Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.mft
File: yalITKcIq3cesduQuvyKEUwsPXk.mft (raw, json)
Hash identifier: XAF904s4LfqDG9bMPB6zNdxDnILGsHT+QpmesV6j1o4=
Subject key identifier: 23:C8:FA:0C:78:76:FD:6F:9F:5F:78:C9:AB:19:01:52:AE:EB:E0:B9
Authority key identifier: C9:A9:48:4C:A7:08:AB:77:1E:B1:DB:90:BA:FC:8A:11:4C:2C:3D:79
Certificate issuer: /CN=c9a9484ca708ab771eb1db90bafc8a114c2c3d79
Certificate serial: 019CC7BE09D8A8ABDA8F969031B33BF336F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yalITKcIq3cesduQuvyKEUwsPXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.mft
Manifest number: 1856
Signing time: Sat 07 Mar 2026 10:00:46 +0000
Manifest this update: Sat 07 Mar 2026 10:00:46 +0000
Manifest next update: Sun 08 Mar 2026 10:00:46 +0000
Files and hashes: 1: 3eahbNs7sLSlMwMQAPIK4WlF5S0.roa (hash: iShcDJZ7gmNtw4FSGePEabrCqu38c4kHe0CrQJ2Q7ow=)
2: MuKPEjpSeKLvjqZfVopVa-G44-Y.roa (hash: gXY94gXYWU1Pqibv85vvI+18JY770F42380MRYt28Gc=)
3: yalITKcIq3cesduQuvyKEUwsPXk.crl (hash: XwZq28WZa6lD8zsMdKDCfd9nrZXHw72i5h0TBIX8ZZI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.mft
rsync://rpki.ripe.net/repository/DEFAULT/yalITKcIq3cesduQuvyKEUwsPXk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 10:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c7:be:09:d8:a8:ab:da:8f:96:90:31:b3:3b:f3:36:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9a9484ca708ab771eb1db90bafc8a114c2c3d79
Validity
Not Before: Mar 7 10:00:46 2026 GMT
Not After : Mar 8 10:00:46 2026 GMT
Subject: CN=23c8fa0c7876fd6f9f5f78c9ab190152aeebe0b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:cb:02:ce:6b:93:d9:d1:e5:28:d5:b6:fc:c5:
9b:ee:67:1a:a4:5d:64:ad:bc:ad:a5:5c:f3:f4:56:
2e:74:83:97:2b:c9:70:d7:cd:14:2a:6a:e5:66:2b:
83:4e:35:f8:53:f1:28:8c:5d:86:23:9b:e1:86:12:
c6:48:a9:18:49:78:ef:19:d0:cd:23:5d:8b:2c:30:
85:74:98:df:fd:16:0f:fb:e5:86:03:39:2a:9e:5b:
07:40:cb:fd:ff:0c:86:01:53:cf:fe:1e:b9:0f:27:
f3:03:b2:1d:38:ad:64:b4:58:d1:3b:cc:0e:93:d2:
30:20:de:15:e4:72:27:39:e5:27:61:37:65:b8:33:
40:0a:be:a2:c9:cf:42:71:88:00:f0:b8:14:0d:8a:
79:5d:b9:d8:9d:81:c2:61:1e:87:e0:b3:08:b5:73:
9b:78:7b:fe:62:0d:4f:88:41:0e:2c:fe:02:31:ad:
e4:c1:6f:b3:48:ec:9b:4c:13:4b:ba:64:2a:ab:4a:
47:53:5b:e5:37:c1:92:a1:69:3d:0d:30:e2:1b:ac:
6a:93:10:80:6c:68:b9:02:91:64:86:45:71:3a:8e:
e2:73:00:65:44:2e:af:18:ce:7f:85:2a:73:b2:92:
7f:57:ad:68:47:2a:00:4b:61:4d:2b:c0:1b:52:26:
1c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:C8:FA:0C:78:76:FD:6F:9F:5F:78:C9:AB:19:01:52:AE:EB:E0:B9
X509v3 Authority Key Identifier:
keyid:C9:A9:48:4C:A7:08:AB:77:1E:B1:DB:90:BA:FC:8A:11:4C:2C:3D:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yalITKcIq3cesduQuvyKEUwsPXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:bb:fe:fe:29:8d:63:02:4d:f7:f3:41:9f:64:ae:53:8d:3b:
58:9c:7a:56:d1:9d:f4:f8:6d:8f:f4:f1:cc:ee:e0:de:7d:f1:
e0:ae:af:e7:49:7e:17:f7:19:61:01:43:3e:7b:14:dd:83:30:
ff:44:11:3a:ad:dd:bb:77:39:a6:4f:c7:01:d6:89:a3:e7:c8:
2d:c7:ba:ab:69:aa:0b:79:b6:28:c0:45:27:92:fd:f5:1f:67:
b5:39:8d:d2:f1:18:f4:c6:3a:cf:01:e4:c7:21:2e:fb:db:f9:
80:78:5c:38:0d:86:1d:f2:78:fc:06:b0:62:b8:b5:a7:27:08:
1c:52:eb:41:0c:da:db:e8:59:63:46:78:a3:eb:d7:53:7f:fe:
0a:9a:76:f3:02:f8:9c:11:32:72:24:2c:83:ee:50:40:ca:99:
0d:ff:f5:9d:60:60:c2:10:d3:eb:dd:85:11:00:d7:55:ca:a3:
41:5e:0c:5e:09:ee:05:37:5f:4f:11:7f:e2:17:46:63:cc:92:
7b:29:56:64:71:23:12:91:45:3e:33:70:07:4e:df:17:6c:a3:
cc:39:4c:6d:f9:5b:34:51:e4:c2:6a:46:e5:ab:93:ec:32:8e:
6f:13:2d:62:60:fc:da:fe:1d:89:10:52:de:4a:ff:3f:61:40:
4d:cc:aa:0f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzHvgnYqKvaj5aQMbM78zbwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5YTk0ODRjYTcwOGFiNzcxZWIxZGI5MGJhZmM4YTExNGMy
YzNkNzkwHhcNMjYwMzA3MTAwMDQ2WhcNMjYwMzA4MTAwMDQ2WjAzMTEwLwYDVQQD
EygyM2M4ZmEwYzc4NzZmZDZmOWY1Zjc4YzlhYjE5MDE1MmFlZWJlMGI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkMsCzmuT2dHlKNW2/MWb7mcapF1k
rbytpVzz9FYudIOXK8lw180UKmrlZiuDTjX4U/EojF2GI5vhhhLGSKkYSXjvGdDN
I12LLDCFdJjf/RYP++WGAzkqnlsHQMv9/wyGAVPP/h65DyfzA7IdOK1ktFjRO8wO
k9IwIN4V5HInOeUnYTdluDNACr6iyc9CcYgA8LgUDYp5XbnYnYHCYR6H4LMItXOb
eHv+Yg1PiEEOLP4CMa3kwW+zSOybTBNLumQqq0pHU1vlN8GSoWk9DTDiG6xqkxCA
bGi5ApFkhkVxOo7icwBlRC6vGM5/hSpzspJ/V61oRyoAS2FNK8AbUiYc8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCPI+gx4dv1vn194yasZAVKu6+C5MB8GA1UdIwQY
MBaAFMmpSEynCKt3HrHbkLr8ihFMLD15MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWFsSVRLY0lxM2Nlc2R1UXV2eUtFVXdzUFhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi8yNWU2NjAtNDA1Ni00MmNjLWE4YjAt
ZDA1MTdkYjI2ZGFkLzEveWFsSVRLY0lxM2Nlc2R1UXV2eUtFVXdzUFhrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi8yNWU2NjAtNDA1Ni00MmNjLWE4YjAtZDA1MTdkYjI2ZGFk
LzEveWFsSVRLY0lxM2Nlc2R1UXV2eUtFVXdzUFhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApbv+/imN
YwJN9/NBn2SuU407WJx6VtGd9Phtj/TxzO7g3n3x4K6v50l+F/cZYQFDPnsU3YMw
/0QROq3du3c5pk/HAdaJo+fILce6q2mqC3m2KMBFJ5L99R9ntTmN0vEY9MY6zwHk
xyEu+9v5gHhcOA2GHfJ4/AawYri1pycIHFLrQQza2+hZY0Z4o+vXU3/+Cpp28wL4
nBEyciQsg+5QQMqZDf/1nWBgwhDT692FEQDXVcqjQV4MXgnuBTdfTxF/4hdGY8yS
eylWZHEjEpFFPjNwB07fF2yjzDlMbflbNFHkwmpG5auT7DKObxMtYmD82v4diRBS
3kr/P2FATcyqDw==
-----END CERTIFICATE-----
Generated at Sat Mar 7 21:03:31 2026 by rpki-client