Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
File: Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft (raw, json)
Hash identifier: JEynOEZsVzRqJimdkiWsFJ8rUFIL6Zdo6S0VCLRyCCw=
Subject key identifier: 6F:E2:2C:70:4F:21:97:FC:29:5A:51:04:A0:4A:94:47:4C:5C:73:C2
Authority key identifier: 63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90
Certificate issuer: /CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890
Certificate serial: 019CAF1118669D50F3845880ED98C061E06E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
Manifest number: 0E2B
Signing time: Mon 02 Mar 2026 15:00:59 +0000
Manifest this update: Mon 02 Mar 2026 15:00:59 +0000
Manifest next update: Tue 03 Mar 2026 15:00:59 +0000
Files and hashes: 1: Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl (hash: TOx1NMUKMbVdmAVAWRNM8hXRS9nqgm0+JQD0XWWKS6M=)
2: aRuatR-K8nQ9ZXL9FpjwSLceO4A.roa (hash: Vt5YWGyW9wbAPKP7kNgM97gFfWqXrRoxA2e6gMj6LNc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:11:18:66:9d:50:f3:84:58:80:ed:98:c0:61:e0:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890
Validity
Not Before: Mar 2 15:00:59 2026 GMT
Not After : Mar 3 15:00:59 2026 GMT
Subject: CN=6fe22c704f2197fc295a5104a04a94474c5c73c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:cc:22:a3:1c:6a:48:ce:f9:bc:94:9c:f3:81:
8f:3f:c7:26:cf:86:65:fd:4e:60:23:a6:a8:c1:2f:
4f:4a:3d:21:ef:11:cb:11:12:f4:07:2a:76:0b:20:
96:5e:79:42:26:14:81:73:da:3a:85:c6:47:a0:67:
6c:dc:6c:f8:83:04:7c:07:fb:fa:73:c9:ce:f7:07:
0a:62:f6:c5:ac:68:a4:0d:02:75:ad:d6:c0:da:a4:
bd:1c:0b:23:c4:5d:41:3d:f5:3a:9f:bb:86:20:f2:
16:27:16:09:ec:7c:9e:a8:4b:27:ce:76:96:b2:53:
3e:c7:76:8e:41:ee:f4:67:4d:a1:19:c0:a3:05:ce:
39:d1:24:8d:6c:ce:a8:53:da:d9:40:f4:4b:92:0b:
1e:9a:ef:93:c8:df:aa:ac:34:e2:52:03:85:65:44:
3f:25:69:2b:2e:58:7a:9a:06:8e:c9:72:aa:e9:89:
fd:62:ce:44:22:8e:77:2b:99:19:ee:9c:37:43:c5:
14:2e:a8:27:31:a2:48:29:ea:dc:c0:12:77:84:4e:
86:cd:46:02:83:f7:f3:03:3e:1d:38:52:c3:ec:81:
65:d5:41:e0:39:a3:4b:ce:28:93:e5:c9:c0:9e:04:
75:b5:0a:48:a4:ec:16:64:5d:72:67:86:34:6f:f1:
b7:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:E2:2C:70:4F:21:97:FC:29:5A:51:04:A0:4A:94:47:4C:5C:73:C2
X509v3 Authority Key Identifier:
keyid:63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:40:c8:7b:54:e8:76:4a:78:62:78:47:11:c4:5f:bf:43:c1:
38:f3:dc:27:8a:20:bf:a5:5a:15:32:37:c2:79:c9:59:92:d9:
67:28:03:0e:d0:61:dd:c7:06:25:74:3a:49:88:1c:72:8d:42:
d3:b7:85:fc:45:a1:ef:2c:25:6d:6d:19:7d:ba:a3:4a:e2:7c:
d4:b7:8c:32:ec:86:1a:ae:e8:3f:5a:77:d2:11:53:de:ba:61:
2c:8a:7a:bc:8c:7a:9f:64:e9:c0:91:a3:1a:9f:67:71:dc:9c:
65:4b:bc:07:3d:63:5d:a2:29:3a:a1:6a:e4:cd:37:60:5b:61:
7f:1b:f4:2d:f3:8f:40:98:22:a7:9c:29:3f:23:60:60:45:d6:
5f:2d:cf:8e:36:d3:39:cf:86:80:18:30:4d:9c:d6:c5:9f:b2:
dd:75:03:72:b4:d4:02:b6:85:6a:a7:e0:b4:53:1a:2c:e7:3d:
59:3d:8d:2c:52:ff:fe:3d:af:c3:d8:42:72:5a:2d:3a:7f:fe:
7c:7c:bf:ec:4e:4a:08:5d:09:58:6d:e3:d3:49:41:da:d7:fc:
d9:4f:52:49:ee:0c:70:66:0d:b7:5c:f2:ce:36:76:dd:00:79:
35:69:e4:87:60:eb:5e:1b:60:2a:12:96:e4:34:ed:f1:64:a6:
0d:26:c7:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyvERhmnVDzhFiA7ZjAYeBuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzOGM4M2Y5YTNhM2QyMTYwYTAxNzhjYTE5Y2NiNDNhMGQy
ZjE4OTAwHhcNMjYwMzAyMTUwMDU5WhcNMjYwMzAzMTUwMDU5WjAzMTEwLwYDVQQD
Eyg2ZmUyMmM3MDRmMjE5N2ZjMjk1YTUxMDRhMDRhOTQ0NzRjNWM3M2MyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApswioxxqSM75vJSc84GPP8cmz4Zl
/U5gI6aowS9PSj0h7xHLERL0Byp2CyCWXnlCJhSBc9o6hcZHoGds3Gz4gwR8B/v6
c8nO9wcKYvbFrGikDQJ1rdbA2qS9HAsjxF1BPfU6n7uGIPIWJxYJ7HyeqEsnznaW
slM+x3aOQe70Z02hGcCjBc450SSNbM6oU9rZQPRLkgsemu+TyN+qrDTiUgOFZUQ/
JWkrLlh6mgaOyXKq6Yn9Ys5EIo53K5kZ7pw3Q8UULqgnMaJIKercwBJ3hE6GzUYC
g/fzAz4dOFLD7IFl1UHgOaNLziiT5cnAngR1tQpIpOwWZF1yZ4Y0b/G3PwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG/iLHBPIZf8KVpRBKBKlEdMXHPCMB8GA1UdIwQY
MBaAFGOMg/mjo9IWCgF4yhnMtDoNLxiQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWTR5RC1hT2owaFlLQVhqS0djeTBPZzB2R0pBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9jYzNjMjgtN2IxMy00MzQzLWFmMzct
MjU1NTBiYTI5MTI3LzEvWTR5RC1hT2owaFlLQVhqS0djeTBPZzB2R0pBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9jYzNjMjgtN2IxMy00MzQzLWFmMzctMjU1NTBiYTI5MTI3
LzEvWTR5RC1hT2owaFlLQVhqS0djeTBPZzB2R0pBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbkDIe1To
dkp4YnhHEcRfv0PBOPPcJ4ogv6VaFTI3wnnJWZLZZygDDtBh3ccGJXQ6SYgcco1C
07eF/EWh7ywlbW0ZfbqjSuJ81LeMMuyGGq7oP1p30hFT3rphLIp6vIx6n2TpwJGj
Gp9ncdycZUu8Bz1jXaIpOqFq5M03YFthfxv0LfOPQJgip5wpPyNgYEXWXy3PjjbT
Oc+GgBgwTZzWxZ+y3XUDcrTUAraFaqfgtFMaLOc9WT2NLFL//j2vw9hCclotOn/+
fHy/7E5KCF0JWG3j00lB2tf82U9SSe4McGYNt1zyzjZ23QB5NWnkh2DrXhtgKhKW
5DTt8WSmDSbHYA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 19:30:49 2026 by rpki-client