Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.mft
File: YFvAEwOQWABiCsJsFGixQfgHRRQ.mft (raw, json)
Hash identifier: wtcoTelNeIqGnUx51pebQ+9FV8+zpNadpTmZr4Q5YA8=
Subject key identifier: B2:1B:D5:8B:F6:45:38:AA:C7:BC:28:9A:97:2B:B8:0B:5A:19:40:B3
Authority key identifier: 60:5B:C0:13:03:90:58:00:62:0A:C2:6C:14:68:B1:41:F8:07:45:14
Certificate issuer: /CN=605bc01303905800620ac26c1468b141f8074514
Certificate serial: 019D37BFF399DC1EB8D832C2809662534AED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFvAEwOQWABiCsJsFGixQfgHRRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.mft
Manifest number: 0F65
Signing time: Sun 29 Mar 2026 04:00:19 +0000
Manifest this update: Sun 29 Mar 2026 04:00:19 +0000
Manifest next update: Mon 30 Mar 2026 04:00:19 +0000
Files and hashes: 1: BM8B377Px_56t2SpOSeIwiYb21E.roa (hash: PQvnmkxXnZbO0KU8ZDpIj5WU+BEQoUZHX+TaiKJolDY=)
2: YFvAEwOQWABiCsJsFGixQfgHRRQ.crl (hash: 6t1tCc9osGStAFHIPsDPz+4Rdzoyt2adDoTZv1JMu0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/YFvAEwOQWABiCsJsFGixQfgHRRQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:bf:f3:99:dc:1e:b8:d8:32:c2:80:96:62:53:4a:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=605bc01303905800620ac26c1468b141f8074514
Validity
Not Before: Mar 29 04:00:19 2026 GMT
Not After : Mar 30 04:00:19 2026 GMT
Subject: CN=b21bd58bf64538aac7bc289a972bb80b5a1940b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:6f:6a:ff:ae:2f:2f:05:f3:c8:18:81:36:d1:
4f:56:23:88:86:31:78:63:44:cd:18:35:40:29:c1:
47:0d:ff:11:dc:76:6d:fe:e3:5f:1c:a7:a0:66:29:
1b:c2:2c:35:02:f3:6a:70:6d:23:db:65:fb:d4:83:
6c:77:21:ef:78:d4:6b:11:ac:87:f1:9e:0d:df:8d:
99:84:de:9d:be:87:30:d0:55:ed:02:a0:b2:7f:50:
53:d4:25:9d:cd:fb:ae:b7:32:f5:d2:47:72:65:89:
7f:2d:85:e1:c0:a2:d9:03:62:93:19:37:37:2c:6a:
4d:9e:9d:bd:7a:f7:92:66:50:65:64:d5:13:7c:35:
59:c2:37:09:55:82:ff:da:b2:3d:6a:c2:06:47:07:
5a:48:f9:60:92:32:be:96:d4:93:d1:53:05:0a:7c:
14:09:9f:d2:4d:a4:b7:d1:a5:28:52:ef:06:1d:ce:
4f:38:48:ee:7d:64:9c:76:35:39:dc:b5:41:32:e2:
e2:a7:8c:c4:f8:29:0b:8a:c9:69:18:47:e9:e0:05:
b0:b7:ff:18:07:02:e2:4a:67:cd:64:64:75:b5:fa:
8d:b0:b8:20:77:d6:57:eb:f8:cd:11:37:b6:1d:83:
ef:88:73:42:6e:75:0a:54:62:03:23:df:ad:6d:7b:
55:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:1B:D5:8B:F6:45:38:AA:C7:BC:28:9A:97:2B:B8:0B:5A:19:40:B3
X509v3 Authority Key Identifier:
keyid:60:5B:C0:13:03:90:58:00:62:0A:C2:6C:14:68:B1:41:F8:07:45:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFvAEwOQWABiCsJsFGixQfgHRRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/3a7a7b-dd9d-4d7c-86c4-13c428ad5fdb/1/YFvAEwOQWABiCsJsFGixQfgHRRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
f3:3d:17:ce:1c:4c:b7:25:63:b3:b8:bf:39:a0:ac:d8:56:ca:
ec:b2:4b:ac:1b:5f:46:95:85:34:97:04:b8:ce:12:39:80:39:
29:02:9f:3f:5f:b8:8e:57:a3:58:c0:86:b6:93:1c:6c:3f:33:
b4:d1:a2:df:48:2b:19:9e:5f:7b:3b:cd:78:9f:6e:ac:da:82:
28:ff:5f:0f:42:13:f2:e5:96:5b:b1:56:41:1d:2d:ad:51:38:
09:f9:db:09:c0:30:5d:ba:2b:cd:b0:4f:b1:48:fc:07:7c:47:
a3:88:01:7f:fb:0e:b2:d3:68:63:bf:b4:7b:14:e1:77:b4:d1:
4b:63:03:af:ed:2f:71:66:16:c6:8c:05:af:5c:6d:52:93:70:
f9:72:c2:2d:89:4b:bb:68:89:14:7f:10:06:a1:f5:b5:29:8e:
74:2f:c2:f8:07:0a:9c:32:cf:e4:a1:63:91:08:f6:92:5b:25:
89:d2:30:1a:e1:3a:21:73:fc:54:a7:da:83:e4:d6:0e:8e:db:
e3:73:a1:3d:d8:f2:32:02:6c:16:d1:97:39:93:a4:94:80:1c:
5e:54:43:8e:5a:b5:76:bb:3b:13:1a:13:f9:e1:ce:6e:26:4a:
ed:4c:a5:37:4a:a2:06:31:2f:03:96:f4:39:b2:4e:22:66:5b:
fc:3f:0b:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03v/OZ3B642DLCgJZiU0rtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNWJjMDEzMDM5MDU4MDA2MjBhYzI2YzE0NjhiMTQxZjgw
NzQ1MTQwHhcNMjYwMzI5MDQwMDE5WhcNMjYwMzMwMDQwMDE5WjAzMTEwLwYDVQQD
EyhiMjFiZDU4YmY2NDUzOGFhYzdiYzI4OWE5NzJiYjgwYjVhMTk0MGIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmm9q/64vLwXzyBiBNtFPViOIhjF4
Y0TNGDVAKcFHDf8R3HZt/uNfHKegZikbwiw1AvNqcG0j22X71INsdyHveNRrEayH
8Z4N342ZhN6dvocw0FXtAqCyf1BT1CWdzfuutzL10kdyZYl/LYXhwKLZA2KTGTc3
LGpNnp29eveSZlBlZNUTfDVZwjcJVYL/2rI9asIGRwdaSPlgkjK+ltST0VMFCnwU
CZ/STaS30aUoUu8GHc5POEjufWScdjU53LVBMuLip4zE+CkLislpGEfp4AWwt/8Y
BwLiSmfNZGR1tfqNsLggd9ZX6/jNETe2HYPviHNCbnUKVGIDI9+tbXtVqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLIb1Yv2RTiqx7wompcruAtaGUCzMB8GA1UdIwQY
MBaAFGBbwBMDkFgAYgrCbBRosUH4B0UUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUZ2QUV3T1FXQUJpQ3NKc0ZHaXhRZmdIUlJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi8zYTdhN2ItZGQ5ZC00ZDdjLTg2YzQt
MTNjNDI4YWQ1ZmRiLzEvWUZ2QUV3T1FXQUJpQ3NKc0ZHaXhRZmdIUlJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi8zYTdhN2ItZGQ5ZC00ZDdjLTg2YzQtMTNjNDI4YWQ1ZmRi
LzEvWUZ2QUV3T1FXQUJpQ3NKc0ZHaXhRZmdIUlJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA8z0XzhxM
tyVjs7i/OaCs2FbK7LJLrBtfRpWFNJcEuM4SOYA5KQKfP1+4jlejWMCGtpMcbD8z
tNGi30grGZ5fezvNeJ9urNqCKP9fD0IT8uWWW7FWQR0trVE4CfnbCcAwXborzbBP
sUj8B3xHo4gBf/sOstNoY7+0exThd7TRS2MDr+0vcWYWxowFr1xtUpNw+XLCLYlL
u2iJFH8QBqH1tSmOdC/C+AcKnDLP5KFjkQj2klslidIwGuE6IXP8VKfag+TWDo7b
43OhPdjyMgJsFtGXOZOklIAcXlRDjlq1drs7ExoT+eHObiZK7UylN0qiBjEvA5b0
ObJOImZb/D8L5A==
-----END CERTIFICATE-----
Generated at Sun Mar 29 13:42:07 2026 by rpki-client