Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.mft
File: y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.mft (raw, json)
Hash identifier: 6SjQ64xwKYrE+3h8aBYCiIqE+/jiFC6ij1IXK/XuL+I=
Subject key identifier: 68:3D:62:CC:8E:4A:1E:57:81:84:48:6C:A7:C5:0A:9F:D6:34:76:33
Authority key identifier: CB:55:6A:B1:29:90:F1:87:1A:9E:1E:E7:43:96:9A:A8:A2:79:9F:CA
Certificate issuer: /CN=cb556ab12990f1871a9e1ee743969aa8a2799fca
Certificate serial: 019D9AE2C3BECA18CBC9A048650795858473
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.mft
Manifest number: 1824
Signing time: Fri 17 Apr 2026 10:00:45 +0000
Manifest this update: Fri 17 Apr 2026 10:00:45 +0000
Manifest next update: Sat 18 Apr 2026 10:00:45 +0000
Files and hashes: 1: y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.crl (hash: MFi8hlHSAN2zPNOR1UVOmUi1cMxiard4s631XZJCJZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 10:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e2:c3:be:ca:18:cb:c9:a0:48:65:07:95:85:84:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb556ab12990f1871a9e1ee743969aa8a2799fca
Validity
Not Before: Apr 17 10:00:45 2026 GMT
Not After : Apr 18 10:00:45 2026 GMT
Subject: CN=683d62cc8e4a1e578184486ca7c50a9fd6347633
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:dc:29:12:2b:27:76:c4:ce:99:36:29:da:72:
58:3d:cc:b9:ca:de:6f:90:52:7a:3d:d1:cb:06:f9:
bf:48:92:3a:5a:11:c3:cc:c8:95:72:79:bc:dd:01:
41:0c:29:0d:47:2c:d5:cf:fb:b9:8c:fc:f1:49:86:
db:50:4c:27:b5:fe:6f:6c:9d:7f:db:be:c4:6e:e9:
6a:c4:31:85:39:9d:6d:c0:aa:ff:1e:ad:42:7d:21:
d7:1b:f6:04:83:af:8d:0a:08:c8:99:1a:2d:73:db:
ae:f6:a7:1f:b2:f8:06:e9:0a:ca:12:31:d7:50:3a:
a0:23:4b:f5:72:f2:d9:f6:4f:71:90:ab:55:b0:de:
a0:f0:88:10:9a:49:6b:58:0c:15:69:72:99:1e:6a:
fa:7e:45:1b:14:bb:56:c5:b5:0e:ce:18:bb:93:2e:
98:96:9e:81:c2:42:3e:cf:32:00:eb:36:86:96:66:
53:e8:bd:d1:47:39:47:09:68:a1:19:7c:c6:5c:84:
b5:9f:be:d8:a4:19:da:03:be:4f:53:76:56:83:6f:
0b:14:69:07:ed:79:c2:97:56:9c:80:4a:01:50:39:
cf:d1:9e:d1:9f:51:2f:13:04:36:85:5f:25:6a:1e:
5b:19:13:85:f7:f3:a3:d6:46:b1:22:50:f0:91:f8:
d3:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:3D:62:CC:8E:4A:1E:57:81:84:48:6C:A7:C5:0A:9F:D6:34:76:33
X509v3 Authority Key Identifier:
keyid:CB:55:6A:B1:29:90:F1:87:1A:9E:1E:E7:43:96:9A:A8:A2:79:9F:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:86:98:3d:7d:17:37:1e:02:87:6d:3a:0f:1b:fc:5d:df:0d:
c3:5f:fb:ac:1a:b9:c1:3b:79:a8:a5:52:f5:65:c3:ea:1c:a8:
79:fd:5f:76:de:9e:f6:34:3e:27:f6:cd:58:36:38:68:21:39:
59:03:bd:98:38:0a:fd:b1:58:b3:70:ce:53:b2:ea:ec:2f:60:
61:b1:1a:4c:3d:6d:c5:8f:3f:66:11:1b:ab:28:4f:a2:ff:5a:
de:10:8a:84:48:73:17:cf:b7:a9:90:0c:9e:0f:43:9d:8b:d6:
db:1a:8b:85:df:3e:08:b3:bf:41:ba:e7:ea:e4:3d:12:7d:22:
7e:33:94:f2:8b:f8:8c:c7:93:a2:75:d9:e4:fa:85:0f:e0:0d:
a4:d3:b7:76:4a:3c:27:16:52:95:89:16:e1:b8:23:d8:f4:11:
21:ad:2d:36:b8:d2:67:68:b1:93:46:2e:25:28:c6:aa:25:64:
bc:7c:21:1e:66:ee:aa:18:d5:d8:9b:fc:3f:cf:36:fc:bd:46:
15:4d:84:b1:ea:a7:04:29:af:bf:86:71:9a:a1:51:4f:14:d6:
f0:32:a5:ae:ed:e8:37:56:9d:43:06:8b:cc:c6:10:d4:ee:44:
cf:3b:90:1d:bd:1c:07:a4:6d:b7:68:73:cf:d9:3b:78:de:bb:
4f:97:ae:48
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2a4sO+yhjLyaBIZQeVhYRzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiNTU2YWIxMjk5MGYxODcxYTllMWVlNzQzOTY5YWE4YTI3
OTlmY2EwHhcNMjYwNDE3MTAwMDQ1WhcNMjYwNDE4MTAwMDQ1WjAzMTEwLwYDVQQD
Eyg2ODNkNjJjYzhlNGExZTU3ODE4NDQ4NmNhN2M1MGE5ZmQ2MzQ3NjMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxdwpEisndsTOmTYp2nJYPcy5yt5v
kFJ6PdHLBvm/SJI6WhHDzMiVcnm83QFBDCkNRyzVz/u5jPzxSYbbUEwntf5vbJ1/
277EbulqxDGFOZ1twKr/Hq1CfSHXG/YEg6+NCgjImRotc9uu9qcfsvgG6QrKEjHX
UDqgI0v1cvLZ9k9xkKtVsN6g8IgQmklrWAwVaXKZHmr6fkUbFLtWxbUOzhi7ky6Y
lp6BwkI+zzIA6zaGlmZT6L3RRzlHCWihGXzGXIS1n77YpBnaA75PU3ZWg28LFGkH
7XnCl1acgEoBUDnP0Z7Rn1EvEwQ2hV8lah5bGROF9/Oj1kaxIlDwkfjTYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGg9YsyOSh5XgYRIbKfFCp/WNHYzMB8GA1UdIwQY
MBaAFMtVarEpkPGHGp4e50OWmqiieZ/KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveTFWcXNTbVE4WWNhbmg3blE1YWFxS0o1bjhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9iOTY4NmUtNjU4MC00NTBkLTljMjIt
OWM1ODE1OTFlYzkxLzEveTFWcXNTbVE4WWNhbmg3blE1YWFxS0o1bjhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy9iOTY4NmUtNjU4MC00NTBkLTljMjItOWM1ODE1OTFlYzkx
LzEveTFWcXNTbVE4WWNhbmg3blE1YWFxS0o1bjhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAIaYPX0X
Nx4Ch206Dxv8Xd8Nw1/7rBq5wTt5qKVS9WXD6hyoef1fdt6e9jQ+J/bNWDY4aCE5
WQO9mDgK/bFYs3DOU7Lq7C9gYbEaTD1txY8/ZhEbqyhPov9a3hCKhEhzF8+3qZAM
ng9DnYvW2xqLhd8+CLO/Qbrn6uQ9En0ifjOU8ov4jMeTonXZ5PqFD+ANpNO3dko8
JxZSlYkW4bgj2PQRIa0tNrjSZ2ixk0YuJSjGqiVkvHwhHmbuqhjV2Jv8P882/L1G
FU2EseqnBCmvv4ZxmqFRTxTW8DKlru3oN1adQwaLzMYQ1O5EzzuQHb0cB6Rtt2hz
z9k7eN67T5euSA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 19:15:09 2026 by rpki-client