$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft File: YzkukpMXrmveCKWjuYorcB3biTo.mft (raw, json) Hash identifier: JoTD6TUxX0poorDydioiyDv5N+nJgU+LUcTnD5TSMrw= Subject key identifier: 21:73:AB:29:E6:D1:4B:17:A2:41:CF:77:49:89:6F:EF:89:E4:9D:E4 Authority key identifier: 63:39:2E:92:93:17:AE:6B:DE:08:A5:A3:B9:8A:2B:70:1D:DB:89:3A Certificate issuer: /CN=63392e929317ae6bde08a5a3b98a2b701ddb893a Certificate serial: 019D273B19059A2F2481D6D237BDE2D224F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YzkukpMXrmveCKWjuYorcB3biTo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft Manifest number: 0702 Signing time: Wed 25 Mar 2026 23:01:17 +0000 Manifest this update: Wed 25 Mar 2026 23:01:17 +0000 Manifest next update: Thu 26 Mar 2026 23:01:17 +0000 Files and hashes: 1: 05dJnjX2XorGTHQfrKvjhWfsRV4.roa (hash: KiOoN3ONMmepEer9bJk46C8CXe0dkRBysfrL6UFiDg4=) 2: 6sPueaU-Xz-iNYE6n6z1UIYXbPs.roa (hash: pjL7PLIGwLTNOBt+seTt/W2jPyX7Bk12lzulixeL94A=) 3: Ag9N_F37RcuQM8A4wSEwNzlbKjQ.roa (hash: 2K+D9bxizH0sqWU2qEMlwlkxQrgykxO7hyEi+m+gV4g=) 4: J9MOifVvxWkCXnbkT4Sr5P1XUQk.roa (hash: JFKzgNziUP2fsulFj18JSMHykZ0juIoG3V1HkaMBe5c=) 5: MjYgj5PkJtwB52FzuT0YsILbMY0.roa (hash: Indk9YkEk2hK3dLWnIDlZYz40E8hqE2V87I+wxoCcUk=) 6: YzkukpMXrmveCKWjuYorcB3biTo.crl (hash: JjmXGcTsKz8MEV2FLu4bwbXUB13Uk+E5BzWf8j74FxA=) 7: aAyjGidCRd4HZ3z28s7kHfI3sFQ.roa (hash: yyghszcohtM5Wk9rUOZWwch/Wn48BU9LOtNcV0EZHsc=) 8: haQRwP2dzsg-sHVyLxYX0ft7Uk8.roa (hash: E+J4U5Y2xIVaeCaY8cTdAkE1+HOCrIQ4nNQKMPeb/WA=) 9: pExaAwfSYwr_lBTN5B-h28Hzx-Q.roa (hash: j5/WDKSKaukoZPKqhJSK8kewWRgRB7Z/9X/2kscz69Q=) 10: pOrqbHZi1VTPzd3E16dHigG9X_M.roa (hash: C1s5ru2cOKTgc4bOCi0g0DrVt47GvCI/PVKTkhz3xeo=) 11: uSGmmmaLtoe3eUHigIrN47aVHko.roa (hash: tjzYIHWpoG3yiW/4rVWqjKVzthPOwUg7TejbjmApHRI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft rsync://rpki.ripe.net/repository/DEFAULT/YzkukpMXrmveCKWjuYorcB3biTo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 23:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:27:3b:19:05:9a:2f:24:81:d6:d2:37:bd:e2:d2:24:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63392e929317ae6bde08a5a3b98a2b701ddb893a Validity Not Before: Mar 25 23:01:17 2026 GMT Not After : Mar 26 23:01:17 2026 GMT Subject: CN=2173ab29e6d14b17a241cf7749896fef89e49de4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:81:6e:88:13:d1:7e:ea:cc:92:ec:6c:50:c2: 61:d7:08:72:18:99:35:fd:33:10:bd:7e:5c:12:92: d4:08:5e:00:ae:60:ff:a6:23:27:b2:43:9b:ba:af: ed:52:16:62:a3:b2:14:24:b8:49:5a:e9:f6:fc:94: 39:a4:a6:9d:7a:c6:68:96:b9:c1:8a:9e:47:1d:c7: 77:f5:f4:de:6f:53:62:bf:0e:a4:6a:0e:8c:b7:8d: b7:49:df:1c:d0:a8:ca:b5:f6:e0:ec:aa:af:8c:1f: 12:76:7a:61:11:8f:14:50:3a:af:de:90:e0:ac:20: 4e:ce:73:66:d2:a4:1c:2a:38:c0:e7:5f:df:58:fd: 30:c3:21:16:39:4c:65:12:a6:8e:45:34:b8:72:e9: 06:44:a6:97:6b:65:e7:5f:e7:67:1b:54:c7:31:3b: b8:a7:06:bf:24:16:44:bf:26:36:ee:9c:05:05:3d: 4c:3c:2b:14:21:70:0d:fd:6a:64:9f:d4:a6:19:43: b0:d8:ec:59:0f:db:ba:7e:6c:d3:72:e4:09:4f:c9: ce:fc:99:8b:1e:b2:a3:41:27:f4:21:95:d8:96:29: ec:45:48:94:3a:12:bb:0c:bc:c7:c5:67:a0:fb:55: 72:75:b8:8e:d7:f5:b0:17:f4:cd:ad:97:0e:6a:6b: 5c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:73:AB:29:E6:D1:4B:17:A2:41:CF:77:49:89:6F:EF:89:E4:9D:E4 X509v3 Authority Key Identifier: keyid:63:39:2E:92:93:17:AE:6B:DE:08:A5:A3:B9:8A:2B:70:1D:DB:89:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YzkukpMXrmveCKWjuYorcB3biTo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:c6:f2:c7:a6:4c:56:9e:f3:f0:a8:1b:a2:8c:65:d8:8b:0f: a2:9f:8f:cd:6f:3d:d7:4f:eb:fc:ba:0b:70:dc:25:9c:26:ba: 80:7c:a5:25:09:08:f6:d5:c8:ee:af:ca:10:a7:ca:a4:98:56: a5:84:78:5e:00:6e:8d:ee:6a:7c:cf:f0:86:89:58:8a:ea:4f: 69:40:46:95:a9:b4:97:d6:4a:e5:73:68:0e:57:d6:3e:be:e6: 81:a4:ec:37:e7:3f:ab:10:46:4a:e2:72:11:d9:6b:81:3c:e0: bf:5a:e3:10:d8:52:37:9f:7f:af:7e:36:6d:48:78:e6:f0:b7: 5f:5c:f2:66:04:9c:fa:69:39:6f:d0:ec:8f:08:f4:43:80:17: 3e:21:08:6d:dd:af:c0:f5:33:83:36:cf:8d:cc:09:ec:15:e6: fa:5b:15:f8:4d:71:c6:20:b0:25:d3:bf:ad:26:ac:25:d6:46: c4:0c:2d:5b:a5:8b:e5:af:cf:8a:0e:df:f2:03:79:44:17:cc: 15:6c:5a:a8:e9:9d:4e:4c:53:70:c7:a4:e3:82:a2:38:cb:6e: cb:6f:84:f2:25:11:00:7c:c3:41:43:17:bb:d9:85:5c:ab:ec: 04:ef:3a:09:a0:14:43:3a:be:d1:b2:16:be:1b:b4:00:2b:3e: 23:e5:68:77 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0nOxkFmi8kgdbSN73i0iTzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzMzkyZTkyOTMxN2FlNmJkZTA4YTVhM2I5OGEyYjcwMWRk Yjg5M2EwHhcNMjYwMzI1MjMwMTE3WhcNMjYwMzI2MjMwMTE3WjAzMTEwLwYDVQQD EygyMTczYWIyOWU2ZDE0YjE3YTI0MWNmNzc0OTg5NmZlZjg5ZTQ5ZGU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlIFuiBPRfurMkuxsUMJh1whyGJk1 /TMQvX5cEpLUCF4ArmD/piMnskObuq/tUhZio7IUJLhJWun2/JQ5pKadesZolrnB ip5HHcd39fTeb1Nivw6kag6Mt423Sd8c0KjKtfbg7KqvjB8SdnphEY8UUDqv3pDg rCBOznNm0qQcKjjA51/fWP0wwyEWOUxlEqaORTS4cukGRKaXa2XnX+dnG1THMTu4 pwa/JBZEvyY27pwFBT1MPCsUIXAN/Wpkn9SmGUOw2OxZD9u6fmzTcuQJT8nO/JmL HrKjQSf0IZXYlinsRUiUOhK7DLzHxWeg+1VydbiO1/WwF/TNrZcOamtcqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCFzqynm0UsXokHPd0mJb++J5J3kMB8GA1UdIwQY MBaAFGM5LpKTF65r3gilo7mKK3Ad24k6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXprdWtwTVhybXZlQ0tXanVZb3JjQjNiaVRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9mZTcwMmUtYzI2Yi00NDI5LTk5YzEt ODcyNTBmNWEwN2NjLzEvWXprdWtwTVhybXZlQ0tXanVZb3JjQjNiaVRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC9mZTcwMmUtYzI2Yi00NDI5LTk5YzEtODcyNTBmNWEwN2Nj LzEvWXprdWtwTVhybXZlQ0tXanVZb3JjQjNiaVRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQsbyx6ZM Vp7z8Kgbooxl2IsPop+PzW8910/r/LoLcNwlnCa6gHylJQkI9tXI7q/KEKfKpJhW pYR4XgBuje5qfM/wholYiupPaUBGlam0l9ZK5XNoDlfWPr7mgaTsN+c/qxBGSuJy EdlrgTzgv1rjENhSN59/r342bUh45vC3X1zyZgSc+mk5b9Dsjwj0Q4AXPiEIbd2v wPUzgzbPjcwJ7BXm+lsV+E1xxiCwJdO/rSasJdZGxAwtW6WL5a/Pig7f8gN5RBfM FWxaqOmdTkxTcMek44KiOMtuy2+E8iURAHzDQUMXu9mFXKvsBO86CaAUQzq+0bIW vhu0ACs+I+Vodw== -----END CERTIFICATE-----Generated at Thu Mar 26 08:30:33 2026 by rpki-client