Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
File: Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft (raw, json)
Hash identifier: Jn6XD3s/HxrjU9r/z4gUxNQbKt6NALpyi1PfiBoY7Yo=
Subject key identifier: AE:FC:C2:96:40:5F:1E:95:E1:55:6F:50:62:20:5E:9E:7F:C6:27:EE
Authority key identifier: 63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90
Certificate issuer: /CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890
Certificate serial: 019D9C9A1030D52A1BDFBDE07DF6CD085966
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
Manifest number: 0EA6
Signing time: Fri 17 Apr 2026 18:00:35 +0000
Manifest this update: Fri 17 Apr 2026 18:00:35 +0000
Manifest next update: Sat 18 Apr 2026 18:00:35 +0000
Files and hashes: 1: Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl (hash: 2y34sTQRO5BUusDGv+JExtrdDEfQz2YbhzXrRD6WtMo=)
2: aRuatR-K8nQ9ZXL9FpjwSLceO4A.roa (hash: Vt5YWGyW9wbAPKP7kNgM97gFfWqXrRoxA2e6gMj6LNc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:9a:10:30:d5:2a:1b:df:bd:e0:7d:f6:cd:08:59:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890
Validity
Not Before: Apr 17 18:00:35 2026 GMT
Not After : Apr 18 18:00:35 2026 GMT
Subject: CN=aefcc296405f1e95e1556f5062205e9e7fc627ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:71:69:d0:d3:3d:9b:ae:fc:f7:94:55:f9:b8:
ad:7e:77:1c:f8:fe:3d:cf:53:79:bb:bf:3a:bc:cf:
70:b2:83:82:08:81:4c:eb:c1:87:1b:a1:f9:fd:44:
d8:01:0b:88:27:d5:cb:08:fa:4e:72:d5:ab:e0:73:
a5:6e:26:4b:ae:52:4e:16:64:15:83:97:58:8d:60:
82:1b:40:6f:a2:55:1f:e6:da:df:3a:92:0c:25:9b:
57:dc:34:8e:e9:a6:6b:21:12:38:cf:1e:88:fe:5f:
91:71:ac:36:2e:06:22:f2:4c:85:22:ba:ef:c4:12:
01:62:60:7c:03:0e:5d:be:89:36:f2:76:d9:28:57:
da:8b:f0:b3:60:bd:42:8a:76:c4:16:d8:90:5e:2b:
1f:4d:3b:7b:f5:c1:5f:02:9b:ed:dd:54:1e:2e:60:
bb:00:75:a2:e5:11:01:e8:1c:5f:64:1a:af:be:78:
20:02:76:fd:91:a2:1d:64:da:92:3d:0f:b0:c3:8c:
c1:98:25:99:91:9c:a2:0c:27:a8:7e:12:a4:fa:26:
0f:fc:8e:88:e4:9e:ef:44:b0:ea:9c:42:3e:b2:1a:
b1:1f:66:f1:c5:86:63:11:e6:cf:c5:58:86:8a:52:
50:c3:fd:78:06:6e:eb:89:fc:13:1d:b5:1b:8b:a1:
07:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:FC:C2:96:40:5F:1E:95:E1:55:6F:50:62:20:5E:9E:7F:C6:27:EE
X509v3 Authority Key Identifier:
keyid:63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:5a:be:1b:58:c9:a0:2d:d9:49:f0:94:e2:81:7b:67:bf:b1:
5d:a8:91:7f:2e:1d:21:b0:e2:d6:05:17:03:17:1d:db:e6:3a:
cc:85:76:fe:ae:be:73:66:a5:e9:3a:1f:94:51:0a:a9:e4:23:
9c:76:c9:7c:fd:76:ba:bd:9e:1f:1a:15:07:0a:57:6c:69:68:
ce:84:e9:2a:16:79:a4:cd:8b:f1:24:98:21:c9:97:72:06:8e:
a7:32:1c:84:84:72:b0:fb:21:79:ed:28:a5:16:6a:0f:56:63:
bd:98:b1:18:60:2d:b0:38:46:1c:4d:75:09:02:06:1f:dc:95:
8c:47:2a:28:b4:21:70:1a:da:b5:66:86:12:d1:61:df:ef:3e:
1b:f9:5e:e6:d9:67:c3:45:eb:ba:44:cb:68:37:a2:8d:a4:00:
b5:ae:b7:20:9b:97:72:55:47:ee:ff:c9:f4:f7:7c:3e:09:4f:
5b:48:65:89:83:e5:f3:c1:89:42:7e:6b:89:41:04:73:df:ec:
a5:42:40:4c:3d:c9:17:6a:0f:81:16:cf:ef:97:fa:51:36:ad:
43:dc:bf:1d:49:26:ea:ee:6a:47:66:da:84:62:0e:61:5f:33:
bb:2d:d1:9e:9b:cf:9f:ea:d4:f5:67:23:40:c7:dc:0c:a1:a5:
e5:39:17:2e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2cmhAw1Sob373gffbNCFlmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzOGM4M2Y5YTNhM2QyMTYwYTAxNzhjYTE5Y2NiNDNhMGQy
ZjE4OTAwHhcNMjYwNDE3MTgwMDM1WhcNMjYwNDE4MTgwMDM1WjAzMTEwLwYDVQQD
EyhhZWZjYzI5NjQwNWYxZTk1ZTE1NTZmNTA2MjIwNWU5ZTdmYzYyN2VlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsXFp0NM9m67895RV+bitfncc+P49
z1N5u786vM9wsoOCCIFM68GHG6H5/UTYAQuIJ9XLCPpOctWr4HOlbiZLrlJOFmQV
g5dYjWCCG0BvolUf5trfOpIMJZtX3DSO6aZrIRI4zx6I/l+Rcaw2LgYi8kyFIrrv
xBIBYmB8Aw5dvok28nbZKFfai/CzYL1CinbEFtiQXisfTTt79cFfApvt3VQeLmC7
AHWi5REB6BxfZBqvvnggAnb9kaIdZNqSPQ+ww4zBmCWZkZyiDCeofhKk+iYP/I6I
5J7vRLDqnEI+shqxH2bxxYZjEebPxViGilJQw/14Bm7rifwTHbUbi6EH3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK78wpZAXx6V4VVvUGIgXp5/xifuMB8GA1UdIwQY
MBaAFGOMg/mjo9IWCgF4yhnMtDoNLxiQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWTR5RC1hT2owaFlLQVhqS0djeTBPZzB2R0pBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9jYzNjMjgtN2IxMy00MzQzLWFmMzct
MjU1NTBiYTI5MTI3LzEvWTR5RC1hT2owaFlLQVhqS0djeTBPZzB2R0pBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9jYzNjMjgtN2IxMy00MzQzLWFmMzctMjU1NTBiYTI5MTI3
LzEvWTR5RC1hT2owaFlLQVhqS0djeTBPZzB2R0pBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwVq+G1jJ
oC3ZSfCU4oF7Z7+xXaiRfy4dIbDi1gUXAxcd2+Y6zIV2/q6+c2al6ToflFEKqeQj
nHbJfP12ur2eHxoVBwpXbGlozoTpKhZ5pM2L8SSYIcmXcgaOpzIchIRysPshee0o
pRZqD1ZjvZixGGAtsDhGHE11CQIGH9yVjEcqKLQhcBratWaGEtFh3+8+G/le5tln
w0XrukTLaDeijaQAta63IJuXclVH7v/J9Pd8PglPW0hliYPl88GJQn5riUEEc9/s
pUJATD3JF2oPgRbP75f6UTatQ9y/HUkm6u5qR2bahGIOYV8zuy3RnpvPn+rU9Wcj
QMfcDKGl5TkXLg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 23:06:24 2026 by rpki-client