Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
File: 1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft (raw, json)
Hash identifier: +wTkPgW1A9ZHsoStNVQfyLegVQ/xAXyQQkoq18rZniM=
Subject key identifier: B2:29:E2:D5:53:4B:42:45:E4:3F:BD:A3:85:99:7E:E4:14:71:58:7B
Authority key identifier: F9:86:69:D3:1A:14:DB:DC:50:77:15:9C:F0:A6:53:53:BF:BF:A2:0A
Certificate issuer: /CN=f98669d31a14dbdc5077159cf0a65353bfbfa20a
Certificate serial: 019D2AA974698B235AD37025CA799B9D967E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
Manifest number: 04EF
Signing time: Thu 26 Mar 2026 15:00:41 +0000
Manifest this update: Thu 26 Mar 2026 15:00:41 +0000
Manifest next update: Fri 27 Mar 2026 15:00:41 +0000
Files and hashes: 1: 1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl (hash: DumHTmQPf/Jch2HcGMSBCt2W9o4VkIRJEP2ZHrHtIF8=)
2: 67fn5GTCeyuZQBLDAbthDHukFBc.roa (hash: mGoog7qE1SUu5tq0Qw3ikg4XEdKFRtMMptWXJMMEWPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:a9:74:69:8b:23:5a:d3:70:25:ca:79:9b:9d:96:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f98669d31a14dbdc5077159cf0a65353bfbfa20a
Validity
Not Before: Mar 26 15:00:41 2026 GMT
Not After : Mar 27 15:00:41 2026 GMT
Subject: CN=b229e2d5534b4245e43fbda385997ee41471587b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:10:ca:fa:1c:6e:24:e4:00:b5:dd:6f:9d:89:
a6:d5:57:99:97:b4:fa:b3:5e:98:b2:c6:7c:b0:83:
14:43:f5:77:d2:19:84:54:0b:2d:67:f5:f0:f3:6a:
26:27:f0:56:f8:e9:97:62:43:f1:79:d2:ac:48:a3:
85:84:82:69:74:fa:2c:6f:fc:1f:88:62:cf:d6:33:
fd:b4:6f:17:ea:44:38:75:0d:27:37:c4:40:ad:f8:
3f:d6:56:72:7d:b8:04:b0:b6:a1:26:0d:bb:94:9a:
ac:8c:fe:e5:48:67:9b:2d:93:9c:05:86:09:86:66:
1b:8a:ab:7a:00:b3:94:ee:8b:e2:19:71:01:4a:e5:
ef:a5:99:5d:b7:b0:69:4d:b8:c4:4a:78:8f:de:b1:
9c:61:c9:09:61:83:c1:d7:4e:6f:f3:59:8a:4e:7c:
ee:e1:04:67:c2:8a:e8:9a:3a:31:df:3f:72:f1:dd:
90:1a:a7:b6:27:12:a8:f6:c1:1b:8d:5a:b4:4a:b9:
93:52:fa:5f:ab:24:5d:32:31:d2:ac:ff:86:e0:14:
96:c9:5c:56:b4:ae:49:f6:72:8f:72:92:eb:85:78:
b6:e2:71:4b:d7:ea:3f:81:5c:a1:a1:28:75:f8:fb:
e5:01:a1:0b:91:08:dd:a0:32:86:41:5e:48:c9:36:
0a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:29:E2:D5:53:4B:42:45:E4:3F:BD:A3:85:99:7E:E4:14:71:58:7B
X509v3 Authority Key Identifier:
keyid:F9:86:69:D3:1A:14:DB:DC:50:77:15:9C:F0:A6:53:53:BF:BF:A2:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:9d:86:a6:52:44:12:85:17:d2:d7:b1:fc:26:c6:16:a3:30:
11:a5:d8:af:57:e8:a1:fa:7e:06:b7:1c:01:9c:df:99:ff:8a:
a3:66:41:83:54:63:2c:ec:7a:7c:5f:7a:e7:3e:81:1c:7f:4a:
37:dd:8e:7e:c9:ee:c8:30:2d:d3:d3:ee:6c:aa:57:3c:1b:0c:
23:60:47:aa:03:b9:e0:e4:60:d8:fd:a5:8d:b2:17:57:ed:2b:
91:ea:d4:e2:63:02:03:09:7e:db:0d:51:47:f6:5b:f9:12:ca:
c8:27:c1:45:fe:15:2f:63:68:78:40:24:be:79:af:31:6d:40:
53:ef:97:e5:62:b4:32:ef:af:d1:af:38:35:9e:ae:36:f2:60:
76:c0:4a:df:a3:4f:5f:71:1e:ec:14:10:db:f1:8c:c1:6a:7a:
5c:08:db:48:03:6d:d0:32:55:69:5f:24:89:c4:d5:c5:0b:39:
49:d7:8f:51:b6:8a:0d:e0:6c:9f:9b:7e:69:98:40:6b:a3:f5:
fa:09:c5:6b:44:7f:18:a0:0c:f7:4e:89:a9:35:f5:96:ca:80:
ec:80:fa:61:6a:5d:2b:ba:80:b2:dc:3e:d4:ff:0a:e5:fd:ce:
b7:c4:45:62:06:fe:5d:d3:43:74:70:4e:3d:80:65:8e:82:b0:
10:59:c3:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:27:22 2026 by rpki-client