Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft
File: YDM81vG1nAtoLh2jiSN-2j6dqRg.mft (raw, json)
Hash identifier: N+fbAafUzC8Il79Y9z9e80kKz3K8Yqd57OkgsTA8Ugw=
Subject key identifier: A6:0C:A5:69:48:AE:8A:E2:44:D3:5F:26:1E:EB:83:1D:3E:79:14:82
Authority key identifier: 60:33:3C:D6:F1:B5:9C:0B:68:2E:1D:A3:89:23:7E:DA:3E:9D:A9:18
Certificate issuer: /CN=60333cd6f1b59c0b682e1da389237eda3e9da918
Certificate serial: 019CABD9AE93FAF672ABA1D080543C104E5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDM81vG1nAtoLh2jiSN-2j6dqRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft
Manifest number: 0F29
Signing time: Mon 02 Mar 2026 00:01:35 +0000
Manifest this update: Mon 02 Mar 2026 00:01:35 +0000
Manifest next update: Tue 03 Mar 2026 00:01:35 +0000
Files and hashes: 1: YDM81vG1nAtoLh2jiSN-2j6dqRg.crl (hash: QjuHAQo8c8Ig9h2+z6JMpOb7ac2DLk8fL+oNAowBWc0=)
2: nd54JNe4vIZ_-Gecq7CuS7z9ouE.roa (hash: uDzn2UrQJ/gWE6VmVbdTq4BSTBqexLqsyHgtdAqNXeA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YDM81vG1nAtoLh2jiSN-2j6dqRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:ae:93:fa:f6:72:ab:a1:d0:80:54:3c:10:4e:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60333cd6f1b59c0b682e1da389237eda3e9da918
Validity
Not Before: Mar 2 00:01:35 2026 GMT
Not After : Mar 3 00:01:35 2026 GMT
Subject: CN=a60ca56948ae8ae244d35f261eeb831d3e791482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:70:b7:4f:3c:8b:0d:03:2f:3c:12:ee:79:79:
8a:72:54:7f:e8:91:2d:3a:b5:05:94:fa:c1:f9:6d:
34:e3:6f:2d:ec:9c:7d:f2:c5:9e:80:3a:a3:95:34:
a7:6f:3b:4d:c8:70:3c:e0:99:53:41:b2:cc:6c:e5:
6a:2f:62:89:bb:25:32:13:44:28:4f:a2:d0:19:19:
59:80:3a:9f:ca:34:06:6f:c3:fb:19:e0:3d:0a:d0:
57:ee:29:b4:5e:2a:83:af:fb:3f:90:ca:24:43:20:
a7:8e:14:9b:50:8d:01:a2:cb:64:54:32:45:40:6f:
8c:04:e9:2c:1d:51:1c:b7:fa:2a:6b:f7:7b:d0:87:
77:a9:a2:6b:7c:c4:ec:45:a7:aa:6d:05:26:e9:4f:
02:34:39:6b:51:df:bd:5e:15:94:18:e6:33:de:6d:
f8:48:2b:64:ca:13:ef:0a:c7:d6:39:38:cc:0a:6f:
1b:4b:4f:dc:55:b1:0b:ac:55:ad:63:f0:00:2e:4f:
07:bb:6d:be:88:49:0b:ad:94:43:b1:72:6e:9a:81:
fc:99:b9:99:8c:ea:6e:0a:e7:27:3d:62:54:df:f2:
fa:fe:92:b2:66:18:0f:00:67:a0:02:22:25:14:e5:
b6:07:70:59:d8:64:f3:69:4c:8a:23:fa:08:cf:9b:
99:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:0C:A5:69:48:AE:8A:E2:44:D3:5F:26:1E:EB:83:1D:3E:79:14:82
X509v3 Authority Key Identifier:
keyid:60:33:3C:D6:F1:B5:9C:0B:68:2E:1D:A3:89:23:7E:DA:3E:9D:A9:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDM81vG1nAtoLh2jiSN-2j6dqRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:73:68:cd:07:6d:bf:96:a9:42:db:ec:89:5f:71:cf:e7:a2:
3f:00:9a:dd:a2:7e:6b:2a:47:c9:3d:3a:9a:e3:21:f7:b6:1c:
a4:a0:fd:6b:26:59:b3:d9:6b:2d:d1:00:76:dd:70:86:72:a5:
c0:79:75:a6:14:1a:57:99:97:28:69:54:45:0c:6f:d1:d0:3d:
6b:9f:96:bc:34:85:4e:62:89:04:e8:f9:72:0d:cf:07:90:a3:
0f:53:1b:b4:32:81:cc:ad:1a:1c:3b:a4:12:ee:56:6d:d6:b5:
82:e6:77:1e:69:c5:c5:ce:55:96:b7:a0:2a:e3:3a:a8:9a:d1:
6f:12:2f:04:f9:74:7f:da:54:9d:8c:3a:af:7d:4c:92:26:2d:
a2:81:31:cc:8f:38:f6:ea:9c:0b:3f:32:6b:64:cf:8a:e3:30:
83:aa:de:7b:51:16:1b:e7:f8:d9:68:a7:2a:8c:b2:36:f6:23:
67:93:3e:f4:76:d5:65:85:7f:63:c7:4c:2a:65:74:d7:07:b0:
95:2f:77:3a:3f:89:22:d3:91:51:84:72:42:8b:ad:63:32:cb:
0a:79:27:c5:3a:ec:c8:51:7b:ef:44:25:0b:ab:7b:a6:ea:df:
8a:8c:4f:d9:76:9e:45:91:59:1f:14:43:be:4e:a8:aa:12:4c:
f8:29:51:3f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyr2a6T+vZyq6HQgFQ8EE5cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwMzMzY2Q2ZjFiNTljMGI2ODJlMWRhMzg5MjM3ZWRhM2U5
ZGE5MTgwHhcNMjYwMzAyMDAwMTM1WhcNMjYwMzAzMDAwMTM1WjAzMTEwLwYDVQQD
EyhhNjBjYTU2OTQ4YWU4YWUyNDRkMzVmMjYxZWViODMxZDNlNzkxNDgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk3C3TzyLDQMvPBLueXmKclR/6JEt
OrUFlPrB+W00428t7Jx98sWegDqjlTSnbztNyHA84JlTQbLMbOVqL2KJuyUyE0Qo
T6LQGRlZgDqfyjQGb8P7GeA9CtBX7im0XiqDr/s/kMokQyCnjhSbUI0BostkVDJF
QG+MBOksHVEct/oqa/d70Id3qaJrfMTsRaeqbQUm6U8CNDlrUd+9XhWUGOYz3m34
SCtkyhPvCsfWOTjMCm8bS0/cVbELrFWtY/AALk8Hu22+iEkLrZRDsXJumoH8mbmZ
jOpuCucnPWJU3/L6/pKyZhgPAGegAiIlFOW2B3BZ2GTzaUyKI/oIz5uZMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKYMpWlIroriRNNfJh7rgx0+eRSCMB8GA1UdIwQY
MBaAFGAzPNbxtZwLaC4do4kjfto+nakYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWURNODF2RzFuQXRvTGgyamlTTi0yajZkcVJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC80MjIyYjItYzc5Yy00ZDVlLTk5ZDct
Y2RiMjgxYTJiM2E4LzEvWURNODF2RzFuQXRvTGgyamlTTi0yajZkcVJnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC80MjIyYjItYzc5Yy00ZDVlLTk5ZDctY2RiMjgxYTJiM2E4
LzEvWURNODF2RzFuQXRvTGgyamlTTi0yajZkcVJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM3NozQdt
v5apQtvsiV9xz+eiPwCa3aJ+aypHyT06muMh97YcpKD9ayZZs9lrLdEAdt1whnKl
wHl1phQaV5mXKGlURQxv0dA9a5+WvDSFTmKJBOj5cg3PB5CjD1MbtDKBzK0aHDuk
Eu5Wbda1guZ3HmnFxc5VlregKuM6qJrRbxIvBPl0f9pUnYw6r31MkiYtooExzI84
9uqcCz8ya2TPiuMwg6ree1EWG+f42WinKoyyNvYjZ5M+9HbVZYV/Y8dMKmV01wew
lS93Oj+JItORUYRyQoutYzLLCnknxTrsyFF770QlC6t7purfioxP2XaeRZFZHxRD
vk6oqhJM+ClRPw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 02:14:30 2026 by rpki-client