Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
File: NYx3zUAYPEEVsr8NznFuC8XQv9U.mft (raw, json)
Hash identifier: kko8El+RWflAIlZXVdoyopFeLS1NR85vZtBgiFq7xEo=
Subject key identifier: 35:FC:88:8D:E4:EB:E1:AB:85:03:1C:FB:12:E7:60:65:8A:93:19:14
Authority key identifier: 35:8C:77:CD:40:18:3C:41:15:B2:BF:0D:CE:71:6E:0B:C5:D0:BF:D5
Certificate issuer: /CN=358c77cd40183c4115b2bf0dce716e0bc5d0bfd5
Certificate serial: 019D992B1A394CC9B0DC84A1AE01C0247152
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NYx3zUAYPEEVsr8NznFuC8XQv9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
Manifest number: 062C
Signing time: Fri 17 Apr 2026 02:00:31 +0000
Manifest this update: Fri 17 Apr 2026 02:00:31 +0000
Manifest next update: Sat 18 Apr 2026 02:00:31 +0000
Files and hashes: 1: NYx3zUAYPEEVsr8NznFuC8XQv9U.crl (hash: la72lwHj4gO8n9DQseynxfS5nGc7AJJ2YP+pT9QvfZc=)
2: UlEC3VpAKX5fgFyuoTuBA8htBuc.roa (hash: OCopTvk4i816iUhH+QXazE3VcJpYfdLODiRXhmC1WXY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/NYx3zUAYPEEVsr8NznFuC8XQv9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:1a:39:4c:c9:b0:dc:84:a1:ae:01:c0:24:71:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=358c77cd40183c4115b2bf0dce716e0bc5d0bfd5
Validity
Not Before: Apr 17 02:00:31 2026 GMT
Not After : Apr 18 02:00:31 2026 GMT
Subject: CN=35fc888de4ebe1ab85031cfb12e760658a931914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:7d:45:f5:16:33:51:5b:f6:f2:33:b9:22:fe:
31:8b:b2:d7:85:31:ad:72:ae:68:93:9c:6f:b8:f8:
12:77:6b:5a:27:77:21:0f:d3:a9:1a:96:54:ec:5c:
60:07:e8:84:d7:01:c3:c2:c7:b5:74:cc:22:fa:83:
02:79:aa:00:e4:33:e8:c0:3d:85:7c:56:35:67:b2:
83:64:26:fb:be:54:9b:df:7f:f1:75:8c:a5:6f:3a:
88:53:56:64:76:ad:70:5f:b4:be:eb:1f:86:ef:78:
7c:38:76:f1:3b:4c:41:49:51:45:64:da:23:98:a5:
d8:74:17:42:98:f6:7d:cd:21:79:b7:4b:d2:bb:88:
49:5c:d7:22:21:95:99:14:b5:6e:a5:c0:53:fd:5b:
84:b4:1b:2e:60:94:9f:d3:2b:8e:be:ed:7d:f1:f9:
08:0a:fb:4f:dc:6d:df:ff:c3:8d:f7:ed:0d:43:c2:
6a:41:52:f1:7f:e5:7e:a9:80:57:65:40:a0:cf:42:
85:5f:02:72:ce:fd:1b:90:21:d8:46:b8:a0:88:94:
a4:e2:17:02:10:d9:92:12:39:42:a2:7f:5c:d3:bc:
86:af:80:d2:ca:e4:d4:cf:5a:c6:c2:4e:35:b3:d5:
38:f9:24:26:e8:c5:fc:60:58:a5:4e:7b:89:80:5b:
17:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:FC:88:8D:E4:EB:E1:AB:85:03:1C:FB:12:E7:60:65:8A:93:19:14
X509v3 Authority Key Identifier:
keyid:35:8C:77:CD:40:18:3C:41:15:B2:BF:0D:CE:71:6E:0B:C5:D0:BF:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NYx3zUAYPEEVsr8NznFuC8XQv9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea2b41-7dc6-45a4-aa08-3151a1794b97/1/NYx3zUAYPEEVsr8NznFuC8XQv9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:45:55:6a:e7:3a:97:a9:d9:05:7c:65:74:2d:ff:30:41:7b:
94:bf:a7:09:d6:11:eb:03:e8:b6:99:5f:ad:12:48:40:0f:fd:
8c:fa:3b:af:06:ec:8d:ea:c8:25:38:e5:c5:4b:ca:83:67:77:
65:ab:e1:bf:14:67:35:9c:e8:72:98:d6:0d:90:ef:71:4d:b4:
eb:ec:f5:d4:c6:54:14:24:bd:b1:f9:36:bd:68:7d:1d:f3:14:
fc:0e:65:71:10:fd:49:26:db:76:cf:17:89:1d:8b:91:3f:12:
50:a0:a4:87:1d:18:f7:43:a4:93:64:b9:13:1c:93:b8:a3:1f:
09:64:27:11:a3:96:96:2d:ea:ac:72:6d:15:fc:cd:60:a0:5c:
30:29:d4:ad:c4:49:9b:65:52:c2:d4:66:79:f5:d5:e1:c8:59:
46:81:9a:b1:4f:0a:8a:a5:65:45:b1:44:ce:ed:60:70:c2:11:
1c:82:c4:14:44:bb:1f:b4:d2:ea:c1:6d:1b:58:92:55:36:81:
50:f5:e1:32:26:69:c8:16:2e:fe:bd:f2:f0:27:0c:b1:28:74:
18:9b:12:4a:b4:63:04:55:c6:29:7f:76:a2:42:bc:e8:b6:c1:
e7:40:b9:fa:75:80:ca:d2:78:b3:20:19:7f:9f:84:a0:c6:9c:
cf:ee:be:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZKxo5TMmw3IShrgHAJHFSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1OGM3N2NkNDAxODNjNDExNWIyYmYwZGNlNzE2ZTBiYzVk
MGJmZDUwHhcNMjYwNDE3MDIwMDMxWhcNMjYwNDE4MDIwMDMxWjAzMTEwLwYDVQQD
EygzNWZjODg4ZGU0ZWJlMWFiODUwMzFjZmIxMmU3NjA2NThhOTMxOTE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxn1F9RYzUVv28jO5Iv4xi7LXhTGt
cq5ok5xvuPgSd2taJ3chD9OpGpZU7FxgB+iE1wHDwse1dMwi+oMCeaoA5DPowD2F
fFY1Z7KDZCb7vlSb33/xdYylbzqIU1Zkdq1wX7S+6x+G73h8OHbxO0xBSVFFZNoj
mKXYdBdCmPZ9zSF5t0vSu4hJXNciIZWZFLVupcBT/VuEtBsuYJSf0yuOvu198fkI
CvtP3G3f/8ON9+0NQ8JqQVLxf+V+qYBXZUCgz0KFXwJyzv0bkCHYRrigiJSk4hcC
ENmSEjlCon9c07yGr4DSyuTUz1rGwk41s9U4+SQm6MX8YFilTnuJgFsXMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDX8iI3k6+GrhQMc+xLnYGWKkxkUMB8GA1UdIwQY
MBaAFDWMd81AGDxBFbK/Dc5xbgvF0L/VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTll4M3pVQVlQRUVWc3I4TnpuRnVDOFhRdjlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9lYTJiNDEtN2RjNi00NWE0LWFhMDgt
MzE1MWExNzk0Yjk3LzEvTll4M3pVQVlQRUVWc3I4TnpuRnVDOFhRdjlVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS9lYTJiNDEtN2RjNi00NWE0LWFhMDgtMzE1MWExNzk0Yjk3
LzEvTll4M3pVQVlQRUVWc3I4TnpuRnVDOFhRdjlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADUVVauc6
l6nZBXxldC3/MEF7lL+nCdYR6wPotplfrRJIQA/9jPo7rwbsjerIJTjlxUvKg2d3
ZavhvxRnNZzocpjWDZDvcU206+z11MZUFCS9sfk2vWh9HfMU/A5lcRD9SSbbds8X
iR2LkT8SUKCkhx0Y90Okk2S5ExyTuKMfCWQnEaOWli3qrHJtFfzNYKBcMCnUrcRJ
m2VSwtRmefXV4chZRoGasU8KiqVlRbFEzu1gcMIRHILEFES7H7TS6sFtG1iSVTaB
UPXhMiZpyBYu/r3y8CcMsSh0GJsSSrRjBFXGKX92okK86LbB50C5+nWAytJ4syAZ
f5+EoMacz+6+gQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 09:42:06 2026 by rpki-client