Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
File: ydWxKeBvlSRoXnABAoQfctaRXDM.mft (raw, json)
Hash identifier: TJr+SHjt6ptfBHSrg1cN5dff59YD33vOe7SpECZOj2I=
Subject key identifier: 4D:E2:F5:76:C5:54:F7:FE:40:F1:9C:28:DA:49:DF:9D:FC:F8:F8:E1
Authority key identifier: C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
Certificate issuer: /CN=c9d5b129e06f9524685e700102841f72d6915c33
Certificate serial: 019D992B3E74516F0D62B283D6053565BC5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
Manifest number: 06A5
Signing time: Fri 17 Apr 2026 02:00:40 +0000
Manifest this update: Fri 17 Apr 2026 02:00:40 +0000
Manifest next update: Sat 18 Apr 2026 02:00:40 +0000
Files and hashes: 1: BNMGtjTTYKe2pymUlI-2By8WAuY.roa (hash: RrYXesXXO0Vl2bktuDwSHZFyLC3J01YK9f8as6ZBpiA=)
2: ydWxKeBvlSRoXnABAoQfctaRXDM.crl (hash: ZVZ4RWQ/2mk6zafYxJZxuOoR9lezDVSDR3b5QpO1heY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:3e:74:51:6f:0d:62:b2:83:d6:05:35:65:bc:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d5b129e06f9524685e700102841f72d6915c33
Validity
Not Before: Apr 17 02:00:40 2026 GMT
Not After : Apr 18 02:00:40 2026 GMT
Subject: CN=4de2f576c554f7fe40f19c28da49df9dfcf8f8e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ff:f6:95:c8:a7:a5:9d:51:8d:44:51:7a:73:
4c:73:09:82:e9:24:0f:59:21:4e:bb:56:62:ce:13:
1c:08:7b:1c:0c:e9:e3:a1:ff:7d:85:21:dc:da:2c:
e8:3d:69:6c:02:b3:d6:d6:ba:3b:28:f1:b8:b9:12:
aa:d4:f8:c1:30:0c:6a:cd:e7:58:5b:0f:db:f8:c8:
b1:79:ae:82:ff:05:d9:31:5e:32:e2:2c:f9:f4:f2:
2b:71:2b:f4:cb:a6:ed:32:26:cb:0c:af:31:93:c2:
77:b7:48:1e:94:aa:7a:15:4b:9f:50:68:74:0a:0b:
5e:f7:e2:3b:35:00:83:b0:b7:48:02:f7:18:e3:7e:
3b:0c:31:c1:39:ec:f2:76:c7:93:c0:6e:6a:9c:fa:
ac:79:b8:ef:36:ac:b6:16:c4:b0:e0:cd:f9:e3:da:
ca:ed:e1:0e:d2:a2:1a:74:ca:5d:57:82:bc:c6:46:
2b:f0:9e:ad:27:7e:70:65:e0:a7:cb:5c:ed:02:2a:
36:c9:58:53:2b:97:a9:86:32:c4:8d:d7:57:60:21:
7f:3d:fa:f4:0a:e3:14:f8:f7:a5:d3:bd:b6:64:96:
90:3e:7b:25:30:7e:76:73:d4:b2:be:c2:3c:b6:b8:
a5:c7:70:2f:d1:fa:d5:5b:0e:e9:2b:65:b3:e3:a5:
44:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:E2:F5:76:C5:54:F7:FE:40:F1:9C:28:DA:49:DF:9D:FC:F8:F8:E1
X509v3 Authority Key Identifier:
keyid:C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:f5:4c:43:08:bd:e1:2c:d6:e0:30:aa:ed:ef:92:87:61:f9:
b0:c7:aa:77:60:63:ea:eb:fa:04:b7:c5:40:6e:ad:7a:ad:9a:
31:3a:93:36:62:a4:23:44:25:57:59:27:4c:ec:66:7f:60:6b:
2b:ac:e4:79:6a:18:6f:e2:54:b6:73:37:cb:a1:93:eb:94:fe:
ec:25:5d:3d:20:35:1e:ea:73:78:f0:28:70:98:34:16:12:81:
b3:34:d2:0b:a2:41:22:50:ff:b9:28:fd:77:bc:22:fe:db:9d:
a2:7d:f3:85:05:99:12:44:59:39:bf:52:c3:99:d8:00:27:0f:
bf:af:4c:03:34:47:c4:b2:e0:29:d6:44:c4:47:0e:eb:46:96:
cd:f9:41:d7:c6:75:2b:d7:8e:10:e0:fe:3b:b6:61:cc:2d:c9:
b1:96:7d:f5:79:c5:c5:53:e6:e2:a7:e6:93:f8:fd:f1:7c:40:
91:97:da:8f:e9:89:3e:47:b4:56:de:ba:25:4d:0e:64:b7:18:
ba:02:66:e4:79:cd:8e:b8:cb:f7:b3:16:ad:75:46:eb:f0:e2:
46:05:c8:a6:a9:35:8e:4a:b4:c4:01:28:e0:ce:00:de:fc:11:
4a:5c:c7:6c:a6:26:5b:5a:40:af:48:82:3f:6b:98:e8:b6:89:
aa:5a:63:21
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZKz50UW8NYrKD1gU1ZbxeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDViMTI5ZTA2Zjk1MjQ2ODVlNzAwMTAyODQxZjcyZDY5
MTVjMzMwHhcNMjYwNDE3MDIwMDQwWhcNMjYwNDE4MDIwMDQwWjAzMTEwLwYDVQQD
Eyg0ZGUyZjU3NmM1NTRmN2ZlNDBmMTljMjhkYTQ5ZGY5ZGZjZjhmOGUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl//2lcinpZ1RjURRenNMcwmC6SQP
WSFOu1ZizhMcCHscDOnjof99hSHc2izoPWlsArPW1ro7KPG4uRKq1PjBMAxqzedY
Ww/b+Mixea6C/wXZMV4y4iz59PIrcSv0y6btMibLDK8xk8J3t0gelKp6FUufUGh0
Cgte9+I7NQCDsLdIAvcY4347DDHBOezydseTwG5qnPqsebjvNqy2FsSw4M3549rK
7eEO0qIadMpdV4K8xkYr8J6tJ35wZeCny1ztAio2yVhTK5ephjLEjddXYCF/Pfr0
CuMU+Pel0722ZJaQPnslMH52c9SyvsI8trilx3Av0frVWw7pK2Wz46VEtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE3i9XbFVPf+QPGcKNpJ3538+PjhMB8GA1UdIwQY
MBaAFMnVsSngb5UkaF5wAQKEH3LWkVwzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRXeEtlQnZsU1JvWG5BQkFvUWZjdGFSWERNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS8xOWY5ZDctNDQzOC00ZDYxLWJlNzct
YzJlYWRkNWVmM2YxLzEveWRXeEtlQnZsU1JvWG5BQkFvUWZjdGFSWERNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS8xOWY5ZDctNDQzOC00ZDYxLWJlNzctYzJlYWRkNWVmM2Yx
LzEveWRXeEtlQnZsU1JvWG5BQkFvUWZjdGFSWERNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh/VMQwi9
4SzW4DCq7e+Sh2H5sMeqd2Bj6uv6BLfFQG6teq2aMTqTNmKkI0QlV1knTOxmf2Br
K6zkeWoYb+JUtnM3y6GT65T+7CVdPSA1HupzePAocJg0FhKBszTSC6JBIlD/uSj9
d7wi/tudon3zhQWZEkRZOb9Sw5nYACcPv69MAzRHxLLgKdZExEcO60aWzflB18Z1
K9eOEOD+O7ZhzC3JsZZ99XnFxVPm4qfmk/j98XxAkZfaj+mJPke0Vt66JU0OZLcY
ugJm5HnNjrjL97MWrXVG6/DiRgXIpqk1jkq0xAEo4M4A3vwRSlzHbKYmW1pAr0iC
P2uY6LaJqlpjIQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:35:39 2026 by rpki-client