Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
File: YHZWuPfoG1FJtIYPgSex1OO0h9w.mft (raw, json)
Hash identifier: b4hFp06eQeNJ89/J2lD5aSEXW8Fj7MwnStKhL8W+maY=
Subject key identifier: 85:9B:6B:3B:7D:C5:08:11:D5:B0:FB:41:DD:DB:1F:C6:E2:BD:F2:A5
Authority key identifier: 60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
Certificate issuer: /CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Certificate serial: 019D9998E4486CB3430E3F8C984A21B66C6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
Manifest number: 0ED3
Signing time: Fri 17 Apr 2026 04:00:26 +0000
Manifest this update: Fri 17 Apr 2026 04:00:26 +0000
Manifest next update: Sat 18 Apr 2026 04:00:26 +0000
Files and hashes: 1: UUfjp8DsgnyXyAKHpxYY24nPV9k.roa (hash: z2A5oacpxbaOodlp6c1sfM8uFMWqz0u+N2Xu9qkatg0=)
2: YHZWuPfoG1FJtIYPgSex1OO0h9w.crl (hash: xDwSEoIC7v8C7dXxCY/4ZvrPYj0oXIWpmiMfI+etLiY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:98:e4:48:6c:b3:43:0e:3f:8c:98:4a:21:b6:6c:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Validity
Not Before: Apr 17 04:00:26 2026 GMT
Not After : Apr 18 04:00:26 2026 GMT
Subject: CN=859b6b3b7dc50811d5b0fb41dddb1fc6e2bdf2a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:30:b1:0d:8d:42:e6:fc:7b:4c:47:1f:c1:57:
35:c6:46:e3:19:f0:02:c0:05:72:48:58:b6:15:57:
da:7e:60:7c:2b:1b:57:c5:0c:e6:ba:23:1d:07:f4:
23:52:e8:d0:4d:4e:b3:45:84:6c:71:4a:ca:48:ae:
27:31:eb:88:36:e4:ce:18:d8:15:8c:cc:7e:c7:03:
e9:9a:a0:07:21:8c:b5:d8:43:52:6b:26:08:47:c0:
5b:16:18:d2:9d:64:56:46:6a:0f:90:fc:6b:95:39:
b1:87:67:47:56:13:f0:3d:1f:d5:0e:c4:77:77:2d:
ef:5f:d4:9c:c5:c4:50:a8:3e:d1:0b:c0:4c:fa:09:
3a:55:9e:da:22:02:20:fe:9b:72:37:50:b6:ed:1b:
9a:39:5d:2d:fa:ad:7d:81:1d:f5:06:e0:1d:71:76:
9b:8b:16:74:3a:0d:db:cd:7c:90:47:04:71:91:d8:
d4:12:36:1e:fb:8d:3d:74:ab:a6:b5:5d:6e:1c:ec:
20:1e:ed:78:3c:91:99:1c:cf:8b:a7:f0:d4:71:20:
0a:06:12:3a:b7:13:4f:82:cc:85:f4:43:b7:c0:c6:
fa:28:8d:81:30:43:8c:d6:37:cb:66:46:8d:d1:cc:
f9:4f:df:bb:e5:32:9a:b3:dc:ff:50:5c:81:9f:33:
65:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:9B:6B:3B:7D:C5:08:11:D5:B0:FB:41:DD:DB:1F:C6:E2:BD:F2:A5
X509v3 Authority Key Identifier:
keyid:60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:f3:48:33:30:6f:1a:87:e4:f7:fa:6a:c1:a8:5b:43:ab:7a:
39:eb:3b:6a:26:ac:94:59:5c:70:41:e4:7e:2c:8a:b9:35:7f:
4c:0e:d0:39:99:20:78:41:7a:1e:7c:36:44:11:69:93:a4:9f:
a5:7e:30:59:d4:39:15:b3:1e:da:4d:6b:14:52:e2:00:28:c7:
9e:06:70:8b:7a:1f:db:f5:2d:cd:b3:7b:d9:d9:7d:f7:c3:04:
3b:7f:63:86:93:0f:12:e4:1a:fb:b7:67:c9:0a:91:40:11:a2:
30:15:ed:6f:3a:6a:19:5a:06:17:fe:5a:24:35:15:5e:99:dc:
40:30:0d:b9:0c:10:56:54:c9:66:cc:71:00:05:a7:5a:69:3a:
03:c7:ac:44:ae:89:2e:db:fd:55:97:47:64:eb:77:fc:58:c0:
4b:ad:8b:2a:2c:d2:d2:5b:9c:36:b2:b8:ca:73:12:d9:1b:f6:
4d:1e:b8:40:d2:bd:be:31:9e:78:a2:76:05:00:a5:9a:2d:cc:
4f:3d:82:42:c0:94:e8:7c:b1:8b:d7:67:b5:4c:06:ec:50:1d:
62:76:ce:f2:2f:37:6d:df:e0:5c:b6:60:3f:14:50:97:4f:17:
54:ae:14:2d:48:64:e1:fc:3d:31:1b:db:5a:43:21:4c:55:4a:
6d:85:61:83
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZmORIbLNDDj+MmEohtmxuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNzY1NmI4ZjdlODFiNTE0OWI0ODYwZjgxMjdiMWQ0ZTNi
NDg3ZGMwHhcNMjYwNDE3MDQwMDI2WhcNMjYwNDE4MDQwMDI2WjAzMTEwLwYDVQQD
Eyg4NTliNmIzYjdkYzUwODExZDViMGZiNDFkZGRiMWZjNmUyYmRmMmE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuTCxDY1C5vx7TEcfwVc1xkbjGfAC
wAVySFi2FVfafmB8KxtXxQzmuiMdB/QjUujQTU6zRYRscUrKSK4nMeuINuTOGNgV
jMx+xwPpmqAHIYy12ENSayYIR8BbFhjSnWRWRmoPkPxrlTmxh2dHVhPwPR/VDsR3
dy3vX9ScxcRQqD7RC8BM+gk6VZ7aIgIg/ptyN1C27RuaOV0t+q19gR31BuAdcXab
ixZ0Og3bzXyQRwRxkdjUEjYe+409dKumtV1uHOwgHu14PJGZHM+Lp/DUcSAKBhI6
txNPgsyF9EO3wMb6KI2BMEOM1jfLZkaN0cz5T9+75TKas9z/UFyBnzNlbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIWbazt9xQgR1bD7Qd3bH8bivfKlMB8GA1UdIwQY
MBaAFGB2Vrj36BtRSbSGD4EnsdTjtIfcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUhaV3VQZm9HMUZKdElZUGdTZXgxT08waDl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9jZWU1NWQtOTg1YS00ZTM2LThlMzkt
ODJiYzhhMzE4MGM2LzEvWUhaV3VQZm9HMUZKdElZUGdTZXgxT08waDl3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi9jZWU1NWQtOTg1YS00ZTM2LThlMzktODJiYzhhMzE4MGM2
LzEvWUhaV3VQZm9HMUZKdElZUGdTZXgxT08waDl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASvNIMzBv
Gofk9/pqwahbQ6t6Oes7aiaslFlccEHkfiyKuTV/TA7QOZkgeEF6Hnw2RBFpk6Sf
pX4wWdQ5FbMe2k1rFFLiACjHngZwi3of2/UtzbN72dl998MEO39jhpMPEuQa+7dn
yQqRQBGiMBXtbzpqGVoGF/5aJDUVXpncQDANuQwQVlTJZsxxAAWnWmk6A8esRK6J
Ltv9VZdHZOt3/FjAS62LKizS0lucNrK4ynMS2Rv2TR64QNK9vjGeeKJ2BQClmi3M
Tz2CQsCU6Hyxi9dntUwG7FAdYnbO8i83bd/gXLZgPxRQl08XVK4ULUhk4fw9MRvb
WkMhTFVKbYVhgw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 11:12:20 2026 by rpki-client