Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft
File: Y42aUATFktCTzImw2QdS4nnVGFQ.mft (raw, json)
Hash identifier: 9TiVvt5jfKns81IdyCc1yjTtfCGpu+RPVL6QTv+P7a8=
Subject key identifier: 0A:FA:4D:B8:7D:3F:D7:76:40:71:80:DD:C4:6E:65:3A:C6:9D:60:CE
Authority key identifier: 63:8D:9A:50:04:C5:92:D0:93:CC:89:B0:D9:07:52:E2:79:D5:18:54
Certificate issuer: /CN=638d9a5004c592d093cc89b0d90752e279d51854
Certificate serial: 019CAA21F057E7846D799D095FD7692F0164
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y42aUATFktCTzImw2QdS4nnVGFQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft
Manifest number: 1846
Signing time: Sun 01 Mar 2026 16:01:16 +0000
Manifest this update: Sun 01 Mar 2026 16:01:16 +0000
Manifest next update: Mon 02 Mar 2026 16:01:16 +0000
Files and hashes: 1: Y42aUATFktCTzImw2QdS4nnVGFQ.crl (hash: stG4aKu2BctAAmdY6A1vSxySnkZG4KdQPahwwHmh5LQ=)
2: yh8RCY-bj175I6qO1y_qoa8Z7Jc.roa (hash: 4zdPWYLlDQUfMdRZQkA+GGAtm8jeXR0HD9R4ibPVvfY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y42aUATFktCTzImw2QdS4nnVGFQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:f0:57:e7:84:6d:79:9d:09:5f:d7:69:2f:01:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=638d9a5004c592d093cc89b0d90752e279d51854
Validity
Not Before: Mar 1 16:01:16 2026 GMT
Not After : Mar 2 16:01:16 2026 GMT
Subject: CN=0afa4db87d3fd776407180ddc46e653ac69d60ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3e:10:6e:00:89:af:6e:e1:74:b9:59:23:4b:
d6:9c:cf:d3:12:f5:04:e6:f7:16:5f:a5:90:0a:41:
f1:23:28:6c:3d:29:4a:c0:90:81:92:4b:5b:09:17:
11:1f:dd:de:92:54:c9:98:99:d8:02:bb:ff:15:7c:
f3:02:a8:62:3c:4b:73:11:20:d5:f3:e6:b4:5f:2d:
f3:86:42:83:ca:2c:fe:39:86:ac:d0:a2:52:9c:72:
b8:2c:7e:22:3f:77:e5:46:63:5a:b2:71:ab:8a:51:
2d:4e:81:d9:37:22:6a:b2:e3:e0:8a:18:ac:8b:fb:
55:ba:98:d5:b0:6a:5f:c9:33:86:bf:96:ab:5b:06:
c6:ce:35:09:12:3c:06:37:59:8b:6e:90:50:0b:dc:
21:69:ad:b5:48:72:41:d0:cc:13:73:71:bb:0c:60:
b7:3f:80:d9:8f:dd:b4:5f:94:e6:97:56:72:d4:cf:
2a:d9:3f:95:3e:29:7f:c3:6f:f0:02:4f:e8:a4:56:
54:46:8b:31:ac:46:06:c5:3f:d7:49:b6:71:8d:03:
de:eb:cf:18:e9:08:a0:30:6c:e8:5a:1e:15:4a:de:
ec:6d:a2:db:de:e7:5a:9f:f4:67:68:51:dd:83:35:
9e:cc:5c:1c:4b:6f:83:6c:ef:30:9d:bb:51:83:4a:
fb:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:FA:4D:B8:7D:3F:D7:76:40:71:80:DD:C4:6E:65:3A:C6:9D:60:CE
X509v3 Authority Key Identifier:
keyid:63:8D:9A:50:04:C5:92:D0:93:CC:89:B0:D9:07:52:E2:79:D5:18:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y42aUATFktCTzImw2QdS4nnVGFQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:4e:48:7f:e8:55:53:8a:3b:21:c9:9f:94:19:26:dc:d0:dc:
46:a1:59:e1:95:67:e6:98:9a:97:98:f3:ac:6f:00:e3:c0:5b:
f1:eb:b0:fc:38:ae:e4:58:7d:4f:0e:98:48:47:8f:71:a2:eb:
bc:91:88:6d:4b:1f:7c:de:28:be:28:60:a1:f8:17:24:90:ae:
15:3c:58:bf:0a:c2:06:b7:e6:9f:37:ef:b3:4c:e7:6f:cb:7f:
6f:e5:6f:f0:28:9f:f1:48:a4:19:27:88:34:77:79:f1:43:78:
23:b9:69:b0:06:72:17:cd:bd:a2:b5:43:d4:11:44:11:14:26:
5f:a0:6f:5d:e3:74:7e:f0:7f:5f:7b:8c:8c:cd:11:ae:48:20:
d2:97:27:99:fe:07:ff:a0:07:ca:a2:b9:e6:6b:ff:5e:62:ce:
5f:6e:47:27:aa:76:3c:1a:03:46:7b:6c:46:09:f2:7f:8a:73:
59:0c:df:36:2f:2a:f6:35:7c:f5:c2:89:13:b6:22:40:16:97:
6a:55:4e:96:c1:34:2b:ae:11:90:7c:1d:c8:4a:c3:93:93:7d:
19:62:f9:cc:9e:46:29:ca:a1:a2:1e:e6:29:72:c8:28:1e:04:
53:25:0c:e4:37:c7:d4:ed:86:81:94:fa:55:54:1e:cd:2b:2b:
d6:b3:2f:21
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqIfBX54RteZ0JX9dpLwFkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzOGQ5YTUwMDRjNTkyZDA5M2NjODliMGQ5MDc1MmUyNzlk
NTE4NTQwHhcNMjYwMzAxMTYwMTE2WhcNMjYwMzAyMTYwMTE2WjAzMTEwLwYDVQQD
EygwYWZhNGRiODdkM2ZkNzc2NDA3MTgwZGRjNDZlNjUzYWM2OWQ2MGNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArj4QbgCJr27hdLlZI0vWnM/TEvUE
5vcWX6WQCkHxIyhsPSlKwJCBkktbCRcRH93eklTJmJnYArv/FXzzAqhiPEtzESDV
8+a0Xy3zhkKDyiz+OYas0KJSnHK4LH4iP3flRmNasnGrilEtToHZNyJqsuPgihis
i/tVupjVsGpfyTOGv5arWwbGzjUJEjwGN1mLbpBQC9whaa21SHJB0MwTc3G7DGC3
P4DZj920X5Tml1Zy1M8q2T+VPil/w2/wAk/opFZURosxrEYGxT/XSbZxjQPe688Y
6QigMGzoWh4VSt7sbaLb3udan/RnaFHdgzWezFwcS2+DbO8wnbtRg0r7hwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAr6Tbh9P9d2QHGA3cRuZTrGnWDOMB8GA1UdIwQY
MBaAFGONmlAExZLQk8yJsNkHUuJ51RhUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWTQyYVVBVEZrdENUekltdzJRZFM0bm5WR0ZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8wY2Y2ZDctZDhlZi00NGE4LWFhMDct
Nzc2OGQ0ZmJkY2QzLzEvWTQyYVVBVEZrdENUekltdzJRZFM0bm5WR0ZRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS8wY2Y2ZDctZDhlZi00NGE4LWFhMDctNzc2OGQ0ZmJkY2Qz
LzEvWTQyYVVBVEZrdENUekltdzJRZFM0bm5WR0ZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAME5If+hV
U4o7IcmflBkm3NDcRqFZ4ZVn5pial5jzrG8A48Bb8euw/Diu5Fh9Tw6YSEePcaLr
vJGIbUsffN4ovihgofgXJJCuFTxYvwrCBrfmnzfvs0znb8t/b+Vv8Cif8UikGSeI
NHd58UN4I7lpsAZyF829orVD1BFEERQmX6BvXeN0fvB/X3uMjM0Rrkgg0pcnmf4H
/6AHyqK55mv/XmLOX25HJ6p2PBoDRntsRgnyf4pzWQzfNi8q9jV89cKJE7YiQBaX
alVOlsE0K64RkHwdyErDk5N9GWL5zJ5GKcqhoh7mKXLIKB4EUyUM5DfH1O2GgZT6
VVQezSsr1rMvIQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 01:02:42 2026 by rpki-client