Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
File: hYYCc-snGSK59-yPSlkQFjVtcys.mft (raw, json)
Hash identifier: en57hK/d1p+cNiv5NGlC/QNUP63CY4mlIbNf2VWiHnM=
Subject key identifier: FA:94:74:5F:EE:11:3E:82:B2:96:0F:C4:75:1A:3A:D5:6C:67:B3:68
Authority key identifier: 85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
Certificate issuer: /CN=85860273eb271922b9f7ec8f4a591016356d732b
Certificate serial: 019DA3AF5375306BC3546FD208EE6D8002FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
Manifest number: 0DE6
Signing time: Sun 19 Apr 2026 03:01:09 +0000
Manifest this update: Sun 19 Apr 2026 03:01:09 +0000
Manifest next update: Mon 20 Apr 2026 03:01:09 +0000
Files and hashes: 1: D6JPgBB3y0DTXsN5OydtRsPiiEk.roa (hash: hsVhJoG6wAvpL0vm+kbIsCX/IqBHmR9dNribJiBqlUk=)
2: hYYCc-snGSK59-yPSlkQFjVtcys.crl (hash: WXWYD2hozhEx0V3leyvDXg+IH+msD7LPgzbN4q5Sk3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:af:53:75:30:6b:c3:54:6f:d2:08:ee:6d:80:02:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85860273eb271922b9f7ec8f4a591016356d732b
Validity
Not Before: Apr 19 03:01:09 2026 GMT
Not After : Apr 20 03:01:09 2026 GMT
Subject: CN=fa94745fee113e82b2960fc4751a3ad56c67b368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:65:a6:56:ed:34:b3:62:cf:c9:84:8a:7e:cc:
30:3b:7e:9d:77:a7:36:b5:d2:3d:6d:b6:3d:aa:b4:
d7:c9:2b:15:d0:02:a2:6f:b6:eb:f3:c3:9b:57:80:
87:55:c2:81:5d:e5:d9:52:13:2c:65:c3:9b:1f:c0:
ad:95:fa:ab:79:63:f8:55:17:3b:3b:6b:28:8d:74:
16:2f:9e:e0:e3:15:43:8a:25:cc:13:65:29:a1:05:
8e:0f:f6:ef:5a:f7:44:e5:f9:ea:13:c9:14:a5:3e:
62:6e:a9:2b:b7:b4:ba:43:16:54:3a:89:21:da:45:
07:52:76:d5:48:53:50:a2:4f:3e:29:26:55:37:a5:
50:10:27:92:6e:be:a9:2b:bf:92:10:c4:4f:22:e9:
bf:99:98:de:07:74:8d:7d:53:07:b7:89:d1:a2:35:
44:e3:7c:b6:77:e5:4d:ca:fb:93:bd:ce:0a:b4:bd:
ab:3e:04:37:2c:62:d6:e7:bc:4e:24:d2:ed:51:8b:
3b:45:b1:3d:a6:77:27:55:b4:6d:ee:5a:32:8c:29:
76:38:26:44:be:c5:96:8b:57:bf:7b:bd:4c:08:17:
80:ea:93:72:ea:3d:6d:89:a5:f9:b2:40:7c:5b:a1:
88:57:a0:c8:2c:3d:a3:41:ea:63:a0:0b:55:fc:ce:
5a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:94:74:5F:EE:11:3E:82:B2:96:0F:C4:75:1A:3A:D5:6C:67:B3:68
X509v3 Authority Key Identifier:
keyid:85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:38:ec:5e:1f:8e:31:41:e1:70:8b:6d:ab:c3:70:54:2d:82:
8e:70:ab:13:53:ca:83:b0:32:06:e1:ca:61:35:e3:4f:90:95:
a1:54:a6:be:77:7f:61:5e:d1:3d:07:73:9f:a1:9b:06:b7:f9:
6a:0f:ea:69:17:88:b3:6c:5c:d5:18:52:ca:64:3f:a5:49:94:
78:59:b9:24:59:94:e2:c4:8d:42:1a:8c:8a:bd:53:e8:5f:8c:
fa:04:af:f2:82:1e:85:80:1d:ad:1b:58:ea:f1:13:ce:29:ba:
35:c0:7d:e4:be:ac:86:43:02:e7:1f:0e:aa:ae:3d:35:16:81:
46:7e:a5:b4:96:d1:17:35:ea:19:96:06:e2:27:c2:36:be:40:
1b:db:dc:a3:4c:7d:e7:00:3e:43:9f:3d:d5:ed:b3:69:8e:db:
96:c4:2d:4c:a5:bf:17:ee:4b:75:49:eb:45:4a:df:34:e0:65:
2c:81:c3:6b:36:fa:8c:22:c2:f6:bd:c8:6a:9a:10:bd:9d:20:
03:a7:f4:83:81:f4:a6:e3:d9:f7:b0:3c:ee:a1:f2:b5:79:61:
26:95:07:34:f2:dc:89:35:06:08:77:9b:65:23:7e:52:1c:75:
cb:b2:69:27:ba:60:27:a5:4d:e5:5a:9b:57:38:b4:13:cd:09:
e4:27:fc:7b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2jr1N1MGvDVG/SCO5tgAL7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1ODYwMjczZWIyNzE5MjJiOWY3ZWM4ZjRhNTkxMDE2MzU2
ZDczMmIwHhcNMjYwNDE5MDMwMTA5WhcNMjYwNDIwMDMwMTA5WjAzMTEwLwYDVQQD
EyhmYTk0NzQ1ZmVlMTEzZTgyYjI5NjBmYzQ3NTFhM2FkNTZjNjdiMzY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmGWmVu00s2LPyYSKfswwO36dd6c2
tdI9bbY9qrTXySsV0AKib7br88ObV4CHVcKBXeXZUhMsZcObH8CtlfqreWP4VRc7
O2sojXQWL57g4xVDiiXME2UpoQWOD/bvWvdE5fnqE8kUpT5ibqkrt7S6QxZUOokh
2kUHUnbVSFNQok8+KSZVN6VQECeSbr6pK7+SEMRPIum/mZjeB3SNfVMHt4nRojVE
43y2d+VNyvuTvc4KtL2rPgQ3LGLW57xOJNLtUYs7RbE9pncnVbRt7loyjCl2OCZE
vsWWi1e/e71MCBeA6pNy6j1tiaX5skB8W6GIV6DILD2jQepjoAtV/M5aTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPqUdF/uET6CspYPxHUaOtVsZ7NoMB8GA1UdIwQY
MBaAFIWGAnPrJxkiuffsj0pZEBY1bXMrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFlZQ2Mtc25HU0s1OS15UFNsa1FGalZ0Y3lzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wMTU3YzktMzQ4OC00ZmI4LTliNGYt
OTkwOWVlMmYzM2IyLzEvaFlZQ2Mtc25HU0s1OS15UFNsa1FGalZ0Y3lzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wMTU3YzktMzQ4OC00ZmI4LTliNGYtOTkwOWVlMmYzM2Iy
LzEvaFlZQ2Mtc25HU0s1OS15UFNsa1FGalZ0Y3lzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWzjsXh+O
MUHhcIttq8NwVC2CjnCrE1PKg7AyBuHKYTXjT5CVoVSmvnd/YV7RPQdzn6GbBrf5
ag/qaReIs2xc1RhSymQ/pUmUeFm5JFmU4sSNQhqMir1T6F+M+gSv8oIehYAdrRtY
6vETzim6NcB95L6shkMC5x8Oqq49NRaBRn6ltJbRFzXqGZYG4ifCNr5AG9vco0x9
5wA+Q5891e2zaY7blsQtTKW/F+5LdUnrRUrfNOBlLIHDazb6jCLC9r3IapoQvZ0g
A6f0g4H0puPZ97A87qHytXlhJpUHNPLciTUGCHebZSN+Uhx1y7JpJ7pgJ6VN5Vqb
Vzi0E80J5Cf8ew==
-----END CERTIFICATE-----
Generated at Sun Apr 19 08:14:53 2026 by rpki-client