Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.mft
File: YKzX2WuVbeXbA2c80dHjo3uN2d0.mft (raw, json)
Hash identifier: Q9BmArhnjMl+y6GdrQwx4LMp1tV1LJ1OG/L3rq/9GS0=
Subject key identifier: E2:1B:FE:E3:ED:C2:57:2F:49:C5:D0:E0:72:88:DA:F5:FE:77:8C:AB
Authority key identifier: 60:AC:D7:D9:6B:95:6D:E5:DB:03:67:3C:D1:D1:E3:A3:7B:8D:D9:DD
Certificate issuer: /CN=60acd7d96b956de5db03673cd1d1e3a37b8dd9dd
Certificate serial: 019E1EDA19178EC9EF1451C055D5E2D1B9FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YKzX2WuVbeXbA2c80dHjo3uN2d0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.mft
Manifest number: 085A
Signing time: Wed 13 May 2026 01:01:10 +0000
Manifest this update: Wed 13 May 2026 01:01:10 +0000
Manifest next update: Thu 14 May 2026 01:01:10 +0000
Files and hashes: 1: Ewfu9z930MhyPX8313muaLXe2oM.roa (hash: xaNiT68XuLXKua+vW1yOiyZ2EeD/WOwvk5iab3yyEqE=)
2: YKzX2WuVbeXbA2c80dHjo3uN2d0.crl (hash: nT10HETojzuUJBNCl0fWg5Wac/Lg3ZE/KpyrlcX+MKE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.mft
rsync://rpki.ripe.net/repository/DEFAULT/YKzX2WuVbeXbA2c80dHjo3uN2d0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 01:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:da:19:17:8e:c9:ef:14:51:c0:55:d5:e2:d1:b9:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60acd7d96b956de5db03673cd1d1e3a37b8dd9dd
Validity
Not Before: May 13 01:01:10 2026 GMT
Not After : May 14 01:01:10 2026 GMT
Subject: CN=e21bfee3edc2572f49c5d0e07288daf5fe778cab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:68:b0:62:fd:a1:5f:62:4b:80:93:79:e7:26:
4b:e2:3b:86:b3:d7:99:67:23:c3:1d:6a:0d:46:bc:
1a:3b:fc:9d:06:5f:b8:38:96:a3:78:7b:b0:70:b2:
f4:bf:13:10:b2:98:8e:1a:1e:80:8b:ef:7c:5b:a5:
f6:ac:e5:08:11:3e:e8:d6:91:97:d3:c5:df:8a:8a:
14:46:6a:6b:76:a2:50:d8:9a:36:5b:3f:bc:87:7e:
54:aa:0b:4f:65:c7:8b:e0:15:5b:c0:a5:90:e7:56:
a9:f2:e0:5b:1e:c3:7d:f1:4a:f2:eb:7f:40:5e:7d:
0e:c8:2b:a9:76:34:61:c4:61:ab:ed:c7:a3:0b:d4:
7e:a9:59:f6:0b:b3:d0:18:1a:85:1d:2d:06:70:62:
ea:54:8d:c3:6f:a5:3f:80:50:9a:98:57:6e:29:b0:
98:09:29:14:65:0e:d0:6a:1a:e9:05:86:e2:4d:83:
e3:2e:c8:ed:70:a6:ee:f6:23:f0:1e:56:de:57:12:
5e:1e:f6:5a:01:e1:ae:32:51:f2:62:76:04:fc:b0:
65:7f:f5:81:a0:92:a2:5e:8b:7e:2e:39:1a:ee:7e:
a9:97:5a:c0:81:4e:e1:5d:4c:6e:eb:52:a3:f5:1b:
4e:f5:26:ac:50:de:17:69:e9:48:99:25:bd:f2:eb:
f3:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:1B:FE:E3:ED:C2:57:2F:49:C5:D0:E0:72:88:DA:F5:FE:77:8C:AB
X509v3 Authority Key Identifier:
keyid:60:AC:D7:D9:6B:95:6D:E5:DB:03:67:3C:D1:D1:E3:A3:7B:8D:D9:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YKzX2WuVbeXbA2c80dHjo3uN2d0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d3:ef:7d:70:2f:51:56:d7:5e:28:25:08:80:90:08:14:e9:90:
cc:8a:42:d1:7a:c4:73:8e:95:45:26:3f:e9:48:4e:0c:f6:0b:
cf:0c:eb:bd:81:c7:ae:b9:26:e0:58:fc:c3:8f:71:89:fc:fd:
d0:88:c8:ad:75:99:b9:47:6b:97:2c:68:77:72:db:70:d0:b9:
ee:c5:52:50:18:38:95:8c:7d:a3:b0:a4:29:56:61:dc:f4:51:
58:64:59:3c:61:fc:f8:2b:63:4c:50:fe:ed:4d:80:87:fd:21:
db:a5:65:7e:78:72:d6:be:c4:ba:2e:b7:f7:c9:89:06:38:f2:
d3:7d:4a:04:10:0b:ec:87:e8:5c:55:5e:a6:17:0c:87:f0:0f:
5b:1e:ab:07:59:19:e3:53:7b:42:d7:6a:49:5d:30:bc:cd:f5:
0b:2c:b8:ba:cc:71:73:26:22:e0:31:db:eb:7e:25:ab:03:fe:
eb:0f:1e:3b:1a:97:bd:e7:ec:00:5a:0d:e2:f4:42:c2:fa:e2:
d4:74:0b:49:a2:6e:46:6d:73:1c:89:30:33:30:1d:7c:d9:79:
73:ff:44:59:46:33:14:8d:a2:7b:b8:59:d7:3c:fe:ca:88:8c:
f0:73:1f:1c:cc:08:6d:ac:cc:f5:4b:5f:65:79:9f:66:8d:47:
86:24:d5:2e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4e2hkXjsnvFFHAVdXi0bn7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwYWNkN2Q5NmI5NTZkZTVkYjAzNjczY2QxZDFlM2EzN2I4
ZGQ5ZGQwHhcNMjYwNTEzMDEwMTEwWhcNMjYwNTE0MDEwMTEwWjAzMTEwLwYDVQQD
EyhlMjFiZmVlM2VkYzI1NzJmNDljNWQwZTA3Mjg4ZGFmNWZlNzc4Y2FiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuGiwYv2hX2JLgJN55yZL4juGs9eZ
ZyPDHWoNRrwaO/ydBl+4OJajeHuwcLL0vxMQspiOGh6Ai+98W6X2rOUIET7o1pGX
08XfiooURmprdqJQ2Jo2Wz+8h35UqgtPZceL4BVbwKWQ51ap8uBbHsN98Ury639A
Xn0OyCupdjRhxGGr7cejC9R+qVn2C7PQGBqFHS0GcGLqVI3Db6U/gFCamFduKbCY
CSkUZQ7QahrpBYbiTYPjLsjtcKbu9iPwHlbeVxJeHvZaAeGuMlHyYnYE/LBlf/WB
oJKiXot+Ljka7n6pl1rAgU7hXUxu61Kj9RtO9SasUN4XaelImSW98uvzCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOIb/uPtwlcvScXQ4HKI2vX+d4yrMB8GA1UdIwQY
MBaAFGCs19lrlW3l2wNnPNHR46N7jdndMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUt6WDJXdVZiZVhiQTJjODBkSGpvM3VOMmQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9mMzc3YmQtOGU0Mi00ODc1LWExMjQt
M2FiZmFmZTc0YWE5LzEvWUt6WDJXdVZiZVhiQTJjODBkSGpvM3VOMmQwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC9mMzc3YmQtOGU0Mi00ODc1LWExMjQtM2FiZmFmZTc0YWE5
LzEvWUt6WDJXdVZiZVhiQTJjODBkSGpvM3VOMmQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0+99cC9R
VtdeKCUIgJAIFOmQzIpC0XrEc46VRSY/6UhODPYLzwzrvYHHrrkm4Fj8w49xifz9
0IjIrXWZuUdrlyxod3LbcNC57sVSUBg4lYx9o7CkKVZh3PRRWGRZPGH8+CtjTFD+
7U2Ah/0h26Vlfnhy1r7Eui6398mJBjjy031KBBAL7IfoXFVephcMh/APWx6rB1kZ
41N7QtdqSV0wvM31Cyy4usxxcyYi4DHb634lqwP+6w8eOxqXvefsAFoN4vRCwvri
1HQLSaJuRm1zHIkwMzAdfNl5c/9EWUYzFI2ie7hZ1zz+yoiM8HMfHMwIbazM9Utf
ZXmfZo1HhiTVLg==
-----END CERTIFICATE-----
Generated at Wed May 13 11:13:22 2026 by rpki-client