Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
File: Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft (raw, json)
Hash identifier: gKR19/tGwDkXKaeyiJWTlxvB/B+madRySsdv0TQ7Lxw=
Subject key identifier: C8:26:63:1E:D9:AA:08:50:4E:08:1D:7A:5E:C5:3B:75:4B:DC:F8:32
Authority key identifier: 63:64:2C:1C:A3:D3:8C:7E:15:E6:87:E0:D9:48:5C:78:26:93:8C:10
Certificate issuer: /CN=63642c1ca3d38c7e15e687e0d9485c7826938c10
Certificate serial: 019CAC7E53E7A87AC976C70FF7B7E825CC9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
Manifest number: 0573
Signing time: Mon 02 Mar 2026 03:01:25 +0000
Manifest this update: Mon 02 Mar 2026 03:01:25 +0000
Manifest next update: Tue 03 Mar 2026 03:01:25 +0000
Files and hashes: 1: Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl (hash: zVhVO2skc7wHKl9ztR3VUJdny1chKPvwEBZ6hH266ls=)
2: pGs7xsxzlpU1tXn2yh5NBLhf9X0.roa (hash: uYgJSnGFmsrKbeTYAmeT6QjGNlnW8e1sEIOLhpiP3oY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7e:53:e7:a8:7a:c9:76:c7:0f:f7:b7:e8:25:cc:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63642c1ca3d38c7e15e687e0d9485c7826938c10
Validity
Not Before: Mar 2 03:01:25 2026 GMT
Not After : Mar 3 03:01:25 2026 GMT
Subject: CN=c826631ed9aa08504e081d7a5ec53b754bdcf832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ec:df:d5:56:64:e0:fd:b7:b6:78:f4:92:5c:
33:fe:89:9e:99:28:16:4e:54:51:ee:83:0a:8e:72:
83:fb:11:8a:25:3c:9a:f0:60:a7:c6:c9:74:47:f9:
42:0c:42:3a:fa:fb:a7:c8:2b:06:53:60:fd:2c:26:
89:4a:a6:46:ba:5b:29:33:cd:59:0f:8c:b6:cb:5d:
fc:bc:d6:9a:9f:a2:ed:ef:3e:0a:d7:c0:d1:5d:72:
c9:83:76:7c:67:ab:e9:74:2c:81:b0:18:c6:b1:4b:
08:ae:1f:91:9a:7b:33:a9:50:a1:80:5f:fa:32:e9:
f7:4b:37:4b:1e:12:df:f2:64:30:f0:11:60:ba:52:
6b:2d:0f:1e:8c:95:70:44:0d:4a:b0:f7:15:78:eb:
82:a4:3e:f3:1b:42:2d:5c:12:ab:c1:09:c1:9a:28:
4c:3e:63:df:29:0d:53:70:b5:46:76:cd:ec:6c:80:
69:5b:96:ae:1c:d6:40:25:e0:3d:63:e5:8d:0e:b6:
36:34:25:55:bd:da:bb:4d:9e:99:fe:34:7a:87:59:
25:37:37:68:6b:bd:3d:03:40:9c:ad:23:6e:e2:b9:
97:90:85:5e:c3:61:08:d4:03:ef:09:ec:11:d2:4a:
26:f4:e1:37:08:01:11:7d:17:5e:27:5d:04:b6:0d:
5e:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:26:63:1E:D9:AA:08:50:4E:08:1D:7A:5E:C5:3B:75:4B:DC:F8:32
X509v3 Authority Key Identifier:
keyid:63:64:2C:1C:A3:D3:8C:7E:15:E6:87:E0:D9:48:5C:78:26:93:8C:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:10:63:cc:45:e6:ef:d7:52:0a:6d:d3:b5:d0:fb:f2:28:d4:
9f:f2:3a:5b:63:71:f5:a8:73:8e:f9:12:36:e1:31:d7:f8:a8:
31:60:a5:e1:ea:95:03:97:26:5b:66:d4:b6:97:0a:86:78:e3:
6e:1a:a3:9e:7e:ca:a4:b1:ed:80:66:64:dd:b1:e5:cb:3a:84:
18:5a:85:cf:fe:57:ca:2a:9c:0f:b6:08:5a:b8:24:aa:42:5f:
21:31:8e:d0:a6:97:97:76:6c:7c:74:44:71:4b:e9:42:88:44:
87:3f:6d:b1:0b:15:e7:b9:81:2b:a1:d5:0f:5b:d8:41:c1:30:
69:d4:f6:25:79:9d:23:a6:06:a0:44:3d:a8:23:2e:29:cc:11:
6f:3f:68:cf:27:15:76:6b:65:19:00:d4:3d:c0:17:f2:57:66:
2b:00:f1:63:b9:33:88:34:f8:b3:97:ef:7e:60:4e:06:cb:00:
ee:05:af:1d:7d:26:82:29:42:7e:37:75:42:42:bc:ec:53:99:
72:ea:e6:75:a1:77:b5:b2:cc:73:18:5c:02:02:df:bc:46:3a:
b3:ff:c2:53:72:34:99:36:3a:02:f0:b0:5d:75:05:cc:64:6c:
22:5b:27:03:50:f2:01:76:f0:f5:66:33:9f:df:1a:1a:38:80:
d4:6d:32:ae
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZysflPnqHrJdscP97foJcyeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzNjQyYzFjYTNkMzhjN2UxNWU2ODdlMGQ5NDg1Yzc4MjY5
MzhjMTAwHhcNMjYwMzAyMDMwMTI1WhcNMjYwMzAzMDMwMTI1WjAzMTEwLwYDVQQD
EyhjODI2NjMxZWQ5YWEwODUwNGUwODFkN2E1ZWM1M2I3NTRiZGNmODMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtezf1VZk4P23tnj0klwz/omemSgW
TlRR7oMKjnKD+xGKJTya8GCnxsl0R/lCDEI6+vunyCsGU2D9LCaJSqZGulspM81Z
D4y2y138vNaan6Lt7z4K18DRXXLJg3Z8Z6vpdCyBsBjGsUsIrh+RmnszqVChgF/6
Mun3SzdLHhLf8mQw8BFgulJrLQ8ejJVwRA1KsPcVeOuCpD7zG0ItXBKrwQnBmihM
PmPfKQ1TcLVGds3sbIBpW5auHNZAJeA9Y+WNDrY2NCVVvdq7TZ6Z/jR6h1klNzdo
a709A0CcrSNu4rmXkIVew2EI1APvCewR0kom9OE3CAERfRdeJ10Etg1e5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMgmYx7ZqghQTggdel7FO3VL3PgyMB8GA1UdIwQY
MBaAFGNkLByj04x+FeaH4NlIXHgmk4wQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWTJRc0hLUFRqSDRWNW9mZzJVaGNlQ2FUakJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS80ZjU5MDMtZmY5Zi00ZWM2LTg2YzAt
MDdiMGVhNzVjMjRiLzEvWTJRc0hLUFRqSDRWNW9mZzJVaGNlQ2FUakJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS80ZjU5MDMtZmY5Zi00ZWM2LTg2YzAtMDdiMGVhNzVjMjRi
LzEvWTJRc0hLUFRqSDRWNW9mZzJVaGNlQ2FUakJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASBBjzEXm
79dSCm3TtdD78ijUn/I6W2Nx9ahzjvkSNuEx1/ioMWCl4eqVA5cmW2bUtpcKhnjj
bhqjnn7KpLHtgGZk3bHlyzqEGFqFz/5XyiqcD7YIWrgkqkJfITGO0KaXl3ZsfHRE
cUvpQohEhz9tsQsV57mBK6HVD1vYQcEwadT2JXmdI6YGoEQ9qCMuKcwRbz9ozycV
dmtlGQDUPcAX8ldmKwDxY7kziDT4s5fvfmBOBssA7gWvHX0mgilCfjd1QkK87FOZ
curmdaF3tbLMcxhcAgLfvEY6s//CU3I0mTY6AvCwXXUFzGRsIlsnA1DyAXbw9WYz
n98aGjiA1G0yrg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 11:55:20 2026 by rpki-client