Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.mft
File: Yi7MbMWQOuoNthIA9MzU-CTN1U8.mft (raw, json)
Hash identifier: DOStBkf6Ho+mrN+sVf1IcxWbLaAjbMQaJgoJ6HZ/hSw=
Subject key identifier: 8F:F1:D7:47:AA:FD:55:82:D9:12:1B:4A:BA:D9:3F:01:04:F0:0C:C5
Authority key identifier: 62:2E:CC:6C:C5:90:3A:EA:0D:B6:12:00:F4:CC:D4:F8:24:CD:D5:4F
Certificate issuer: /CN=622ecc6cc5903aea0db61200f4ccd4f824cdd54f
Certificate serial: 019D24DEE83B456E300D438916C19650C40B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yi7MbMWQOuoNthIA9MzU-CTN1U8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.mft
Manifest number: 0A3E
Signing time: Wed 25 Mar 2026 12:01:21 +0000
Manifest this update: Wed 25 Mar 2026 12:01:21 +0000
Manifest next update: Thu 26 Mar 2026 12:01:21 +0000
Files and hashes: 1: 8iuryml04fmZQZih2yKLkb78hW8.roa (hash: dl916czGPtggSTrDPjUVhqgnNmY5i/HKL0IVfwG6bUw=)
2: AJEm0tpZ80PX3AOqTJlJZLLFZRo.roa (hash: 9niTFrHFWmF03337Z/JCr6D2zR0zYQdhet735YBvLGg=)
3: RMGZ-vy_dDQuHhZGPwdY1SDw3MA.roa (hash: J2ooeCLUwgG08rs8ThsvjcTV38rsjc50babTQPWvqzo=)
4: VYPTeU3GTpRqMWirs-4J0ak-y0Y.roa (hash: Q0x74IuPW45MM/QoYobdWOJwgU/vwyNB9bVYzPX6+yM=)
5: Yi7MbMWQOuoNthIA9MzU-CTN1U8.crl (hash: CjYx9GlqLCHX/POlRWA3Qq0YS4WTloiOIGSOFGlatwU=)
6: ccp8zm5l48CBMMmzIGnalUun-Ds.roa (hash: z44haiNc9m8K5F7QSyFq2IsEkays9vJP4wkOIVQCjsw=)
7: kvQ545VBeKJ16540o8TuObo3Lms.roa (hash: 6nWlGmTGLlqKlb5UMIbOgwBINXEzC37TRE8Q0aoo66Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Yi7MbMWQOuoNthIA9MzU-CTN1U8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:24:de:e8:3b:45:6e:30:0d:43:89:16:c1:96:50:c4:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=622ecc6cc5903aea0db61200f4ccd4f824cdd54f
Validity
Not Before: Mar 25 12:01:21 2026 GMT
Not After : Mar 26 12:01:21 2026 GMT
Subject: CN=8ff1d747aafd5582d9121b4abad93f0104f00cc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ec:60:e4:d5:8b:8c:a0:2f:32:9e:9a:9d:47:
38:79:55:e1:25:a5:70:a7:fa:66:2a:f9:21:be:b0:
21:d4:ee:2a:fb:8f:7a:dc:bb:56:b1:f9:b2:a5:66:
c5:22:49:d8:f5:b2:74:70:bb:1f:44:33:bb:cb:13:
47:38:82:62:d1:7a:ab:aa:8c:87:a8:52:53:5f:17:
81:c0:40:37:06:4d:ca:ba:8f:ba:ac:57:c2:06:98:
2d:20:b5:f7:49:1b:0e:44:1e:28:20:8c:ab:22:7c:
09:47:2e:a2:6f:36:0f:0f:f7:13:3e:44:9f:e9:f5:
e3:45:7a:fd:51:6c:6a:b5:7e:a7:84:7e:de:54:15:
ec:06:39:30:29:48:56:e3:9b:dc:79:ca:51:c1:2f:
e0:35:97:be:16:5e:5d:db:34:32:20:5f:c3:d3:13:
76:f4:29:da:db:0e:54:3c:24:e4:2b:c9:8c:96:f8:
b0:01:73:89:a2:a6:6c:1a:01:b9:a4:0d:8c:54:1d:
01:e6:6c:39:9a:63:2f:2f:16:a8:ec:ae:4b:39:0f:
16:0d:fc:90:6a:ad:95:98:91:d1:e1:8c:28:7e:7d:
41:92:78:ce:96:43:e3:ad:6e:46:3a:9a:87:05:3f:
40:60:d3:20:19:a6:08:c2:8d:b7:57:38:e5:4b:12:
b3:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:F1:D7:47:AA:FD:55:82:D9:12:1B:4A:BA:D9:3F:01:04:F0:0C:C5
X509v3 Authority Key Identifier:
keyid:62:2E:CC:6C:C5:90:3A:EA:0D:B6:12:00:F4:CC:D4:F8:24:CD:D5:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yi7MbMWQOuoNthIA9MzU-CTN1U8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:7a:67:00:5e:00:8e:3a:3d:40:0a:bc:98:d4:0f:0d:6b:b9:
10:fa:62:73:6a:cb:f5:2f:8f:30:7e:e3:f3:ec:eb:c3:e2:d9:
b1:7f:ce:3b:0c:7a:32:5f:a0:ee:d1:1c:ff:99:5f:c9:17:d2:
2b:51:0c:f9:d1:1a:b9:b3:17:cd:5a:5a:07:2d:c1:d9:4a:d7:
05:82:e7:7a:3a:e2:31:2c:c6:d1:68:2b:2f:8b:61:cc:6f:e0:
5e:04:a4:fc:02:7f:28:38:6a:2d:ad:7e:d7:c8:24:e1:78:5e:
e7:e2:a7:62:77:40:6a:e2:d1:f9:99:fb:bb:97:f3:bb:78:d6:
a2:e0:d5:ba:56:f5:9f:ce:11:74:d1:96:31:20:58:f3:06:6e:
7e:b7:8c:d6:45:54:4a:16:6a:6f:af:79:e9:fe:ec:d0:90:41:
44:a3:25:53:a6:00:32:f7:c4:78:d1:c6:83:f8:bb:30:6f:e5:
cf:b7:4a:36:e0:da:4a:c8:85:05:89:3b:58:26:41:7b:4d:ed:
7f:d9:01:6d:76:ae:19:cd:b3:f6:81:70:4c:ea:c5:00:c5:4e:
0a:ad:7e:f2:24:09:d3:3c:1f:14:1d:5b:40:be:44:84:fa:dd:
75:30:6a:c4:f5:f1:41:3c:f8:db:91:63:3f:97:9e:c3:9e:bf:
d7:81:16:2e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0k3ug7RW4wDUOJFsGWUMQLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyMmVjYzZjYzU5MDNhZWEwZGI2MTIwMGY0Y2NkNGY4MjRj
ZGQ1NGYwHhcNMjYwMzI1MTIwMTIxWhcNMjYwMzI2MTIwMTIxWjAzMTEwLwYDVQQD
Eyg4ZmYxZDc0N2FhZmQ1NTgyZDkxMjFiNGFiYWQ5M2YwMTA0ZjAwY2M1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1+xg5NWLjKAvMp6anUc4eVXhJaVw
p/pmKvkhvrAh1O4q+4963LtWsfmypWbFIknY9bJ0cLsfRDO7yxNHOIJi0XqrqoyH
qFJTXxeBwEA3Bk3Kuo+6rFfCBpgtILX3SRsORB4oIIyrInwJRy6ibzYPD/cTPkSf
6fXjRXr9UWxqtX6nhH7eVBXsBjkwKUhW45vcecpRwS/gNZe+Fl5d2zQyIF/D0xN2
9Cna2w5UPCTkK8mMlviwAXOJoqZsGgG5pA2MVB0B5mw5mmMvLxao7K5LOQ8WDfyQ
aq2VmJHR4Ywofn1BknjOlkPjrW5GOpqHBT9AYNMgGaYIwo23VzjlSxKzDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI/x10eq/VWC2RIbSrrZPwEE8AzFMB8GA1UdIwQY
MBaAFGIuzGzFkDrqDbYSAPTM1PgkzdVPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWk3TWJNV1FPdW9OdGhJQTlNelUtQ1ROMVU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy8yNjJhNGItYzcwMS00OGRjLTlhZTUt
MzQ2MzY4ODI3ZTY4LzEvWWk3TWJNV1FPdW9OdGhJQTlNelUtQ1ROMVU4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy8yNjJhNGItYzcwMS00OGRjLTlhZTUtMzQ2MzY4ODI3ZTY4
LzEvWWk3TWJNV1FPdW9OdGhJQTlNelUtQ1ROMVU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASnpnAF4A
jjo9QAq8mNQPDWu5EPpic2rL9S+PMH7j8+zrw+LZsX/OOwx6Ml+g7tEc/5lfyRfS
K1EM+dEaubMXzVpaBy3B2UrXBYLnejriMSzG0WgrL4thzG/gXgSk/AJ/KDhqLa1+
18gk4Xhe5+KnYndAauLR+Zn7u5fzu3jWouDVulb1n84RdNGWMSBY8wZufreM1kVU
ShZqb6956f7s0JBBRKMlU6YAMvfEeNHGg/i7MG/lz7dKNuDaSsiFBYk7WCZBe03t
f9kBbXauGc2z9oFwTOrFAMVOCq1+8iQJ0zwfFB1bQL5EhPrddTBqxPXxQTz425Fj
P5eew56/14EWLg==
-----END CERTIFICATE-----
Generated at Wed Mar 25 14:54:26 2026 by rpki-client