Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
File: yoFg7-OfGjB3_dL68ipkgEtUE4I.mft (raw, json)
Hash identifier: cpPM9p8gyEP93IvISeuXLGTeFfoOU+lVmImXvkWm4Jc=
Subject key identifier: 16:A4:66:45:95:AE:30:C9:D2:37:AF:16:AC:4F:7B:F9:A4:17:D0:5F
Authority key identifier: CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82
Certificate issuer: /CN=ca8160efe39f1a3077fdd2faf22a64804b541382
Certificate serial: 019E1F1127B484E0E720776F109C9545708F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
Manifest number: 15A7
Signing time: Wed 13 May 2026 02:01:18 +0000
Manifest this update: Wed 13 May 2026 02:01:18 +0000
Manifest next update: Thu 14 May 2026 02:01:18 +0000
Files and hashes: 1: c09YJVIz1gAeeersG-N_XV14zPo.roa (hash: A4WIJzWdDctFX+Ynr5FMyCdWVozIwFvvlX52iKZ/Phw=)
2: yoFg7-OfGjB3_dL68ipkgEtUE4I.crl (hash: SBZ/mGryevTayWm49SvHWwiXcZ8mgNMjGnvITdoBl6k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:27:b4:84:e0:e7:20:77:6f:10:9c:95:45:70:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca8160efe39f1a3077fdd2faf22a64804b541382
Validity
Not Before: May 13 02:01:18 2026 GMT
Not After : May 14 02:01:18 2026 GMT
Subject: CN=16a4664595ae30c9d237af16ac4f7bf9a417d05f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:5d:94:44:16:3f:32:39:34:d1:fd:0a:f3:34:
a8:01:9f:27:c0:13:eb:c2:aa:31:b3:b3:ab:34:26:
94:37:46:0d:ca:9a:de:5a:13:9f:ed:f7:56:12:38:
8c:94:1c:ce:a9:01:97:96:3d:45:d1:28:09:b9:80:
4b:37:a2:e6:d8:64:62:60:cd:b5:4d:df:74:87:44:
82:fa:0d:b5:0d:d4:c7:fb:e5:1d:10:c5:60:2a:b8:
49:ad:02:57:cf:b1:20:02:ff:51:1e:12:77:b6:ea:
90:eb:c5:b5:a4:24:bb:07:ab:0d:ed:bc:48:29:7e:
38:69:11:8e:d5:0e:6d:97:8d:82:a5:9c:60:e8:f9:
61:a4:cb:57:64:ea:bd:cb:9b:66:7b:7c:50:3f:5a:
d1:5c:9d:17:c8:d4:69:86:93:06:1d:3a:40:1a:33:
c9:54:70:ea:9c:e3:65:b0:60:8f:56:36:63:7a:5e:
de:9f:c9:3f:17:8a:cf:3d:e5:2a:4b:13:c1:61:8c:
ba:28:19:c7:39:de:fc:aa:80:ec:f4:0a:7b:ba:3d:
66:4b:bd:f6:e6:7c:2c:fa:a1:7a:14:86:69:84:77:
c5:4e:b0:d5:6d:fa:46:7e:22:f2:cc:82:43:1b:6c:
97:89:7e:1c:d7:b8:42:44:f7:64:6f:d7:ca:d7:9a:
9a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:A4:66:45:95:AE:30:C9:D2:37:AF:16:AC:4F:7B:F9:A4:17:D0:5F
X509v3 Authority Key Identifier:
keyid:CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:63:b1:c2:8b:49:28:2a:c5:83:d3:7c:aa:a5:95:11:b8:47:
51:1e:87:bd:4f:fc:97:c9:7d:9c:40:f4:fc:f1:14:95:8a:1e:
56:32:bd:aa:ce:cb:14:53:0c:ec:05:8a:1b:d3:01:cf:75:39:
d7:2d:4f:3c:4a:34:29:16:04:ed:12:26:6b:8e:cf:85:b0:12:
17:98:4f:b1:d8:a7:19:69:b4:cb:0c:f8:37:cd:77:d1:3e:2a:
48:1f:39:66:1b:97:8a:52:65:9c:10:1f:1a:70:a7:db:15:2b:
aa:0b:21:b4:49:3e:33:a5:d5:6a:e4:56:1e:e8:75:c8:00:45:
a2:ad:28:b9:05:1f:5c:f1:7e:bc:8b:68:bf:6e:9a:02:27:90:
25:35:3b:4a:b5:ab:e0:64:0d:be:fb:98:02:5e:76:55:42:24:
1e:4b:cb:91:12:48:91:92:73:25:ac:59:ca:49:0b:1c:de:98:
1e:31:3c:c8:56:ab:bb:69:de:f2:a8:55:56:31:04:85:b1:5b:
65:c4:54:4f:d8:f6:50:eb:78:71:8d:8a:76:a9:2a:e1:07:82:
f7:86:92:af:20:f2:03:e5:27:e4:f6:4c:e2:4e:82:1a:70:3f:
ef:fb:e5:05:18:02:9a:7f:fb:c8:57:48:0f:2d:e5:7d:d5:a8:
ab:b2:7a:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4fESe0hODnIHdvEJyVRXCPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhODE2MGVmZTM5ZjFhMzA3N2ZkZDJmYWYyMmE2NDgwNGI1
NDEzODIwHhcNMjYwNTEzMDIwMTE4WhcNMjYwNTE0MDIwMTE4WjAzMTEwLwYDVQQD
EygxNmE0NjY0NTk1YWUzMGM5ZDIzN2FmMTZhYzRmN2JmOWE0MTdkMDVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkl2URBY/Mjk00f0K8zSoAZ8nwBPr
wqoxs7OrNCaUN0YNypreWhOf7fdWEjiMlBzOqQGXlj1F0SgJuYBLN6Lm2GRiYM21
Td90h0SC+g21DdTH++UdEMVgKrhJrQJXz7EgAv9RHhJ3tuqQ68W1pCS7B6sN7bxI
KX44aRGO1Q5tl42CpZxg6PlhpMtXZOq9y5tme3xQP1rRXJ0XyNRphpMGHTpAGjPJ
VHDqnONlsGCPVjZjel7en8k/F4rPPeUqSxPBYYy6KBnHOd78qoDs9Ap7uj1mS732
5nws+qF6FIZphHfFTrDVbfpGfiLyzIJDG2yXiX4c17hCRPdkb9fK15qa/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBakZkWVrjDJ0jevFqxPe/mkF9BfMB8GA1UdIwQY
MBaAFMqBYO/jnxowd/3S+vIqZIBLVBOCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveW9GZzctT2ZHakIzX2RMNjhpcGtnRXRVRTRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9kMjUwMTUtN2QyNC00YWQ1LWEyYzEt
YWM0ZTI4YzJjNWI2LzEveW9GZzctT2ZHakIzX2RMNjhpcGtnRXRVRTRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS9kMjUwMTUtN2QyNC00YWQ1LWEyYzEtYWM0ZTI4YzJjNWI2
LzEveW9GZzctT2ZHakIzX2RMNjhpcGtnRXRVRTRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEmOxwotJ
KCrFg9N8qqWVEbhHUR6HvU/8l8l9nED0/PEUlYoeVjK9qs7LFFMM7AWKG9MBz3U5
1y1PPEo0KRYE7RIma47PhbASF5hPsdinGWm0ywz4N8130T4qSB85ZhuXilJlnBAf
GnCn2xUrqgshtEk+M6XVauRWHuh1yABFoq0ouQUfXPF+vItov26aAieQJTU7SrWr
4GQNvvuYAl52VUIkHkvLkRJIkZJzJaxZykkLHN6YHjE8yFaru2ne8qhVVjEEhbFb
ZcRUT9j2UOt4cY2Kdqkq4QeC94aSryDyA+Un5PZM4k6CGnA/7/vlBRgCmn/7yFdI
Dy3lfdWoq7J6vg==
-----END CERTIFICATE-----
Generated at Wed May 13 08:15:57 2026 by rpki-client