$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft File: zYMT5B5kagnNAeLm9HOdO9I2xP8.mft (raw, json) Hash identifier: hVbPQyVcwmTRB7Ho9iQNMlsy+VS/nfkO3hfjuEMmAC8= Subject key identifier: 3B:8B:E4:47:A8:B1:3C:13:67:3A:C6:D0:5B:44:F0:F5:EF:82:F1:7B Authority key identifier: CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF Certificate issuer: /CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff Certificate serial: 019747429C3ADDB23A3EB91C00C1D7F52C7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft Manifest number: 1588 Signing time: Fri 06 Jun 2025 22:00:37 +0000 Manifest this update: Fri 06 Jun 2025 22:00:37 +0000 Manifest next update: Sat 07 Jun 2025 22:00:37 +0000 Files and hashes: 1: 2PiS2J9-ItXkVvnefA7xUJmmHco.roa (hash: fm4Z7vvzHDMokg8lvCFW4L0Rre6/U9BEbHKtNsNHxxs=) 2: 9TwneljnoP6bcfYQvihrxla0RcI.roa (hash: Zr2Ui8lpKBSfU5vJuPYuh/1cm8NiWiUfV6M604x4ojg=) 3: HkTCrKZqDwa8EUL4YflDFIxvuSo.roa (hash: zO36rkW4iEPf0HW9ThqXz35RBy/UdvCTSm39AhOu1Wg=) 4: KcTcayFrsZLodbwf3DiREG7aMgQ.roa (hash: 8/vbDhWMe2EfxMGVicJi+/pUGnJZy6R4MjOjEjkxjUk=) 5: LsmwcIccA3zM4d7kxqt3XhLcSa0.roa (hash: 98WTFaz7XPqlrJj7+XyfBTJEw1Sf7UEiPzA9D8zWsIw=) 6: PneAThfusF70GWHWywmhFb0vzKg.roa (hash: 0kjnbKbpSjxRU2te032pdWFUGrUsCjxiyKJ48H1DPUU=) 7: QPCXSoVGqmo5YTCi73-CSDuyZ-M.roa (hash: BYlFE9CUTQ67gGcO7goW8z5RieIlu+Sp4h/7HCES0Bg=) 8: T-x5NWBWP7z0RtMavKGuf9lbyTk.roa (hash: 5meL33wuT4ICoWjsr5JwrdL6iizp93b+W5Vq2RQt4cs=) 9: YPhWBSPHGs5SvVUlaCiCKWmqFfE.roa (hash: 5GbYaE22J8Owy6TgFxnM856qPEXWo4AxIXtfMEPnMxs=) 10: Yqt3Kg8k1YJOv7s88RcINuiKaCE.roa (hash: nWZ5K8Cmhazakp99a9slUSDcrdtW/sXazmS+lE8qgb8=) 11: d-qZVEez3-tqSbLZHyKHdZ5qcJA.roa (hash: +81/qDkled7/tuehBezhqXR9TX8Qi/57Cwe4Hugu7Ps=) 12: e3hNMZozjl2a8wTj5jqUKt2netU.roa (hash: z65fVe11ggvNgyomVpHPZ3mT5uEYvV6n9cNO6WIVkOQ=) 13: jcSJxEfFuIOqv-vUuvBQckyf-ZI.roa (hash: V8+8ahCoa4BEtoKDRdWiWxQzrt5GRgWy4qkSi1g/uZs=) 14: lcN6tqSn03IPMO2AvpfpxpGgDQY.roa (hash: 8fvPqg+8qqIeW9Kd8tRNl8Xlys8MO8b9CTy9FA3u9tA=) 15: lzFclAiK-AKgH976Yl_uXg9r5wM.roa (hash: H/cy8Ymyjy+9oeeIlZQHYMPSRfjOx2uqFxTFGhSTiGE=) 16: oLt7xT_rHP-Hxh3lUeggtdVEvTs.roa (hash: hblIrYC6F95+wg2sH5P/uCfjsNRvIhmQ2s3oU6U1S/g=) 17: ogeSaiZjPO4Kd4PF4MmZ3E0M2dA.roa (hash: Y6nye2lCZkZiTnuBzh99LMq3fLt8LGMzc9QAvB3SwlM=) 18: p-aeeSEszU3aapQ0yEslN0bhQQ8.roa (hash: Mh/Q23651bJq9potJm5ecJKYPprCxzH57rPx/Ooy5iY=) 19: r40XtPdgr8Y3RxrHTUe0xVuomM0.roa (hash: t4ySxCeAxHkHkDK1q9KhuYpYVZshrBVi3KJ4uODs/8Q=) 20: rD4_vnlr510eZLzrr2aCnfyAvEE.roa (hash: dL+NP4nhH4zwWo5a+tL5dbCaIelO5RMTVy2uI8g69YI=) 21: rdclR5rmMPPiGdub64u9CAD4cr0.roa (hash: wXgXLOiDxEJK62XQ7DLJMuxi7/zXmFbGyGpgUuOv+8k=) 22: tNteV-bYipxacIdsneN2kRS27vI.roa (hash: DK40xOAWm2KZPWxZ02RGtb+aUbxm0wIjZBTHx/mZzWs=) 23: uzMFOnPKpMqU8CP0ss6Mpv56PiE.roa (hash: F8nsfvroSbli8FdaVZTheRyMCu5cUrtu6qwv9yns62A=) 24: zYMT5B5kagnNAeLm9HOdO9I2xP8.crl (hash: p+ukVTihODcVjH/BhIbrfzCwxR7F2B34awb/pMndX70=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 22:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:47:42:9c:3a:dd:b2:3a:3e:b9:1c:00:c1:d7:f5:2c:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff Validity Not Before: Jun 6 22:00:37 2025 GMT Not After : Jun 7 22:00:37 2025 GMT Subject: CN=3b8be447a8b13c13673ac6d05b44f0f5ef82f17b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:db:c8:d6:9e:ea:2f:a7:26:4b:26:4d:2c:54: 46:ee:a4:1e:08:c3:b8:df:21:24:c7:52:78:b1:c9: 75:70:a8:ae:8e:eb:15:61:51:0d:21:c2:9d:5a:73: c3:89:52:38:f7:f8:f2:b7:e1:78:df:1d:b8:72:85: d3:4b:85:03:89:14:57:bc:93:10:26:cf:33:e7:22: 35:16:d1:ab:ec:d6:eb:50:d3:4b:4a:09:2c:a1:35: 03:9f:cb:9b:c9:ec:f8:1e:e1:88:5e:31:b7:a7:d9: f8:fb:87:c5:ac:0c:5d:62:c4:f9:d0:87:00:8b:af: c5:20:96:63:49:e0:45:2d:b8:29:9a:0b:64:f1:9e: 68:d4:b3:20:73:c3:85:a8:6e:eb:b5:d6:4b:0b:7d: 38:ff:bc:42:d3:b6:d4:6e:ca:08:e3:e9:86:4d:3b: be:af:f6:4e:b1:e6:9e:2e:05:47:80:ff:df:dd:da: 94:97:57:51:fc:5e:6d:0c:79:07:68:3e:fd:31:7f: 58:44:35:4c:f8:2f:b4:62:84:e5:0d:70:7d:83:6a: 6a:69:c7:01:5b:d7:7d:28:18:e5:24:5d:38:65:53: a5:1c:3c:d2:ec:a3:e6:3f:4f:17:55:cf:87:84:a1: 92:ba:88:37:2c:7b:32:c8:6e:6a:c9:10:9e:29:43: d4:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:8B:E4:47:A8:B1:3C:13:67:3A:C6:D0:5B:44:F0:F5:EF:82:F1:7B X509v3 Authority Key Identifier: keyid:CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:dc:fd:69:6a:2d:43:a7:dd:9c:8d:e1:43:f3:e9:b3:e5:1d: 5f:a0:81:03:e9:07:05:23:f3:57:f2:06:b6:26:1a:b6:4f:1a: 5d:b4:3f:a8:40:5f:bb:14:d7:03:c3:35:f6:66:13:38:70:b3: 30:e5:f0:14:cf:73:bf:db:6b:0b:cc:98:63:f5:73:41:4b:c6: 2e:5a:a5:ec:a6:db:5f:2c:de:71:5d:a9:74:5c:3a:51:f9:96: c4:2d:60:98:08:1d:d6:e2:af:12:33:dc:6d:5e:49:63:11:41: bc:ca:d5:da:b5:71:b1:3a:05:ee:61:7f:0c:15:26:36:e8:35: 45:ac:a5:7e:f2:fc:53:48:c2:70:94:40:28:27:98:7a:e8:4f: 6d:76:e4:9f:67:74:21:c5:81:c2:79:83:b6:36:6f:60:7a:e8: 62:a9:3e:dc:8a:81:41:a6:77:0a:6d:d1:98:59:ae:13:0e:b2: 22:bc:0d:3c:1e:25:f7:3b:63:a5:c4:d4:0c:75:fb:28:a1:05: 9c:62:75:c9:50:d5:8e:06:6f:8f:2e:83:24:ac:0b:b7:be:74: 80:40:de:bf:36:2c:4d:fc:cb:ea:f5:b0:3f:72:73:ce:c2:6d: d2:a8:67:43:1d:c6:75:19:58:41:5a:96:5d:19:18:5e:8b:c8: 8f:bc:97:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdHQpw63bI6PrkcAMHX9Sx9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkODMxM2U0MWU2NDZhMDljZDAxZTJlNmY0NzM5ZDNiZDIz NmM0ZmYwHhcNMjUwNjA2MjIwMDM3WhcNMjUwNjA3MjIwMDM3WjAzMTEwLwYDVQQD EygzYjhiZTQ0N2E4YjEzYzEzNjczYWM2ZDA1YjQ0ZjBmNWVmODJmMTdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxdvI1p7qL6cmSyZNLFRG7qQeCMO4 3yEkx1J4scl1cKiujusVYVENIcKdWnPDiVI49/jyt+F43x24coXTS4UDiRRXvJMQ Js8z5yI1FtGr7NbrUNNLSgksoTUDn8ubyez4HuGIXjG3p9n4+4fFrAxdYsT50IcA i6/FIJZjSeBFLbgpmgtk8Z5o1LMgc8OFqG7rtdZLC304/7xC07bUbsoI4+mGTTu+ r/ZOseaeLgVHgP/f3dqUl1dR/F5tDHkHaD79MX9YRDVM+C+0YoTlDXB9g2pqaccB W9d9KBjlJF04ZVOlHDzS7KPmP08XVc+HhKGSuog3LHsyyG5qyRCeKUPURwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDuL5EeosTwTZzrG0FtE8PXvgvF7MB8GA1UdIwQY MBaAFM2DE+QeZGoJzQHi5vRznTvSNsT/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQt ODg2MmI1MTczMTdjLzEvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQtODg2MmI1MTczMTdj LzEvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUtz9aWot Q6fdnI3hQ/Pps+UdX6CBA+kHBSPzV/IGtiYatk8aXbQ/qEBfuxTXA8M19mYTOHCz MOXwFM9zv9trC8yYY/VzQUvGLlql7KbbXyzecV2pdFw6UfmWxC1gmAgd1uKvEjPc bV5JYxFBvMrV2rVxsToF7mF/DBUmNug1RaylfvL8U0jCcJRAKCeYeuhPbXbkn2d0 IcWBwnmDtjZvYHroYqk+3IqBQaZ3Cm3RmFmuEw6yIrwNPB4l9ztjpcTUDHX7KKEF nGJ1yVDVjgZvjy6DJKwLt750gEDevzYsTfzL6vWwP3JzzsJt0qhnQx3GdRlYQVqW XRkYXovIj7yXdA== -----END CERTIFICATE-----Generated at Sat Jun 7 03:11:54 2025 by rpki-client