$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft File: zYMT5B5kagnNAeLm9HOdO9I2xP8.mft (raw, json) Hash identifier: PqFu9s7RUYndhV8oFfaN9zitn9n4NI7gcICH4zFHsXU= Subject key identifier: FD:85:F3:61:82:21:46:7B:BE:8A:4D:C1:9F:F0:51:A8:F5:3D:4D:FA Authority key identifier: CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF Certificate issuer: /CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff Certificate serial: 019DD019C4BF566140772D8D350896C76A84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft Manifest number: 18EE Signing time: Mon 27 Apr 2026 18:00:42 +0000 Manifest this update: Mon 27 Apr 2026 18:00:42 +0000 Manifest next update: Tue 28 Apr 2026 18:00:42 +0000 Files and hashes: 1: 6SfzyA20maGiI5XJBQeDm_u97nY.roa (hash: u3qBuRlWiB0K8K8vlPB1p6jUd1Xd8XzeiX/KEClwly8=) 2: 9FhDVq2bIcKPVT4-LNeLhleMtsU.roa (hash: 9KYuP3D+C7cw6iLbwhFcurqEz58uGe5Kg9G2sCqyt6U=) 3: DOxf14855Ag2AnO7jsSUueM5c-o.roa (hash: zgUJGFH5ZEpoQ9vBA8CvM2rtyQHfUvV/kzB3FtSEmYc=) 4: GGlyShlisJFPILLShUxi5K1FZvI.roa (hash: 8pEqvT44UHyALFkAUNaY4Zmjw5paANUkCryLrc0xDp0=) 5: GfgJL-lqR4cMbYOXW8gqE4t7HG4.roa (hash: kNPKoBDHTv7uxrRwNWkfM9yLpH77LlGXaUe+iObPj+0=) 6: GokcGb-P0NB7nLtMvW5A8ngZQgE.roa (hash: ZnAqIOIHh01hnkaJVPAholM5RdM/M+SxoO9A/Xev0yk=) 7: LFRJzkmgIAiGnpUGS9-bXzuIMLs.roa (hash: 46deT7TNnqX9MlHzhsUcZQAr19c/pEqoQrpaQ/72qGo=) 8: NbGRLoG_Gu4CVHGU2oYeQquSVC4.roa (hash: UI6Whsfm0XLotsIB2pUQkPKCVhCu0FIJUxPDYs/HA7Q=) 9: OhSGFuxiOE6u1yxeHuxozU-P634.roa (hash: 6Mmr2aFRyJOyiCmrE7LHa7GVo3hy9dAsRMv8rAlCtH8=) 10: PvCNmMuHcK2-0lwoP1YXz8fG1-4.roa (hash: ZcKVkYaVisIZB6lNJ9Oj7RdZ3ktv/iO+kT0iuJRn4G8=) 11: S7VSB8bMnzHem9-PYRKs7CJpYpg.roa (hash: Xkmt3ivNtM5U/VoznrjL63MFyqBi5WkWlVP9ktx+/Dc=) 12: SMW63T_0136aeLowZZQWjjrfsXk.roa (hash: 3ilHXV2UYPUXB+nKjinPtba67c0zOMGagZjCJHP3jcE=) 13: SbsNPH1Ntij3qyUVffsCiIKkGeE.roa (hash: hjAPDCld8Xta1vPhgXAeIRi+/mILiMGsU19jsuHqOac=) 14: Tcb9LIMv15mBq9nuN_lyx7EDWvI.roa (hash: AVbi90aopaltK4BW7qKfcZ+tcE+N0R+vLT2QnDiHoBo=) 15: UWaCKuifSAXQ_q_qbqARMjeLkuk.roa (hash: xqvi3BTcN1RVOAgMAoZQMY8MT30m6KbWtN2qeSF/sR8=) 16: WbuHsYRVEwtxjohFVduo42yY0BA.roa (hash: XRpJ203bgOZcZmoeOkpQMh/toy8YP0Drzt5W89I939s=) 17: bnK4p1zEjjMpHGYBWVHlrBkLh7g.roa (hash: FTLJfN5i2b+RptkaFlN3Il1kzjhjI+oXWg1vZs6H4k0=) 18: cE7jgFPedRUF8ap_cKImzYVddl8.roa (hash: zb4n0pfJOMFHA1alvI9W5X6cLuKCPOK3ES0MN3ZZTkE=) 19: enntkJ9MJgt_xpOfkD8kOLdtBJU.roa (hash: JIM8qg9/iO+d/Qq84yLmkyLF8sGbWGM70xRqLp4QZrk=) 20: fFA6Tc1793n-r3BnGi87lZEg-eE.roa (hash: yKcGEOfvNP+8jvQZLXGNhmpwiIIwq6NoShkHAH7kres=) 21: rXmLdpESy3JXHba6GMZpxFBce7Y.roa (hash: eJTs9WPxSlrRs5HsS9oqFD3SzVRLHXq/UsVoUjviM0A=) 22: rtiE1g00ygxdO1tTtGobMSI8MfQ.roa (hash: 1+qhvfyyWdOjy7p4VdnyDBwRoLGDkk0RvotZmYLEvbM=) 23: rtnNKdzuer1cLaHeVd2Efr32DmI.roa (hash: hrsJtWgWWgXT2uF4n4YErrta4DlZR555cIdEsyDsEYM=) 24: sUa1qZfE6YDq3QMgLH1F6vdwxUU.roa (hash: fTQiV/tRslTYxHykfit6SFwjZkI2ltHIm9g/9F6nVW0=) 25: tk19XDIbs2abJC_w7m3eyvCxcz0.roa (hash: NU3TfhMXPP24pf7R4GaRkyWoD5b0T4TNRSVTKMLyWEo=) 26: zYMT5B5kagnNAeLm9HOdO9I2xP8.crl (hash: /V6nK2S6PHGxaOlz0Oxh4/pmeK8OhCrcLmmNeGAxbp4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 28 Apr 2026 17:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:d0:19:c4:bf:56:61:40:77:2d:8d:35:08:96:c7:6a:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff Validity Not Before: Apr 27 18:00:42 2026 GMT Not After : Apr 28 18:00:42 2026 GMT Subject: CN=fd85f3618221467bbe8a4dc19ff051a8f53d4dfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:76:65:f2:e5:b6:d3:b0:21:e3:06:3a:1e:ec: 36:9a:9f:4c:01:d4:57:82:4d:1e:a1:96:77:22:c4: e6:ba:d2:d0:84:81:63:a8:f6:f9:21:21:87:6c:b0: eb:90:41:39:50:43:f9:af:89:e6:63:7d:54:d6:9d: e0:64:34:c1:c0:ec:1d:2b:b7:a1:e3:2f:a7:36:a9: 18:b6:b1:33:27:b6:ee:ef:05:c1:81:9c:17:3d:7b: 34:eb:57:b6:e5:b7:3b:c1:0d:f9:14:50:3d:25:7f: 26:15:6f:72:d1:57:25:e4:72:df:a2:49:6d:a4:d2: 7a:09:9a:9b:9d:4d:47:44:f6:2d:29:02:6e:f5:c7: 25:8b:84:3e:83:5d:08:0c:bf:09:0b:14:6f:52:49: 7a:b7:2c:19:c5:b8:e8:52:b3:72:f6:2d:89:36:86: 50:2c:eb:f8:16:f1:1a:8f:00:3d:11:d7:7a:2d:05: 61:13:b0:41:12:a1:d2:5e:91:2d:9e:8e:f6:60:ed: 35:47:c3:05:51:36:1f:0f:d0:11:26:c6:54:7f:14: 60:ef:8e:2f:26:b4:79:db:fa:43:a6:b8:eb:cf:4b: 40:d8:9d:d9:4a:80:a9:71:12:24:d0:cb:24:d6:6f: 68:97:4b:df:c4:d2:7e:88:19:10:cd:28:67:13:6b: bf:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:85:F3:61:82:21:46:7B:BE:8A:4D:C1:9F:F0:51:A8:F5:3D:4D:FA X509v3 Authority Key Identifier: keyid:CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:94:83:a2:58:63:e5:9d:53:86:1c:1f:00:c6:f4:b1:8c:49: d7:49:b5:8a:c7:bd:61:b6:50:08:59:d9:a1:9b:d5:f0:81:49: 58:3b:47:81:97:43:4b:8a:67:b4:e4:ba:2a:79:68:b1:ea:6d: 8e:40:3e:2d:bf:03:c0:49:99:2b:b3:c8:88:88:43:f8:7c:42: 3d:7f:af:e6:66:2e:47:ab:ee:26:54:90:81:e3:8d:9a:2d:41: 22:63:2a:34:47:87:0e:6e:d8:0d:55:00:32:07:52:48:e2:a6: 7e:05:4f:eb:3e:75:6b:5e:2c:72:9c:0c:09:80:69:f4:7e:02: c2:81:81:14:1c:2a:f4:5c:28:99:74:a0:2e:b5:94:7c:6f:e8: a3:7d:75:22:cf:ba:c5:ed:2e:9a:66:2c:d0:0f:f5:95:03:9c: 98:85:1c:11:ca:21:cd:16:37:2d:4d:90:45:c6:f9:c2:48:de: d5:18:3c:2d:77:8a:24:02:3a:c8:ac:ae:70:c9:a9:8a:20:f0: 97:50:04:b9:60:a5:bf:ca:9e:7c:42:bf:95:c1:2e:45:2d:fe: 5a:44:1e:e4:11:ae:d9:06:70:b8:71:0f:e7:0f:45:ea:51:d2: fa:b5:1c:e4:bc:19:eb:c8:f5:5b:91:2f:7e:3b:6d:f8:93:70: be:04:0a:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ3QGcS/VmFAdy2NNQiWx2qEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkODMxM2U0MWU2NDZhMDljZDAxZTJlNmY0NzM5ZDNiZDIz NmM0ZmYwHhcNMjYwNDI3MTgwMDQyWhcNMjYwNDI4MTgwMDQyWjAzMTEwLwYDVQQD EyhmZDg1ZjM2MTgyMjE0NjdiYmU4YTRkYzE5ZmYwNTFhOGY1M2Q0ZGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHZl8uW207Ah4wY6Huw2mp9MAdRX gk0eoZZ3IsTmutLQhIFjqPb5ISGHbLDrkEE5UEP5r4nmY31U1p3gZDTBwOwdK7eh 4y+nNqkYtrEzJ7bu7wXBgZwXPXs061e25bc7wQ35FFA9JX8mFW9y0Vcl5HLfoklt pNJ6CZqbnU1HRPYtKQJu9ccli4Q+g10IDL8JCxRvUkl6tywZxbjoUrNy9i2JNoZQ LOv4FvEajwA9Edd6LQVhE7BBEqHSXpEtno72YO01R8MFUTYfD9ARJsZUfxRg744v JrR52/pDprjrz0tA2J3ZSoCpcRIk0Msk1m9ol0vfxNJ+iBkQzShnE2u/zwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP2F82GCIUZ7vopNwZ/wUaj1PU36MB8GA1UdIwQY MBaAFM2DE+QeZGoJzQHi5vRznTvSNsT/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQt ODg2MmI1MTczMTdjLzEvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQtODg2MmI1MTczMTdj LzEvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUpSDolhj 5Z1ThhwfAMb0sYxJ10m1ise9YbZQCFnZoZvV8IFJWDtHgZdDS4pntOS6Knlosept jkA+Lb8DwEmZK7PIiIhD+HxCPX+v5mYuR6vuJlSQgeONmi1BImMqNEeHDm7YDVUA MgdSSOKmfgVP6z51a14scpwMCYBp9H4CwoGBFBwq9FwomXSgLrWUfG/oo311Is+6 xe0ummYs0A/1lQOcmIUcEcohzRY3LU2QRcb5wkje1Rg8LXeKJAI6yKyucMmpiiDw l1AEuWClv8qefEK/lcEuRS3+WkQe5BGu2QZwuHEP5w9F6lHS+rUc5LwZ68j1W5Ev fjtt+JNwvgQKfw== -----END CERTIFICATE-----Generated at Mon Apr 27 19:47:50 2026 by rpki-client