Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.mft
File: yQDvPdXdG-FdCLuTy91jtKyGDms.mft (raw, json)
Hash identifier: HUwzaIYXkYWlOmzSwTNdoWEGUT7umYL/9E2z/8h+I0c=
Subject key identifier: A1:74:26:B7:97:66:7E:C6:8E:73:66:A7:C2:0C:66:72:C9:C4:C8:07
Authority key identifier: C9:00:EF:3D:D5:DD:1B:E1:5D:08:BB:93:CB:DD:63:B4:AC:86:0E:6B
Certificate issuer: /CN=c900ef3dd5dd1be15d08bb93cbdd63b4ac860e6b
Certificate serial: 019D2772D7D1E9B9BE98F58D677AD143627D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yQDvPdXdG-FdCLuTy91jtKyGDms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.mft
Manifest number: 12F7
Signing time: Thu 26 Mar 2026 00:02:10 +0000
Manifest this update: Thu 26 Mar 2026 00:02:10 +0000
Manifest next update: Fri 27 Mar 2026 00:02:10 +0000
Files and hashes: 1: 49DXB44yIji8t0Vtkb2JOEt-9YU.roa (hash: Q0egqvB13KLmhzjLlUFrH7e6woM10xcOj+hIzVjBTDA=)
2: yQDvPdXdG-FdCLuTy91jtKyGDms.crl (hash: 6J33sq6Z1Nl/n6JJ4HfQvDKGibUZsJlLlCiHpL9bd0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.mft
rsync://rpki.ripe.net/repository/DEFAULT/yQDvPdXdG-FdCLuTy91jtKyGDms.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:d7:d1:e9:b9:be:98:f5:8d:67:7a:d1:43:62:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c900ef3dd5dd1be15d08bb93cbdd63b4ac860e6b
Validity
Not Before: Mar 26 00:02:10 2026 GMT
Not After : Mar 27 00:02:10 2026 GMT
Subject: CN=a17426b797667ec68e7366a7c20c6672c9c4c807
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:d1:f0:7a:b7:2f:09:00:2f:cb:1e:3f:2a:6e:
9e:10:fc:f0:1a:5b:8d:dd:48:4a:62:d5:83:72:55:
f4:76:15:a9:9d:8b:3b:09:5e:42:74:01:46:bb:21:
07:31:98:18:a3:e8:08:39:c2:d0:0c:f7:a1:cc:7e:
b1:95:57:6d:81:41:71:b0:26:85:1a:61:2e:32:a6:
df:a0:71:10:6f:69:fb:e6:b5:b8:b6:c4:a1:c1:14:
82:7d:5c:41:69:79:76:ca:26:b8:2d:04:29:02:86:
3a:57:bb:d5:ea:c1:39:e6:ff:2c:87:47:57:cc:f2:
65:91:1a:86:79:54:d3:41:e1:a9:77:0d:7e:fc:3c:
bd:eb:c6:e5:e1:25:b8:55:99:57:48:95:59:54:52:
2e:95:7a:d9:58:c8:6e:f5:ee:4e:ca:de:5c:3d:dc:
98:1d:6b:f0:31:26:8c:73:95:93:08:bb:b4:97:2b:
4c:5b:75:a4:71:dd:30:5b:f0:4c:58:7e:22:bd:bd:
ff:6f:76:0b:52:18:66:55:74:77:30:71:7f:d8:b6:
f1:f1:bb:e7:87:2b:9a:0c:1d:7e:d3:cb:4a:a3:e9:
26:eb:b5:19:b9:1f:74:f4:a9:3d:89:de:c5:d3:4b:
b7:25:b6:23:cb:e4:1f:e7:6a:a8:1f:0a:f6:2a:0b:
fd:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:74:26:B7:97:66:7E:C6:8E:73:66:A7:C2:0C:66:72:C9:C4:C8:07
X509v3 Authority Key Identifier:
keyid:C9:00:EF:3D:D5:DD:1B:E1:5D:08:BB:93:CB:DD:63:B4:AC:86:0E:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yQDvPdXdG-FdCLuTy91jtKyGDms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:75:1e:b5:36:3c:5f:54:e7:43:a3:f0:85:fd:46:e0:d4:5e:
a3:b3:a1:75:f1:61:88:58:ed:2a:02:0e:34:3e:cc:1a:53:ba:
53:0b:da:f4:a1:7c:43:63:7d:c9:fd:23:6a:d8:d1:e2:fa:89:
53:bd:b7:ff:e4:4d:f3:5c:36:4a:c7:72:ad:20:45:cf:e2:d5:
60:0b:2a:a6:ad:93:9e:71:97:24:e8:75:5b:49:f7:46:ff:ba:
71:f3:80:3e:c9:2f:d3:62:37:39:23:a4:44:2e:8b:95:96:77:
3f:2e:ee:0b:ba:98:8e:5f:58:f8:1d:6b:1e:bf:a3:cc:3e:ff:
e8:3b:5c:1b:cd:96:5d:ed:98:90:f4:e9:4a:71:6d:3f:e0:7b:
7c:d6:a5:84:b6:bc:c9:4a:2c:03:fd:72:d1:06:c5:f8:40:c5:
52:3f:9d:b7:dd:01:7c:02:65:7f:d6:f0:17:4f:0d:b7:69:35:
cf:7d:35:0a:4d:20:a5:af:6c:73:cf:db:3b:e6:b7:7e:ba:c1:
d9:13:ee:89:38:c3:b0:1f:37:5a:fe:e1:e0:bd:fa:59:93:b4:
93:dd:f3:4e:af:81:4c:e8:eb:03:a3:70:be:da:de:ad:5c:9e:
29:8b:0d:38:84:29:c4:81:44:14:7e:e4:bd:fc:30:aa:0b:f7:
92:40:e4:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:54:52 2026 by rpki-client