Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.mft
File: YhMQMCAYo4fGkhRqNe_TOm7Wse8.mft (raw, json)
Hash identifier: 4Gvvn85M14zLuhYBRTTJOjnQd3+jRJWTqTL/vRwpGTw=
Subject key identifier: B4:88:AC:EB:18:45:6B:09:6B:A0:D2:5F:81:8D:90:6D:EF:E6:A9:69
Authority key identifier: 62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
Certificate issuer: /CN=621310302018a387c692146a35efd33a6ed6b1ef
Certificate serial: 019F129C914375C1F126FE54BAAC2D54AB38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.mft
Manifest number: 198F
Signing time: Mon 29 Jun 2026 09:01:18 +0000
Manifest this update: Mon 29 Jun 2026 09:01:18 +0000
Manifest next update: Tue 30 Jun 2026 09:01:18 +0000
Files and hashes: 1: 1-CQYobvcQG21mAnMiaW7vyH7CXY.roa (hash: F30Qwwm1mnG4O3FtxSySy1RIR2PJUKOcNn6fyL1ZO8E=)
2: Q8ZPUdn-YmcTmBwAi_7GVX9YQUw.roa (hash: kBU03x/ocDiC2CPd5HE27yOrt08fP6gCbdih5TdOqEQ=)
3: Sy7wu7HbvDyeRA19AagewX8X6a8.roa (hash: 3GBSbUmpYJlg9KE6xgU1mWhmKjjwIsWji4O9OpkK8H8=)
4: YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl (hash: e+LyGWYIG+bKnRmZb7Im8e1/XXzbc5YP1W1pOYPcIlg=)
5: bdnGFt0hHzKvmqEY93Eh959DQNM.roa (hash: Uc8DaiaZyUQDwe1ODSCGoQeREP5FCzxxss2vrZnDmR0=)
6: lqsLALggP8BPfl8pdq3Xpv8eVgg.roa (hash: bdexZFMhJLX7gjQGkdBbU8UkKwrPdu12kMoaVc9RB3s=)
7: ruyO6zUfbaRsGVkfFZtSsnxMh1s.roa (hash: zoSCjiMf6V8kppFFwtfWmMhnEG6ujkudnMTWLbB1XSc=)
8: xkh0_qQROZrSh7wQT28dLg374SY.roa (hash: DYUAA1oa5//rqv0OvMnn2Z1Gp+Lzbo3Hx+khO/MXiMs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.mft
rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:9c:91:43:75:c1:f1:26:fe:54:ba:ac:2d:54:ab:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621310302018a387c692146a35efd33a6ed6b1ef
Validity
Not Before: Jun 29 09:01:18 2026 GMT
Not After : Jun 30 09:01:18 2026 GMT
Subject: CN=b488aceb18456b096ba0d25f818d906defe6a969
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:7b:c6:13:54:44:25:d9:69:c7:90:e0:70:cb:
e0:90:8f:b8:c0:06:fc:01:88:35:95:f4:b0:33:40:
8d:9d:a2:5d:09:f1:b3:7c:7d:3a:29:8b:95:f3:33:
24:00:2d:33:91:8b:b8:b7:30:cd:59:30:e0:61:29:
4a:de:39:c5:72:1a:9e:fa:4f:07:cb:ff:d5:40:b9:
d0:35:73:f5:ac:5d:e6:07:02:3c:66:83:16:24:fa:
89:37:23:1b:6e:d1:1a:74:04:ab:dc:1f:22:0d:a9:
2c:9d:c6:fe:fc:8b:ec:98:b6:90:db:ff:63:6c:cd:
21:9f:20:6c:d6:90:40:f7:c2:9f:fc:8e:81:e9:5b:
0c:d2:ed:63:87:00:64:b6:ff:56:1d:97:63:26:e1:
42:37:86:64:ab:9f:35:3d:49:29:4a:8e:8f:5e:8f:
f3:a7:2d:e7:11:ad:d8:60:78:4d:79:ec:75:31:1a:
e7:a3:3b:59:76:bf:ae:67:b6:c5:b3:fb:26:99:c3:
a6:7b:2f:82:2a:19:62:85:e4:ec:0b:7c:db:b9:51:
01:b1:55:0e:c3:1a:a1:e0:bf:fe:2d:82:61:cb:dd:
63:ca:0f:76:06:6e:89:11:33:e6:37:0f:e2:84:4a:
5b:ff:08:94:ca:58:d3:29:b7:31:82:79:62:2b:d9:
8f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:88:AC:EB:18:45:6B:09:6B:A0:D2:5F:81:8D:90:6D:EF:E6:A9:69
X509v3 Authority Key Identifier:
keyid:62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:20:53:3f:39:99:28:39:b6:ec:23:9b:89:3f:3b:14:97:b2:
52:5e:cb:17:c0:6e:a6:8c:0c:c7:2f:bc:63:68:c9:3d:84:fa:
16:e7:96:ce:c2:d8:e9:ca:ac:bf:6f:2e:f6:b9:bc:01:72:f7:
b2:5f:58:b7:64:16:68:00:8e:bc:fe:76:c7:40:32:30:a5:67:
8d:ac:a1:fa:79:01:c3:33:10:8c:d9:64:81:92:77:4a:a5:dd:
4c:3d:da:56:f9:e5:af:8b:a4:f2:f7:26:5d:dd:a8:df:85:19:
e5:ed:80:82:0d:c2:13:2b:9e:7a:24:20:a8:cb:7c:2d:d7:56:
c5:23:64:6b:1b:c4:dd:af:ec:3a:49:fe:9b:5b:59:be:4d:22:
7f:1e:0d:cf:ab:2c:23:f6:36:d2:90:48:e4:55:ae:a6:38:15:
ed:76:84:ae:91:20:e0:8c:8d:2a:e4:7c:ce:e7:9e:be:1b:f8:
e3:e8:bb:3c:45:ea:3a:ea:ac:d2:a2:5a:57:5f:45:74:63:a9:
15:82:47:2b:28:1f:df:ec:12:a1:fc:1f:81:8f:0d:da:ce:d7:
b3:58:ac:56:db:c5:85:74:93:ce:c6:a8:c6:81:41:c8:d6:9b:
43:52:c1:74:6e:33:54:8d:d4:f5:f2:f9:6e:54:98:f6:c0:91:
7d:53:35:da
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8SnJFDdcHxJv5UuqwtVKs4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyMTMxMDMwMjAxOGEzODdjNjkyMTQ2YTM1ZWZkMzNhNmVk
NmIxZWYwHhcNMjYwNjI5MDkwMTE4WhcNMjYwNjMwMDkwMTE4WjAzMTEwLwYDVQQD
EyhiNDg4YWNlYjE4NDU2YjA5NmJhMGQyNWY4MThkOTA2ZGVmZTZhOTY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA33vGE1REJdlpx5DgcMvgkI+4wAb8
AYg1lfSwM0CNnaJdCfGzfH06KYuV8zMkAC0zkYu4tzDNWTDgYSlK3jnFchqe+k8H
y//VQLnQNXP1rF3mBwI8ZoMWJPqJNyMbbtEadASr3B8iDaksncb+/IvsmLaQ2/9j
bM0hnyBs1pBA98Kf/I6B6VsM0u1jhwBktv9WHZdjJuFCN4Zkq581PUkpSo6PXo/z
py3nEa3YYHhNeex1MRrnoztZdr+uZ7bFs/smmcOmey+CKhliheTsC3zbuVEBsVUO
wxqh4L/+LYJhy91jyg92Bm6JETPmNw/ihEpb/wiUyljTKbcxgnliK9mP1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLSIrOsYRWsJa6DSX4GNkG3v5qlpMB8GA1UdIwQY
MBaAFGITEDAgGKOHxpIUajXv0zpu1rHvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWhNUU1DQVlvNGZHa2hScU5lX1RPbTdXc2U4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9mNThhYzgtNTNlOS00Y2E2LWFjYjIt
YmU1N2Q3ZGZhMGRlLzEvWWhNUU1DQVlvNGZHa2hScU5lX1RPbTdXc2U4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS9mNThhYzgtNTNlOS00Y2E2LWFjYjItYmU1N2Q3ZGZhMGRl
LzEvWWhNUU1DQVlvNGZHa2hScU5lX1RPbTdXc2U4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOSBTPzmZ
KDm27CObiT87FJeyUl7LF8BupowMxy+8Y2jJPYT6FueWzsLY6cqsv28u9rm8AXL3
sl9Yt2QWaACOvP52x0AyMKVnjayh+nkBwzMQjNlkgZJ3SqXdTD3aVvnlr4uk8vcm
Xd2o34UZ5e2Agg3CEyueeiQgqMt8LddWxSNkaxvE3a/sOkn+m1tZvk0ifx4Nz6ss
I/Y20pBI5FWupjgV7XaErpEg4IyNKuR8zueevhv44+i7PEXqOuqs0qJaV19FdGOp
FYJHKygf3+wSofwfgY8N2s7Xs1isVtvFhXSTzsaoxoFByNabQ1LBdG4zVI3U9fL5
blSY9sCRfVM12g==
-----END CERTIFICATE-----
Generated at Mon Jun 29 11:35:24 2026 by rpki-client