Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/d14ef5-f4db-43bc-8ccf-1778ba25d8b9/1/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.mft
File: rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.mft (raw, json)
Hash identifier: C6tkxaBtSz9A9DnFNxmshNaMEbvULYoTCMhPL46eORs=
Subject key identifier: 28:3B:CB:74:0F:F6:7C:22:5A:69:7A:F9:5D:20:94:79:F0:21:4F:EA
Authority key identifier: AD:8F:54:38:07:3A:62:1A:EA:77:2F:5C:B7:A4:EF:D5:8C:6B:77:4C
Certificate issuer: /CN=ad8f5438073a621aea772f5cb7a4efd58c6b774c
Certificate serial: 019D9B50F1D10E71B79E755EBF0A36EF5F80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/d14ef5-f4db-43bc-8ccf-1778ba25d8b9/1/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.mft
Manifest number: 18C9
Signing time: Fri 17 Apr 2026 12:01:06 +0000
Manifest this update: Fri 17 Apr 2026 12:01:06 +0000
Manifest next update: Sat 18 Apr 2026 12:01:06 +0000
Files and hashes: 1: rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.crl (hash: hT9ZPiWsSJk/UsoLTC+e4WLU42IxvdhrMbgAeO8n9Ng=)
2: weWWuV6jfsu20O1Kp8PZ_7w5-6I.roa (hash: hxVuyj93Sh3p92R2/8BnJWSOvPERrOV88q73B7vWqrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/d14ef5-f4db-43bc-8ccf-1778ba25d8b9/1/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/d14ef5-f4db-43bc-8ccf-1778ba25d8b9/1/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.mft
rsync://rpki.ripe.net/repository/DEFAULT/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 12:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:50:f1:d1:0e:71:b7:9e:75:5e:bf:0a:36:ef:5f:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad8f5438073a621aea772f5cb7a4efd58c6b774c
Validity
Not Before: Apr 17 12:01:06 2026 GMT
Not After : Apr 18 12:01:06 2026 GMT
Subject: CN=283bcb740ff67c225a697af95d209479f0214fea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:71:bc:bb:ef:3c:98:31:97:dd:56:07:38:b9:
21:73:d8:92:74:43:a5:05:5e:2b:fb:69:c3:ef:24:
d5:ec:99:88:bc:62:06:fc:67:c2:f8:2e:62:d6:1f:
cf:0c:67:04:25:c5:4d:95:75:a0:6c:0a:b2:dd:61:
55:8a:2b:9c:b8:77:f3:a1:07:48:e6:42:66:98:17:
f9:e5:3e:00:20:d1:e4:de:d8:d5:7b:cf:f8:c3:ba:
e6:75:ec:e3:54:5c:8e:2a:df:de:1f:9f:f6:39:48:
cd:cf:e1:14:f0:56:4c:03:f3:1a:4a:9a:93:ae:51:
0a:7e:a6:a6:ff:ad:ca:d7:d9:fe:44:54:7f:ed:36:
62:bc:db:48:d4:ea:bc:32:d9:e0:63:8f:0c:d9:cc:
79:92:b8:18:5d:71:ef:79:67:50:11:c5:2a:02:e4:
2c:dd:1c:f5:0e:12:9e:f2:b5:29:1c:17:03:64:83:
f6:1e:c4:b3:b9:1f:35:47:5d:29:f9:2e:73:e1:67:
98:e1:9a:16:14:32:e5:c9:db:cc:84:4b:77:39:7a:
25:af:b5:16:8f:47:80:ef:af:f1:7b:ec:4d:a6:38:
81:41:9c:36:5a:a6:a1:69:f2:76:c2:e2:13:bf:bf:
19:c2:c0:85:86:df:2a:2a:ac:1a:ef:7e:e9:63:63:
3a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:3B:CB:74:0F:F6:7C:22:5A:69:7A:F9:5D:20:94:79:F0:21:4F:EA
X509v3 Authority Key Identifier:
keyid:AD:8F:54:38:07:3A:62:1A:EA:77:2F:5C:B7:A4:EF:D5:8C:6B:77:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d14ef5-f4db-43bc-8ccf-1778ba25d8b9/1/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/d14ef5-f4db-43bc-8ccf-1778ba25d8b9/1/rY9UOAc6Yhrqdy9ct6Tv1Yxrd0w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:ea:83:65:47:c2:32:b6:00:4c:03:a2:86:e0:da:84:f7:a6:
ab:51:fb:f0:b0:d9:5f:9e:c2:be:99:a4:d2:ce:e7:30:96:f9:
5a:fd:29:b3:d6:15:dc:8d:b1:60:24:3b:e3:b0:81:a8:85:8c:
85:08:8e:58:2d:4d:18:a1:b3:b1:b4:d1:c7:b9:b9:f9:78:2b:
b3:61:af:55:3a:60:d0:05:49:60:e6:89:6e:45:be:dd:b1:9f:
9a:1e:12:80:f8:4f:a7:37:fa:ee:c7:ea:40:02:80:47:ff:14:
39:93:3d:44:61:e2:bb:9f:02:ec:01:a0:07:ec:07:8d:44:43:
29:68:2c:08:df:54:09:13:ad:04:5b:db:e4:18:57:82:a0:5f:
22:25:4c:fd:2b:45:c8:d6:f4:d0:11:84:63:88:10:c8:19:76:
8d:d9:67:45:20:28:b5:bb:5c:27:e0:c8:87:60:86:4a:a0:8e:
fa:01:e6:21:39:9a:93:d2:89:e8:b3:59:8b:a1:b4:4e:c7:c6:
d8:07:e6:dd:6c:59:2b:9e:f2:40:20:45:7e:14:7f:0a:49:6f:
c4:00:0b:44:38:5f:85:b9:0c:18:f5:9e:89:2d:fe:59:a5:be:
c9:5f:2e:5a:f7:03:0f:28:b1:c2:42:1c:03:3e:b0:de:e1:5e:
a6:ff:7b:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2bUPHRDnG3nnVevwo271+AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkOGY1NDM4MDczYTYyMWFlYTc3MmY1Y2I3YTRlZmQ1OGM2
Yjc3NGMwHhcNMjYwNDE3MTIwMTA2WhcNMjYwNDE4MTIwMTA2WjAzMTEwLwYDVQQD
EygyODNiY2I3NDBmZjY3YzIyNWE2OTdhZjk1ZDIwOTQ3OWYwMjE0ZmVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuXG8u+88mDGX3VYHOLkhc9iSdEOl
BV4r+2nD7yTV7JmIvGIG/GfC+C5i1h/PDGcEJcVNlXWgbAqy3WFViiucuHfzoQdI
5kJmmBf55T4AINHk3tjVe8/4w7rmdezjVFyOKt/eH5/2OUjNz+EU8FZMA/MaSpqT
rlEKfqam/63K19n+RFR/7TZivNtI1Oq8MtngY48M2cx5krgYXXHveWdQEcUqAuQs
3Rz1DhKe8rUpHBcDZIP2HsSzuR81R10p+S5z4WeY4ZoWFDLlydvMhEt3OXolr7UW
j0eA76/xe+xNpjiBQZw2WqahafJ2wuITv78ZwsCFht8qKqwa737pY2M6AwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCg7y3QP9nwiWml6+V0glHnwIU/qMB8GA1UdIwQY
MBaAFK2PVDgHOmIa6ncvXLek79WMa3dMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclk5VU9BYzZZaHJxZHk5Y3Q2VHYxWXhyZDB3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9kMTRlZjUtZjRkYi00M2JjLThjY2Yt
MTc3OGJhMjVkOGI5LzEvclk5VU9BYzZZaHJxZHk5Y3Q2VHYxWXhyZDB3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC9kMTRlZjUtZjRkYi00M2JjLThjY2YtMTc3OGJhMjVkOGI5
LzEvclk5VU9BYzZZaHJxZHk5Y3Q2VHYxWXhyZDB3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANeqDZUfC
MrYATAOihuDahPemq1H78LDZX57Cvpmk0s7nMJb5Wv0ps9YV3I2xYCQ747CBqIWM
hQiOWC1NGKGzsbTRx7m5+Xgrs2GvVTpg0AVJYOaJbkW+3bGfmh4SgPhPpzf67sfq
QAKAR/8UOZM9RGHiu58C7AGgB+wHjURDKWgsCN9UCROtBFvb5BhXgqBfIiVM/StF
yNb00BGEY4gQyBl2jdlnRSAotbtcJ+DIh2CGSqCO+gHmITmak9KJ6LNZi6G0TsfG
2Afm3WxZK57yQCBFfhR/CklvxAALRDhfhbkMGPWeiS3+WaW+yV8uWvcDDyixwkIc
Az6w3uFepv97Bg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 23:02:34 2026 by rpki-client