Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/072f68-813d-4ba7-b49d-75fa295411f5/1/YnGcbYuZUDeKdIkxX7B4ERoYrVU.mft
File: YnGcbYuZUDeKdIkxX7B4ERoYrVU.mft (raw, json)
Hash identifier: rakOlfWO+Xs28fS4pR1vOoqCEzFZ1o8Pjn2/+MriPvo=
Subject key identifier: D5:B3:C8:AD:98:70:19:F7:15:9F:94:7C:00:2C:3A:B0:3B:0F:B7:58
Authority key identifier: 62:71:9C:6D:8B:99:50:37:8A:74:89:31:5F:B0:78:11:1A:18:AD:55
Certificate issuer: /CN=62719c6d8b9950378a7489315fb078111a18ad55
Certificate serial: 019D382E23727B6E18898F7B38B445C2798E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YnGcbYuZUDeKdIkxX7B4ERoYrVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/072f68-813d-4ba7-b49d-75fa295411f5/1/YnGcbYuZUDeKdIkxX7B4ERoYrVU.mft
Manifest number: 01A8
Signing time: Sun 29 Mar 2026 06:00:40 +0000
Manifest this update: Sun 29 Mar 2026 06:00:40 +0000
Manifest next update: Mon 30 Mar 2026 06:00:40 +0000
Files and hashes: 1: VUDvlZ3nSAHzKEKmaHgmcWJvSvw.roa (hash: iFi7PsloEbqYTaE+ZoaxZ5YffALEaqzMtJKrKwdONy0=)
2: YnGcbYuZUDeKdIkxX7B4ERoYrVU.crl (hash: S5qt7jWWbVEI++wvS/PFIOJ8uBS9H9RjFsm4h4sAyvE=)
3: sJpbC87SMVa4vt5NI5bryF6Soa0.roa (hash: Kq0qKJZ6NJFyN4KPgrXNyOIY6c6Ykn/I7S4MDDkskPA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/072f68-813d-4ba7-b49d-75fa295411f5/1/YnGcbYuZUDeKdIkxX7B4ERoYrVU.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/072f68-813d-4ba7-b49d-75fa295411f5/1/YnGcbYuZUDeKdIkxX7B4ERoYrVU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YnGcbYuZUDeKdIkxX7B4ERoYrVU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:23:72:7b:6e:18:89:8f:7b:38:b4:45:c2:79:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62719c6d8b9950378a7489315fb078111a18ad55
Validity
Not Before: Mar 29 06:00:40 2026 GMT
Not After : Mar 30 06:00:40 2026 GMT
Subject: CN=d5b3c8ad987019f7159f947c002c3ab03b0fb758
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ec:55:2c:db:5e:6f:cb:d1:7b:0a:3a:f0:e3:
f3:71:09:b5:9a:b6:4f:6d:a6:1a:55:e3:c8:d2:5c:
82:23:f4:6b:60:ab:48:34:da:18:7e:18:41:35:29:
d8:b8:74:74:e2:20:20:23:45:0d:ab:81:f0:f9:56:
d2:21:e7:72:17:d6:33:7d:f4:27:16:c0:81:87:ce:
ff:30:2e:91:4c:89:ba:3e:c1:bb:53:96:e8:66:b9:
35:0f:16:32:9c:da:14:bb:6f:fc:4d:d0:1e:96:2d:
4f:ac:00:bf:23:99:f3:96:90:c1:22:af:86:95:56:
6f:d2:4b:c6:76:4c:aa:97:64:49:94:1e:51:b7:aa:
eb:87:58:cb:82:a5:80:49:ee:c0:a2:25:be:1a:22:
12:ef:07:fc:c6:6b:00:0a:63:d4:2e:31:16:9a:76:
dc:12:d6:e7:54:68:2c:53:31:78:ed:5c:4f:31:ac:
73:aa:dc:f9:75:e0:ba:74:3c:01:b7:96:2d:f1:cd:
a9:6a:af:fc:2e:77:0a:c6:69:38:08:97:ef:ce:7f:
c5:4a:98:01:5d:d9:e9:ec:92:2d:2a:bd:1d:cd:a2:
f1:41:40:8f:c6:73:ef:92:ee:3a:1a:1b:ce:60:ca:
54:7f:2c:15:6e:06:a4:75:8a:dc:68:e9:22:3f:e4:
5f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:B3:C8:AD:98:70:19:F7:15:9F:94:7C:00:2C:3A:B0:3B:0F:B7:58
X509v3 Authority Key Identifier:
keyid:62:71:9C:6D:8B:99:50:37:8A:74:89:31:5F:B0:78:11:1A:18:AD:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YnGcbYuZUDeKdIkxX7B4ERoYrVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/072f68-813d-4ba7-b49d-75fa295411f5/1/YnGcbYuZUDeKdIkxX7B4ERoYrVU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/072f68-813d-4ba7-b49d-75fa295411f5/1/YnGcbYuZUDeKdIkxX7B4ERoYrVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:b2:1a:21:eb:0d:aa:10:d3:b4:b6:f5:5f:a4:29:e9:5e:17:
6a:9e:7c:df:fa:29:19:b5:68:65:1a:41:38:8d:84:91:ed:3e:
c0:91:df:6e:01:1e:17:2e:9f:75:e4:d2:07:b0:80:c3:73:69:
4f:53:d4:0d:92:43:9b:52:61:d1:6f:89:0d:58:82:af:fc:40:
0b:e1:6d:ba:a6:32:54:4d:77:b6:c7:48:7c:f9:73:3a:b4:f7:
fc:ad:05:60:0a:95:be:82:31:9b:53:1b:49:d0:46:b1:a9:5d:
91:a5:19:4f:ad:49:8b:25:69:41:33:9e:4a:0c:fb:27:71:2a:
18:b1:81:3e:41:6c:ef:bb:ff:c1:3d:d4:eb:91:cc:58:63:d2:
bd:f5:89:f0:52:f4:37:66:43:8f:84:ee:9d:6d:6a:6d:ce:cd:
ec:e4:af:6b:6e:9a:e1:02:8b:9e:5d:20:0e:2c:ed:3b:4a:64:
ef:f6:72:f6:7b:df:ff:89:ed:ae:8b:3a:52:7f:c5:64:c8:7a:
88:98:f1:fc:1e:ed:f6:71:98:cc:79:0f:91:90:bb:2e:27:ef:
45:65:ff:b9:50:69:7c:20:3b:66:c1:b2:ca:2c:ac:f0:55:6c:
97:f0:59:5f:3a:41:f0:ce:1b:76:00:88:80:25:71:24:60:97:
77:90:11:d1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04LiNye24YiY97OLRFwnmOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyNzE5YzZkOGI5OTUwMzc4YTc0ODkzMTVmYjA3ODExMWEx
OGFkNTUwHhcNMjYwMzI5MDYwMDQwWhcNMjYwMzMwMDYwMDQwWjAzMTEwLwYDVQQD
EyhkNWIzYzhhZDk4NzAxOWY3MTU5Zjk0N2MwMDJjM2FiMDNiMGZiNzU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApexVLNteb8vRewo68OPzcQm1mrZP
baYaVePI0lyCI/RrYKtINNoYfhhBNSnYuHR04iAgI0UNq4Hw+VbSIedyF9YzffQn
FsCBh87/MC6RTIm6PsG7U5boZrk1DxYynNoUu2/8TdAeli1PrAC/I5nzlpDBIq+G
lVZv0kvGdkyql2RJlB5Rt6rrh1jLgqWASe7AoiW+GiIS7wf8xmsACmPULjEWmnbc
EtbnVGgsUzF47VxPMaxzqtz5deC6dDwBt5Yt8c2paq/8LncKxmk4CJfvzn/FSpgB
Xdnp7JItKr0dzaLxQUCPxnPvku46GhvOYMpUfywVbgakdYrcaOkiP+Rf5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNWzyK2YcBn3FZ+UfAAsOrA7D7dYMB8GA1UdIwQY
MBaAFGJxnG2LmVA3inSJMV+weBEaGK1VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWW5HY2JZdVpVRGVLZElreFg3QjRFUm9ZclZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8wNzJmNjgtODEzZC00YmE3LWI0OWQt
NzVmYTI5NTQxMWY1LzEvWW5HY2JZdVpVRGVLZElreFg3QjRFUm9ZclZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny8wNzJmNjgtODEzZC00YmE3LWI0OWQtNzVmYTI5NTQxMWY1
LzEvWW5HY2JZdVpVRGVLZElreFg3QjRFUm9ZclZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS7IaIesN
qhDTtLb1X6Qp6V4Xap583/opGbVoZRpBOI2Eke0+wJHfbgEeFy6fdeTSB7CAw3Np
T1PUDZJDm1Jh0W+JDViCr/xAC+FtuqYyVE13tsdIfPlzOrT3/K0FYAqVvoIxm1Mb
SdBGsaldkaUZT61JiyVpQTOeSgz7J3EqGLGBPkFs77v/wT3U65HMWGPSvfWJ8FL0
N2ZDj4TunW1qbc7N7OSva26a4QKLnl0gDiztO0pk7/Zy9nvf/4ntros6Un/FZMh6
iJjx/B7t9nGYzHkPkZC7LifvRWX/uVBpfCA7ZsGyyiys8FVsl/BZXzpB8M4bdgCI
gCVxJGCXd5AR0Q==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:56:16 2026 by rpki-client