Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft
File: yRggtQAH5BxT3WAps3lU01cvTCk.mft (raw, json)
Hash identifier: XNNK0sT4dsYcbxfdAGxluKiEqMjTHS8w8/35S/dkB7c=
Subject key identifier: 20:C9:56:9F:FE:1F:25:8E:65:AF:76:E8:20:63:92:09:4C:E9:11:6A
Authority key identifier: C9:18:20:B5:00:07:E4:1C:53:DD:60:29:B3:79:54:D3:57:2F:4C:29
Certificate issuer: /CN=c91820b50007e41c53dd6029b37954d3572f4c29
Certificate serial: 019D27DFC63ACA274C29570A4FD7F9B5E9C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft
Manifest number: 13CB
Signing time: Thu 26 Mar 2026 02:01:09 +0000
Manifest this update: Thu 26 Mar 2026 02:01:09 +0000
Manifest next update: Fri 27 Mar 2026 02:01:09 +0000
Files and hashes: 1: hOC_g0aFFJDt5mJXYMKufHdXY_Y.roa (hash: /1Qaua2qcuy21kP73vJzs1KKO/Ht1pr5AntmjkyRFoc=)
2: yRggtQAH5BxT3WAps3lU01cvTCk.crl (hash: Obx4STxNKgZeu/V44desjnH0fXccH8v2PznkrU6cvbo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft
rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:c6:3a:ca:27:4c:29:57:0a:4f:d7:f9:b5:e9:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c91820b50007e41c53dd6029b37954d3572f4c29
Validity
Not Before: Mar 26 02:01:09 2026 GMT
Not After : Mar 27 02:01:09 2026 GMT
Subject: CN=20c9569ffe1f258e65af76e8206392094ce9116a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a2:20:0e:d9:b4:ca:8a:5b:74:55:8a:cc:0c:
de:6a:75:6f:d7:01:5c:c8:2c:42:cf:d9:22:93:cd:
af:54:f7:52:01:b5:13:b9:eb:37:d7:0b:81:67:f8:
a7:de:0e:9f:ad:ac:a1:c1:5c:5a:4f:e5:01:92:10:
6f:db:be:c0:29:c0:32:94:26:f9:ef:a8:ae:dc:2c:
c3:82:c0:e6:f4:59:7b:85:55:8f:51:7e:4e:49:a9:
f6:e9:b2:7a:90:3f:7c:0b:d8:71:4e:20:e8:a0:9c:
4b:ac:a9:de:b2:de:7e:6d:1f:05:7d:51:d1:72:3d:
20:bf:5e:91:eb:ec:73:a7:f7:0a:6c:51:11:db:e0:
4a:05:e1:38:a0:f9:61:9a:10:67:c5:e5:fe:1a:0e:
74:d6:fa:f4:03:5b:0d:56:2e:9f:d2:68:88:31:72:
11:f2:c9:8b:29:bf:4d:26:0d:03:ec:bb:2f:8a:ec:
82:2c:6f:5f:8b:4d:04:b1:78:3c:2a:3c:f7:a3:07:
93:9f:1c:92:25:d3:5b:45:d9:4a:60:64:f1:05:52:
88:f0:87:2c:1d:44:7a:cb:3c:83:af:35:bc:17:e4:
63:a2:db:ff:6e:21:e0:99:16:19:66:18:ef:a8:92:
5f:08:fd:bf:de:77:0f:22:28:d6:97:a6:82:28:bf:
24:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:C9:56:9F:FE:1F:25:8E:65:AF:76:E8:20:63:92:09:4C:E9:11:6A
X509v3 Authority Key Identifier:
keyid:C9:18:20:B5:00:07:E4:1C:53:DD:60:29:B3:79:54:D3:57:2F:4C:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:93:72:ef:c4:7d:bb:b3:fe:a6:89:87:c5:f0:5f:59:b9:fe:
7f:c5:26:27:be:d7:49:c9:ae:a2:da:79:71:1d:8a:67:5c:7b:
9d:da:8b:f1:9a:47:49:f7:f4:9c:d3:1c:7f:a5:7d:bb:68:0d:
c4:d0:ec:8e:db:01:95:e0:e8:23:43:2a:e5:8c:d0:af:1a:57:
9d:ae:ca:59:4e:bf:e8:7f:0b:69:44:3c:30:81:ac:cd:1b:74:
57:86:82:15:a7:43:b4:ba:34:40:e8:0e:00:73:be:45:16:72:
e6:bf:fb:6e:fc:16:cd:49:f3:02:bc:5a:6a:6e:da:31:7d:b7:
dd:62:80:48:83:97:19:1b:f3:d8:fa:02:27:6b:c6:4b:38:0f:
13:8f:2b:e6:7d:07:9f:8f:99:dc:21:4a:c8:e5:af:97:8f:3e:
a8:35:14:8b:5d:3f:8f:f5:f7:5d:89:01:b4:b0:0c:e5:fd:7e:
d3:4f:b6:16:dc:14:81:c3:6f:3a:a1:76:3f:96:07:f4:6c:04:
05:d4:3c:f1:16:8c:5e:52:99:be:a8:1b:5a:7f:8d:66:6d:6e:
48:dd:07:79:cc:cb:12:ca:59:91:74:ac:5e:a2:76:97:3b:bb:
88:2a:02:8e:4d:f4:a5:d0:cb:33:5b:a4:34:69:4c:88:84:a9:
ce:5e:d6:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0n38Y6yidMKVcKT9f5tenAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5MTgyMGI1MDAwN2U0MWM1M2RkNjAyOWIzNzk1NGQzNTcy
ZjRjMjkwHhcNMjYwMzI2MDIwMTA5WhcNMjYwMzI3MDIwMTA5WjAzMTEwLwYDVQQD
EygyMGM5NTY5ZmZlMWYyNThlNjVhZjc2ZTgyMDYzOTIwOTRjZTkxMTZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn6IgDtm0yopbdFWKzAzeanVv1wFc
yCxCz9kik82vVPdSAbUTues31wuBZ/in3g6frayhwVxaT+UBkhBv277AKcAylCb5
76iu3CzDgsDm9Fl7hVWPUX5OSan26bJ6kD98C9hxTiDooJxLrKnest5+bR8FfVHR
cj0gv16R6+xzp/cKbFER2+BKBeE4oPlhmhBnxeX+Gg501vr0A1sNVi6f0miIMXIR
8smLKb9NJg0D7LsviuyCLG9fi00EsXg8Kjz3oweTnxySJdNbRdlKYGTxBVKI8Ics
HUR6yzyDrzW8F+Rjotv/biHgmRYZZhjvqJJfCP2/3ncPIijWl6aCKL8kWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCDJVp/+HyWOZa926CBjkglM6RFqMB8GA1UdIwQY
MBaAFMkYILUAB+QcU91gKbN5VNNXL0wpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveVJnZ3RRQUg1QnhUM1dBcHMzbFUwMWN2VENrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9lYTcxMjEtNTQxNC00NDg0LTkxODUt
ZWVjMTRjOTcxYzRkLzEveVJnZ3RRQUg1QnhUM1dBcHMzbFUwMWN2VENrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS9lYTcxMjEtNTQxNC00NDg0LTkxODUtZWVjMTRjOTcxYzRk
LzEveVJnZ3RRQUg1QnhUM1dBcHMzbFUwMWN2VENrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbJNy78R9
u7P+pomHxfBfWbn+f8UmJ77XScmuotp5cR2KZ1x7ndqL8ZpHSff0nNMcf6V9u2gN
xNDsjtsBleDoI0Mq5YzQrxpXna7KWU6/6H8LaUQ8MIGszRt0V4aCFadDtLo0QOgO
AHO+RRZy5r/7bvwWzUnzArxaam7aMX233WKASIOXGRvz2PoCJ2vGSzgPE48r5n0H
n4+Z3CFKyOWvl48+qDUUi10/j/X3XYkBtLAM5f1+00+2FtwUgcNvOqF2P5YH9GwE
BdQ88RaMXlKZvqgbWn+NZm1uSN0HeczLEspZkXSsXqJ2lzu7iCoCjk30pdDLM1uk
NGlMiISpzl7WTw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 10:31:09 2026 by rpki-client