Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
File: lYj7Sw-weytS4w2SGYmPKM-8mi0.mft (raw, json)
Hash identifier: gktWIpmoFbKntYLIErFxgt58u5lWDQUrqu/uQs9nLnA=
Subject key identifier: EA:25:E7:45:6E:90:31:49:4E:A4:7B:DE:E8:29:40:F6:09:8A:00:7E
Authority key identifier: 95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
Certificate issuer: /CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Certificate serial: 019D98F4077D520A39135D47852A9035E550
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
Manifest number: 163E
Signing time: Fri 17 Apr 2026 01:00:22 +0000
Manifest this update: Fri 17 Apr 2026 01:00:22 +0000
Manifest next update: Sat 18 Apr 2026 01:00:22 +0000
Files and hashes: 1: lYj7Sw-weytS4w2SGYmPKM-8mi0.crl (hash: ZRhayt+uXnVHjeFJ87UE9DuDgNO0FPZmins0tOZeE48=)
2: nwCKURFvKAdbQU38fWCHq9Su4qo.roa (hash: C9xiWCIHazX19G/OBW1EkzJey6ARQXArUE2/+FTm9Z4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:07:7d:52:0a:39:13:5d:47:85:2a:90:35:e5:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Validity
Not Before: Apr 17 01:00:22 2026 GMT
Not After : Apr 18 01:00:22 2026 GMT
Subject: CN=ea25e7456e9031494ea47bdee82940f6098a007e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f9:24:8b:cf:1a:9a:f4:8f:42:ed:c2:96:98:
7e:fc:04:c6:94:a3:f8:a8:2f:fc:6d:50:11:2c:61:
59:79:e2:b6:92:b8:01:d2:8c:36:54:5e:12:27:17:
83:3c:d2:b5:1f:fe:95:6f:fa:fb:30:0d:8a:e5:17:
34:12:4b:2f:10:5e:58:6c:ef:a0:14:1a:3e:09:26:
7c:b6:fa:48:e1:05:ac:61:f7:81:45:ca:61:77:c8:
13:4e:ba:4f:08:e8:3f:95:f3:a5:f4:c5:19:2d:b7:
9f:29:2d:a3:f2:57:b8:77:61:48:af:6f:0e:e4:75:
6f:40:ca:a3:28:9a:ff:41:e7:19:77:c3:9f:c5:aa:
7f:e4:aa:e7:e9:82:5c:5f:05:b8:fa:24:fd:84:30:
c5:3d:7d:8d:61:7a:f3:d7:50:7b:0f:f9:1a:de:0e:
49:2f:ea:3a:cb:64:c0:d2:cb:43:ae:61:54:3d:88:
b3:2f:41:1e:ad:b0:fd:70:8f:72:14:72:e4:28:2f:
a5:35:f6:46:c1:f0:ed:03:d1:f6:9c:b0:87:ad:ce:
4c:3b:de:78:49:d3:44:b0:31:c6:df:0e:e9:3f:e9:
9b:08:45:ca:b5:11:5d:03:50:bf:4f:e8:5c:79:0e:
6b:79:88:49:df:92:1c:b3:9f:03:38:fd:88:46:eb:
49:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:25:E7:45:6E:90:31:49:4E:A4:7B:DE:E8:29:40:F6:09:8A:00:7E
X509v3 Authority Key Identifier:
keyid:95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:96:d8:57:c2:79:21:68:78:6f:73:9b:c8:22:22:54:e2:13:
c2:53:7f:e2:a6:de:e3:91:81:94:b8:4a:86:6b:cd:52:19:83:
04:de:27:73:67:5a:e3:57:d6:2e:d7:f8:35:60:4f:97:fd:41:
29:77:20:1d:75:6e:8d:a4:51:0c:0c:fe:58:29:99:89:1d:1b:
3e:d9:99:a3:f4:6a:5f:95:ab:21:4c:34:37:ef:b7:9b:e0:09:
f0:49:e3:f2:43:60:2f:08:2b:94:9e:d7:61:b6:82:a8:fd:cf:
36:75:dc:bf:bc:77:a2:a3:b0:2c:c4:99:6e:b3:86:b5:03:79:
d6:13:90:27:05:bb:d6:b3:54:97:39:08:b0:63:c8:9f:fa:40:
b1:ad:9d:3d:be:37:83:fb:6e:37:52:16:4b:b2:3c:d6:93:86:
36:75:13:b8:2a:29:a2:50:c7:14:79:db:26:54:a4:7e:40:b2:
af:41:d0:5e:20:95:50:c4:e1:44:dc:f6:34:94:f6:99:6f:a9:
37:7a:10:dd:e4:56:15:5e:75:3b:cb:b3:bb:29:1b:eb:eb:7a:
63:91:de:72:4e:70:08:ce:44:1e:e5:1c:f5:e4:a4:38:23:a6:
0d:53:ea:a8:25:8e:a8:f7:0e:86:b3:c4:6e:ba:7b:47:9d:07:
6f:31:7a:8d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Y9Ad9Ugo5E11HhSqQNeVQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1ODhmYjRiMGZiMDdiMmI1MmUzMGQ5MjE5ODk4ZjI4Y2Zi
YzlhMmQwHhcNMjYwNDE3MDEwMDIyWhcNMjYwNDE4MDEwMDIyWjAzMTEwLwYDVQQD
EyhlYTI1ZTc0NTZlOTAzMTQ5NGVhNDdiZGVlODI5NDBmNjA5OGEwMDdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqfkki88amvSPQu3Clph+/ATGlKP4
qC/8bVARLGFZeeK2krgB0ow2VF4SJxeDPNK1H/6Vb/r7MA2K5Rc0EksvEF5YbO+g
FBo+CSZ8tvpI4QWsYfeBRcphd8gTTrpPCOg/lfOl9MUZLbefKS2j8le4d2FIr28O
5HVvQMqjKJr/QecZd8Ofxap/5Krn6YJcXwW4+iT9hDDFPX2NYXrz11B7D/ka3g5J
L+o6y2TA0stDrmFUPYizL0EerbD9cI9yFHLkKC+lNfZGwfDtA9H2nLCHrc5MO954
SdNEsDHG3w7pP+mbCEXKtRFdA1C/T+hceQ5reYhJ35Ics58DOP2IRutJvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOol50VukDFJTqR73ugpQPYJigB+MB8GA1UdIwQY
MBaAFJWI+0sPsHsrUuMNkhmJjyjPvJotMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFlqN1N3LXdleXRTNHcyU0dZbVBLTS04bWkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy9mYjg1ZDMtNjY2MC00MzBlLTlhYzct
ODZkMmMzMTFkYjE3LzEvbFlqN1N3LXdleXRTNHcyU0dZbVBLTS04bWkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy9mYjg1ZDMtNjY2MC00MzBlLTlhYzctODZkMmMzMTFkYjE3
LzEvbFlqN1N3LXdleXRTNHcyU0dZbVBLTS04bWkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPJbYV8J5
IWh4b3ObyCIiVOITwlN/4qbe45GBlLhKhmvNUhmDBN4nc2da41fWLtf4NWBPl/1B
KXcgHXVujaRRDAz+WCmZiR0bPtmZo/RqX5WrIUw0N++3m+AJ8Enj8kNgLwgrlJ7X
YbaCqP3PNnXcv7x3oqOwLMSZbrOGtQN51hOQJwW71rNUlzkIsGPIn/pAsa2dPb43
g/tuN1IWS7I81pOGNnUTuCopolDHFHnbJlSkfkCyr0HQXiCVUMThRNz2NJT2mW+p
N3oQ3eRWFV51O8uzuykb6+t6Y5Heck5wCM5EHuUc9eSkOCOmDVPqqCWOqPcOhrPE
brp7R50HbzF6jQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:35:37 2026 by rpki-client