbwhFcurqEz58uGe5Kg9G2sCqyt6U=) 2: DOxf14855Ag2AnO7jsSUueM5c-o.roa (hash: zgUJGFH5ZEpoQ9vBA8CvM2rtyQHfUvV/kzB3FtSEmYc=) 3: GGlyShlisJFPILLShUxi5K1FZvI.roa (hash: 8pEqvT44UHyALFkAUNaY4Zmjw5paANUkCryLrc0xDp0=) 4: GfgJL-lqR4cMbYOXW8gqE4t7HG4.roa (hash: kNPKoBDHTv7uxrRwNWkfM9yLpH77LlGXaUe+iObPj+0=) 5: GokcGb-P0NB7nLtMvW5A8ngZQgE.roa (hash: ZnAqIOIHh01hnkaJVPAholM5RdM/M+SxoO9A/Xev0yk=) 6: LFRJzkmgIAiGnpUGS9-bXzuIMLs.roa (hash: 46deT7TNnqX9MlHzhsUcZQAr19c/pEqoQrpaQ/72qGo=) 7: Lq44h0G4q1e-UoLFf16nF4HM2xg.roa (hash: 8njI491vVK+Ep2tlJdykehE2iLFit02Dsa4DLuRuC40=) 8: NbGRLoG_Gu4CVHGU2oYeQquSVC4.roa (hash: UI6Whsfm0XLotsIB2pUQkPKCVhCu0FIJUxPDYs/HA7Q=) 9: OhSGFuxiOE6u1yxeHuxozU-P634.roa (hash: 6Mmr2aFRyJOyiCmrE7LHa7GVo3hy9dAsRMv8rAlCtH8=) 10: PvCNmMuHcK2-0lwoP1YXz8fG1-4.roa (hash: ZcKVkYaVisIZB6lNJ9Oj7RdZ3ktv/iO+kT0iuJRn4G8=) 11: S7VSB8bMnzHem9-PYRKs7CJpYpg.roa (hash: Xkmt3ivNtM5U/VoznrjL63MFyqBi5WkWlVP9ktx+/Dc=) 12: SMW63T_0136aeLowZZQWjjrfsXk.roa (hash: 3ilHXV2UYPUXB+nKjinPtba67c0zOMGagZjCJHP3jcE=) 13: SbsNPH1Ntij3qyUVffsCiIKkGeE.roa (hash: hjAPDCld8Xta1vPhgXAeIRi+/mILiMGsU19jsuHqOac=) 14: Tcb9LIMv15mBq9nuN_lyx7EDWvI.roa (hash: AVbi90aopaltK4BW7qKfcZ+tcE+N0R+vLT2QnDiHoBo=) 15: WbuHsYRVEwtxjohFVduo42yY0BA.roa (hash: XRpJ203bgOZcZmoeOkpQMh/toy8YP0Drzt5W89I939s=) 16: bnK4p1zEjjMpHGYBWVHlrBkLh7g.roa (hash: FTLJfN5i2b+RptkaFlN3Il1kzjhjI+oXWg1vZs6H4k0=) 17: cE7jgFPedRUF8ap_cKImzYVddl8.roa (hash: zb4n0pfJOMFHA1alvI9W5X6cLuKCPOK3ES0MN3ZZTkE=) 18: enntkJ9MJgt_xpOfkD8kOLdtBJU.roa (hash: JIM8qg9/iO+d/Qq84yLmkyLF8sGbWGM70xRqLp4QZrk=) 19: fFA6Tc1793n-r3BnGi87lZEg-eE.roa (hash: yKcGEOfvNP+8jvQZLXGNhmpwiIIwq6NoShkHAH7kres=) 20: rXmLdpESy3JXHba6GMZpxFBce7Y.roa (hash: eJTs9WPxSlrRs5HsS9oqFD3SzVRLHXq/UsVoUjviM0A=) 21: rtiE1g00ygxdO1tTtGobMSI8MfQ.roa (hash: 1+qhvfyyWdOjy7p4VdnyDBwRoLGDkk0RvotZmYLEvbM=) 22: sUa1qZfE6YDq3QMgLH1F6vdwxUU.roa (hash: fTQiV/tRslTYxHykfit6SFwjZkI2ltHIm9g/9F6nVW0=) 23: tk19XDIbs2abJC_w7m3eyvCxcz0.roa (hash: NU3TfhMXPP24pf7R4GaRkyWoD5b0T4TNRSVTKMLyWEo=) 24: zYMT5B5kagnNAeLm9HOdO9I2xP8.crl (hash: KgEfOHPaOELczXti7KCsI9KVtH3GrjgllngPfIVVQB8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 13 Mar 2026 21:05:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:e4:b5:ef:98:73:17:da:af:dc:5b:17:d6:a7:34:f9:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff Validity Not Before: Mar 13 01:00:54 2026 GMT Not After : Mar 14 01:00:54 2026 GMT Subject: CN=aa55f0b7e5a5cb1cb441b478e9b232d266149ead Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4a:bc:fd:cf:74:16:6f:cf:df:05:65:94:b7: 6e:eb:9f:b6:58:7d:96:b1:1a:0a:3a:1e:f6:95:2f: a4:d4:20:80:ef:9d:5d:bf:a5:56:64:4c:7a:ab:7c: d6:42:ec:ca:22:d5:ab:de:f3:3f:8d:60:ef:56:cc: 6c:b2:a8:e5:9b:6a:e4:55:f1:90:8e:5a:a4:83:37: 0d:ea:2a:25:59:0b:f5:ae:7c:56:a2:ff:9f:db:ef: cf:1d:e7:a2:1d:53:85:e4:a4:73:ba:ad:74:6d:fd: 2a:63:3e:48:c9:aa:a3:9e:9e:c2:e7:3b:be:86:af: 06:c7:7a:c4:5b:03:7c:fd:ef:fe:7c:52:92:54:8d: 09:32:f4:3f:99:40:c0:18:8f:e1:14:11:35:06:04: ac:e8:32:92:0d:4c:c5:82:3f:3c:94:3e:ff:59:7d: 32:08:0d:8b:55:f6:fb:47:d1:e3:49:40:8c:9b:6c: 9f:e3:7e:2b:1a:b3:dc:89:d0:08:1a:67:ef:bf:0a: c7:88:83:36:e0:57:a6:c1:6c:c6:07:3e:9d:56:04: a0:44:d4:bb:4c:92:c4:fe:d6:62:72:32:b7:15:b5: d9:b5:d7:82:3d:2d:95:ae:a5:e1:96:b2:4a:e0:10: 2e:77:39:5f:8a:52:5d:67:d0:79:57:3a:4e:37:b5: fa:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:55:F0:B7:E5:A5:CB:1C:B4:41:B4:78:E9:B2:32:D2:66:14:9E:AD X509v3 Authority Key Identifier: keyid:CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:b6:68:25:87:66:43:b9:63:23:65:90:9b:b2:e0:29:94:03: 35:79:d1:f8:c3:fe:a7:0d:af:75:d2:b5:43:2d:64:cc:92:11: 2c:1b:49:b6:a0:5b:5b:7a:22:7f:d5:86:59:11:4b:53:97:ce: ee:65:df:87:31:d1:7e:0b:99:cf:98:dc:4d:0e:65:64:0c:2d: 6f:4a:28:df:12:18:05:05:45:6d:8b:ba:a3:6b:47:6e:ad:f1: 73:09:a1:59:95:f1:04:50:ea:d3:df:ba:b3:96:f0:34:08:ee: 41:61:67:79:c5:19:68:2e:57:39:c9:3f:77:d9:d6:85:d1:2c: 16:76:2a:5d:17:07:d6:79:e6:6e:57:04:76:c7:ea:0a:74:a0: 06:35:42:86:42:0c:55:ac:c3:77:51:cc:60:79:49:2e:17:40: a6:97:ae:85:79:a4:58:cd:b6:a9:72:49:8e:58:38:de:b3:71: 65:6d:c1:8f:ae:74:8d:ac:f1:f7:3d:66:f9:36:ab:8f:6d:b8: fd:5e:1f:42:55:f0:47:42:89:0b:65:2d:fe:81:dd:e6:5a:74: bb:e0:66:be:a4:ec:11:00:8f:5c:ff:19:7e:c5:36:b5:ee:c8: 61:89:d5:8b:99:e0:a6:24:a6:42:f1:d2:4f:4b:6c:e7:77:16: a1:7b:48:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZzkte+Ycxfar9xbF9anNPnzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkODMxM2U0MWU2NDZhMDljZDAxZTJlNmY0NzM5ZDNiZDIz NmM0ZmYwHhcNMjYwMzEzMDEwMDU0WhcNMjYwMzE0MDEwMDU0WjAzMTEwLwYDVQQD EyhhYTU1ZjBiN2U1YTVjYjFjYjQ0MWI0NzhlOWIyMzJkMjY2MTQ5ZWFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0q8/c90Fm/P3wVllLdu65+2WH2W sRoKOh72lS+k1CCA751dv6VWZEx6q3zWQuzKItWr3vM/jWDvVsxssqjlm2rkVfGQ jlqkgzcN6iolWQv1rnxWov+f2+/PHeeiHVOF5KRzuq10bf0qYz5Iyaqjnp7C5zu+ hq8Gx3rEWwN8/e/+fFKSVI0JMvQ/mUDAGI/hFBE1BgSs6DKSDUzFgj88lD7/WX0y CA2LVfb7R9HjSUCMm2yf434rGrPcidAIGmfvvwrHiIM24FemwWzGBz6dVgSgRNS7 TJLE/tZicjK3FbXZtdeCPS2VrqXhlrJK4BAudzlfilJdZ9B5VzpON7X6xwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKpV8LflpcsctEG0eOmyMtJmFJ6tMB8GA1UdIwQY MBaAFM2DE+QeZGoJzQHi5vRznTvSNsT/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQt ODg2MmI1MTczMTdjLzEvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQtODg2MmI1MTczMTdj LzEvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYrZoJYdm Q7ljI2WQm7LgKZQDNXnR+MP+pw2vddK1Qy1kzJIRLBtJtqBbW3oif9WGWRFLU5fO 7mXfhzHRfguZz5jcTQ5lZAwtb0oo3xIYBQVFbYu6o2tHbq3xcwmhWZXxBFDq09+6 s5bwNAjuQWFnecUZaC5XOck/d9nWhdEsFnYqXRcH1nnmblcEdsfqCnSgBjVChkIM VazDd1HMYHlJLhdAppeuhXmkWM22qXJJjlg43rNxZW3Bj650jazx9z1m+Tarj224 /V4fQlXwR0KJC2Ut/oHd5lp0u+BmvqTsEQCPXP8ZfsU2te7IYYnVi5ngpiSmQvHS T0ts53cWoXtInQ== -----END CERTIFICATE-----Generated at Fri Mar 13 07:26:53 2026 by rpki-client