Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
File: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft (raw, json)
Hash identifier: 5y5IoL+pd+0DZKEbB5uHskBj+3+12ZwxJnVhSYRdLUU=
Subject key identifier: 94:FF:8B:51:CB:5F:74:C4:1A:89:AD:EE:F8:EA:BE:A6:93:91:A4:C0
Authority key identifier: CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
Certificate issuer: /CN=ca434d399d93a19d8a8108456c5575096c2ae588
Certificate serial: 019D9A071C84A5EC2FC2386028FE091B8B3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
Manifest number: 08E3
Signing time: Fri 17 Apr 2026 06:00:50 +0000
Manifest this update: Fri 17 Apr 2026 06:00:50 +0000
Manifest next update: Sat 18 Apr 2026 06:00:50 +0000
Files and hashes: 1: G-foIY1cv2s-pbmJJsngENBWLwM.roa (hash: /sje/fJ/oYoi2zdAPSdZ79XrD4oozBnY/U0gHu3a9bM=)
2: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl (hash: IV1Wk4q49kxQ08ybfXkvw8Xx3172NB6Z4YfNZ/iuLaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:1c:84:a5:ec:2f:c2:38:60:28:fe:09:1b:8b:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca434d399d93a19d8a8108456c5575096c2ae588
Validity
Not Before: Apr 17 06:00:50 2026 GMT
Not After : Apr 18 06:00:50 2026 GMT
Subject: CN=94ff8b51cb5f74c41a89adeef8eabea69391a4c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8d:0a:c6:92:34:19:59:20:09:90:b7:73:18:
4a:be:a0:86:3b:d0:e4:4b:2f:96:c0:cb:b6:00:1c:
84:c8:e8:67:51:aa:95:21:c9:10:14:a5:f1:53:2c:
b0:64:9f:50:3a:f3:bb:4c:f8:28:85:89:e9:cd:36:
c2:27:b5:7f:23:41:bf:11:39:fb:68:45:a3:54:04:
3e:62:e3:fb:25:78:a3:a5:5b:92:69:6f:2d:b6:49:
22:54:19:ba:47:f8:2f:1c:44:fe:a9:12:6e:75:d3:
ae:61:f4:3b:46:bf:56:af:7a:6d:e7:a8:ab:e2:68:
dd:82:21:10:76:ac:ee:62:78:d0:35:cb:00:5f:1d:
f7:d2:d7:65:3b:74:db:db:a6:41:c1:fe:a4:97:d3:
d3:2e:b4:2e:60:b8:f5:a0:5b:e3:73:a7:f2:b5:1d:
8a:8c:c9:0d:ad:0e:fa:3e:e2:0b:e5:70:35:6d:87:
39:b0:00:ee:05:7b:dc:b9:02:bb:e6:6e:ed:71:69:
5b:43:bf:1e:af:7e:ea:5e:e8:47:40:b1:64:04:81:
a3:cb:f0:ed:03:a0:0c:80:62:c0:9f:8d:b8:02:b7:
a9:ad:1b:27:8e:b0:1e:fa:44:5a:14:df:db:6e:54:
77:6c:f2:30:17:78:5f:97:50:e6:98:b2:0b:25:1f:
4f:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:FF:8B:51:CB:5F:74:C4:1A:89:AD:EE:F8:EA:BE:A6:93:91:A4:C0
X509v3 Authority Key Identifier:
keyid:CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:39:0d:d0:97:b1:8b:10:03:75:eb:17:8c:31:8f:6e:b1:fb:
c7:35:4a:2c:06:a2:4b:22:8c:9e:4b:58:44:27:c0:0d:c0:2f:
c9:3a:2c:9c:a3:e3:97:c8:e4:3d:5c:14:99:71:cc:0c:c8:7a:
9e:c0:ae:16:91:fd:a7:f6:eb:f8:b1:f7:13:56:90:13:1f:a2:
d1:ad:2a:c6:5b:d6:40:75:1a:ac:0a:9c:41:04:ba:7e:d5:44:
04:2c:76:47:23:24:27:b3:24:1e:82:bf:02:d4:31:fd:08:12:
f7:e9:23:39:c5:26:d5:69:23:95:56:6a:ac:3f:cb:25:b9:7d:
3c:01:e8:a9:6b:3c:d8:2e:21:72:2a:89:ea:57:93:16:77:54:
1f:2f:27:c0:cf:40:59:df:27:ba:29:67:a5:62:91:b6:f9:31:
66:fd:24:40:97:6e:c0:3b:01:f6:a5:1f:98:2e:97:67:56:36:
06:cc:1a:35:0e:57:21:50:0e:8b:88:86:62:11:1d:67:68:d5:
6a:e4:1f:70:c6:db:a7:ea:96:84:0e:b1:7a:9c:18:b6:0f:99:
96:b7:59:8a:70:d3:de:7d:1c:b7:bb:1f:74:1f:7b:ad:7e:b5:
e9:bd:5b:0a:1d:b9:88:3a:44:87:17:fb:21:d5:ed:66:37:b3:
be:52:89:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aBxyEpewvwjhgKP4JG4s9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNDM0ZDM5OWQ5M2ExOWQ4YTgxMDg0NTZjNTU3NTA5NmMy
YWU1ODgwHhcNMjYwNDE3MDYwMDUwWhcNMjYwNDE4MDYwMDUwWjAzMTEwLwYDVQQD
Eyg5NGZmOGI1MWNiNWY3NGM0MWE4OWFkZWVmOGVhYmVhNjkzOTFhNGMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuo0KxpI0GVkgCZC3cxhKvqCGO9Dk
Sy+WwMu2AByEyOhnUaqVIckQFKXxUyywZJ9QOvO7TPgohYnpzTbCJ7V/I0G/ETn7
aEWjVAQ+YuP7JXijpVuSaW8ttkkiVBm6R/gvHET+qRJuddOuYfQ7Rr9Wr3pt56ir
4mjdgiEQdqzuYnjQNcsAXx330tdlO3Tb26ZBwf6kl9PTLrQuYLj1oFvjc6fytR2K
jMkNrQ76PuIL5XA1bYc5sADuBXvcuQK75m7tcWlbQ78er37qXuhHQLFkBIGjy/Dt
A6AMgGLAn424AreprRsnjrAe+kRaFN/bblR3bPIwF3hfl1DmmLILJR9PSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJT/i1HLX3TEGomt7vjqvqaTkaTAMB8GA1UdIwQY
MBaAFMpDTTmdk6GdioEIRWxVdQlsKuWIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWtOTk9aMlRvWjJLZ1FoRmJGVjFDV3dxNVlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC82YWVjNmEtMzY4My00MDVhLTllNjEt
ZGIyMzY4MjcxOTEzLzEveWtOTk9aMlRvWjJLZ1FoRmJGVjFDV3dxNVlnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC82YWVjNmEtMzY4My00MDVhLTllNjEtZGIyMzY4MjcxOTEz
LzEveWtOTk9aMlRvWjJLZ1FoRmJGVjFDV3dxNVlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqTkN0Jex
ixADdesXjDGPbrH7xzVKLAaiSyKMnktYRCfADcAvyTosnKPjl8jkPVwUmXHMDMh6
nsCuFpH9p/br+LH3E1aQEx+i0a0qxlvWQHUarAqcQQS6ftVEBCx2RyMkJ7MkHoK/
AtQx/QgS9+kjOcUm1WkjlVZqrD/LJbl9PAHoqWs82C4hciqJ6leTFndUHy8nwM9A
Wd8nuilnpWKRtvkxZv0kQJduwDsB9qUfmC6XZ1Y2BswaNQ5XIVAOi4iGYhEdZ2jV
auQfcMbbp+qWhA6xepwYtg+ZlrdZinDT3n0ct7sfdB97rX616b1bCh25iDpEhxf7
IdXtZjezvlKJqw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 11:05:15 2026 by rpki-client