Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.mft
File: yd_q7KItLSYYtDPPAKsUS9i4Db0.mft (raw, json)
Hash identifier: BYQKB4dtDYew4uVzEZlYZPAfPoU77GNSZKjAhiffmXY=
Subject key identifier: 4B:70:50:79:A5:76:28:F1:95:13:37:07:EC:CA:F6:B3:5D:75:51:85
Authority key identifier: C9:DF:EA:EC:A2:2D:2D:26:18:B4:33:CF:00:AB:14:4B:D8:B8:0D:BD
Certificate issuer: /CN=c9dfeaeca22d2d2618b433cf00ab144bd8b80dbd
Certificate serial: 019E1E35D2D456E91ECF89C7312B5367C737
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yd_q7KItLSYYtDPPAKsUS9i4Db0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.mft
Manifest number: 0A3A
Signing time: Tue 12 May 2026 22:01:44 +0000
Manifest this update: Tue 12 May 2026 22:01:44 +0000
Manifest next update: Wed 13 May 2026 22:01:44 +0000
Files and hashes: 1: 820vIRF1IvHmMeX3TIHoslLaymk.roa (hash: nxsc5hiaKPfRF3Jfau9U9QFL2zAQ/W9nSHpc/OJ2IbA=)
2: yd_q7KItLSYYtDPPAKsUS9i4Db0.crl (hash: vGMkVH/Ekbn9KGg03emf/uzT2sUi1OlwmjYrGpdZdiI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.mft
rsync://rpki.ripe.net/repository/DEFAULT/yd_q7KItLSYYtDPPAKsUS9i4Db0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:d2:d4:56:e9:1e:cf:89:c7:31:2b:53:67:c7:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9dfeaeca22d2d2618b433cf00ab144bd8b80dbd
Validity
Not Before: May 12 22:01:44 2026 GMT
Not After : May 13 22:01:44 2026 GMT
Subject: CN=4b705079a57628f195133707eccaf6b35d755185
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8b:69:38:2a:e2:d0:03:ba:d8:03:76:96:97:
5a:c4:7a:2b:b8:52:5c:10:de:39:23:2e:56:6a:e3:
83:0a:f8:23:11:55:d8:5b:4b:75:fa:3c:83:cf:aa:
42:23:2e:9c:69:01:68:1e:9d:3e:3c:76:81:cf:b0:
f4:a4:7d:95:5b:fb:0f:81:d3:87:30:c1:6e:f0:68:
47:df:a1:76:a9:32:b6:40:6a:7b:9b:88:07:0e:84:
87:84:d7:5d:73:39:3f:e3:89:e6:ff:fb:02:c7:7a:
53:68:37:36:16:cc:f1:c8:21:d7:59:dd:8d:7f:14:
cf:8b:be:8e:ba:62:d5:9a:87:dc:85:b8:f0:31:6d:
f2:bb:c8:19:3b:42:91:cf:f5:50:87:03:e5:a9:77:
72:be:28:27:2b:27:2d:e9:31:10:f9:a3:bf:72:2c:
88:bf:7f:34:7f:3c:d9:46:75:3d:40:ef:f7:70:8c:
10:ff:81:03:cc:1f:33:39:97:e6:64:09:73:d0:97:
b9:fe:95:d6:59:40:e1:a7:e5:62:3c:80:16:0c:ec:
26:b2:f3:36:e5:65:a4:86:f0:3b:a6:be:da:fb:5c:
97:23:b6:e5:eb:ea:2a:98:12:38:92:ac:b2:a2:88:
38:5e:7d:1a:7b:41:32:55:3a:a6:b8:3d:25:fa:32:
1d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:70:50:79:A5:76:28:F1:95:13:37:07:EC:CA:F6:B3:5D:75:51:85
X509v3 Authority Key Identifier:
keyid:C9:DF:EA:EC:A2:2D:2D:26:18:B4:33:CF:00:AB:14:4B:D8:B8:0D:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yd_q7KItLSYYtDPPAKsUS9i4Db0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:08:0d:8f:a1:1e:75:32:58:bc:36:01:e8:cb:d3:e5:14:69:
c8:88:9b:53:d3:82:31:28:57:fa:f4:92:fc:6f:5c:30:ae:c5:
5f:15:02:1f:bd:d9:b7:0c:15:74:21:87:10:1a:5f:30:09:10:
49:b4:c4:12:3a:27:e8:fe:34:58:88:6c:da:50:76:59:5f:10:
57:04:0b:17:42:23:71:19:3d:d7:a4:ed:08:99:c6:30:ef:98:
09:33:19:60:e4:d9:59:9f:93:a7:ca:41:dc:57:2c:90:0c:d9:
b2:52:39:fc:1c:45:71:9b:af:d0:be:a7:d3:1e:0f:d3:16:0d:
e4:fa:79:ef:34:35:8c:20:36:66:3a:64:e4:df:0c:d3:d8:07:
62:c2:7c:6a:88:22:fe:71:00:63:22:fd:cc:27:c6:b4:45:48:
96:21:6e:48:2b:05:24:28:19:3c:bb:33:09:b8:b3:bf:2a:d2:
c5:6a:4d:fa:b1:41:6e:c6:76:d1:ef:41:0a:78:74:f7:b3:2c:
03:f0:ec:5a:9f:e2:aa:a0:ec:fb:63:12:23:85:03:ac:11:26:
67:fc:37:40:8a:66:20:d0:78:f2:c3:14:9c:24:13:04:7e:ca:
b3:72:17:bb:e7:fb:08:4c:54:8b:8c:f0:7b:46:62:dc:f7:44:
78:3d:8c:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4eNdLUVukez4nHMStTZ8c3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZGZlYWVjYTIyZDJkMjYxOGI0MzNjZjAwYWIxNDRiZDhi
ODBkYmQwHhcNMjYwNTEyMjIwMTQ0WhcNMjYwNTEzMjIwMTQ0WjAzMTEwLwYDVQQD
Eyg0YjcwNTA3OWE1NzYyOGYxOTUxMzM3MDdlY2NhZjZiMzVkNzU1MTg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvItpOCri0AO62AN2lpdaxHoruFJc
EN45Iy5WauODCvgjEVXYW0t1+jyDz6pCIy6caQFoHp0+PHaBz7D0pH2VW/sPgdOH
MMFu8GhH36F2qTK2QGp7m4gHDoSHhNddczk/44nm//sCx3pTaDc2FszxyCHXWd2N
fxTPi76OumLVmofchbjwMW3yu8gZO0KRz/VQhwPlqXdyvignKyct6TEQ+aO/ciyI
v380fzzZRnU9QO/3cIwQ/4EDzB8zOZfmZAlz0Je5/pXWWUDhp+ViPIAWDOwmsvM2
5WWkhvA7pr7a+1yXI7bl6+oqmBI4kqyyoog4Xn0ae0EyVTqmuD0l+jIdWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEtwUHmldijxlRM3B+zK9rNddVGFMB8GA1UdIwQY
MBaAFMnf6uyiLS0mGLQzzwCrFEvYuA29MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRfcTdLSXRMU1lZdERQUEFLc1VTOWk0RGIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi85NTdiMTUtZDVkYy00M2U1LTgwOWMt
YmMzNjJkMzc2OGJkLzEveWRfcTdLSXRMU1lZdERQUEFLc1VTOWk0RGIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi85NTdiMTUtZDVkYy00M2U1LTgwOWMtYmMzNjJkMzc2OGJk
LzEveWRfcTdLSXRMU1lZdERQUEFLc1VTOWk0RGIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMAgNj6Ee
dTJYvDYB6MvT5RRpyIibU9OCMShX+vSS/G9cMK7FXxUCH73ZtwwVdCGHEBpfMAkQ
SbTEEjon6P40WIhs2lB2WV8QVwQLF0IjcRk916TtCJnGMO+YCTMZYOTZWZ+Tp8pB
3FcskAzZslI5/BxFcZuv0L6n0x4P0xYN5Pp57zQ1jCA2Zjpk5N8M09gHYsJ8aogi
/nEAYyL9zCfGtEVIliFuSCsFJCgZPLszCbizvyrSxWpN+rFBbsZ20e9BCnh097Ms
A/DsWp/iqqDs+2MSI4UDrBEmZ/w3QIpmINB48sMUnCQTBH7Ks3IXu+f7CExUi4zw
e0Zi3PdEeD2M1Q==
-----END CERTIFICATE-----
Generated at Wed May 13 00:22:07 2026 by rpki-client