Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
File: yBi-GcEJgPFbze4HZpAHhJGoqiE.mft (raw, json)
Hash identifier: TRAu0UE1PLYti61c+oOCeWobQfYzQlc8HdHCtMqoaz4=
Subject key identifier: 82:10:4D:75:7B:EB:11:41:8A:F2:92:C6:17:11:75:C2:57:76:06:EC
Authority key identifier: C8:18:BE:19:C1:09:80:F1:5B:CD:EE:07:66:90:07:84:91:A8:AA:21
Certificate issuer: /CN=c818be19c10980f15bcdee076690078491a8aa21
Certificate serial: 019D3865A416165849BEF040F440A8CFC70A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
Manifest number: 0EBD
Signing time: Sun 29 Mar 2026 07:01:18 +0000
Manifest this update: Sun 29 Mar 2026 07:01:18 +0000
Manifest next update: Mon 30 Mar 2026 07:01:18 +0000
Files and hashes: 1: j-_-OLKpvCpzT4pF0J3tbQLvCOk.roa (hash: Suu8haJW2xwfl33lBXaWemEMPHtEd4FyCegVEYmcMLQ=)
2: yBi-GcEJgPFbze4HZpAHhJGoqiE.crl (hash: pSmLDtXm+pOVUCqTkyf86WNnajXxYgajT22VNxCo+TE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:a4:16:16:58:49:be:f0:40:f4:40:a8:cf:c7:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c818be19c10980f15bcdee076690078491a8aa21
Validity
Not Before: Mar 29 07:01:18 2026 GMT
Not After : Mar 30 07:01:18 2026 GMT
Subject: CN=82104d757beb11418af292c6171175c2577606ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8d:d0:e9:8b:39:85:c6:fc:af:f5:f6:cd:b4:
39:73:13:aa:ee:54:e2:b3:cd:ae:98:28:c3:f4:1f:
9a:84:c2:25:52:c2:8a:95:5e:3c:fc:ed:7c:2b:00:
01:e4:99:34:7f:ad:ac:0a:fc:ca:93:22:54:00:70:
de:54:e1:b6:44:57:12:26:55:4f:4a:4a:d2:83:12:
e1:d5:58:d5:de:53:89:d2:60:ff:14:e7:d8:48:74:
84:58:77:a7:3d:85:25:29:af:62:d8:08:2a:3a:30:
3a:1b:a2:3c:e4:0d:65:cd:76:bc:8a:e1:b9:a1:b0:
db:c5:5d:75:3a:03:58:83:f6:a6:38:5c:9c:81:aa:
68:e1:91:f6:08:96:6b:86:91:0d:2a:ac:b8:cd:fb:
39:5f:2d:dc:dc:1f:e9:09:ae:f1:84:7b:17:d4:c3:
24:a1:51:3a:dd:7f:90:4d:55:7c:0a:db:7b:a8:e9:
82:8b:53:f7:0c:b5:78:96:55:6b:78:f3:05:6f:56:
72:ab:93:f5:fc:c6:6f:15:3f:27:82:47:0e:f0:46:
b2:62:eb:34:37:c2:84:3d:8b:e9:ab:6f:09:6b:b3:
3b:cd:c6:0e:78:37:57:2c:82:c4:58:10:79:c1:ed:
ec:18:2b:c1:10:e1:ab:2e:18:ac:f5:ee:0f:78:3f:
ed:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:10:4D:75:7B:EB:11:41:8A:F2:92:C6:17:11:75:C2:57:76:06:EC
X509v3 Authority Key Identifier:
keyid:C8:18:BE:19:C1:09:80:F1:5B:CD:EE:07:66:90:07:84:91:A8:AA:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:13:ed:31:d9:6a:c1:4c:b1:d1:e0:46:95:53:8e:d8:49:6f:
db:1b:83:da:77:58:78:2d:32:2c:60:21:1f:54:e0:f7:46:bd:
95:ac:ac:83:a6:62:f2:cb:80:95:46:94:c8:79:4e:9e:6f:47:
ee:7e:65:28:c9:ec:b7:05:41:cc:bf:51:54:67:93:a1:1b:41:
17:06:13:65:b0:45:ba:f8:37:e2:cf:4f:16:38:53:09:1e:e0:
59:7f:11:15:69:fc:de:45:a5:de:77:2c:8d:21:4f:b4:fa:a8:
13:65:fc:c6:38:ea:16:af:47:dc:c5:59:d5:76:16:5a:a9:6f:
23:20:8e:15:13:ed:3c:bc:8b:d0:6b:71:1a:44:28:16:72:05:
58:a5:40:2e:36:da:9e:5c:dc:1e:41:a0:62:70:f6:a3:c1:30:
00:10:c2:4c:b0:b9:bc:b4:63:7f:94:d1:35:01:7d:c0:0d:04:
19:d4:52:b1:d9:b8:99:43:75:ab:ba:62:6e:50:7f:7e:f2:51:
78:cd:6f:fa:5a:0e:e9:f9:d1:c8:ee:e0:d9:48:6a:c5:88:34:
70:8d:c7:5e:bf:4b:61:6f:c7:38:76:e6:5b:59:80:e9:ab:34:
24:83:00:28:9a:f0:ed:c5:93:21:b4:73:db:61:4c:72:cd:26:
21:5d:6b:15
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZaQWFlhJvvBA9ECoz8cKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4MThiZTE5YzEwOTgwZjE1YmNkZWUwNzY2OTAwNzg0OTFh
OGFhMjEwHhcNMjYwMzI5MDcwMTE4WhcNMjYwMzMwMDcwMTE4WjAzMTEwLwYDVQQD
Eyg4MjEwNGQ3NTdiZWIxMTQxOGFmMjkyYzYxNzExNzVjMjU3NzYwNmVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAro3Q6Ys5hcb8r/X2zbQ5cxOq7lTi
s82umCjD9B+ahMIlUsKKlV48/O18KwAB5Jk0f62sCvzKkyJUAHDeVOG2RFcSJlVP
SkrSgxLh1VjV3lOJ0mD/FOfYSHSEWHenPYUlKa9i2AgqOjA6G6I85A1lzXa8iuG5
obDbxV11OgNYg/amOFycgapo4ZH2CJZrhpENKqy4zfs5Xy3c3B/pCa7xhHsX1MMk
oVE63X+QTVV8Ctt7qOmCi1P3DLV4llVrePMFb1Zyq5P1/MZvFT8ngkcO8EayYus0
N8KEPYvpq28Ja7M7zcYOeDdXLILEWBB5we3sGCvBEOGrLhis9e4PeD/tQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIIQTXV76xFBivKSxhcRdcJXdgbsMB8GA1UdIwQY
MBaAFMgYvhnBCYDxW83uB2aQB4SRqKohMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveUJpLUdjRUpnUEZiemU0SFpwQUhoSkdvcWlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi84ODQwZjAtMjcxZS00NTI3LWE0MTMt
NmM0NzE5YmNmOWVlLzEveUJpLUdjRUpnUEZiemU0SFpwQUhoSkdvcWlFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi84ODQwZjAtMjcxZS00NTI3LWE0MTMtNmM0NzE5YmNmOWVl
LzEveUJpLUdjRUpnUEZiemU0SFpwQUhoSkdvcWlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEBPtMdlq
wUyx0eBGlVOO2Elv2xuD2ndYeC0yLGAhH1Tg90a9laysg6Zi8suAlUaUyHlOnm9H
7n5lKMnstwVBzL9RVGeToRtBFwYTZbBFuvg34s9PFjhTCR7gWX8RFWn83kWl3ncs
jSFPtPqoE2X8xjjqFq9H3MVZ1XYWWqlvIyCOFRPtPLyL0GtxGkQoFnIFWKVALjba
nlzcHkGgYnD2o8EwABDCTLC5vLRjf5TRNQF9wA0EGdRSsdm4mUN1q7piblB/fvJR
eM1v+loO6fnRyO7g2UhqxYg0cI3HXr9LYW/HOHbmW1mA6as0JIMAKJrw7cWTIbRz
22FMcs0mIV1rFQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 13:44:23 2026 by rpki-client