Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/1de3b8-7f55-425e-bb84-5797a01dea31/1/yrQKCrlcAJmOGEsD2cM6VBd-iK4.mft
File: yrQKCrlcAJmOGEsD2cM6VBd-iK4.mft (raw, json)
Hash identifier: o6d/NvVhoMXo0ywUFcWHlr3wZ2mUbf3dst1axhmuR6M=
Subject key identifier: C1:64:FC:CA:1C:A6:96:F7:09:B2:03:D3:80:DA:02:E9:A2:F8:91:E4
Authority key identifier: CA:B4:0A:0A:B9:5C:00:99:8E:18:4B:03:D9:C3:3A:54:17:7E:88:AE
Certificate issuer: /CN=cab40a0ab95c00998e184b03d9c33a54177e88ae
Certificate serial: 019D333EC2AEE9D20899EC4866512527EC38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yrQKCrlcAJmOGEsD2cM6VBd-iK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/1de3b8-7f55-425e-bb84-5797a01dea31/1/yrQKCrlcAJmOGEsD2cM6VBd-iK4.mft
Manifest number: 2D
Signing time: Sat 28 Mar 2026 07:00:44 +0000
Manifest this update: Sat 28 Mar 2026 07:00:44 +0000
Manifest next update: Sun 29 Mar 2026 07:00:44 +0000
Files and hashes: 1: WWiGaN5f62gOkQ1ogAgkTfq5oOI.roa (hash: xveksSBraHqFwffng7WOrCfHGMF0y0VOcbjId7rHfWg=)
2: yrQKCrlcAJmOGEsD2cM6VBd-iK4.crl (hash: Avd7/LOh2F6feGAT0iLyro1bCfaAwHMhhW2s3z/AwNQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/1de3b8-7f55-425e-bb84-5797a01dea31/1/yrQKCrlcAJmOGEsD2cM6VBd-iK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/1de3b8-7f55-425e-bb84-5797a01dea31/1/yrQKCrlcAJmOGEsD2cM6VBd-iK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/yrQKCrlcAJmOGEsD2cM6VBd-iK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 07:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:3e:c2:ae:e9:d2:08:99:ec:48:66:51:25:27:ec:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cab40a0ab95c00998e184b03d9c33a54177e88ae
Validity
Not Before: Mar 28 07:00:44 2026 GMT
Not After : Mar 29 07:00:44 2026 GMT
Subject: CN=c164fcca1ca696f709b203d380da02e9a2f891e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:6c:2b:e0:c1:2e:03:85:d5:52:79:9b:f0:bd:
a3:fb:b4:d8:91:16:4c:99:bd:1d:a8:38:c6:18:b5:
3c:03:cf:de:85:14:9e:16:9e:41:e9:e7:eb:97:5a:
e8:58:ca:88:2b:af:42:1e:9b:82:63:a3:27:05:74:
f8:5c:c4:af:7e:33:be:c8:34:77:32:b6:48:ae:ce:
86:ed:07:12:f2:bc:dd:3c:52:e5:3d:e3:9f:07:cf:
0e:6c:79:70:6c:e6:fd:83:2a:e8:bb:0a:e2:79:16:
36:cc:94:1e:03:b6:d5:98:f9:15:bf:2e:8a:69:ce:
4c:37:2c:ba:2b:b5:fd:f7:3a:4c:ef:cc:6c:3f:a3:
1c:69:d6:50:68:ed:02:9d:29:0d:0c:9e:a8:e2:a0:
3a:de:1f:b8:ab:ec:7d:00:3e:62:e4:ff:3f:83:83:
9d:31:25:05:71:d8:88:f5:6a:b3:04:ec:03:83:99:
80:ef:93:2b:59:5f:8f:5d:ac:cb:ae:c5:fe:2a:e2:
e6:c5:ff:cc:c8:d7:23:c3:e3:4c:33:4b:2f:ce:89:
c9:e6:b3:96:8c:bb:f2:42:01:3f:44:08:e0:f1:a4:
a3:16:73:fb:88:1b:7d:5f:01:a0:10:fb:5f:1e:7f:
5f:3c:37:58:f9:a7:ab:60:87:91:18:69:fc:2d:3f:
db:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:64:FC:CA:1C:A6:96:F7:09:B2:03:D3:80:DA:02:E9:A2:F8:91:E4
X509v3 Authority Key Identifier:
keyid:CA:B4:0A:0A:B9:5C:00:99:8E:18:4B:03:D9:C3:3A:54:17:7E:88:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yrQKCrlcAJmOGEsD2cM6VBd-iK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/1de3b8-7f55-425e-bb84-5797a01dea31/1/yrQKCrlcAJmOGEsD2cM6VBd-iK4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/1de3b8-7f55-425e-bb84-5797a01dea31/1/yrQKCrlcAJmOGEsD2cM6VBd-iK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:df:7e:6f:9c:df:a6:0c:d6:af:4a:93:a4:bf:65:48:42:46:
27:2f:d3:84:3d:7a:3c:1e:b5:11:b2:bf:6a:bb:31:0a:f3:e2:
27:0e:51:c2:50:b4:fd:de:68:08:7d:b8:c3:4c:0b:80:d2:8d:
66:98:52:4e:a3:0e:3f:d0:2b:3f:34:cf:45:51:5e:59:47:83:
b6:09:60:aa:5f:73:05:21:02:c5:89:af:b3:c9:43:08:f6:df:
ac:20:1b:a1:91:51:30:a1:b7:f3:d4:fa:76:77:05:f3:80:ba:
b8:ee:21:dd:6e:08:71:af:d4:a1:e6:8f:61:af:3b:22:79:97:
e2:38:0e:82:15:70:2d:e8:a7:df:83:09:18:67:9d:86:d8:3c:
bc:34:af:8b:f0:1f:28:de:29:ee:9d:bb:a7:74:4d:55:27:c2:
50:7d:3e:8c:7b:46:b5:cf:68:bc:11:cc:dd:1d:94:63:db:ec:
e1:ea:b5:cd:bf:eb:92:86:77:70:e1:c1:0d:c0:1a:b2:6e:39:
0c:59:ea:85:cc:02:77:da:70:c8:75:33:30:85:93:46:b1:51:
5d:83:ff:e9:42:99:99:fa:6d:2f:8d:af:8f:f5:ad:7a:b6:79:
0d:03:33:bc:31:fe:dd:c7:48:0c:63:84:a1:a2:fc:bf:5e:a7:
a2:e2:3e:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0zPsKu6dIImexIZlElJ+w4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhYjQwYTBhYjk1YzAwOTk4ZTE4NGIwM2Q5YzMzYTU0MTc3
ZTg4YWUwHhcNMjYwMzI4MDcwMDQ0WhcNMjYwMzI5MDcwMDQ0WjAzMTEwLwYDVQQD
EyhjMTY0ZmNjYTFjYTY5NmY3MDliMjAzZDM4MGRhMDJlOWEyZjg5MWU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Wwr4MEuA4XVUnmb8L2j+7TYkRZM
mb0dqDjGGLU8A8/ehRSeFp5B6efrl1roWMqIK69CHpuCY6MnBXT4XMSvfjO+yDR3
MrZIrs6G7QcS8rzdPFLlPeOfB88ObHlwbOb9gyrouwrieRY2zJQeA7bVmPkVvy6K
ac5MNyy6K7X99zpM78xsP6McadZQaO0CnSkNDJ6o4qA63h+4q+x9AD5i5P8/g4Od
MSUFcdiI9WqzBOwDg5mA75MrWV+PXazLrsX+KuLmxf/MyNcjw+NMM0svzonJ5rOW
jLvyQgE/RAjg8aSjFnP7iBt9XwGgEPtfHn9fPDdY+aerYIeRGGn8LT/bPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMFk/Mocppb3CbID04DaAumi+JHkMB8GA1UdIwQY
MBaAFMq0Cgq5XACZjhhLA9nDOlQXfoiuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXJRS0NybGNBSm1PR0VzRDJjTTZWQmQtaUs0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy8xZGUzYjgtN2Y1NS00MjVlLWJiODQt
NTc5N2EwMWRlYTMxLzEveXJRS0NybGNBSm1PR0VzRDJjTTZWQmQtaUs0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYy8xZGUzYjgtN2Y1NS00MjVlLWJiODQtNTc5N2EwMWRlYTMx
LzEveXJRS0NybGNBSm1PR0VzRDJjTTZWQmQtaUs0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB99+b5zf
pgzWr0qTpL9lSEJGJy/ThD16PB61EbK/arsxCvPiJw5RwlC0/d5oCH24w0wLgNKN
ZphSTqMOP9ArPzTPRVFeWUeDtglgql9zBSECxYmvs8lDCPbfrCAboZFRMKG389T6
dncF84C6uO4h3W4Ica/UoeaPYa87InmX4jgOghVwLein34MJGGedhtg8vDSvi/Af
KN4p7p27p3RNVSfCUH0+jHtGtc9ovBHM3R2UY9vs4eq1zb/rkoZ3cOHBDcAasm45
DFnqhcwCd9pwyHUzMIWTRrFRXYP/6UKZmfptL42vj/WterZ5DQMzvDH+3cdIDGOE
oaL8v16nouI+kA==
-----END CERTIFICATE-----
Generated at Sat Mar 28 15:57:12 2026 by rpki-client