Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/f3e494-ea53-413c-ae14-a1f859517c1b/1/y1bGreHiphfnx3VXuV8GlU2TkLo.mft
File: y1bGreHiphfnx3VXuV8GlU2TkLo.mft (raw, json)
Hash identifier: +1YlktbZLQn/9sFsJEZ+foQzIw/d4SvTR7vnCLqjI1A=
Subject key identifier: D7:99:EE:71:14:06:A2:F5:67:45:6D:C9:98:B0:9B:6A:9A:00:1F:13
Authority key identifier: CB:56:C6:AD:E1:E2:A6:17:E7:C7:75:57:B9:5F:06:95:4D:93:90:BA
Certificate issuer: /CN=cb56c6ade1e2a617e7c77557b95f06954d9390ba
Certificate serial: 019D38D3B7F3ECBF21784C9CE3F57C8D2C76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y1bGreHiphfnx3VXuV8GlU2TkLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/f3e494-ea53-413c-ae14-a1f859517c1b/1/y1bGreHiphfnx3VXuV8GlU2TkLo.mft
Manifest number: 9C
Signing time: Sun 29 Mar 2026 09:01:32 +0000
Manifest this update: Sun 29 Mar 2026 09:01:32 +0000
Manifest next update: Mon 30 Mar 2026 09:01:32 +0000
Files and hashes: 1: 3P0VzD1dKCF2UiQ8qkWCmQrm2Gw.roa (hash: gjopDXHjONuosWi6hy78AAJGtkv7Tbfx273i024Q360=)
2: y1bGreHiphfnx3VXuV8GlU2TkLo.crl (hash: +jTC7UD0jf/6i+kV08R7NsKJaSaT06NMbSnn10N69Uo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/f3e494-ea53-413c-ae14-a1f859517c1b/1/y1bGreHiphfnx3VXuV8GlU2TkLo.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/f3e494-ea53-413c-ae14-a1f859517c1b/1/y1bGreHiphfnx3VXuV8GlU2TkLo.mft
rsync://rpki.ripe.net/repository/DEFAULT/y1bGreHiphfnx3VXuV8GlU2TkLo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:b7:f3:ec:bf:21:78:4c:9c:e3:f5:7c:8d:2c:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb56c6ade1e2a617e7c77557b95f06954d9390ba
Validity
Not Before: Mar 29 09:01:32 2026 GMT
Not After : Mar 30 09:01:32 2026 GMT
Subject: CN=d799ee711406a2f567456dc998b09b6a9a001f13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:64:fe:1a:a4:d1:67:f3:75:c2:2c:01:60:ba:
c6:9d:cc:bb:d8:74:e4:ef:ce:02:12:8b:3c:9b:1c:
dc:e8:bc:45:27:0d:7a:4a:b9:ae:7d:df:bd:f2:16:
8e:d1:0f:e4:15:69:f7:42:90:e9:35:e6:6a:77:54:
9a:82:9f:12:1f:81:bd:36:92:1a:33:a2:dc:d8:fb:
86:0a:c0:dd:02:0e:5e:12:b7:5f:b4:62:37:7d:52:
e7:f8:bc:a5:f7:7a:9a:7e:cc:f6:a8:64:f4:59:5c:
9d:f2:ff:ae:94:59:c4:01:69:78:3f:e1:f5:b4:3d:
6f:07:4d:e3:82:fc:66:dc:f1:f8:7b:1b:6b:83:a9:
6a:13:10:5e:62:ec:4c:87:9d:fb:76:ca:3d:e0:28:
20:3b:76:4b:86:9d:9c:b2:ff:43:72:fe:a0:13:74:
55:84:8d:d2:fa:07:d6:5e:5f:b8:c6:1c:24:9e:db:
2d:3a:78:61:f1:a9:d4:26:56:b1:4b:a4:b9:3a:b9:
ac:9e:0d:3b:da:72:1f:5e:48:e5:a1:59:2a:49:45:
cb:fa:01:e2:d7:04:87:47:7f:af:ea:47:03:f4:8e:
e6:3a:ce:bc:a2:d1:44:4d:da:2f:5b:40:d6:26:34:
fb:8e:88:02:4f:ee:cf:fa:92:8f:42:ea:cc:92:2a:
46:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:99:EE:71:14:06:A2:F5:67:45:6D:C9:98:B0:9B:6A:9A:00:1F:13
X509v3 Authority Key Identifier:
keyid:CB:56:C6:AD:E1:E2:A6:17:E7:C7:75:57:B9:5F:06:95:4D:93:90:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y1bGreHiphfnx3VXuV8GlU2TkLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f3e494-ea53-413c-ae14-a1f859517c1b/1/y1bGreHiphfnx3VXuV8GlU2TkLo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f3e494-ea53-413c-ae14-a1f859517c1b/1/y1bGreHiphfnx3VXuV8GlU2TkLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:05:eb:74:1b:d0:3d:76:45:64:2f:2b:64:90:fb:af:ea:38:
e9:df:b3:5a:0c:74:64:cf:0f:fd:66:ca:93:47:cb:ee:0f:20:
99:5e:a3:1e:f9:c8:0c:1c:83:b2:40:1a:d4:30:a5:0c:05:ae:
b4:80:ba:f9:0f:5a:be:ca:19:44:16:ca:19:1f:38:9a:7f:37:
80:3a:2f:92:e6:76:44:65:9c:7b:8f:c8:72:57:72:09:8f:60:
6a:96:74:ae:12:ff:8d:57:6f:bf:ef:68:e2:58:39:1b:f0:d2:
56:d9:8b:b4:d7:a8:d1:83:0a:14:2f:1d:ee:0a:ea:26:ff:80:
8e:7a:fe:6d:87:f6:51:9f:9e:0e:04:81:5e:df:b5:83:14:6e:
fd:28:db:00:37:1e:b1:0d:61:30:77:9a:d0:93:da:6f:45:c1:
9b:bb:ad:1e:2d:d3:c7:49:a1:87:92:68:0b:8b:03:65:0f:15:
93:5d:ff:d7:67:7b:ee:8f:e8:2c:70:e5:14:0a:f5:99:68:f5:
5a:3e:b7:06:cb:0e:c9:42:2d:dc:9a:0d:a8:90:2b:e6:40:a5:
8b:38:c7:d6:f3:e9:8b:4c:cd:c4:88:3d:0d:8b:2b:1b:9e:39:
c0:14:49:91:26:0f:d8:7b:62:a3:82:bb:c7:27:95:7e:9f:2d:
5e:a5:2e:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0407fz7L8heEyc4/V8jSx2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiNTZjNmFkZTFlMmE2MTdlN2M3NzU1N2I5NWYwNjk1NGQ5
MzkwYmEwHhcNMjYwMzI5MDkwMTMyWhcNMjYwMzMwMDkwMTMyWjAzMTEwLwYDVQQD
EyhkNzk5ZWU3MTE0MDZhMmY1Njc0NTZkYzk5OGIwOWI2YTlhMDAxZjEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1GT+GqTRZ/N1wiwBYLrGncy72HTk
784CEos8mxzc6LxFJw16Srmufd+98haO0Q/kFWn3QpDpNeZqd1Sagp8SH4G9NpIa
M6Lc2PuGCsDdAg5eErdftGI3fVLn+Lyl93qafsz2qGT0WVyd8v+ulFnEAWl4P+H1
tD1vB03jgvxm3PH4extrg6lqExBeYuxMh537dso94CggO3ZLhp2csv9Dcv6gE3RV
hI3S+gfWXl+4xhwkntstOnhh8anUJlaxS6S5Ormsng072nIfXkjloVkqSUXL+gHi
1wSHR3+v6kcD9I7mOs68otFETdovW0DWJjT7jogCT+7P+pKPQurMkipGRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNeZ7nEUBqL1Z0VtyZiwm2qaAB8TMB8GA1UdIwQY
MBaAFMtWxq3h4qYX58d1V7lfBpVNk5C6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveTFiR3JlSGlwaGZueDNWWHVWOEdsVTJUa0xvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9mM2U0OTQtZWE1My00MTNjLWFlMTQt
YTFmODU5NTE3YzFiLzEveTFiR3JlSGlwaGZueDNWWHVWOEdsVTJUa0xvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My9mM2U0OTQtZWE1My00MTNjLWFlMTQtYTFmODU5NTE3YzFi
LzEveTFiR3JlSGlwaGZueDNWWHVWOEdsVTJUa0xvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiQXrdBvQ
PXZFZC8rZJD7r+o46d+zWgx0ZM8P/WbKk0fL7g8gmV6jHvnIDByDskAa1DClDAWu
tIC6+Q9avsoZRBbKGR84mn83gDovkuZ2RGWce4/IcldyCY9gapZ0rhL/jVdvv+9o
4lg5G/DSVtmLtNeo0YMKFC8d7grqJv+Ajnr+bYf2UZ+eDgSBXt+1gxRu/SjbADce
sQ1hMHea0JPab0XBm7utHi3Tx0mhh5JoC4sDZQ8Vk13/12d77o/oLHDlFAr1mWj1
Wj63BssOyUIt3JoNqJAr5kClizjH1vPpi0zNxIg9DYsrG545wBRJkSYP2Htio4K7
xyeVfp8tXqUuZg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 13:44:48 2026 by rpki-client