Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
File: 0YZHAF-osG5H7i77_e3Jegx3Vfg.mft (raw, json)
Hash identifier: 4cQRT9JKzM3BuaizhQz96K+LgrUQ+lO1Gu1GUAkT9QU=
Subject key identifier: AA:DB:E4:CC:F2:3C:5B:27:59:68:C7:89:6E:86:83:15:DE:68:6A:1D
Authority key identifier: D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8
Certificate issuer: /CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8
Certificate serial: 019D9999751E16776778874C0725D737C8C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 04:01:04 +0000
Manifest this update: Fri 17 Apr 2026 04:01:04 +0000
Manifest next update: Sat 18 Apr 2026 04:01:04 +0000
Files and hashes: 1: 0YZHAF-osG5H7i77_e3Jegx3Vfg.crl (hash: AnFZnaYUO3SRf/wRGYWEZGN4O3oZPfg9ROp4GL+7SN0=)
2: GmHD_yxmhmb7r8gjp6el8HpBXOw.roa (hash: fVaQ2rKEBssbb0vmO7FX3uJ1zApwIkrOyFVIx+Y+u/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:75:1e:16:77:67:78:87:4c:07:25:d7:37:c8:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8
Validity
Not Before: Apr 17 04:01:04 2026 GMT
Not After : Apr 18 04:01:04 2026 GMT
Subject: CN=aadbe4ccf23c5b275968c7896e868315de686a1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e0:3b:f8:9b:33:8b:24:39:c5:09:fa:95:01:
27:47:b1:ce:56:ec:29:ce:01:bf:f7:ad:48:d6:30:
2f:ab:aa:75:6d:66:00:eb:50:dc:c4:04:2f:78:e1:
ae:6f:31:98:f8:6e:9e:c4:64:7e:61:39:c5:f6:a3:
3f:2e:98:83:6a:d0:dd:93:8c:41:7d:38:d7:5a:6b:
15:a3:fb:5e:d2:91:60:33:ba:4c:42:02:a9:90:c9:
c8:39:b9:27:77:04:da:c6:4c:88:fc:80:8b:d1:3b:
fc:55:de:80:d8:6d:65:a7:cd:70:06:56:c4:90:b2:
cd:03:d2:e2:e3:4a:e6:6d:74:3a:a9:6e:a5:c0:81:
9c:e4:c7:46:38:81:c4:93:7c:1a:3f:03:71:90:a0:
a9:65:d9:02:7e:f1:97:1b:f4:37:76:ca:93:d2:bc:
05:b5:8a:c4:a6:6c:40:80:87:06:b1:01:e2:a3:c5:
7a:66:97:8d:44:6c:c2:95:f3:be:4f:1e:6f:67:34:
31:d3:54:e2:7a:a2:fa:f9:9b:f7:98:f0:5a:a4:86:
c7:2a:b8:f9:35:89:70:f2:fc:39:b7:33:fc:2c:72:
6c:50:8f:3c:4f:98:05:db:59:a8:e6:23:c4:da:34:
00:f7:35:7d:20:a5:b5:33:fb:44:c4:8f:d5:30:7f:
aa:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:DB:E4:CC:F2:3C:5B:27:59:68:C7:89:6E:86:83:15:DE:68:6A:1D
X509v3 Authority Key Identifier:
keyid:D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:a0:52:bc:15:f8:e7:fa:6b:31:7a:ca:22:c3:8e:be:94:99:
98:8b:f4:df:eb:aa:b4:26:4f:54:1f:51:b1:08:dc:ae:6f:a1:
48:4e:06:8f:2d:d5:5c:48:54:1d:fc:0d:b4:d8:47:bc:8e:b4:
81:50:44:b5:c6:33:14:29:13:96:7d:a8:ac:7c:7a:2c:be:e8:
e2:ae:ef:a4:d9:98:5c:33:fd:22:8b:8b:b8:59:d4:4b:71:1f:
16:a9:8a:72:15:d8:96:2b:7c:eb:df:2e:78:01:af:6f:92:d7:
03:1f:d2:30:bb:33:cd:fd:f9:a0:30:1f:08:40:67:04:70:d8:
bd:55:34:7d:a9:9d:31:f4:36:f7:4c:99:f2:f2:14:81:db:f7:
d3:e3:45:28:fb:41:1e:64:50:16:2a:88:44:9a:ff:b8:52:af:
b1:6d:ac:6f:b6:b6:bf:4c:aa:13:cd:18:4b:fd:9a:eb:8f:33:
a0:9b:98:32:fe:a2:27:da:31:c2:e5:f1:9d:7c:e5:c8:27:98:
d6:97:5b:de:6f:ee:6a:5c:03:36:12:23:e2:73:f1:de:3b:c3:
4a:da:c2:e8:34:21:12:60:00:a7:2f:fe:80:35:ce:7b:49:3f:
d0:51:dd:4e:0d:05:98:0c:65:56:84:0d:33:89:f6:c7:7c:3c:
39:82:29:9d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZmXUeFndneIdMByXXN8jIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxODY0NzAwNWZhOGIwNmU0N2VlMmVmYmZkZWRjOTdhMGM3
NzU1ZjgwHhcNMjYwNDE3MDQwMTA0WhcNMjYwNDE4MDQwMTA0WjAzMTEwLwYDVQQD
EyhhYWRiZTRjY2YyM2M1YjI3NTk2OGM3ODk2ZTg2ODMxNWRlNjg2YTFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxeA7+JsziyQ5xQn6lQEnR7HOVuwp
zgG/961I1jAvq6p1bWYA61DcxAQveOGubzGY+G6exGR+YTnF9qM/LpiDatDdk4xB
fTjXWmsVo/te0pFgM7pMQgKpkMnIObkndwTaxkyI/ICL0Tv8Vd6A2G1lp81wBlbE
kLLNA9Li40rmbXQ6qW6lwIGc5MdGOIHEk3waPwNxkKCpZdkCfvGXG/Q3dsqT0rwF
tYrEpmxAgIcGsQHio8V6ZpeNRGzClfO+Tx5vZzQx01TieqL6+Zv3mPBapIbHKrj5
NYlw8vw5tzP8LHJsUI88T5gF21mo5iPE2jQA9zV9IKW1M/tExI/VMH+qmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKrb5MzyPFsnWWjHiW6GgxXeaGodMB8GA1UdIwQY
MBaAFNGGRwBfqLBuR+4u+/3tyXoMd1X4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMFlaSEFGLW9zRzVIN2k3N19lM0plZ3gzVmZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83ZmE3OTEtYjNjOS00OGFlLTgwMzQt
YzIxMDQ2NzNjMjBiLzEvMFlaSEFGLW9zRzVIN2k3N19lM0plZ3gzVmZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi83ZmE3OTEtYjNjOS00OGFlLTgwMzQtYzIxMDQ2NzNjMjBi
LzEvMFlaSEFGLW9zRzVIN2k3N19lM0plZ3gzVmZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf6BSvBX4
5/prMXrKIsOOvpSZmIv03+uqtCZPVB9RsQjcrm+hSE4Gjy3VXEhUHfwNtNhHvI60
gVBEtcYzFCkTln2orHx6LL7o4q7vpNmYXDP9IouLuFnUS3EfFqmKchXYlit8698u
eAGvb5LXAx/SMLszzf35oDAfCEBnBHDYvVU0famdMfQ290yZ8vIUgdv30+NFKPtB
HmRQFiqIRJr/uFKvsW2sb7a2v0yqE80YS/2a648zoJuYMv6iJ9oxwuXxnXzlyCeY
1pdb3m/ualwDNhIj4nPx3jvDStrC6DQhEmAApy/+gDXOe0k/0FHdTg0FmAxlVoQN
M4n2x3w8OYIpnQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 10:50:54 2026 by rpki-client