Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
File: tYaoZDYz6YdBEai881GKCQXyhgk.mft (raw, json)
Hash identifier: 10V0fYor1IpQe0/UHvXQJtQnK+hqIVJpG9JT9vohXYo=
Subject key identifier: 20:BA:D5:F1:CD:D9:DA:23:C9:D5:9B:C8:E9:B9:FD:31:F7:4B:69:FF
Authority key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
Certificate issuer: /CN=b586a8643633e9874111a8bcf3518a0905f28609
Certificate serial: 019CADFE5760354613EC798E25D649523D1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
Manifest number: 13F1
Signing time: Mon 02 Mar 2026 10:00:52 +0000
Manifest this update: Mon 02 Mar 2026 10:00:52 +0000
Manifest next update: Tue 03 Mar 2026 10:00:52 +0000
Files and hashes: 1: R_zL9EhetPG627p64jnL_1AQk_k.roa (hash: /ASm15I9YtFuL/r1IrLrMNiCv/23kZabo3hMsyygvPM=)
2: Zx2Ej29t4Sy3ugAdSAEr8wgh-eI.roa (hash: 6qePl3E6/9bWQI3GzNjE+NBTWrA6JE82fp1zkkf+j8o=)
3: gPytstS2H2DCx0G35K4nAVksneE.roa (hash: I34ZNFgqBn6ft829pIhUL9qJ7ZwAtJssKpKV0YYtJmI=)
4: hL4U-26oJ-d8CY7a6r3Udux4pFM.roa (hash: 8nT0Nid1k0WCSq4dufjGbFyrf1TbKzMQQr3veAEfmRs=)
5: jJ74mpm8B1pyvT1MNhCtSe0cxRk.roa (hash: OKs2X6l4NJ7txPZTz3RUzDrNyB2I3km6f/sNQFkFGUQ=)
6: tYaoZDYz6YdBEai881GKCQXyhgk.crl (hash: ZI5NNMNXl3/8fR/2SKI8QxTXmiPd/36eSGQqfUWOIos=)
7: v_CzW-gEtbdZtpCnpKHVty7BP7s.roa (hash: FK1HiNTHGuvdh1/S7hYfIVoOC1e1CT6RxRS6KDmNYRQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:57:60:35:46:13:ec:79:8e:25:d6:49:52:3d:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b586a8643633e9874111a8bcf3518a0905f28609
Validity
Not Before: Mar 2 10:00:52 2026 GMT
Not After : Mar 3 10:00:52 2026 GMT
Subject: CN=20bad5f1cdd9da23c9d59bc8e9b9fd31f74b69ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3a:e4:22:91:b0:87:42:fe:ac:09:65:0c:fe:
b2:2b:0c:05:07:50:02:42:56:20:45:32:66:2b:65:
05:9e:e8:8a:d4:1c:b5:de:5e:7c:94:76:e7:ec:4c:
99:ee:9f:9d:5c:9c:c4:bb:48:95:e0:40:e9:6e:ef:
84:98:c3:f6:7b:d8:bb:a8:f3:81:50:72:90:32:2f:
fc:6a:96:e7:ba:ce:c5:e5:35:64:fd:0c:f1:74:0a:
de:37:74:19:43:2f:1c:91:65:09:ef:6c:75:89:7f:
90:e5:84:4f:07:32:dc:37:65:ab:e5:27:9d:87:ff:
75:ca:41:6d:f4:f2:54:7d:4c:4b:1e:22:5e:f3:f8:
b6:ab:c4:3b:7d:57:d5:59:c7:6d:db:2b:a4:52:27:
f2:a0:00:66:35:d2:1c:ff:a9:83:66:30:04:38:f0:
45:0f:40:0f:5f:3f:7f:33:c3:30:8d:65:dc:b1:01:
62:64:4b:a7:06:c9:e5:56:6f:b9:22:be:d5:68:1f:
b5:b9:5b:8b:b4:2b:25:c7:52:8a:70:0a:da:19:e7:
f4:61:06:e7:60:14:2d:03:37:ba:ca:15:ca:84:13:
0e:62:99:6d:0f:ad:6f:25:33:f2:cb:90:cd:e4:fa:
7a:b5:9d:80:3c:14:d1:3b:6f:99:e7:dc:cf:4e:c6:
7b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:BA:D5:F1:CD:D9:DA:23:C9:D5:9B:C8:E9:B9:FD:31:F7:4B:69:FF
X509v3 Authority Key Identifier:
keyid:B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:d5:b4:65:70:00:81:01:a7:51:47:f0:dc:17:bd:e6:b7:da:
d6:6b:d2:54:d6:06:4b:67:2a:e3:6c:a3:76:bc:25:9f:0e:e0:
36:c0:04:60:4e:ae:04:6e:6c:35:01:ae:ad:8f:03:f2:64:64:
0e:e8:cd:1e:62:38:30:40:48:ab:19:2f:3b:45:d6:77:08:b9:
a5:05:e1:fc:54:64:b9:94:e5:7c:e6:cf:7c:18:b5:02:7e:e8:
82:e7:42:f1:cd:18:19:10:8a:10:2f:ef:45:0c:70:f2:6d:c2:
d0:9c:4d:36:e6:a0:03:65:1d:f0:90:91:9f:94:ee:e0:62:b2:
ef:ba:0e:e4:9b:9d:d6:b0:c0:ad:a4:ef:6c:fc:5f:04:fe:1a:
9b:6d:9d:e9:2d:6d:7a:84:3f:c5:b5:c3:b1:b4:8b:b4:26:03:
52:2f:48:80:6d:92:38:76:8e:1f:39:07:fd:7b:21:1e:e1:39:
bd:a3:8b:a7:ee:99:6a:a8:59:9b:e3:21:eb:22:46:6b:69:7d:
51:e0:34:a6:2f:00:bd:ab:66:ec:e4:4a:cc:92:e0:b1:c8:2e:
96:4c:6b:fc:f4:b2:dc:9f:bd:8a:30:9b:89:58:bf:70:b9:81:
68:ba:79:97:17:03:d1:27:d0:be:c3:f5:b3:c5:16:8f:bb:17:
09:ea:6c:e3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyt/ldgNUYT7HmOJdZJUj0cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1ODZhODY0MzYzM2U5ODc0MTExYThiY2YzNTE4YTA5MDVm
Mjg2MDkwHhcNMjYwMzAyMTAwMDUyWhcNMjYwMzAzMTAwMDUyWjAzMTEwLwYDVQQD
EygyMGJhZDVmMWNkZDlkYTIzYzlkNTliYzhlOWI5ZmQzMWY3NGI2OWZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmjrkIpGwh0L+rAllDP6yKwwFB1AC
QlYgRTJmK2UFnuiK1By13l58lHbn7EyZ7p+dXJzEu0iV4EDpbu+EmMP2e9i7qPOB
UHKQMi/8apbnus7F5TVk/QzxdAreN3QZQy8ckWUJ72x1iX+Q5YRPBzLcN2Wr5Sed
h/91ykFt9PJUfUxLHiJe8/i2q8Q7fVfVWcdt2yukUifyoABmNdIc/6mDZjAEOPBF
D0APXz9/M8MwjWXcsQFiZEunBsnlVm+5Ir7VaB+1uVuLtCslx1KKcAraGef0YQbn
YBQtAze6yhXKhBMOYpltD61vJTPyy5DN5Pp6tZ2APBTRO2+Z59zPTsZ7TQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCC61fHN2dojydWbyOm5/TH3S2n/MB8GA1UdIwQY
MBaAFLWGqGQ2M+mHQRGovPNRigkF8oYJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFlhb1pEWXo2WWRCRWFpODgxR0tDUVh5aGdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi8yMGNjYWMtMzNlZS00NWRjLWJjOWMt
NDQ5OWUzMjM5ZjFmLzEvdFlhb1pEWXo2WWRCRWFpODgxR0tDUVh5aGdrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi8yMGNjYWMtMzNlZS00NWRjLWJjOWMtNDQ5OWUzMjM5ZjFm
LzEvdFlhb1pEWXo2WWRCRWFpODgxR0tDUVh5aGdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABdW0ZXAA
gQGnUUfw3Be95rfa1mvSVNYGS2cq42yjdrwlnw7gNsAEYE6uBG5sNQGurY8D8mRk
DujNHmI4MEBIqxkvO0XWdwi5pQXh/FRkuZTlfObPfBi1An7ogudC8c0YGRCKEC/v
RQxw8m3C0JxNNuagA2Ud8JCRn5Tu4GKy77oO5Jud1rDAraTvbPxfBP4am22d6S1t
eoQ/xbXDsbSLtCYDUi9IgG2SOHaOHzkH/XshHuE5vaOLp+6ZaqhZm+Mh6yJGa2l9
UeA0pi8Avatm7ORKzJLgscgulkxr/PSy3J+9ijCbiVi/cLmBaLp5lxcD0SfQvsP1
s8UWj7sXCeps4w==
-----END CERTIFICATE-----
Generated at Mon Mar 2 14:31:01 2026 by rpki-client