Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
File: lYj7Sw-weytS4w2SGYmPKM-8mi0.mft (raw, json)
Hash identifier: D5iFDVFBQ9AgC80gowYRfWhTi+Iv4I2xyAJko0FZUD4=
Subject key identifier: 01:C9:EC:1E:A0:08:05:AE:FF:93:34:09:B1:79:5A:7F:A1:C3:44:C4
Authority key identifier: 95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
Certificate issuer: /CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Certificate serial: 019CA97CD3B9298475DCFF69E892993071F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
Manifest number: 15C2
Signing time: Sun 01 Mar 2026 13:00:55 +0000
Manifest this update: Sun 01 Mar 2026 13:00:55 +0000
Manifest next update: Mon 02 Mar 2026 13:00:55 +0000
Files and hashes: 1: lYj7Sw-weytS4w2SGYmPKM-8mi0.crl (hash: +FFJ30/xAbutT2A4iBGhAzd0ClCcnoAEHXR6nMP/NSU=)
2: nwCKURFvKAdbQU38fWCHq9Su4qo.roa (hash: C9xiWCIHazX19G/OBW1EkzJey6ARQXArUE2/+FTm9Z4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 13:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:7c:d3:b9:29:84:75:dc:ff:69:e8:92:99:30:71:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Validity
Not Before: Mar 1 13:00:55 2026 GMT
Not After : Mar 2 13:00:55 2026 GMT
Subject: CN=01c9ec1ea00805aeff933409b1795a7fa1c344c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6c:e4:cd:a3:22:e3:50:02:1c:49:9a:27:35:
79:63:af:f0:10:f3:8a:23:02:af:6c:f8:52:b6:78:
bc:26:db:3c:43:ba:e3:63:7b:d8:fb:09:9d:c8:1d:
a1:5e:40:45:06:a6:4d:a1:05:05:21:f9:44:f5:27:
bf:79:e9:a5:af:c6:64:2b:55:e9:ba:4f:1b:a7:3b:
de:52:61:91:68:11:e9:30:c1:5e:7d:ab:2a:25:1f:
c1:1f:ad:ed:7d:c2:e5:0b:b2:b2:51:5f:41:21:95:
09:2b:39:7f:01:ff:b3:aa:82:21:8a:c6:ce:59:69:
31:e9:b5:6c:90:be:d3:b3:68:87:8e:1b:20:ad:5e:
40:c9:c9:76:91:d3:d2:9b:1a:a4:d8:b5:e4:9e:07:
2d:41:0b:0b:94:c7:42:cb:3e:84:f1:de:8f:da:31:
66:68:31:72:1b:25:3d:09:26:26:51:85:1c:7e:18:
40:16:4e:cd:5e:6b:1d:56:92:b9:1a:60:23:ca:16:
c2:38:85:94:25:a4:5b:a1:ca:19:de:3a:c0:87:77:
ba:60:43:44:c0:2c:8e:75:16:64:24:b8:56:b9:d6:
d5:1f:52:c5:24:a2:84:8c:bf:b5:fc:a6:1a:3d:92:
64:df:9b:01:04:7b:a3:64:34:90:fa:ba:78:8e:2c:
9f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:C9:EC:1E:A0:08:05:AE:FF:93:34:09:B1:79:5A:7F:A1:C3:44:C4
X509v3 Authority Key Identifier:
keyid:95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:e3:18:8d:b1:fa:9b:9e:f7:39:48:f4:9a:9a:71:19:4f:0f:
4a:9d:f0:e1:74:ff:fa:11:d9:a8:69:b0:95:21:dd:03:13:fa:
22:de:ff:a5:80:99:0f:8e:b7:e2:07:73:b7:f3:0c:dd:98:7c:
99:bf:79:38:0d:46:b0:e9:5b:a8:8b:f7:99:9d:1b:6b:dd:6c:
c9:9c:4a:33:b7:16:3b:4e:8d:c9:90:ef:25:26:72:27:2e:a1:
b5:15:54:72:8b:4d:d5:2e:94:39:a6:34:96:d9:f0:b2:59:e1:
99:4e:6c:68:ef:a8:be:63:82:3b:3d:31:02:16:93:29:6b:7e:
03:e4:05:66:25:98:4c:8b:74:47:99:35:30:2a:c9:c7:c9:22:
e1:86:9b:b4:2d:69:b1:91:68:30:b1:c7:fa:62:ed:ad:45:04:
36:23:37:1a:f9:0a:bb:6e:88:ce:3c:02:25:58:3c:1e:16:ac:
4d:88:90:a1:52:de:2c:c9:aa:df:6a:c5:ca:05:06:d4:e9:68:
e8:99:e9:43:d1:79:29:88:fc:ee:fe:72:9a:2e:03:63:1d:26:
39:f1:33:c6:1c:88:d1:b5:ef:74:b2:72:5b:8a:de:b6:0d:d6:
01:97:75:89:cc:d1:b1:07:bd:ce:d3:78:5e:dc:99:d3:0f:f9:
d7:af:2e:7c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZypfNO5KYR13P9p6JKZMHH1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1ODhmYjRiMGZiMDdiMmI1MmUzMGQ5MjE5ODk4ZjI4Y2Zi
YzlhMmQwHhcNMjYwMzAxMTMwMDU1WhcNMjYwMzAyMTMwMDU1WjAzMTEwLwYDVQQD
EygwMWM5ZWMxZWEwMDgwNWFlZmY5MzM0MDliMTc5NWE3ZmExYzM0NGM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlmzkzaMi41ACHEmaJzV5Y6/wEPOK
IwKvbPhStni8Jts8Q7rjY3vY+wmdyB2hXkBFBqZNoQUFIflE9Se/eemlr8ZkK1Xp
uk8bpzveUmGRaBHpMMFefasqJR/BH63tfcLlC7KyUV9BIZUJKzl/Af+zqoIhisbO
WWkx6bVskL7Ts2iHjhsgrV5Aycl2kdPSmxqk2LXkngctQQsLlMdCyz6E8d6P2jFm
aDFyGyU9CSYmUYUcfhhAFk7NXmsdVpK5GmAjyhbCOIWUJaRbocoZ3jrAh3e6YENE
wCyOdRZkJLhWudbVH1LFJKKEjL+1/KYaPZJk35sBBHujZDSQ+rp4jiyf1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAHJ7B6gCAWu/5M0CbF5Wn+hw0TEMB8GA1UdIwQY
MBaAFJWI+0sPsHsrUuMNkhmJjyjPvJotMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFlqN1N3LXdleXRTNHcyU0dZbVBLTS04bWkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy9mYjg1ZDMtNjY2MC00MzBlLTlhYzct
ODZkMmMzMTFkYjE3LzEvbFlqN1N3LXdleXRTNHcyU0dZbVBLTS04bWkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy9mYjg1ZDMtNjY2MC00MzBlLTlhYzctODZkMmMzMTFkYjE3
LzEvbFlqN1N3LXdleXRTNHcyU0dZbVBLTS04bWkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP+MYjbH6
m573OUj0mppxGU8PSp3w4XT/+hHZqGmwlSHdAxP6It7/pYCZD4634gdzt/MM3Zh8
mb95OA1GsOlbqIv3mZ0ba91syZxKM7cWO06NyZDvJSZyJy6htRVUcotN1S6UOaY0
ltnwslnhmU5saO+ovmOCOz0xAhaTKWt+A+QFZiWYTIt0R5k1MCrJx8ki4YabtC1p
sZFoMLHH+mLtrUUENiM3GvkKu26IzjwCJVg8HhasTYiQoVLeLMmq32rFygUG1Olo
6JnpQ9F5KYj87v5ymi4DYx0mOfEzxhyI0bXvdLJyW4retg3WAZd1iczRsQe9ztN4
XtyZ0w/5168ufA==
-----END CERTIFICATE-----
Generated at Sun Mar 1 23:58:35 2026 by rpki-client