Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft
File: y9dX6ROqzkNObdbW1Qp-33LOiIw.mft (raw, json)
Hash identifier: 2POzPtzNXz8+Bx0eZuyrS3IdkAb/4m4XMpDRDRYo/fE=
Subject key identifier: 97:16:C9:70:90:E6:FE:B8:A9:3E:D7:4A:D3:FA:2A:C2:55:7E:B5:3F
Authority key identifier: CB:D7:57:E9:13:AA:CE:43:4E:6D:D6:D6:D5:0A:7E:DF:72:CE:88:8C
Certificate issuer: /CN=cbd757e913aace434e6dd6d6d50a7edf72ce888c
Certificate serial: 019D390982DF245B2ADAC871528FC31186C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9dX6ROqzkNObdbW1Qp-33LOiIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft
Manifest number: 125C
Signing time: Sun 29 Mar 2026 10:00:17 +0000
Manifest this update: Sun 29 Mar 2026 10:00:17 +0000
Manifest next update: Mon 30 Mar 2026 10:00:17 +0000
Files and hashes: 1: tnlT3WguTIaBPQyXQdyvdPZTqq0.roa (hash: OdNtfnb+ps4t4Tb3faIsE6ujGrvLv+3p6hrL7wNeeB4=)
2: y9dX6ROqzkNObdbW1Qp-33LOiIw.crl (hash: stbxqztkhkIL9ioOvrMGzGh2Vh8r7diDt6H79yiVMMs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/y9dX6ROqzkNObdbW1Qp-33LOiIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:82:df:24:5b:2a:da:c8:71:52:8f:c3:11:86:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd757e913aace434e6dd6d6d50a7edf72ce888c
Validity
Not Before: Mar 29 10:00:17 2026 GMT
Not After : Mar 30 10:00:17 2026 GMT
Subject: CN=9716c97090e6feb8a93ed74ad3fa2ac2557eb53f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:41:a2:86:d4:a2:34:2c:32:27:ac:fa:f3:9d:
c3:94:35:2a:33:08:30:63:15:49:6e:7d:c3:b2:4f:
22:43:69:ca:db:f3:e3:04:80:f8:62:67:ee:7b:60:
fa:21:85:f8:f7:87:89:3d:c3:d5:2b:9c:14:41:b4:
8f:73:ba:13:ae:a4:3d:b3:01:88:68:99:79:d1:3b:
c7:3e:14:83:51:d7:13:12:19:82:b3:bf:cf:3f:08:
d7:ac:8e:1b:78:60:4f:e9:24:f7:0f:92:de:75:07:
66:3e:41:fe:ba:4d:c1:88:48:34:34:8f:0c:3f:22:
fc:b9:73:49:da:c3:6c:5c:95:3a:4b:f4:68:57:33:
6f:dd:6b:63:44:d3:a6:74:80:9b:54:de:f0:93:14:
54:12:7c:a4:2c:a1:36:f9:dd:02:64:19:92:d1:96:
6d:8f:49:1f:6b:98:16:ed:d0:77:7c:35:ec:b8:b9:
85:97:a7:0b:fc:2e:5f:3a:54:29:fc:44:f5:03:11:
bd:5e:c6:15:28:6e:bf:e3:43:17:69:23:ce:8e:fe:
83:50:60:59:07:3d:a4:7a:7d:ff:6f:c7:4c:73:20:
15:16:53:d8:29:a3:24:71:71:b4:ab:30:1f:b4:6b:
dc:ca:a3:d1:4b:8f:71:d6:ee:46:a7:42:fe:ba:27:
7b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:16:C9:70:90:E6:FE:B8:A9:3E:D7:4A:D3:FA:2A:C2:55:7E:B5:3F
X509v3 Authority Key Identifier:
keyid:CB:D7:57:E9:13:AA:CE:43:4E:6D:D6:D6:D5:0A:7E:DF:72:CE:88:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9dX6ROqzkNObdbW1Qp-33LOiIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e8:9e:48:f2:13:c8:5c:05:e5:46:ce:29:de:ad:99:30:e8:26:
cc:e6:fb:a0:1f:e0:93:44:2d:f6:a7:6e:1d:73:01:29:fb:9f:
ed:9d:43:c5:e2:a7:54:0c:53:ab:28:2d:af:0d:c0:16:74:40:
e9:34:8b:16:61:e9:14:b8:bf:04:6c:99:df:c6:da:8a:1d:51:
4a:a0:ff:43:6b:77:a5:37:65:ff:82:df:8c:24:35:16:e9:df:
90:04:47:dc:21:b1:ac:f8:b8:92:cd:fb:e1:69:37:de:b0:5e:
92:85:c9:c3:8b:7a:e2:02:ff:34:d3:16:56:a2:b9:70:49:cc:
32:f9:52:69:e1:e7:c3:66:54:59:27:06:86:d6:cb:5f:69:00:
57:7f:cd:54:83:ab:73:ee:61:89:96:02:b3:34:89:e5:53:37:
57:03:e0:41:e5:68:92:e4:0d:e3:56:0c:5e:ac:a5:54:56:99:
37:8e:d4:b1:72:aa:c8:e8:6b:f4:7a:86:ec:9e:d9:3b:f4:d2:
d6:3b:ee:34:99:5a:eb:66:cf:33:0d:5d:4c:6c:65:51:c8:09:
35:3a:25:ce:93:c0:10:95:8f:f8:ea:6e:93:1b:92:df:59:28:
60:8c:f8:b9:32:55:f3:57:ad:f8:a9:90:9d:1c:6c:4a:f2:ca:
80:f0:27:94
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05CYLfJFsq2shxUo/DEYbJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiZDc1N2U5MTNhYWNlNDM0ZTZkZDZkNmQ1MGE3ZWRmNzJj
ZTg4OGMwHhcNMjYwMzI5MTAwMDE3WhcNMjYwMzMwMTAwMDE3WjAzMTEwLwYDVQQD
Eyg5NzE2Yzk3MDkwZTZmZWI4YTkzZWQ3NGFkM2ZhMmFjMjU1N2ViNTNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArEGihtSiNCwyJ6z6853DlDUqMwgw
YxVJbn3Dsk8iQ2nK2/PjBID4Ymfue2D6IYX494eJPcPVK5wUQbSPc7oTrqQ9swGI
aJl50TvHPhSDUdcTEhmCs7/PPwjXrI4beGBP6ST3D5LedQdmPkH+uk3BiEg0NI8M
PyL8uXNJ2sNsXJU6S/RoVzNv3WtjRNOmdICbVN7wkxRUEnykLKE2+d0CZBmS0ZZt
j0kfa5gW7dB3fDXsuLmFl6cL/C5fOlQp/ET1AxG9XsYVKG6/40MXaSPOjv6DUGBZ
Bz2ken3/b8dMcyAVFlPYKaMkcXG0qzAftGvcyqPRS49x1u5Gp0L+uid7LQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJcWyXCQ5v64qT7XStP6KsJVfrU/MB8GA1UdIwQY
MBaAFMvXV+kTqs5DTm3W1tUKft9yzoiMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveTlkWDZST3F6a05PYmRiVzFRcC0zM0xPaUl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi9iZGMwOWEtMmIyYS00Nzk3LWEyOTYt
OWNmZGYzYzJiMzQ4LzEveTlkWDZST3F6a05PYmRiVzFRcC0zM0xPaUl3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi9iZGMwOWEtMmIyYS00Nzk3LWEyOTYtOWNmZGYzYzJiMzQ4
LzEveTlkWDZST3F6a05PYmRiVzFRcC0zM0xPaUl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA6J5I8hPI
XAXlRs4p3q2ZMOgmzOb7oB/gk0Qt9qduHXMBKfuf7Z1DxeKnVAxTqygtrw3AFnRA
6TSLFmHpFLi/BGyZ38baih1RSqD/Q2t3pTdl/4LfjCQ1FunfkARH3CGxrPi4ks37
4Wk33rBekoXJw4t64gL/NNMWVqK5cEnMMvlSaeHnw2ZUWScGhtbLX2kAV3/NVIOr
c+5hiZYCszSJ5VM3VwPgQeVokuQN41YMXqylVFaZN47UsXKqyOhr9HqG7J7ZO/TS
1jvuNJla62bPMw1dTGxlUcgJNTolzpPAEJWP+OpukxuS31koYIz4uTJV81et+KmQ
nRxsSvLKgPAnlA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:31:36 2026 by rpki-client