Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
File: ym3NrZkpBFbG18GOscBY2UEIiAE.mft (raw, json)
Hash identifier: +4FlXfwsyhRUoyRNhzT7PzNgv+r1zpmxwaiGnSof1xU=
Subject key identifier: 4C:F6:BB:43:C9:81:8E:A7:AC:D7:A7:13:04:F9:D4:BA:1E:BC:73:56
Authority key identifier: CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01
Certificate issuer: /CN=ca6dcdad99290456c6d7c18eb1c058d941088801
Certificate serial: 019F19B19FCCB5172B1817CED98B28CBCD06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
Manifest number: 192C
Signing time: Tue 30 Jun 2026 18:01:38 +0000
Manifest this update: Tue 30 Jun 2026 18:01:38 +0000
Manifest next update: Wed 01 Jul 2026 18:01:38 +0000
Files and hashes: 1: FoH9ps9NIlN7HCCsr_L_q5RnpT8.roa (hash: V8yDvWYjZgT2Vk6m8UQDxVTsGXUYqta3GtOUd408vp8=)
2: ym3NrZkpBFbG18GOscBY2UEIiAE.crl (hash: Wg+DvWImHc1vB0LniN+XyL0WKsOD9xnPsiaoF0nhpUQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:b1:9f:cc:b5:17:2b:18:17:ce:d9:8b:28:cb:cd:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca6dcdad99290456c6d7c18eb1c058d941088801
Validity
Not Before: Jun 30 18:01:38 2026 GMT
Not After : Jul 1 18:01:38 2026 GMT
Subject: CN=4cf6bb43c9818ea7acd7a71304f9d4ba1ebc7356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e0:4a:df:70:53:5c:e9:29:de:96:ee:80:05:
74:82:f6:82:56:05:1e:ea:17:55:2f:e6:f1:7d:ea:
4f:fb:eb:da:8c:b5:50:71:33:19:72:68:a6:5e:4e:
50:cb:ed:d5:c0:eb:11:a9:0f:94:b8:52:67:29:22:
4b:d3:09:c4:59:a4:a1:4a:9c:3d:c4:13:75:7b:f8:
34:ac:01:ce:25:75:9b:5d:f3:2d:57:20:37:92:e0:
5e:32:26:09:a0:6a:48:08:37:a6:c9:e3:39:ff:e7:
96:45:8f:a1:88:2d:e2:d6:64:4b:de:bd:c2:e8:53:
7e:84:ab:33:c9:4c:27:6d:06:ca:d4:ec:04:8e:d0:
65:51:e2:8b:23:18:94:85:88:05:b5:ca:5c:57:32:
9f:24:a9:55:92:5b:79:7b:b5:7b:26:a2:31:e2:52:
2f:db:b8:b6:cc:87:bb:cd:3f:04:21:97:b5:89:b0:
ae:18:27:7a:cd:2e:19:b9:e7:93:54:98:a0:4e:dd:
f4:8c:b3:99:79:e0:59:01:30:a1:2f:fb:cb:da:e9:
0a:59:03:a3:79:d1:0f:f5:22:e5:d2:c7:3c:73:20:
5b:18:07:b2:44:ce:7c:7e:3f:92:61:0f:7d:1b:78:
fc:7e:5c:3c:4e:91:4d:ed:22:8b:b3:a5:2c:bf:df:
a8:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:F6:BB:43:C9:81:8E:A7:AC:D7:A7:13:04:F9:D4:BA:1E:BC:73:56
X509v3 Authority Key Identifier:
keyid:CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:5b:b8:57:79:60:8b:7d:15:4c:4f:51:a3:f8:41:76:be:19:
3f:d2:f3:ee:3f:0d:40:9f:1e:27:5d:13:b4:89:8a:f2:d6:74:
b9:2c:fa:f9:97:cc:8b:e6:f1:0a:0e:21:8c:c3:42:b5:3e:ee:
07:88:63:72:77:02:82:7b:44:ac:ac:4b:c2:8d:b0:f3:20:9d:
54:95:40:7e:38:48:57:24:02:e6:52:60:ff:75:c8:52:0a:ec:
63:29:7b:f8:b0:09:fe:c3:54:95:b2:61:7c:e1:25:2d:eb:78:
07:49:64:07:a1:71:69:3c:4b:47:a1:aa:f4:3f:e5:e4:e7:e2:
f4:41:f5:22:5e:78:34:5a:66:0d:0f:ce:d8:73:d7:ee:bb:7c:
5c:ab:38:b4:b2:24:d1:7d:44:9d:1b:2b:42:c1:63:20:1b:6b:
84:9c:35:67:f9:d5:45:88:78:d5:00:26:a8:22:79:b5:3e:32:
37:48:9b:0e:d1:ac:d2:c9:26:30:2d:b7:86:07:b7:49:f7:c1:
89:fe:d3:21:fc:ea:e7:d9:5b:9d:a7:b4:3b:5e:12:c1:ac:0d:
e5:7f:e4:2d:dc:ac:5b:a9:3c:a8:ba:ae:78:cb:cb:8d:2b:98:
f5:14:a0:29:fb:b5:03:87:ed:b5:4e:09:fa:a1:1d:8c:c8:16:
64:ad:44:50
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8ZsZ/MtRcrGBfO2Ysoy80GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNmRjZGFkOTkyOTA0NTZjNmQ3YzE4ZWIxYzA1OGQ5NDEw
ODg4MDEwHhcNMjYwNjMwMTgwMTM4WhcNMjYwNzAxMTgwMTM4WjAzMTEwLwYDVQQD
Eyg0Y2Y2YmI0M2M5ODE4ZWE3YWNkN2E3MTMwNGY5ZDRiYTFlYmM3MzU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmOBK33BTXOkp3pbugAV0gvaCVgUe
6hdVL+bxfepP++vajLVQcTMZcmimXk5Qy+3VwOsRqQ+UuFJnKSJL0wnEWaShSpw9
xBN1e/g0rAHOJXWbXfMtVyA3kuBeMiYJoGpICDemyeM5/+eWRY+hiC3i1mRL3r3C
6FN+hKszyUwnbQbK1OwEjtBlUeKLIxiUhYgFtcpcVzKfJKlVklt5e7V7JqIx4lIv
27i2zIe7zT8EIZe1ibCuGCd6zS4ZueeTVJigTt30jLOZeeBZATChL/vL2ukKWQOj
edEP9SLl0sc8cyBbGAeyRM58fj+SYQ99G3j8flw8TpFN7SKLs6Usv9+oqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEz2u0PJgY6nrNenEwT51LoevHNWMB8GA1UdIwQY
MBaAFMptza2ZKQRWxtfBjrHAWNlBCIgBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveW0zTnJaa3BCRmJHMThHT3NjQlkyVUVJaUFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi83Njc1OWUtMzk2NC00YzRmLTg3NmIt
YmM0NzVkMDA4ODY5LzEveW0zTnJaa3BCRmJHMThHT3NjQlkyVUVJaUFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi83Njc1OWUtMzk2NC00YzRmLTg3NmItYmM0NzVkMDA4ODY5
LzEveW0zTnJaa3BCRmJHMThHT3NjQlkyVUVJaUFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfFu4V3lg
i30VTE9Ro/hBdr4ZP9Lz7j8NQJ8eJ10TtImK8tZ0uSz6+ZfMi+bxCg4hjMNCtT7u
B4hjcncCgntErKxLwo2w8yCdVJVAfjhIVyQC5lJg/3XIUgrsYyl7+LAJ/sNUlbJh
fOElLet4B0lkB6FxaTxLR6Gq9D/l5Ofi9EH1Il54NFpmDQ/O2HPX7rt8XKs4tLIk
0X1EnRsrQsFjIBtrhJw1Z/nVRYh41QAmqCJ5tT4yN0ibDtGs0skmMC23hge3SffB
if7TIfzq59lbnae0O14SwawN5X/kLdysW6k8qLqueMvLjSuY9RSgKfu1A4fttU4J
+qEdjMgWZK1EUA==
-----END CERTIFICATE-----
Generated at Tue Jun 30 23:36:22 2026 by rpki-client