Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft
File: yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft (raw, json)
Hash identifier: +XCnuE4bRK5kgBBiQpBU6Jij8dAWtt7nv+HsO6LjhpQ=
Subject key identifier: 7A:B1:4C:A9:DC:A1:6F:4B:2A:BB:B6:CD:C0:A5:86:AB:D9:38:E8:4B
Authority key identifier: C8:15:D5:C0:CD:21:46:BA:AF:E8:AA:6B:8B:9A:A7:CE:B6:E4:17:5A
Certificate issuer: /CN=c815d5c0cd2146baafe8aa6b8b9aa7ceb6e4175a
Certificate serial: 019D329A74B91FE8265DDC72CE8B3F07C088
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yBXVwM0hRrqv6Kpri5qnzrbkF1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft
Manifest number: 1039
Signing time: Sat 28 Mar 2026 04:01:16 +0000
Manifest this update: Sat 28 Mar 2026 04:01:16 +0000
Manifest next update: Sun 29 Mar 2026 04:01:16 +0000
Files and hashes: 1: JY81usnotweZyZdSahI8RyYPcPQ.roa (hash: a+Ax7M2k213Mauckfl1KLZA2jvBbE/xfAhO6740Uqk8=)
2: yBXVwM0hRrqv6Kpri5qnzrbkF1o.crl (hash: xUgW6HO+5iLsfVRWErob4j9OqDQQp2iAY5U0wSFANIY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/yBXVwM0hRrqv6Kpri5qnzrbkF1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:32:9a:74:b9:1f:e8:26:5d:dc:72:ce:8b:3f:07:c0:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c815d5c0cd2146baafe8aa6b8b9aa7ceb6e4175a
Validity
Not Before: Mar 28 04:01:16 2026 GMT
Not After : Mar 29 04:01:16 2026 GMT
Subject: CN=7ab14ca9dca16f4b2abbb6cdc0a586abd938e84b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ba:d6:74:79:ea:cd:ce:2c:ed:f8:1a:29:8a:
9f:59:07:39:af:01:6e:61:56:bd:6e:f3:e2:b7:58:
0b:ef:45:5c:46:7a:8a:36:a0:c0:5a:4d:91:a4:d9:
43:3c:c6:05:e4:56:16:f9:52:5a:3d:9b:d9:a1:0d:
ad:e3:9b:95:8f:28:59:e5:50:c0:4e:2b:66:31:57:
49:90:99:a1:10:30:e9:12:ac:c2:c3:72:74:36:bd:
0a:2f:98:97:a6:36:9d:6b:3c:31:97:83:75:ee:6d:
32:9f:86:7b:c0:fe:42:f0:4a:2a:ff:b9:bf:2b:bc:
c6:a8:0b:5d:77:56:9f:b7:c6:37:b1:a3:b7:80:27:
67:3c:c7:94:e5:84:99:08:b6:10:ec:18:fd:fd:7a:
63:d3:42:97:6b:a1:76:a8:60:1f:79:1a:03:ca:ef:
dc:1e:01:65:36:01:6b:58:79:ad:10:b3:83:e5:b3:
36:f7:f2:e7:10:ec:ca:c3:87:58:64:68:a5:64:bd:
16:e0:6a:59:3f:a1:4c:62:e0:23:15:2a:b0:ce:a7:
03:c9:62:f9:11:a0:2a:b1:41:c5:d2:d8:36:60:f2:
fe:2a:ee:0b:82:6c:27:33:01:41:08:89:3c:65:97:
58:75:ec:f3:6e:fd:c1:10:c9:03:65:87:14:86:c6:
ee:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:B1:4C:A9:DC:A1:6F:4B:2A:BB:B6:CD:C0:A5:86:AB:D9:38:E8:4B
X509v3 Authority Key Identifier:
keyid:C8:15:D5:C0:CD:21:46:BA:AF:E8:AA:6B:8B:9A:A7:CE:B6:E4:17:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yBXVwM0hRrqv6Kpri5qnzrbkF1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:2a:c9:0c:cc:3d:bd:a3:f0:da:bc:84:4b:6c:ee:08:9a:6f:
ce:a7:48:fe:b9:ac:9a:d3:84:e6:10:22:e1:d4:7b:c5:4e:dd:
6b:ce:12:ff:d7:80:d9:bc:a9:d3:00:ab:0a:98:ce:4d:e1:07:
58:58:41:87:92:b8:53:6a:fb:67:0d:95:96:1d:9a:6e:50:50:
fb:87:dd:a8:d9:68:d9:4b:01:23:06:41:f7:9b:61:b1:b4:41:
ad:71:ba:c3:90:22:7d:6b:9f:f8:80:4c:dd:37:41:23:6d:41:
f1:58:e5:b8:7c:f0:f6:48:38:44:1d:ba:3b:e5:72:7d:0a:54:
45:3e:9a:26:4a:8c:ac:0b:d8:1c:a8:09:31:1b:cd:e0:0c:d9:
8d:e8:38:50:f6:c9:04:8c:6b:0c:1b:0f:65:a3:42:b6:2c:0a:
0a:43:1b:a0:b0:68:f0:7d:27:20:ce:64:63:81:0a:66:6f:b9:
30:a7:f4:10:bf:fe:40:d5:78:5a:10:8b:a9:d0:9e:e7:37:8d:
46:60:4d:98:d7:e4:30:02:89:78:90:40:d1:9b:25:b3:6a:ba:
09:00:7a:99:65:d7:cd:fc:c0:c8:14:c6:d5:d0:ce:42:9d:fd:
22:36:ae:51:04:44:f5:77:b5:97:30:25:37:30:1d:2a:f6:0b:
26:23:aa:59
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ymnS5H+gmXdxyzos/B8CIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4MTVkNWMwY2QyMTQ2YmFhZmU4YWE2YjhiOWFhN2NlYjZl
NDE3NWEwHhcNMjYwMzI4MDQwMTE2WhcNMjYwMzI5MDQwMTE2WjAzMTEwLwYDVQQD
Eyg3YWIxNGNhOWRjYTE2ZjRiMmFiYmI2Y2RjMGE1ODZhYmQ5MzhlODRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqLrWdHnqzc4s7fgaKYqfWQc5rwFu
YVa9bvPit1gL70VcRnqKNqDAWk2RpNlDPMYF5FYW+VJaPZvZoQ2t45uVjyhZ5VDA
TitmMVdJkJmhEDDpEqzCw3J0Nr0KL5iXpjadazwxl4N17m0yn4Z7wP5C8Eoq/7m/
K7zGqAtdd1aft8Y3saO3gCdnPMeU5YSZCLYQ7Bj9/Xpj00KXa6F2qGAfeRoDyu/c
HgFlNgFrWHmtELOD5bM29/LnEOzKw4dYZGilZL0W4GpZP6FMYuAjFSqwzqcDyWL5
EaAqsUHF0tg2YPL+Ku4LgmwnMwFBCIk8ZZdYdezzbv3BEMkDZYcUhsbuZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHqxTKncoW9LKru2zcClhqvZOOhLMB8GA1UdIwQY
MBaAFMgV1cDNIUa6r+iqa4uap8625BdaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveUJYVndNMGhScnF2Nktwcmk1cW56cmJrRjFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy8wZWVjZWYtYWU4Zi00YmY5LWFiNWUt
NTI0NzY0YTQwZTIyLzEveUJYVndNMGhScnF2Nktwcmk1cW56cmJrRjFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy8wZWVjZWYtYWU4Zi00YmY5LWFiNWUtNTI0NzY0YTQwZTIy
LzEveUJYVndNMGhScnF2Nktwcmk1cW56cmJrRjFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGyrJDMw9
vaPw2ryES2zuCJpvzqdI/rmsmtOE5hAi4dR7xU7da84S/9eA2byp0wCrCpjOTeEH
WFhBh5K4U2r7Zw2Vlh2ablBQ+4fdqNlo2UsBIwZB95thsbRBrXG6w5AifWuf+IBM
3TdBI21B8VjluHzw9kg4RB26O+VyfQpURT6aJkqMrAvYHKgJMRvN4AzZjeg4UPbJ
BIxrDBsPZaNCtiwKCkMboLBo8H0nIM5kY4EKZm+5MKf0EL/+QNV4WhCLqdCe5zeN
RmBNmNfkMAKJeJBA0Zsls2q6CQB6mWXXzfzAyBTG1dDOQp39IjauUQRE9Xe1lzAl
NzAdKvYLJiOqWQ==
-----END CERTIFICATE-----
Generated at Sat Mar 28 12:02:25 2026 by rpki-client