Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.mft
File: yjuG5lRw-ZTfptb-6OJk22LiSvk.mft (raw, json)
Hash identifier: lGSfmLa/HGQRbwi79mH/PfezGOxFaUvqGEBADLFnINM=
Subject key identifier: D7:AA:EF:BC:9A:6C:FA:A9:C7:7D:16:72:5A:08:15:BB:46:B5:83:E9
Authority key identifier: CA:3B:86:E6:54:70:F9:94:DF:A6:D6:FE:E8:E2:64:DB:62:E2:4A:F9
Certificate issuer: /CN=ca3b86e65470f994dfa6d6fee8e264db62e24af9
Certificate serial: 019DCDBDD178052BA186DE0D7853491F84B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.mft
Manifest number: 18E5
Signing time: Mon 27 Apr 2026 07:01:02 +0000
Manifest this update: Mon 27 Apr 2026 07:01:02 +0000
Manifest next update: Tue 28 Apr 2026 07:01:02 +0000
Files and hashes: 1: 3Ogv-65T1Kg_Y0PwX3iWSALH4hk.roa (hash: Zkr3qlEk5NZQXDe7nwoX/wyvk4zh4il5FQTwuh5WfIw=)
2: cpTfXtYH4v1rSjqKtu9ZqpUx3xM.roa (hash: ovwDXS3yKtACozUh0/9y9dib/PgNmZTku682Xe84kxM=)
3: yCVmIRzNa3tIF_MU4qrOr7DResw.roa (hash: obCtvPuMFr0+7aVoRxpK/YudJ9U9WEay72ENhR3GLLg=)
4: yjuG5lRw-ZTfptb-6OJk22LiSvk.crl (hash: FzzbrtxIM16bidI7ccsRepG448pD6u6/TcSn56UiMW4=)
5: yzMl80kUPFPXCVyuhTRWq2l6-PU.roa (hash: 10HhilhYAwZngg7Yfm2XzCkVn++CZDGvggSHZV4Fd0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 07:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:bd:d1:78:05:2b:a1:86:de:0d:78:53:49:1f:84:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3b86e65470f994dfa6d6fee8e264db62e24af9
Validity
Not Before: Apr 27 07:01:02 2026 GMT
Not After : Apr 28 07:01:02 2026 GMT
Subject: CN=d7aaefbc9a6cfaa9c77d16725a0815bb46b583e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e7:d3:10:f1:8c:12:1e:f4:9b:e5:6e:77:92:
f9:2a:b0:36:84:95:c9:84:4a:8e:3c:3c:8b:fb:94:
91:bb:eb:38:a5:53:4f:43:4f:f1:e4:c5:d2:e3:30:
31:8d:44:6d:9f:55:6a:27:f6:ff:e9:da:29:58:0d:
0f:ba:a6:0b:f7:ec:04:3b:81:0e:f1:4b:1f:44:03:
b1:8e:af:1e:70:de:78:39:a3:dc:b1:14:3f:10:db:
e1:54:f7:73:15:89:51:49:ec:b8:19:62:92:b8:36:
b8:88:5d:ec:32:d3:bc:44:22:98:3a:a9:59:96:29:
88:aa:b3:b1:95:0e:db:13:9c:3a:ec:fa:ed:78:2a:
e1:26:6d:56:1d:ce:d6:ca:7d:b1:a2:6f:12:44:91:
94:76:2a:34:d5:3f:1f:f8:5f:77:6f:54:d1:91:1c:
e5:85:5e:ca:7a:f0:8c:e7:51:14:ff:f8:d2:f6:37:
a7:ae:0a:c2:52:97:56:e2:06:a2:91:a4:8c:53:00:
a6:30:5d:11:2c:37:e7:4f:3a:6e:9b:a3:e1:9e:c1:
47:fc:2d:40:6f:6f:e8:c3:c9:22:2d:97:bf:2a:8a:
3b:ee:24:bc:0b:16:02:e6:30:77:2e:cb:c8:23:64:
bc:6c:75:ba:88:05:ea:65:8d:ef:cb:cb:4f:80:82:
55:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:AA:EF:BC:9A:6C:FA:A9:C7:7D:16:72:5A:08:15:BB:46:B5:83:E9
X509v3 Authority Key Identifier:
keyid:CA:3B:86:E6:54:70:F9:94:DF:A6:D6:FE:E8:E2:64:DB:62:E2:4A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:c0:39:38:ac:9c:c6:ef:fc:bf:f8:8d:3b:e5:72:f4:20:91:
ca:12:fe:25:77:12:c2:77:ea:f3:bb:96:3f:dd:e8:f9:3f:5b:
5e:44:a4:54:4e:62:85:73:e7:f2:83:4a:34:42:af:62:1f:e8:
9c:b3:92:67:9e:19:58:d2:18:c6:18:7b:25:2d:e4:e4:65:42:
3a:83:60:ec:09:ad:ed:ab:28:db:05:7f:98:f6:f7:db:43:5b:
f0:c9:26:b1:72:3a:14:53:2f:f2:fa:fd:d6:5f:85:c4:03:99:
9a:f9:42:c8:21:d8:b4:d6:d2:22:f9:c1:f6:75:d2:06:c9:dc:
89:48:60:16:fe:44:c8:46:52:f4:bc:f8:89:e3:fc:d2:e3:ff:
d8:b6:7c:1b:66:2c:36:75:3f:f1:98:88:24:39:3b:c2:bc:20:
58:2d:e5:88:c0:ad:0c:e9:02:2d:0d:05:45:5d:1f:0f:fc:a6:
bb:43:ab:23:61:62:10:b4:a1:ce:60:5b:8f:66:35:67:0e:ba:
8b:e1:a2:3a:0a:53:71:64:bd:f2:e6:10:fb:93:ee:03:7f:e3:
e4:8a:74:dd:5c:5e:44:a3:51:a7:01:a6:31:c6:98:e4:95:16:
c0:2f:83:fb:08:5b:f3:12:90:dd:82:63:69:d1:12:5c:ed:53:
1e:b6:6f:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3NvdF4BSuhht4NeFNJH4SxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhM2I4NmU2NTQ3MGY5OTRkZmE2ZDZmZWU4ZTI2NGRiNjJl
MjRhZjkwHhcNMjYwNDI3MDcwMTAyWhcNMjYwNDI4MDcwMTAyWjAzMTEwLwYDVQQD
EyhkN2FhZWZiYzlhNmNmYWE5Yzc3ZDE2NzI1YTA4MTViYjQ2YjU4M2U5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnefTEPGMEh70m+Vud5L5KrA2hJXJ
hEqOPDyL+5SRu+s4pVNPQ0/x5MXS4zAxjURtn1VqJ/b/6dopWA0PuqYL9+wEO4EO
8UsfRAOxjq8ecN54OaPcsRQ/ENvhVPdzFYlRSey4GWKSuDa4iF3sMtO8RCKYOqlZ
limIqrOxlQ7bE5w67PrteCrhJm1WHc7Wyn2xom8SRJGUdio01T8f+F93b1TRkRzl
hV7KevCM51EU//jS9jenrgrCUpdW4gaikaSMUwCmMF0RLDfnTzpum6PhnsFH/C1A
b2/ow8kiLZe/Koo77iS8CxYC5jB3LsvII2S8bHW6iAXqZY3vy8tPgIJVJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNeq77yabPqpx30WcloIFbtGtYPpMB8GA1UdIwQY
MBaAFMo7huZUcPmU36bW/ujiZNti4kr5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWp1RzVsUnctWlRmcHRiLTZPSmsyMkxpU3ZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni8zZGFlNzEtMWFjZi00MTk2LTk2MDgt
OTUzMWQyNGUwNjEwLzEveWp1RzVsUnctWlRmcHRiLTZPSmsyMkxpU3ZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni8zZGFlNzEtMWFjZi00MTk2LTk2MDgtOTUzMWQyNGUwNjEw
LzEveWp1RzVsUnctWlRmcHRiLTZPSmsyMkxpU3ZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFcA5OKyc
xu/8v/iNO+Vy9CCRyhL+JXcSwnfq87uWP93o+T9bXkSkVE5ihXPn8oNKNEKvYh/o
nLOSZ54ZWNIYxhh7JS3k5GVCOoNg7Amt7aso2wV/mPb320Nb8MkmsXI6FFMv8vr9
1l+FxAOZmvlCyCHYtNbSIvnB9nXSBsnciUhgFv5EyEZS9Lz4ieP80uP/2LZ8G2Ys
NnU/8ZiIJDk7wrwgWC3liMCtDOkCLQ0FRV0fD/ymu0OrI2FiELShzmBbj2Y1Zw66
i+GiOgpTcWS98uYQ+5PuA3/j5Ip03VxeRKNRpwGmMcaY5JUWwC+D+whb8xKQ3YJj
adESXO1THrZv9Q==
-----END CERTIFICATE-----
Generated at Mon Apr 27 14:36:19 2026 by rpki-client