Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
File: yjNIUNrzcSIFIBmSKevekO8osBg.mft (raw, json)
Hash identifier: u3TWC55q99A7K/TMCL+Y2LTaaGY4c8hjq2UF6VN0qMc=
Subject key identifier: 20:F9:92:38:69:4C:B2:CC:6C:DE:78:D4:2E:8C:94:92:C1:D5:A9:49
Authority key identifier: CA:33:48:50:DA:F3:71:22:05:20:19:92:29:EB:DE:90:EF:28:B0:18
Certificate issuer: /CN=ca334850daf371220520199229ebde90ef28b018
Certificate serial: 019DA1F88C19D267F4A13DA4E70F2961CED5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
Manifest number: 0943
Signing time: Sat 18 Apr 2026 19:01:53 +0000
Manifest this update: Sat 18 Apr 2026 19:01:53 +0000
Manifest next update: Sun 19 Apr 2026 19:01:53 +0000
Files and hashes: 1: XQZYtmJX7BpNzPu03srU_4VYUsc.roa (hash: Bjg0iayeOq8sVWJ1lC2MT+jpchRq5ORWkMqvwpb8VDY=)
2: yjNIUNrzcSIFIBmSKevekO8osBg.crl (hash: PR5GiBnWdSeAKaxknrdEWIoaCe764j3GT4VBpT7spYY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 17:59:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a1:f8:8c:19:d2:67:f4:a1:3d:a4:e7:0f:29:61:ce:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca334850daf371220520199229ebde90ef28b018
Validity
Not Before: Apr 18 19:01:53 2026 GMT
Not After : Apr 19 19:01:53 2026 GMT
Subject: CN=20f99238694cb2cc6cde78d42e8c9492c1d5a949
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4e:da:d1:47:ea:21:31:20:4d:d9:39:63:75:
03:0b:d9:2e:6e:66:e5:5e:bc:89:84:48:db:f0:b3:
90:4b:32:c9:57:15:6f:aa:24:16:a5:32:0e:c7:df:
44:d6:95:b0:a6:f7:25:47:e2:1f:bc:e1:ec:d9:1e:
7c:99:31:d2:67:6c:ad:ff:ad:c4:c0:df:24:0c:49:
34:7a:b4:23:65:29:bb:d0:91:af:27:e5:10:53:57:
64:4c:92:02:00:1f:b7:77:47:15:28:10:dc:c6:be:
e4:04:35:3e:57:e9:98:bb:f1:6a:42:e0:f3:ce:22:
5b:f7:78:f4:ba:48:63:e7:02:47:56:e1:df:f5:12:
0a:76:25:83:63:81:5e:d0:53:fa:90:e8:6c:4b:6d:
b2:47:7f:f4:8f:f8:d7:bb:f0:ce:7a:6e:bd:b5:72:
d3:d2:ea:e9:3f:75:35:d5:b9:d4:b7:3a:eb:7f:64:
25:da:e3:2f:34:7d:d4:dd:44:18:62:57:42:6d:ae:
c3:0d:3e:77:63:6e:6d:7a:61:08:ac:4e:9b:e8:e7:
fa:87:53:e7:d2:50:cd:da:70:b3:4c:11:12:d6:e3:
28:0f:b9:d2:d4:0c:f9:57:e5:11:9a:55:f1:e0:ad:
65:69:66:dd:1a:a3:9f:17:ef:46:8f:dc:dc:9f:39:
c8:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:F9:92:38:69:4C:B2:CC:6C:DE:78:D4:2E:8C:94:92:C1:D5:A9:49
X509v3 Authority Key Identifier:
keyid:CA:33:48:50:DA:F3:71:22:05:20:19:92:29:EB:DE:90:EF:28:B0:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:4c:23:d6:6a:b8:f6:dd:9d:3e:29:f7:b9:f0:8c:b0:b3:49:
f3:64:e5:91:55:87:50:c5:04:fc:40:0e:84:43:70:4f:b1:4e:
d3:eb:df:53:c8:79:df:cb:ed:3d:f8:55:ef:d2:e0:80:3a:5c:
a2:c9:a7:37:09:d0:c6:42:34:ed:44:35:e2:3f:65:47:0a:30:
34:0d:08:b8:1a:c0:59:f4:83:5b:ab:9a:e1:d1:24:f8:da:a0:
ad:d6:2e:89:0c:03:20:c7:47:c7:f2:83:62:1d:d5:3c:5d:3a:
db:30:c5:a5:fe:ef:1a:09:49:c1:3d:4d:ec:66:bd:29:c4:e0:
93:37:5c:cd:f8:f6:20:f5:0d:6f:37:6c:9a:ef:41:76:44:f7:
ad:40:07:39:be:63:fc:69:d7:8a:52:50:88:70:fc:2f:bd:f8:
be:5d:a9:04:1d:35:29:47:e5:98:f2:d8:62:61:7c:66:7b:47:
8d:cb:f2:0f:1c:e0:60:dd:88:40:f6:c6:e1:f6:b0:f3:2d:1a:
48:8e:29:6f:3e:b5:df:2e:9f:2c:8c:bc:51:c3:02:5d:d5:77:
4a:ea:f6:f1:ec:3d:d0:f6:a3:c4:c7:ed:ba:06:a2:e7:cf:a7:
69:ed:96:57:58:90:cf:5a:3d:0b:c8:89:6b:5a:1d:cf:1b:f4:
c9:a8:ab:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2h+IwZ0mf0oT2k5w8pYc7VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhMzM0ODUwZGFmMzcxMjIwNTIwMTk5MjI5ZWJkZTkwZWYy
OGIwMTgwHhcNMjYwNDE4MTkwMTUzWhcNMjYwNDE5MTkwMTUzWjAzMTEwLwYDVQQD
EygyMGY5OTIzODY5NGNiMmNjNmNkZTc4ZDQyZThjOTQ5MmMxZDVhOTQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv07a0UfqITEgTdk5Y3UDC9kubmbl
XryJhEjb8LOQSzLJVxVvqiQWpTIOx99E1pWwpvclR+IfvOHs2R58mTHSZ2yt/63E
wN8kDEk0erQjZSm70JGvJ+UQU1dkTJICAB+3d0cVKBDcxr7kBDU+V+mYu/FqQuDz
ziJb93j0ukhj5wJHVuHf9RIKdiWDY4Fe0FP6kOhsS22yR3/0j/jXu/DOem69tXLT
0urpP3U11bnUtzrrf2Ql2uMvNH3U3UQYYldCba7DDT53Y25temEIrE6b6Of6h1Pn
0lDN2nCzTBES1uMoD7nS1Az5V+URmlXx4K1laWbdGqOfF+9Gj9zcnznIEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCD5kjhpTLLMbN541C6MlJLB1alJMB8GA1UdIwQY
MBaAFMozSFDa83EiBSAZkinr3pDvKLAYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWpOSVVOcnpjU0lGSUJtU0tldmVrTzhvc0JnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9lZTVlNDctNGUyOS00NjAzLWI5NjIt
MGUwMDQ2YzhhODdiLzEveWpOSVVOcnpjU0lGSUJtU0tldmVrTzhvc0JnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy9lZTVlNDctNGUyOS00NjAzLWI5NjItMGUwMDQ2YzhhODdi
LzEveWpOSVVOcnpjU0lGSUJtU0tldmVrTzhvc0JnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaEwj1mq4
9t2dPin3ufCMsLNJ82TlkVWHUMUE/EAOhENwT7FO0+vfU8h538vtPfhV79LggDpc
osmnNwnQxkI07UQ14j9lRwowNA0IuBrAWfSDW6ua4dEk+NqgrdYuiQwDIMdHx/KD
Yh3VPF062zDFpf7vGglJwT1N7Ga9KcTgkzdczfj2IPUNbzdsmu9BdkT3rUAHOb5j
/GnXilJQiHD8L734vl2pBB01KUflmPLYYmF8ZntHjcvyDxzgYN2IQPbG4faw8y0a
SI4pbz613y6fLIy8UcMCXdV3Sur28ew90PajxMftugai58+nae2WV1iQz1o9C8iJ
a1odzxv0yairZw==
-----END CERTIFICATE-----
Generated at Sat Apr 18 23:38:56 2026 by rpki-client