$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft File: zYMT5B5kagnNAeLm9HOdO9I2xP8.mft (raw, json) Hash identifier: oxMCuSxJe9Og0DPd8ZrTGC+QDLSQKYODa+JrSEWikl0= Subject key identifier: B6:CB:9A:16:4B:80:D6:8C:69:F7:3A:7B:8D:BD:2E:23:84:9A:89:11 Authority key identifier: CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF Certificate issuer: /CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff Certificate serial: 0199356ED40EE286516128CF448AB63A0FA8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft Manifest number: 1689 Signing time: Wed 10 Sep 2025 21:01:19 +0000 Manifest this update: Wed 10 Sep 2025 21:01:19 +0000 Manifest next update: Thu 11 Sep 2025 21:01:19 +0000 Files and hashes: 1: CMjm3mT93yGkp8LUoyzkdQ6l3EE.roa (hash: TkauNWMtnY8DBb4v5VsfB1yBCMV9bCsSOJxWA8/FXoo=) 2: HkTCrKZqDwa8EUL4YflDFIxvuSo.roa (hash: zO36rkW4iEPf0HW9ThqXz35RBy/UdvCTSm39AhOu1Wg=) 3: KcTcayFrsZLodbwf3DiREG7aMgQ.roa (hash: 8/vbDhWMe2EfxMGVicJi+/pUGnJZy6R4MjOjEjkxjUk=) 4: LsmwcIccA3zM4d7kxqt3XhLcSa0.roa (hash: 98WTFaz7XPqlrJj7+XyfBTJEw1Sf7UEiPzA9D8zWsIw=) 5: PneAThfusF70GWHWywmhFb0vzKg.roa (hash: 0kjnbKbpSjxRU2te032pdWFUGrUsCjxiyKJ48H1DPUU=) 6: QPCXSoVGqmo5YTCi73-CSDuyZ-M.roa (hash: BYlFE9CUTQ67gGcO7goW8z5RieIlu+Sp4h/7HCES0Bg=) 7: SYW7vJR8jh6OnS0xw0zxS3bgN60.roa (hash: RRdRxhUDlZPMyyr5BdAFCoJYcDMXRiJFFRNcVSSyJoQ=) 8: T-x5NWBWP7z0RtMavKGuf9lbyTk.roa (hash: 5meL33wuT4ICoWjsr5JwrdL6iizp93b+W5Vq2RQt4cs=) 9: YPhWBSPHGs5SvVUlaCiCKWmqFfE.roa (hash: 5GbYaE22J8Owy6TgFxnM856qPEXWo4AxIXtfMEPnMxs=) 10: Yqt3Kg8k1YJOv7s88RcINuiKaCE.roa (hash: nWZ5K8Cmhazakp99a9slUSDcrdtW/sXazmS+lE8qgb8=) 11: d-qZVEez3-tqSbLZHyKHdZ5qcJA.roa (hash: +81/qDkled7/tuehBezhqXR9TX8Qi/57Cwe4Hugu7Ps=) 12: e3hNMZozjl2a8wTj5jqUKt2netU.roa (hash: z65fVe11ggvNgyomVpHPZ3mT5uEYvV6n9cNO6WIVkOQ=) 13: jcSJxEfFuIOqv-vUuvBQckyf-ZI.roa (hash: V8+8ahCoa4BEtoKDRdWiWxQzrt5GRgWy4qkSi1g/uZs=) 14: lcN6tqSn03IPMO2AvpfpxpGgDQY.roa (hash: 8fvPqg+8qqIeW9Kd8tRNl8Xlys8MO8b9CTy9FA3u9tA=) 15: lzFclAiK-AKgH976Yl_uXg9r5wM.roa (hash: H/cy8Ymyjy+9oeeIlZQHYMPSRfjOx2uqFxTFGhSTiGE=) 16: oLt7xT_rHP-Hxh3lUeggtdVEvTs.roa (hash: hblIrYC6F95+wg2sH5P/uCfjsNRvIhmQ2s3oU6U1S/g=) 17: ogeSaiZjPO4Kd4PF4MmZ3E0M2dA.roa (hash: Y6nye2lCZkZiTnuBzh99LMq3fLt8LGMzc9QAvB3SwlM=) 18: p-aeeSEszU3aapQ0yEslN0bhQQ8.roa (hash: Mh/Q23651bJq9potJm5ecJKYPprCxzH57rPx/Ooy5iY=) 19: r40XtPdgr8Y3RxrHTUe0xVuomM0.roa (hash: t4ySxCeAxHkHkDK1q9KhuYpYVZshrBVi3KJ4uODs/8Q=) 20: rD4_vnlr510eZLzrr2aCnfyAvEE.roa (hash: dL+NP4nhH4zwWo5a+tL5dbCaIelO5RMTVy2uI8g69YI=) 21: rdclR5rmMPPiGdub64u9CAD4cr0.roa (hash: wXgXLOiDxEJK62XQ7DLJMuxi7/zXmFbGyGpgUuOv+8k=) 22: tNteV-bYipxacIdsneN2kRS27vI.roa (hash: DK40xOAWm2KZPWxZ02RGtb+aUbxm0wIjZBTHx/mZzWs=) 23: uzMFOnPKpMqU8CP0ss6Mpv56PiE.roa (hash: F8nsfvroSbli8FdaVZTheRyMCu5cUrtu6qwv9yns62A=) 24: zYMT5B5kagnNAeLm9HOdO9I2xP8.crl (hash: LBW81JEue+kikckzOjBYUbjb4+OyKCeq7InX99phB2g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Sep 2025 20:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:35:6e:d4:0e:e2:86:51:61:28:cf:44:8a:b6:3a:0f:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff Validity Not Before: Sep 10 21:01:19 2025 GMT Not After : Sep 11 21:01:19 2025 GMT Subject: CN=b6cb9a164b80d68c69f73a7b8dbd2e23849a8911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7c:21:7a:29:97:f5:94:4f:ae:73:72:73:5f: e2:17:fd:e1:94:04:44:68:c4:59:c3:7e:77:5b:31: f1:b8:4e:73:ff:b1:6c:1d:e3:67:9f:4e:de:85:d4: c6:f9:2b:8f:8d:84:d7:5e:08:8d:95:82:17:d5:27: b6:a1:55:7c:28:66:cb:85:05:6f:41:7e:74:63:0e: a7:ec:87:16:1f:5a:dd:e2:46:24:df:41:d8:c1:b6: 04:4c:02:5e:d3:37:9d:df:ef:a8:32:11:84:fe:75: 6a:2d:b4:5b:70:8b:55:81:53:5f:0c:b7:71:f1:93: d2:32:a1:bb:6a:ab:86:1e:07:12:74:88:6d:1c:f1: f6:dc:2b:20:bb:53:d0:c0:4a:68:ad:ce:a9:39:19: cc:43:ff:9e:e5:0d:d3:07:68:e3:65:c6:86:90:f5: eb:b1:5d:99:7b:f3:86:06:d0:ec:04:56:0d:ee:90: 1f:9b:98:7c:a1:27:d9:f9:3f:ac:ab:be:34:2f:fc: a5:1e:59:9c:28:82:9b:5b:c8:96:6e:5c:1c:fc:18: 05:46:e7:05:d1:bc:a9:2f:6d:83:7d:8c:6c:dd:31: 12:b4:b1:a2:2b:9c:3e:f1:98:aa:d3:80:8e:d6:10: b4:ce:9d:a1:c8:1a:db:85:43:1d:dd:6e:d5:fc:c6: cb:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:CB:9A:16:4B:80:D6:8C:69:F7:3A:7B:8D:BD:2E:23:84:9A:89:11 X509v3 Authority Key Identifier: keyid:CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:86:81:08:6c:7a:5d:39:f0:8b:4a:47:08:e4:fb:a5:95:39: 46:44:c2:4c:7f:ed:09:ff:23:4e:fb:0b:ed:24:68:36:91:c2: 0e:67:28:6a:b8:93:ad:ea:79:a4:69:75:23:8c:2f:2b:a4:86: d7:62:e2:88:e1:01:41:dd:ff:2e:44:09:65:24:36:1e:b7:03: 70:a0:e0:f0:1d:af:07:87:c1:6d:c8:dc:ae:f1:1c:22:e2:fa: d4:6f:aa:66:13:eb:7d:9c:6e:ea:3e:a0:94:de:07:1f:f1:a0: ef:d6:79:21:e5:9d:b1:1e:b0:53:ea:03:02:20:5d:2e:60:bf: 2c:3f:05:65:29:a9:74:ca:5c:d3:43:fc:c2:44:cb:73:29:e7: a0:55:46:7b:8a:ed:aa:0a:b8:51:32:73:a8:2e:f6:a7:a0:2e: cc:01:30:39:4a:19:c7:44:02:4f:c1:27:98:45:5f:dd:18:1e: 02:ef:ec:04:fb:d3:59:68:a4:48:13:7a:c0:0c:7c:6c:74:fb: 39:7d:fa:29:02:19:cc:45:ac:45:6e:10:a5:73:70:e5:8b:e3: 37:1e:ef:82:13:c7:9c:ba:07:2c:38:3c:a6:07:e3:63:86:83: 06:9c:1e:e8:d3:5b:b7:53:af:8c:c2:ca:84:08:1c:92:b1:7f: 85:82:d7:bc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZk1btQO4oZRYSjPRIq2Og+oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkODMxM2U0MWU2NDZhMDljZDAxZTJlNmY0NzM5ZDNiZDIz NmM0ZmYwHhcNMjUwOTEwMjEwMTE5WhcNMjUwOTExMjEwMTE5WjAzMTEwLwYDVQQD EyhiNmNiOWExNjRiODBkNjhjNjlmNzNhN2I4ZGJkMmUyMzg0OWE4OTExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqHwheimX9ZRPrnNyc1/iF/3hlARE aMRZw353WzHxuE5z/7FsHeNnn07ehdTG+SuPjYTXXgiNlYIX1Se2oVV8KGbLhQVv QX50Yw6n7IcWH1rd4kYk30HYwbYETAJe0zed3++oMhGE/nVqLbRbcItVgVNfDLdx 8ZPSMqG7aquGHgcSdIhtHPH23Csgu1PQwEporc6pORnMQ/+e5Q3TB2jjZcaGkPXr sV2Ze/OGBtDsBFYN7pAfm5h8oSfZ+T+sq740L/ylHlmcKIKbW8iWblwc/BgFRucF 0bypL22DfYxs3TEStLGiK5w+8Ziq04CO1hC0zp2hyBrbhUMd3W7V/MbLnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLbLmhZLgNaMafc6e429LiOEmokRMB8GA1UdIwQY MBaAFM2DE+QeZGoJzQHi5vRznTvSNsT/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQt ODg2MmI1MTczMTdjLzEvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQtODg2MmI1MTczMTdj LzEvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnIaBCGx6 XTnwi0pHCOT7pZU5RkTCTH/tCf8jTvsL7SRoNpHCDmcoariTrep5pGl1I4wvK6SG 12LiiOEBQd3/LkQJZSQ2HrcDcKDg8B2vB4fBbcjcrvEcIuL61G+qZhPrfZxu6j6g lN4HH/Gg79Z5IeWdsR6wU+oDAiBdLmC/LD8FZSmpdMpc00P8wkTLcynnoFVGe4rt qgq4UTJzqC72p6AuzAEwOUoZx0QCT8EnmEVf3RgeAu/sBPvTWWikSBN6wAx8bHT7 OX36KQIZzEWsRW4QpXNw5YvjNx7vghPHnLoHLDg8pgfjY4aDBpwe6NNbt1OvjMLK hAgckrF/hYLXvA== -----END CERTIFICATE-----Generated at Thu Sep 11 00:03:00 2025 by rpki-client