$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft File: YzkukpMXrmveCKWjuYorcB3biTo.mft (raw, json) Hash identifier: NGmFmuA4U7zicvt1PorSzkB/8AykgB3x/ps9i9CYw/4= Subject key identifier: D4:66:7A:7D:83:7D:DC:6F:C7:9A:FC:8C:D7:6B:46:A8:FC:43:F5:7C Authority key identifier: 63:39:2E:92:93:17:AE:6B:DE:08:A5:A3:B9:8A:2B:70:1D:DB:89:3A Certificate issuer: /CN=63392e929317ae6bde08a5a3b98a2b701ddb893a Certificate serial: 019D2929259536384E6CD587C7F6A9602BC4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YzkukpMXrmveCKWjuYorcB3biTo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft Manifest number: 0703 Signing time: Thu 26 Mar 2026 08:00:55 +0000 Manifest this update: Thu 26 Mar 2026 08:00:55 +0000 Manifest next update: Fri 27 Mar 2026 08:00:55 +0000 Files and hashes: 1: 05dJnjX2XorGTHQfrKvjhWfsRV4.roa (hash: KiOoN3ONMmepEer9bJk46C8CXe0dkRBysfrL6UFiDg4=) 2: 6sPueaU-Xz-iNYE6n6z1UIYXbPs.roa (hash: pjL7PLIGwLTNOBt+seTt/W2jPyX7Bk12lzulixeL94A=) 3: Ag9N_F37RcuQM8A4wSEwNzlbKjQ.roa (hash: 2K+D9bxizH0sqWU2qEMlwlkxQrgykxO7hyEi+m+gV4g=) 4: J9MOifVvxWkCXnbkT4Sr5P1XUQk.roa (hash: JFKzgNziUP2fsulFj18JSMHykZ0juIoG3V1HkaMBe5c=) 5: MjYgj5PkJtwB52FzuT0YsILbMY0.roa (hash: Indk9YkEk2hK3dLWnIDlZYz40E8hqE2V87I+wxoCcUk=) 6: YzkukpMXrmveCKWjuYorcB3biTo.crl (hash: XYLMx7QHika2+uJRunCdf4AdXYG6m8uLLQN6V63FnB4=) 7: aAyjGidCRd4HZ3z28s7kHfI3sFQ.roa (hash: yyghszcohtM5Wk9rUOZWwch/Wn48BU9LOtNcV0EZHsc=) 8: haQRwP2dzsg-sHVyLxYX0ft7Uk8.roa (hash: E+J4U5Y2xIVaeCaY8cTdAkE1+HOCrIQ4nNQKMPeb/WA=) 9: pExaAwfSYwr_lBTN5B-h28Hzx-Q.roa (hash: j5/WDKSKaukoZPKqhJSK8kewWRgRB7Z/9X/2kscz69Q=) 10: pOrqbHZi1VTPzd3E16dHigG9X_M.roa (hash: C1s5ru2cOKTgc4bOCi0g0DrVt47GvCI/PVKTkhz3xeo=) 11: uSGmmmaLtoe3eUHigIrN47aVHko.roa (hash: tjzYIHWpoG3yiW/4rVWqjKVzthPOwUg7TejbjmApHRI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft rsync://rpki.ripe.net/repository/DEFAULT/YzkukpMXrmveCKWjuYorcB3biTo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 08:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:29:29:25:95:36:38:4e:6c:d5:87:c7:f6:a9:60:2b:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63392e929317ae6bde08a5a3b98a2b701ddb893a Validity Not Before: Mar 26 08:00:55 2026 GMT Not After : Mar 27 08:00:55 2026 GMT Subject: CN=d4667a7d837ddc6fc79afc8cd76b46a8fc43f57c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:86:5c:65:ec:87:08:95:82:67:4f:6a:cc:d3: 90:01:dc:9e:b0:90:4d:01:03:02:b0:8c:6a:10:f7: 32:71:4c:59:c8:e8:f8:b7:9e:e7:a5:9a:8f:fd:8a: 84:66:4b:ff:a2:15:58:4b:c2:8f:33:4b:25:a4:bd: 00:bf:62:45:6b:e5:e1:7d:f1:fb:96:ca:d7:87:7f: ad:64:8a:6f:20:f2:89:fc:22:10:ea:f3:da:72:f2: c7:ac:1c:54:5e:52:08:fe:58:72:7c:43:0c:54:04: 35:f7:41:19:07:a1:74:d1:f4:6f:ad:06:2f:19:f9: 18:b6:67:91:6f:32:5a:cb:e0:cb:4e:5d:7f:21:16: 4f:70:e1:95:9a:4c:2f:c5:6b:21:9e:99:24:97:8f: f6:ff:2c:61:93:81:f1:d0:f1:0c:a7:c2:3a:c1:a6: 79:ee:0e:2c:87:8b:9e:71:d6:b4:51:c8:81:95:55: 94:77:84:4e:59:35:85:49:a9:14:e1:5c:de:d5:cb: e8:04:b3:56:89:26:18:11:1c:c6:24:0e:cb:2b:90: 6b:00:50:d4:4e:46:18:63:c2:8f:34:df:49:80:d6: f7:04:e6:d2:cb:33:fa:27:fc:dd:93:73:07:25:48: 58:3d:7b:eb:c0:56:fb:57:fd:83:09:f2:36:5a:25: b6:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:66:7A:7D:83:7D:DC:6F:C7:9A:FC:8C:D7:6B:46:A8:FC:43:F5:7C X509v3 Authority Key Identifier: keyid:63:39:2E:92:93:17:AE:6B:DE:08:A5:A3:B9:8A:2B:70:1D:DB:89:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YzkukpMXrmveCKWjuYorcB3biTo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:99:c6:44:81:2c:07:9e:cb:d3:3c:2d:19:ee:72:14:2c:5b: b0:83:11:bd:a7:51:dd:80:31:6e:05:07:c0:25:47:83:ef:4c: a0:e1:64:a5:d4:0b:ad:e9:64:26:7d:02:c2:14:40:17:12:39: 8d:75:f5:53:d7:7e:98:b2:7e:54:ba:b4:4c:e9:34:82:e0:c8: 9f:b2:fc:71:fe:a6:00:47:ba:12:97:23:57:c2:af:06:46:f9: 98:be:05:ec:dc:05:bf:2b:74:45:66:34:1d:e9:f9:c0:6f:b5: 0e:b9:90:b2:67:eb:cc:f8:67:d7:50:b3:2d:0e:d2:f5:7d:c3: 73:4c:ba:7e:f4:fb:df:d0:07:ea:9a:2a:4b:ea:f9:7c:8c:57: 0e:bb:ac:b2:50:00:37:0c:88:f0:73:ff:49:fe:c6:f2:c6:48: 0e:f4:6d:4a:16:75:31:81:ce:c8:f8:3c:22:65:91:4a:d8:38: ee:e0:77:d4:f4:1b:6c:66:c7:26:bd:04:18:b4:77:c6:ea:7c: 02:ff:f7:e9:ad:a6:71:bb:bb:d6:b5:0c:d9:06:81:40:7f:1f: b3:bd:60:6e:06:8f:be:f5:84:e4:e9:83:74:f3:25:20:c3:5f: d6:09:ab:70:1f:57:9f:12:df:58:20:a4:e8:fb:4e:68:0c:f9: db:d0:fe:ae -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0pKSWVNjhObNWHx/apYCvEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzMzkyZTkyOTMxN2FlNmJkZTA4YTVhM2I5OGEyYjcwMWRk Yjg5M2EwHhcNMjYwMzI2MDgwMDU1WhcNMjYwMzI3MDgwMDU1WjAzMTEwLwYDVQQD EyhkNDY2N2E3ZDgzN2RkYzZmYzc5YWZjOGNkNzZiNDZhOGZjNDNmNTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkIZcZeyHCJWCZ09qzNOQAdyesJBN AQMCsIxqEPcycUxZyOj4t57npZqP/YqEZkv/ohVYS8KPM0slpL0Av2JFa+XhffH7 lsrXh3+tZIpvIPKJ/CIQ6vPacvLHrBxUXlII/lhyfEMMVAQ190EZB6F00fRvrQYv GfkYtmeRbzJay+DLTl1/IRZPcOGVmkwvxWshnpkkl4/2/yxhk4Hx0PEMp8I6waZ5 7g4sh4uecda0UciBlVWUd4ROWTWFSakU4Vze1cvoBLNWiSYYERzGJA7LK5BrAFDU TkYYY8KPNN9JgNb3BObSyzP6J/zdk3MHJUhYPXvrwFb7V/2DCfI2WiW2HQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNRmen2Dfdxvx5r8jNdrRqj8Q/V8MB8GA1UdIwQY MBaAFGM5LpKTF65r3gilo7mKK3Ad24k6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXprdWtwTVhybXZlQ0tXanVZb3JjQjNiaVRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9mZTcwMmUtYzI2Yi00NDI5LTk5YzEt ODcyNTBmNWEwN2NjLzEvWXprdWtwTVhybXZlQ0tXanVZb3JjQjNiaVRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC9mZTcwMmUtYzI2Yi00NDI5LTk5YzEtODcyNTBmNWEwN2Nj LzEvWXprdWtwTVhybXZlQ0tXanVZb3JjQjNiaVRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf5nGRIEs B57L0zwtGe5yFCxbsIMRvadR3YAxbgUHwCVHg+9MoOFkpdQLrelkJn0CwhRAFxI5 jXX1U9d+mLJ+VLq0TOk0guDIn7L8cf6mAEe6EpcjV8KvBkb5mL4F7NwFvyt0RWY0 Hen5wG+1DrmQsmfrzPhn11CzLQ7S9X3Dc0y6fvT739AH6poqS+r5fIxXDrusslAA NwyI8HP/Sf7G8sZIDvRtShZ1MYHOyPg8ImWRStg47uB31PQbbGbHJr0EGLR3xup8 Av/36a2mcbu71rUM2QaBQH8fs71gbgaPvvWE5OmDdPMlIMNf1gmrcB9XnxLfWCCk 6PtOaAz529D+rg== -----END CERTIFICATE-----Generated at Thu Mar 26 17:24:03 2026 by rpki-client