Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
File: yda1mpPjJAg_vKQjfkfp9evzcas.mft (raw, json)
Hash identifier: lOgHlIoSG2kypHYVlNcklueOMSvm6RBNy31dl6fp+9w=
Subject key identifier: 36:05:E4:14:5A:33:47:C3:84:95:2E:18:91:B0:F2:B3:FA:C5:32:95
Authority key identifier: C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
Certificate issuer: /CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Certificate serial: 019D100EC0BBA84A4814F699E2347FBA43A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
Manifest number: 18A1
Signing time: Sat 21 Mar 2026 11:01:35 +0000
Manifest this update: Sat 21 Mar 2026 11:01:35 +0000
Manifest next update: Sun 22 Mar 2026 11:01:35 +0000
Files and hashes: 1: FBCGTG64vLpl2gDVPvanQJATgB8.roa (hash: axM4/0Pr+RIyWyZE+LhS3ebRSN92aTrPRUXzdJeL/U0=)
2: Gqg2-sCdeAnxIxjnCqOjFkh4pyY.roa (hash: fXnPA1IUb+WwCmX8j2rz10mUAQFbNKLaEL207SLATEk=)
3: Xh_fZpcuD-kXAKnMm-XCgP1QCcM.roa (hash: E/KI5295u2flUvuXh7zmO0XDhUT77Ekqi6kGos1unAA=)
4: cdMwDxOwsmOgnXKtKxgQS9EwG5s.roa (hash: 9KAJy5B5/gYF9JmztZmHa3vCIGRv+J2QDYi/xV8zpFc=)
5: w9cLMtPbCYYrwoKERp06IPmC2bE.roa (hash: ey9n1gs4fwmE4LkooDwQ9cZLvMTfaqnyxO7TGDUAj68=)
6: wywpQzax_4ZtKoz9uAZxDjtcPmw.roa (hash: Q0w8drpmsGxodbGwxBVJJ2K2KkXwUZiHuoYb5PWlT/8=)
7: yda1mpPjJAg_vKQjfkfp9evzcas.crl (hash: tFo2YyAdV+g01y3GBngkvovQ+EkEE2SBU0hsOCedbWY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 22 Mar 2026 11:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:10:0e:c0:bb:a8:4a:48:14:f6:99:e2:34:7f:ba:43:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Validity
Not Before: Mar 21 11:01:35 2026 GMT
Not After : Mar 22 11:01:35 2026 GMT
Subject: CN=3605e4145a3347c384952e1891b0f2b3fac53295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7a:8d:cf:73:0b:d3:b5:38:51:6c:0c:1d:18:
a5:18:ac:12:4f:fc:7b:f2:5a:56:59:06:52:fc:96:
9d:6e:35:06:9c:0b:11:43:6f:02:9b:f3:2d:ab:8e:
7e:33:87:9e:52:3b:21:a1:b2:33:53:ac:b7:a6:f4:
ef:44:03:42:05:c8:bd:39:92:fc:0a:5a:1e:5e:90:
85:f9:bf:79:db:e5:a2:94:10:e6:80:59:ff:6d:f6:
97:8a:72:dd:46:03:03:fd:dd:67:f1:a3:81:84:cd:
bd:83:f9:c9:d9:f3:4f:41:1e:75:ea:06:7d:89:00:
46:e5:b2:65:c8:f9:38:56:72:f1:0f:2e:42:83:a8:
f1:ec:e2:66:df:d5:b9:60:25:73:66:f1:60:c2:af:
07:a1:50:37:7d:a7:c0:8b:e8:0d:85:d6:6c:3b:b0:
b4:53:20:48:27:a7:04:5b:bb:33:47:9b:cb:ee:85:
80:b2:d1:58:bf:c5:1c:f8:7c:71:2e:87:d0:f0:38:
68:25:a5:a6:64:21:16:e8:48:12:b4:65:ab:3b:7a:
e8:07:9c:48:ff:62:d6:7b:cc:40:7d:94:68:25:6e:
fc:42:75:23:14:60:a3:cd:63:9c:a4:79:1b:25:a5:
6a:55:5d:7b:1f:03:15:71:73:ef:f3:5b:e8:1e:4c:
71:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:05:E4:14:5A:33:47:C3:84:95:2E:18:91:B0:F2:B3:FA:C5:32:95
X509v3 Authority Key Identifier:
keyid:C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:81:c5:95:01:1a:13:20:ba:37:29:30:bf:72:60:20:a5:ef:
9f:1c:14:80:77:9e:10:16:d3:ac:b2:68:81:c8:9b:45:7d:36:
97:b5:c3:a7:ba:a0:49:99:11:2a:68:87:60:7e:50:1b:af:40:
af:f2:43:f9:f1:07:cc:dd:02:02:6e:c9:54:32:99:6a:aa:7d:
01:cf:ec:7f:ce:d6:7a:b8:1f:26:fe:2c:e8:89:24:14:2b:6d:
22:08:5e:68:7a:04:d9:03:fe:3a:64:4c:a3:f9:f6:df:01:93:
68:04:0a:f7:b6:b3:9d:cf:44:56:86:f2:8d:d8:49:b3:66:fc:
4a:1e:9c:ba:69:8e:49:63:e7:8f:e0:36:de:e1:1d:bd:52:81:
02:12:91:e0:05:eb:4e:7d:7e:1f:a3:70:8d:2a:a6:88:06:d0:
b4:f5:03:95:64:d8:84:de:30:15:06:c8:75:df:af:9b:dd:36:
8d:c1:fe:a8:ed:8b:6e:16:a1:bf:be:f6:81:90:ea:d7:07:34:
d7:68:bd:54:a7:71:66:1e:ce:e0:76:30:d2:ea:95:ae:43:bc:
33:a2:2e:d4:33:23:4a:19:d2:35:93:be:03:4c:98:af:26:0d:
06:70:aa:3c:56:a2:71:42:7d:94:bc:8d:5e:f9:ff:ef:6a:65:
08:74:78:0d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0QDsC7qEpIFPaZ4jR/ukOhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDZiNTlhOTNlMzI0MDgzZmJjYTQyMzdlNDdlOWY1ZWJm
MzcxYWIwHhcNMjYwMzIxMTEwMTM1WhcNMjYwMzIyMTEwMTM1WjAzMTEwLwYDVQQD
EygzNjA1ZTQxNDVhMzM0N2MzODQ5NTJlMTg5MWIwZjJiM2ZhYzUzMjk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvnqNz3ML07U4UWwMHRilGKwST/x7
8lpWWQZS/JadbjUGnAsRQ28Cm/Mtq45+M4eeUjshobIzU6y3pvTvRANCBci9OZL8
CloeXpCF+b952+WilBDmgFn/bfaXinLdRgMD/d1n8aOBhM29g/nJ2fNPQR516gZ9
iQBG5bJlyPk4VnLxDy5Cg6jx7OJm39W5YCVzZvFgwq8HoVA3fafAi+gNhdZsO7C0
UyBIJ6cEW7szR5vL7oWAstFYv8Uc+HxxLofQ8DhoJaWmZCEW6EgStGWrO3roB5xI
/2LWe8xAfZRoJW78QnUjFGCjzWOcpHkbJaVqVV17HwMVcXPv81voHkxxYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDYF5BRaM0fDhJUuGJGw8rP6xTKVMB8GA1UdIwQY
MBaAFMnWtZqT4yQIP7ykI35H6fXr83GrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRhMW1wUGpKQWdfdktRamZrZnA5ZXZ6Y2FzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny82ODJiMDctNzczZi00NmZkLTgyZTIt
YjkyMTFlMWZjMWFjLzEveWRhMW1wUGpKQWdfdktRamZrZnA5ZXZ6Y2FzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny82ODJiMDctNzczZi00NmZkLTgyZTItYjkyMTFlMWZjMWFj
LzEveWRhMW1wUGpKQWdfdktRamZrZnA5ZXZ6Y2FzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsYHFlQEa
EyC6Nykwv3JgIKXvnxwUgHeeEBbTrLJogcibRX02l7XDp7qgSZkRKmiHYH5QG69A
r/JD+fEHzN0CAm7JVDKZaqp9Ac/sf87WergfJv4s6IkkFCttIgheaHoE2QP+OmRM
o/n23wGTaAQK97aznc9EVobyjdhJs2b8Sh6cummOSWPnj+A23uEdvVKBAhKR4AXr
Tn1+H6NwjSqmiAbQtPUDlWTYhN4wFQbIdd+vm902jcH+qO2Lbhahv772gZDq1wc0
12i9VKdxZh7O4HYw0uqVrkO8M6Iu1DMjShnSNZO+A0yYryYNBnCqPFaicUJ9lLyN
Xvn/72plCHR4DQ==
-----END CERTIFICATE-----
Generated at Sat Mar 21 21:16:18 2026 by rpki-client