Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
File: yRjEAZR0zIHsZh_OZObJOJchlto.mft (raw, json)
Hash identifier: 8Hy9t/mlv+gEcZ2/0PejrWZhJu2ehLaP5KSM10bf2S8=
Subject key identifier: 3D:5E:DC:5A:03:49:D6:26:5E:F5:C4:52:47:09:31:19:C9:73:61:F2
Authority key identifier: C9:18:C4:01:94:74:CC:81:EC:66:1F:CE:64:E6:C9:38:97:21:96:DA
Certificate issuer: /CN=c918c4019474cc81ec661fce64e6c938972196da
Certificate serial: 019D27042FDD93CECD506CAD211124007C23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
Manifest number: 0829
Signing time: Wed 25 Mar 2026 22:01:18 +0000
Manifest this update: Wed 25 Mar 2026 22:01:18 +0000
Manifest next update: Thu 26 Mar 2026 22:01:18 +0000
Files and hashes: 1: C_wku5jNWsis0PL0WlmaY8cUefc.roa (hash: J88psE63nbYG3X/J1+2VVAZBNf7cffwkkrlJw1ScQ80=)
2: yRjEAZR0zIHsZh_OZObJOJchlto.crl (hash: e6aluNeq0crCiFIJUGO0a7EsSO5RGH5AmDW3NSOChkE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:2f:dd:93:ce:cd:50:6c:ad:21:11:24:00:7c:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c918c4019474cc81ec661fce64e6c938972196da
Validity
Not Before: Mar 25 22:01:18 2026 GMT
Not After : Mar 26 22:01:18 2026 GMT
Subject: CN=3d5edc5a0349d6265ef5c45247093119c97361f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:0a:3a:37:ae:b8:d9:21:60:50:69:86:51:0d:
b9:2e:f2:db:69:60:6f:c2:4a:b5:58:d3:2f:52:69:
b2:da:ec:0c:6c:9a:0a:7f:08:6e:08:9b:82:7a:6c:
07:97:e1:4f:36:09:dc:71:cc:33:ae:ee:74:14:97:
d5:40:0e:30:e9:b0:23:1c:96:19:62:3f:9a:e5:e8:
b2:0a:d6:1d:5e:6b:7d:30:a2:2c:08:be:c1:e6:0a:
a0:4c:e0:14:fe:0b:1a:4a:10:cc:b4:9c:c9:91:6b:
62:02:4b:ce:32:8d:60:d8:12:7f:02:c7:78:e2:8f:
d4:0c:62:e9:7b:cd:1a:65:4a:3d:fa:ba:be:36:67:
88:c3:bf:d1:db:df:b4:c1:5c:e3:12:6b:53:4c:6a:
33:ea:8e:d5:10:7c:14:e7:b0:a7:be:04:e9:df:20:
99:a1:5b:f0:5c:b5:29:5d:6a:c6:cb:af:37:cd:52:
30:01:e4:14:fa:2d:96:4b:37:7b:f6:55:31:cc:1e:
4d:ac:92:d8:35:80:33:f1:9c:78:3b:1a:f7:bc:a6:
d3:4d:3f:ca:a8:66:2f:62:e9:9b:17:99:bf:06:d1:
d3:c2:fe:ab:6f:5b:85:a3:59:74:63:ff:1a:a3:79:
87:68:2d:5b:39:12:83:7c:e1:10:34:bc:a1:03:01:
8b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:5E:DC:5A:03:49:D6:26:5E:F5:C4:52:47:09:31:19:C9:73:61:F2
X509v3 Authority Key Identifier:
keyid:C9:18:C4:01:94:74:CC:81:EC:66:1F:CE:64:E6:C9:38:97:21:96:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:fb:a1:b5:51:4a:72:28:d7:7d:41:78:03:70:2c:d8:c4:a6:
6a:f6:b8:5a:f1:e4:92:ca:a3:db:e4:1c:63:2b:d9:c1:b3:60:
a3:90:25:4f:98:f4:f5:44:2c:a1:19:4d:b5:77:54:db:09:c8:
a2:3a:b7:2b:8c:a8:33:37:b1:49:40:9a:e4:66:83:60:ca:2e:
b0:cc:fa:9c:01:cf:95:d3:d9:f9:4b:8d:4b:a6:7a:bf:f9:94:
0c:41:fe:c6:1f:9d:39:ca:bd:be:56:e9:67:99:f4:2d:be:af:
2e:e1:f1:bb:57:45:35:d9:a5:fc:6a:47:ba:d7:9b:b4:ec:1c:
30:37:65:e6:20:ee:b1:91:f2:25:e6:08:b0:91:5e:4a:ae:36:
7b:42:a7:58:29:a4:46:fc:18:b7:4a:d4:bd:47:2a:46:75:ad:
a3:ed:c2:84:2e:8f:11:04:45:35:ff:4b:88:a0:da:ff:ae:68:
ed:82:73:df:e6:84:38:d3:d1:2a:5d:44:5d:91:73:be:be:cd:
99:ea:ff:83:1a:1d:20:f9:d5:27:c0:a5:51:de:ba:cc:de:e2:
73:c9:f1:14:67:1d:71:a5:d3:c2:8a:02:92:b0:33:e6:27:b7:
a2:5d:28:2c:93:d2:e1:72:b1:c9:a7:f8:dc:c4:14:e8:2c:66:
cd:b2:ac:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nBC/dk87NUGytIREkAHwjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5MThjNDAxOTQ3NGNjODFlYzY2MWZjZTY0ZTZjOTM4OTcy
MTk2ZGEwHhcNMjYwMzI1MjIwMTE4WhcNMjYwMzI2MjIwMTE4WjAzMTEwLwYDVQQD
EygzZDVlZGM1YTAzNDlkNjI2NWVmNWM0NTI0NzA5MzExOWM5NzM2MWYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnwo6N6642SFgUGmGUQ25LvLbaWBv
wkq1WNMvUmmy2uwMbJoKfwhuCJuCemwHl+FPNgncccwzru50FJfVQA4w6bAjHJYZ
Yj+a5eiyCtYdXmt9MKIsCL7B5gqgTOAU/gsaShDMtJzJkWtiAkvOMo1g2BJ/Asd4
4o/UDGLpe80aZUo9+rq+NmeIw7/R29+0wVzjEmtTTGoz6o7VEHwU57CnvgTp3yCZ
oVvwXLUpXWrGy683zVIwAeQU+i2WSzd79lUxzB5NrJLYNYAz8Zx4Oxr3vKbTTT/K
qGYvYumbF5m/BtHTwv6rb1uFo1l0Y/8ao3mHaC1bORKDfOEQNLyhAwGLGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD1e3FoDSdYmXvXEUkcJMRnJc2HyMB8GA1UdIwQY
MBaAFMkYxAGUdMyB7GYfzmTmyTiXIZbaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveVJqRUFaUjB6SUhzWmhfT1pPYkpPSmNobHRvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8yOTY4NTItYThmZC00OGU1LThkZDYt
OGFiY2JiNjVjNjIxLzEveVJqRUFaUjB6SUhzWmhfT1pPYkpPSmNobHRvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS8yOTY4NTItYThmZC00OGU1LThkZDYtOGFiY2JiNjVjNjIx
LzEveVJqRUFaUjB6SUhzWmhfT1pPYkpPSmNobHRvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFvuhtVFK
cijXfUF4A3As2MSmava4WvHkksqj2+QcYyvZwbNgo5AlT5j09UQsoRlNtXdU2wnI
ojq3K4yoMzexSUCa5GaDYMousMz6nAHPldPZ+UuNS6Z6v/mUDEH+xh+dOcq9vlbp
Z5n0Lb6vLuHxu1dFNdml/GpHutebtOwcMDdl5iDusZHyJeYIsJFeSq42e0KnWCmk
RvwYt0rUvUcqRnWto+3ChC6PEQRFNf9LiKDa/65o7YJz3+aEONPRKl1EXZFzvr7N
mer/gxodIPnVJ8ClUd66zN7ic8nxFGcdcaXTwooCkrAz5ie3ol0oLJPS4XKxyaf4
3MQU6CxmzbKsrw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 00:37:49 2026 by rpki-client