Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
File: ymFHjk1lm-zoIDxei6jo-C8EcNc.mft (raw, json)
Hash identifier: dmCy2XgLXwAz316LMAUF3tWHFSWtRr19XYzK4N/U5/c=
Subject key identifier: EA:89:9F:68:27:5F:DF:4A:AE:24:37:6A:A4:B4:D1:13:C0:DA:B4:77
Authority key identifier: CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7
Certificate issuer: /CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7
Certificate serial: 019D9A074E4A1AA2AAE8336B0867CFFD9BD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
Manifest number: 02E8
Signing time: Fri 17 Apr 2026 06:01:03 +0000
Manifest this update: Fri 17 Apr 2026 06:01:03 +0000
Manifest next update: Sat 18 Apr 2026 06:01:03 +0000
Files and hashes: 1: kF7yRNemd2RBpVB4tNvg1ox66M0.roa (hash: k/T/DHJ19w01mKBdPh3Uc+ipYtTrwox3NQlt6Vnn8WA=)
2: ymFHjk1lm-zoIDxei6jo-C8EcNc.crl (hash: /PsFtNFawaxQoquc37CVvEbmzHbQA6LGlSNfjQTMDRA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:4e:4a:1a:a2:aa:e8:33:6b:08:67:cf:fd:9b:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7
Validity
Not Before: Apr 17 06:01:03 2026 GMT
Not After : Apr 18 06:01:03 2026 GMT
Subject: CN=ea899f68275fdf4aae24376aa4b4d113c0dab477
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9f:ea:4c:5e:1e:f4:80:dd:12:1d:aa:d3:bb:
bb:55:cf:d4:58:38:0b:45:c1:d0:6c:42:4d:41:60:
25:69:7f:65:90:a5:2f:5a:f3:5b:da:7e:f0:35:41:
fb:71:07:52:99:f2:6b:87:80:39:c3:80:09:8b:39:
f5:38:ec:12:bc:c0:a4:e9:95:5e:63:dd:aa:b7:07:
01:3f:68:1d:b7:a1:86:03:5c:a0:ea:2e:63:1b:2f:
e5:05:82:d3:42:95:c3:55:e0:49:6e:23:45:a1:d0:
cb:95:49:7d:fd:62:9f:16:85:6c:48:94:b7:9a:82:
96:73:71:d3:7e:b4:0a:43:6d:61:64:be:80:f5:2d:
7d:68:8b:14:0f:0a:d7:72:1c:2e:1d:56:72:97:d9:
c2:eb:fc:ad:52:51:86:9e:af:a1:0f:de:4b:e7:2b:
b1:af:b3:0c:aa:0c:8a:38:13:7e:28:94:a7:38:d7:
f7:47:65:c5:17:89:20:3d:13:93:1a:96:43:4e:4a:
4a:e8:0f:5c:3a:13:8f:ce:bb:c0:0d:9f:be:dd:8d:
43:09:6a:a5:e8:29:db:25:4a:37:55:62:66:8e:9a:
80:25:bd:a6:eb:b0:f7:e8:1e:f9:50:ab:13:99:19:
33:a8:18:22:ca:26:24:c6:05:a7:f0:31:30:50:3e:
f2:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:89:9F:68:27:5F:DF:4A:AE:24:37:6A:A4:B4:D1:13:C0:DA:B4:77
X509v3 Authority Key Identifier:
keyid:CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:2e:d7:fa:f7:1c:65:63:43:22:13:ab:0a:45:67:64:82:73:
80:3c:94:a5:3a:fd:18:6b:56:5b:0c:35:1c:f4:84:fa:56:26:
77:91:e7:b9:2e:39:15:a3:6a:6f:c8:06:c1:9d:1d:db:ac:41:
e9:48:0e:2f:c8:58:eb:22:ea:ff:33:19:5c:cc:3f:7a:7a:74:
fd:cc:99:d4:cc:57:8a:d4:ca:f1:fc:7f:eb:57:23:97:54:66:
29:91:ca:ab:b8:b0:5f:21:bf:05:2d:81:92:5c:07:cf:d6:89:
34:68:28:1a:8c:45:2e:32:5e:49:a1:a5:88:38:3f:05:bd:fb:
c9:24:86:ff:5a:29:4d:38:48:25:a6:16:e2:a6:01:a2:e4:1a:
4a:51:fe:a9:f3:54:cf:3f:89:14:c6:9b:b6:da:34:a7:10:a5:
7d:41:47:06:b5:44:10:17:44:8b:36:a9:ef:c2:ca:91:01:bd:
50:e0:4a:58:aa:56:37:99:f6:87:6d:06:09:58:a0:15:9f:11:
37:ae:94:5f:87:30:2c:fb:04:67:c6:8a:96:f5:03:5b:07:64:
e9:7e:b8:06:07:fd:73:6a:66:a7:5c:27:eb:a5:60:57:53:de:
6d:ca:b8:52:d4:2c:c8:d0:43:eb:fb:e2:07:98:bb:ca:33:de:
02:91:6a:f7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aB05KGqKq6DNrCGfP/ZvQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNjE0NzhlNGQ2NTliZWNlODIwM2M1ZThiYThlOGY4MmYw
NDcwZDcwHhcNMjYwNDE3MDYwMTAzWhcNMjYwNDE4MDYwMTAzWjAzMTEwLwYDVQQD
EyhlYTg5OWY2ODI3NWZkZjRhYWUyNDM3NmFhNGI0ZDExM2MwZGFiNDc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZ/qTF4e9IDdEh2q07u7Vc/UWDgL
RcHQbEJNQWAlaX9lkKUvWvNb2n7wNUH7cQdSmfJrh4A5w4AJizn1OOwSvMCk6ZVe
Y92qtwcBP2gdt6GGA1yg6i5jGy/lBYLTQpXDVeBJbiNFodDLlUl9/WKfFoVsSJS3
moKWc3HTfrQKQ21hZL6A9S19aIsUDwrXchwuHVZyl9nC6/ytUlGGnq+hD95L5yux
r7MMqgyKOBN+KJSnONf3R2XFF4kgPROTGpZDTkpK6A9cOhOPzrvADZ++3Y1DCWql
6CnbJUo3VWJmjpqAJb2m67D36B75UKsTmRkzqBgiyiYkxgWn8DEwUD7y+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOqJn2gnX99KriQ3aqS00RPA2rR3MB8GA1UdIwQY
MBaAFMphR45NZZvs6CA8Xouo6PgvBHDXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveW1GSGprMWxtLXpvSUR4ZWk2am8tQzhFY05jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8yNzliNjYtMzhmMS00MWE1LTkwZTIt
OTQ2ZGE1ZjVlZmJiLzEveW1GSGprMWxtLXpvSUR4ZWk2am8tQzhFY05jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC8yNzliNjYtMzhmMS00MWE1LTkwZTItOTQ2ZGE1ZjVlZmJi
LzEveW1GSGprMWxtLXpvSUR4ZWk2am8tQzhFY05jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAey7X+vcc
ZWNDIhOrCkVnZIJzgDyUpTr9GGtWWww1HPSE+lYmd5HnuS45FaNqb8gGwZ0d26xB
6UgOL8hY6yLq/zMZXMw/enp0/cyZ1MxXitTK8fx/61cjl1RmKZHKq7iwXyG/BS2B
klwHz9aJNGgoGoxFLjJeSaGliDg/Bb37ySSG/1opTThIJaYW4qYBouQaSlH+qfNU
zz+JFMabtto0pxClfUFHBrVEEBdEizap78LKkQG9UOBKWKpWN5n2h20GCVigFZ8R
N66UX4cwLPsEZ8aKlvUDWwdk6X64Bgf9c2pmp1wn66VgV1Pebcq4UtQsyNBD6/vi
B5i7yjPeApFq9w==
-----END CERTIFICATE-----
Generated at Fri Apr 17 12:40:24 2026 by rpki-client