Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
File: ydWxKeBvlSRoXnABAoQfctaRXDM.mft (raw, json)
Hash identifier: i//ybho3grl4LfeQBX1E8JFhcndwsMUwAwUcCTSUeqQ=
Subject key identifier: 5B:EC:E6:42:0A:DB:DB:ED:A9:0A:30:2A:15:DA:BE:8A:0F:B0:CC:FA
Authority key identifier: C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
Certificate issuer: /CN=c9d5b129e06f9524685e700102841f72d6915c33
Certificate serial: 019EFC8401612B7BA00A42DB323C6F485223
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
Manifest number: 075D
Signing time: Thu 25 Jun 2026 02:02:49 +0000
Manifest this update: Thu 25 Jun 2026 02:02:49 +0000
Manifest next update: Fri 26 Jun 2026 02:02:49 +0000
Files and hashes: 1: BNMGtjTTYKe2pymUlI-2By8WAuY.roa (hash: RrYXesXXO0Vl2bktuDwSHZFyLC3J01YK9f8as6ZBpiA=)
2: ydWxKeBvlSRoXnABAoQfctaRXDM.crl (hash: 7bnOHuuB5arwyTspkGw06q6AYhSgUfzhU5/XHuWlz3w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fc:84:01:61:2b:7b:a0:0a:42:db:32:3c:6f:48:52:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d5b129e06f9524685e700102841f72d6915c33
Validity
Not Before: Jun 25 02:02:49 2026 GMT
Not After : Jun 26 02:02:49 2026 GMT
Subject: CN=5bece6420adbdbeda90a302a15dabe8a0fb0ccfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:79:cc:bd:d5:6f:ef:2e:8c:65:b7:b3:db:24:
99:1e:0a:7b:ae:6c:b5:98:bf:cc:f9:a8:0b:77:7a:
7f:2b:66:fb:16:72:b1:87:18:7a:3e:92:87:3e:2f:
48:d1:76:ce:2d:c8:b1:7d:9d:8b:96:37:20:73:bb:
d1:27:b0:8c:c5:b1:73:0e:d1:d2:d5:e0:0f:e2:8e:
40:71:f3:75:57:50:ce:7d:a8:72:55:f7:42:d7:98:
e7:d7:b8:15:c1:55:02:05:0e:63:43:16:cf:e6:46:
3d:ca:d9:ca:24:3d:b0:6d:4f:0d:38:2b:93:ba:4f:
2f:df:39:ed:5b:3f:ab:05:dc:a4:1d:43:94:c6:27:
ab:aa:86:a9:87:2b:87:58:81:76:05:af:67:9d:04:
a5:e2:9e:b0:ae:58:76:df:59:19:9b:55:ec:78:99:
61:07:f4:9f:bc:a3:e4:b5:34:92:6d:b4:db:ba:c5:
7f:d8:ae:17:14:e4:de:c6:70:bb:59:a9:70:69:3e:
3f:ad:34:7f:c6:68:21:1e:f7:f1:eb:b8:6d:47:76:
25:da:23:e3:67:64:d6:15:1c:a1:32:9a:bf:c4:44:
75:e4:d5:54:b2:ab:dc:e5:bb:68:54:65:14:17:a4:
c2:54:7a:57:1b:78:c3:9d:0c:cb:9c:71:4d:7d:78:
a7:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:EC:E6:42:0A:DB:DB:ED:A9:0A:30:2A:15:DA:BE:8A:0F:B0:CC:FA
X509v3 Authority Key Identifier:
keyid:C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:f8:6c:fb:b8:7f:e4:8e:15:25:1b:68:8f:32:f4:5a:25:10:
4b:32:d4:1c:ee:e5:65:7f:e3:b7:e5:55:66:6c:0c:eb:9f:30:
18:9b:14:b9:09:13:19:d8:67:e9:5d:39:06:56:42:53:12:fb:
18:96:82:d8:1c:fb:32:32:31:a8:57:73:6e:13:81:56:36:0b:
42:0b:01:7f:fa:75:54:bb:c4:f8:d4:a1:f7:0a:ac:98:da:21:
b0:08:a1:bd:d5:09:16:2c:33:cf:0e:30:f6:56:3b:7d:4c:2b:
58:ed:20:42:00:c1:ee:37:73:c8:4b:d0:ec:3a:d9:6b:7c:52:
5b:12:08:d8:82:6d:c0:89:62:c0:f4:af:76:c9:65:c4:5f:79:
a4:0c:d9:76:f1:81:ae:a1:70:35:2f:9b:7b:b2:01:f8:d9:1f:
b3:cd:80:21:35:2f:d4:66:f9:c6:54:3f:0e:31:e2:ca:ea:3d:
de:37:af:d4:19:7a:1f:4b:7f:06:90:d9:58:c9:e8:ca:bc:41:
5d:98:d3:fb:26:74:00:8f:a1:c4:50:f5:52:57:70:e2:de:ec:
c7:74:4c:85:b1:15:2f:7c:33:00:e1:62:df:1b:a1:a2:b8:17:
bb:e8:49:f0:74:1d:c5:f3:f6:e6:aa:f0:64:12:1f:d0:cd:84:
e8:75:a5:bd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ78hAFhK3ugCkLbMjxvSFIjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDViMTI5ZTA2Zjk1MjQ2ODVlNzAwMTAyODQxZjcyZDY5
MTVjMzMwHhcNMjYwNjI1MDIwMjQ5WhcNMjYwNjI2MDIwMjQ5WjAzMTEwLwYDVQQD
Eyg1YmVjZTY0MjBhZGJkYmVkYTkwYTMwMmExNWRhYmU4YTBmYjBjY2ZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo3nMvdVv7y6MZbez2ySZHgp7rmy1
mL/M+agLd3p/K2b7FnKxhxh6PpKHPi9I0XbOLcixfZ2Lljcgc7vRJ7CMxbFzDtHS
1eAP4o5AcfN1V1DOfahyVfdC15jn17gVwVUCBQ5jQxbP5kY9ytnKJD2wbU8NOCuT
uk8v3zntWz+rBdykHUOUxierqoaphyuHWIF2Ba9nnQSl4p6wrlh231kZm1XseJlh
B/SfvKPktTSSbbTbusV/2K4XFOTexnC7WalwaT4/rTR/xmghHvfx67htR3Yl2iPj
Z2TWFRyhMpq/xER15NVUsqvc5btoVGUUF6TCVHpXG3jDnQzLnHFNfXin0wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFvs5kIK29vtqQowKhXavooPsMz6MB8GA1UdIwQY
MBaAFMnVsSngb5UkaF5wAQKEH3LWkVwzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRXeEtlQnZsU1JvWG5BQkFvUWZjdGFSWERNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS8xOWY5ZDctNDQzOC00ZDYxLWJlNzct
YzJlYWRkNWVmM2YxLzEveWRXeEtlQnZsU1JvWG5BQkFvUWZjdGFSWERNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS8xOWY5ZDctNDQzOC00ZDYxLWJlNzctYzJlYWRkNWVmM2Yx
LzEveWRXeEtlQnZsU1JvWG5BQkFvUWZjdGFSWERNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEfhs+7h/
5I4VJRtojzL0WiUQSzLUHO7lZX/jt+VVZmwM658wGJsUuQkTGdhn6V05BlZCUxL7
GJaC2Bz7MjIxqFdzbhOBVjYLQgsBf/p1VLvE+NSh9wqsmNohsAihvdUJFiwzzw4w
9lY7fUwrWO0gQgDB7jdzyEvQ7DrZa3xSWxII2IJtwIliwPSvdsllxF95pAzZdvGB
rqFwNS+be7IB+Nkfs82AITUv1Gb5xlQ/DjHiyuo93jev1Bl6H0t/BpDZWMnoyrxB
XZjT+yZ0AI+hxFD1Uldw4t7sx3RMhbEVL3wzAOFi3xuhorgXu+hJ8HQdxfP25qrw
ZBIf0M2E6HWlvQ==
-----END CERTIFICATE-----
Generated at Thu Jun 25 07:23:29 2026 by rpki-client