Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft
File: yRggtQAH5BxT3WAps3lU01cvTCk.mft (raw, json)
Hash identifier: KEwKoUeRPXyfq8bYNIXezaN4LNxFyyf1SNyIdkXdF6g=
Subject key identifier: 95:6F:E9:BD:68:50:7C:BD:CA:B8:71:83:2A:69:E2:C2:C9:26:46:DA
Authority key identifier: C9:18:20:B5:00:07:E4:1C:53:DD:60:29:B3:79:54:D3:57:2F:4C:29
Certificate issuer: /CN=c91820b50007e41c53dd6029b37954d3572f4c29
Certificate serial: 019E1F10AC5939CC07CC06DA8F98A88D9299
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft
Manifest number: 144B
Signing time: Wed 13 May 2026 02:00:46 +0000
Manifest this update: Wed 13 May 2026 02:00:46 +0000
Manifest next update: Thu 14 May 2026 02:00:46 +0000
Files and hashes: 1: hOC_g0aFFJDt5mJXYMKufHdXY_Y.roa (hash: /1Qaua2qcuy21kP73vJzs1KKO/Ht1pr5AntmjkyRFoc=)
2: yRggtQAH5BxT3WAps3lU01cvTCk.crl (hash: OLQ7Y6D7kM/0K///HT8sMQTumtg9t7RSg/pVuhqu3Zc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft
rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 02:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:10:ac:59:39:cc:07:cc:06:da:8f:98:a8:8d:92:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c91820b50007e41c53dd6029b37954d3572f4c29
Validity
Not Before: May 13 02:00:46 2026 GMT
Not After : May 14 02:00:46 2026 GMT
Subject: CN=956fe9bd68507cbdcab871832a69e2c2c92646da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f4:f3:cb:8d:82:9d:83:6b:e8:0a:ce:ad:db:
8a:05:b7:8c:55:79:f6:17:f7:b2:aa:c2:1c:80:de:
7e:18:ed:d2:d8:7f:57:e4:28:43:ed:d8:9a:3f:f7:
b2:fb:98:41:fe:f8:3c:8b:dd:96:c8:0c:97:75:9b:
ff:68:11:09:9e:ba:cc:43:83:9b:77:c3:47:82:f1:
ef:86:57:a2:05:92:4a:6e:c2:3b:35:ff:3e:35:f7:
5b:ac:7f:be:5a:6e:d1:6e:44:d9:17:96:ad:01:d0:
e7:cc:73:22:e6:4f:4d:7b:e0:57:06:a7:af:26:1d:
15:ee:df:10:a1:6a:ca:ae:51:2d:79:5e:bc:55:ab:
0a:45:05:af:d4:b7:58:d0:2d:4a:72:fd:7d:8d:e5:
06:b7:05:30:ff:87:d5:5d:e8:9c:37:d3:39:9f:41:
52:eb:2d:1b:94:9a:a1:81:fc:64:a4:d2:56:84:29:
6c:e6:00:b1:a3:ce:57:92:23:19:5e:09:a6:39:fb:
09:a9:b3:d4:e5:b8:cf:dc:aa:4b:d5:43:1a:f8:3e:
0e:e8:dd:2b:69:e6:da:47:ef:36:8c:5a:0c:46:0e:
77:67:db:7f:9a:16:60:e0:46:7d:13:a7:b7:ab:6d:
ce:0d:9b:1c:99:44:b6:6c:e6:e7:bc:28:65:f5:85:
1c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:6F:E9:BD:68:50:7C:BD:CA:B8:71:83:2A:69:E2:C2:C9:26:46:DA
X509v3 Authority Key Identifier:
keyid:C9:18:20:B5:00:07:E4:1C:53:DD:60:29:B3:79:54:D3:57:2F:4C:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:33:7e:d0:4f:09:35:d1:9e:b2:64:23:e2:22:33:d9:0a:be:
4b:ea:e8:b1:b1:51:02:4a:99:01:81:3a:e3:b0:51:23:7d:fc:
14:52:b1:e9:51:37:2c:ba:91:db:59:96:f7:77:7b:e1:6e:67:
3f:94:c3:9b:49:a3:6a:3c:76:4b:3f:6a:90:11:87:96:cb:e9:
ea:fb:36:ac:24:e8:b4:89:b4:db:76:e2:9e:ef:43:d6:ca:04:
4d:a1:9e:fc:e6:50:14:6f:71:c1:ee:8d:da:be:e1:4a:50:01:
4a:65:85:8a:18:20:d8:48:cd:d0:74:01:3f:55:d4:f7:54:bf:
8e:24:59:19:2a:5f:71:c9:3d:36:db:49:af:08:7a:d8:2f:91:
1f:6b:71:9d:21:ed:90:1a:6e:8b:cb:27:c9:f8:28:4f:de:28:
7c:cc:b5:26:a6:20:a7:3b:75:91:10:2f:37:eb:0d:19:d0:0d:
24:c4:df:dd:73:67:e0:02:14:23:f3:e9:8d:4a:3e:75:7c:15:
e0:fb:33:59:47:fa:dd:1c:b4:88:4f:ce:c9:a3:be:35:ef:ac:
33:ec:ce:94:cb:4e:8d:e3:8d:1c:32:a2:79:f2:13:c2:84:d8:
8a:c7:21:38:71:78:44:bf:9f:df:b1:b2:67:d2:54:fc:4a:0f:
8d:6c:08:ae
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4fEKxZOcwHzAbaj5iojZKZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5MTgyMGI1MDAwN2U0MWM1M2RkNjAyOWIzNzk1NGQzNTcy
ZjRjMjkwHhcNMjYwNTEzMDIwMDQ2WhcNMjYwNTE0MDIwMDQ2WjAzMTEwLwYDVQQD
Eyg5NTZmZTliZDY4NTA3Y2JkY2FiODcxODMyYTY5ZTJjMmM5MjY0NmRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfTzy42CnYNr6ArOrduKBbeMVXn2
F/eyqsIcgN5+GO3S2H9X5ChD7diaP/ey+5hB/vg8i92WyAyXdZv/aBEJnrrMQ4Ob
d8NHgvHvhleiBZJKbsI7Nf8+NfdbrH++Wm7RbkTZF5atAdDnzHMi5k9Ne+BXBqev
Jh0V7t8QoWrKrlEteV68VasKRQWv1LdY0C1Kcv19jeUGtwUw/4fVXeicN9M5n0FS
6y0blJqhgfxkpNJWhCls5gCxo85XkiMZXgmmOfsJqbPU5bjP3KpL1UMa+D4O6N0r
aebaR+82jFoMRg53Z9t/mhZg4EZ9E6e3q23ODZscmUS2bObnvChl9YUc2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJVv6b1oUHy9yrhxgypp4sLJJkbaMB8GA1UdIwQY
MBaAFMkYILUAB+QcU91gKbN5VNNXL0wpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveVJnZ3RRQUg1QnhUM1dBcHMzbFUwMWN2VENrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9lYTcxMjEtNTQxNC00NDg0LTkxODUt
ZWVjMTRjOTcxYzRkLzEveVJnZ3RRQUg1QnhUM1dBcHMzbFUwMWN2VENrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS9lYTcxMjEtNTQxNC00NDg0LTkxODUtZWVjMTRjOTcxYzRk
LzEveVJnZ3RRQUg1QnhUM1dBcHMzbFUwMWN2VENrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAejN+0E8J
NdGesmQj4iIz2Qq+S+rosbFRAkqZAYE647BRI338FFKx6VE3LLqR21mW93d74W5n
P5TDm0mjajx2Sz9qkBGHlsvp6vs2rCTotIm023binu9D1soETaGe/OZQFG9xwe6N
2r7hSlABSmWFihgg2EjN0HQBP1XU91S/jiRZGSpfcck9NttJrwh62C+RH2txnSHt
kBpui8snyfgoT94ofMy1JqYgpzt1kRAvN+sNGdANJMTf3XNn4AIUI/PpjUo+dXwV
4PszWUf63Ry0iE/OyaO+Ne+sM+zOlMtOjeONHDKiefITwoTYischOHF4RL+f37Gy
Z9JU/EoPjWwIrg==
-----END CERTIFICATE-----
Generated at Wed May 13 09:44:38 2026 by rpki-client