Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
File: yda1mpPjJAg_vKQjfkfp9evzcas.mft (raw, json)
Hash identifier: 1APExVKPjYHg1SgTRuIbJH79pGsDsRJVCqvAT98ezAo=
Subject key identifier: C0:F3:B3:6C:43:06:D8:FF:F9:07:AA:78:9B:1A:92:E0:D4:12:0C:0E
Authority key identifier: C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
Certificate issuer: /CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Certificate serial: 019D992B9F720B0A22739D3D078BEB2402EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
Manifest number: 18E8
Signing time: Fri 17 Apr 2026 02:01:06 +0000
Manifest this update: Fri 17 Apr 2026 02:01:06 +0000
Manifest next update: Sat 18 Apr 2026 02:01:06 +0000
Files and hashes: 1: FBCGTG64vLpl2gDVPvanQJATgB8.roa (hash: axM4/0Pr+RIyWyZE+LhS3ebRSN92aTrPRUXzdJeL/U0=)
2: Gqg2-sCdeAnxIxjnCqOjFkh4pyY.roa (hash: fXnPA1IUb+WwCmX8j2rz10mUAQFbNKLaEL207SLATEk=)
3: Xh_fZpcuD-kXAKnMm-XCgP1QCcM.roa (hash: E/KI5295u2flUvuXh7zmO0XDhUT77Ekqi6kGos1unAA=)
4: cdMwDxOwsmOgnXKtKxgQS9EwG5s.roa (hash: 9KAJy5B5/gYF9JmztZmHa3vCIGRv+J2QDYi/xV8zpFc=)
5: w9cLMtPbCYYrwoKERp06IPmC2bE.roa (hash: ey9n1gs4fwmE4LkooDwQ9cZLvMTfaqnyxO7TGDUAj68=)
6: wywpQzax_4ZtKoz9uAZxDjtcPmw.roa (hash: Q0w8drpmsGxodbGwxBVJJ2K2KkXwUZiHuoYb5PWlT/8=)
7: yda1mpPjJAg_vKQjfkfp9evzcas.crl (hash: ly0dCRvguAOj9tJzwAQAlJ4F7GOFo2ItI2J1IbVkSSg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:9f:72:0b:0a:22:73:9d:3d:07:8b:eb:24:02:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Validity
Not Before: Apr 17 02:01:06 2026 GMT
Not After : Apr 18 02:01:06 2026 GMT
Subject: CN=c0f3b36c4306d8fff907aa789b1a92e0d4120c0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b4:77:39:50:2a:37:5a:33:89:63:4a:5d:f1:
da:43:b9:04:6d:95:7c:75:e0:64:14:3a:bf:b2:fe:
44:0c:be:af:90:53:1d:a2:91:51:d1:f8:e0:2d:10:
df:e9:1e:19:30:6c:fe:c8:ff:07:0b:42:7f:32:6b:
69:10:73:22:cc:9a:6c:d9:67:65:83:05:7d:07:7b:
ff:9c:37:9f:2d:77:40:69:ae:2f:54:de:c8:58:1b:
ca:c3:f4:11:33:3d:13:7f:78:03:c7:fe:a6:ac:33:
40:97:38:62:a8:d3:03:ff:35:ee:6b:3e:83:70:f5:
9e:22:74:71:c8:43:35:56:a6:40:ec:da:cb:3f:1e:
c3:1d:8c:fb:27:8d:ba:8b:63:03:20:79:d2:18:25:
51:d2:8c:75:e1:b5:5e:65:20:84:ca:bd:2c:7d:d8:
90:d2:c3:29:b5:bb:2a:4a:c2:26:c6:c4:6d:e6:ff:
2d:75:31:67:46:4b:ae:cc:d3:2e:07:ef:2e:e6:71:
d7:f3:bc:6a:d2:85:09:be:9f:bc:d0:a8:7a:9d:bb:
4f:77:d5:a5:fa:31:37:f0:1e:3e:5c:03:62:98:3d:
a6:56:36:83:75:68:a1:d4:44:86:1e:a1:91:a9:c0:
ef:5a:f3:e2:ab:a5:8c:df:06:a0:ed:9b:47:28:ce:
02:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:F3:B3:6C:43:06:D8:FF:F9:07:AA:78:9B:1A:92:E0:D4:12:0C:0E
X509v3 Authority Key Identifier:
keyid:C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:ec:bd:c7:aa:0d:bf:97:75:cd:a4:0c:7a:1b:48:d8:1c:fc:
75:40:0c:ce:09:a9:2e:68:4f:f8:c7:f3:c7:af:d6:a5:15:3f:
95:5c:e1:df:f2:40:45:95:ac:c8:0b:ba:39:99:2a:91:6a:f6:
5c:f9:c6:91:3a:17:5d:fd:df:6f:59:f7:25:cd:12:6c:91:17:
dd:c1:ca:28:d8:b4:b9:3f:2b:38:6f:4e:2f:1f:1f:1b:c9:3b:
40:29:69:30:df:81:8b:a1:48:92:26:2e:4b:bc:2c:3c:fa:bf:
56:cb:07:94:6b:0d:01:38:be:bb:51:1c:52:f8:6c:8e:8d:9d:
0f:fc:45:87:6e:f1:17:37:40:40:92:44:7e:67:86:a8:9b:b7:
97:24:62:ff:88:00:dc:f1:87:bd:d0:c8:e3:4a:0d:db:3b:a3:
ac:75:ee:08:fe:d7:b3:e7:8e:86:97:cb:49:04:61:1d:32:56:
91:42:33:8e:73:62:49:33:63:8b:ce:1d:94:44:f1:1e:e4:d1:
19:b4:d3:eb:70:fd:4e:05:1d:73:df:0a:b1:bb:40:6a:bc:9e:
b2:31:80:e4:c6:62:6c:08:9f:5c:33:b2:fd:9f:f6:09:b7:f9:
d4:8e:ea:f8:fe:4e:e3:3a:59:7c:dd:bd:34:5a:39:a5:8f:83:
e4:fb:80:9c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZK59yCwoic509B4vrJALqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDZiNTlhOTNlMzI0MDgzZmJjYTQyMzdlNDdlOWY1ZWJm
MzcxYWIwHhcNMjYwNDE3MDIwMTA2WhcNMjYwNDE4MDIwMTA2WjAzMTEwLwYDVQQD
EyhjMGYzYjM2YzQzMDZkOGZmZjkwN2FhNzg5YjFhOTJlMGQ0MTIwYzBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlLR3OVAqN1oziWNKXfHaQ7kEbZV8
deBkFDq/sv5EDL6vkFMdopFR0fjgLRDf6R4ZMGz+yP8HC0J/MmtpEHMizJps2Wdl
gwV9B3v/nDefLXdAaa4vVN7IWBvKw/QRMz0Tf3gDx/6mrDNAlzhiqNMD/zXuaz6D
cPWeInRxyEM1VqZA7NrLPx7DHYz7J426i2MDIHnSGCVR0ox14bVeZSCEyr0sfdiQ
0sMptbsqSsImxsRt5v8tdTFnRkuuzNMuB+8u5nHX87xq0oUJvp+80Kh6nbtPd9Wl
+jE38B4+XANimD2mVjaDdWih1ESGHqGRqcDvWvPiq6WM3wag7ZtHKM4CaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMDzs2xDBtj/+QeqeJsakuDUEgwOMB8GA1UdIwQY
MBaAFMnWtZqT4yQIP7ykI35H6fXr83GrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRhMW1wUGpKQWdfdktRamZrZnA5ZXZ6Y2FzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny82ODJiMDctNzczZi00NmZkLTgyZTIt
YjkyMTFlMWZjMWFjLzEveWRhMW1wUGpKQWdfdktRamZrZnA5ZXZ6Y2FzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny82ODJiMDctNzczZi00NmZkLTgyZTItYjkyMTFlMWZjMWFj
LzEveWRhMW1wUGpKQWdfdktRamZrZnA5ZXZ6Y2FzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF+y9x6oN
v5d1zaQMehtI2Bz8dUAMzgmpLmhP+Mfzx6/WpRU/lVzh3/JARZWsyAu6OZkqkWr2
XPnGkToXXf3fb1n3Jc0SbJEX3cHKKNi0uT8rOG9OLx8fG8k7QClpMN+Bi6FIkiYu
S7wsPPq/VssHlGsNATi+u1EcUvhsjo2dD/xFh27xFzdAQJJEfmeGqJu3lyRi/4gA
3PGHvdDI40oN2zujrHXuCP7Xs+eOhpfLSQRhHTJWkUIzjnNiSTNji84dlETxHuTR
GbTT63D9TgUdc98KsbtAaryesjGA5MZibAifXDOy/Z/2Cbf51I7q+P5O4zpZfN29
NFo5pY+D5PuAnA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:21:11 2026 by rpki-client