Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
File: y2bnZjRVc9cVnWeU7a7bc5okH48.mft (raw, json)
Hash identifier: NnULqNoUHW5ekFyxIaT/JErIl/PAOLrDaRbj4Gmv06c=
Subject key identifier: A1:94:FD:1C:55:D7:47:0E:19:32:8E:E2:7A:CB:61:6C:61:87:38:CD
Authority key identifier: CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
Certificate issuer: /CN=cb66e766345573d7159d6794edaedb739a241f8f
Certificate serial: 019D29290F96FB4A6A0D40520906635DC694
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
Manifest number: 08D6
Signing time: Thu 26 Mar 2026 08:00:49 +0000
Manifest this update: Thu 26 Mar 2026 08:00:49 +0000
Manifest next update: Fri 27 Mar 2026 08:00:49 +0000
Files and hashes: 1: y2bnZjRVc9cVnWeU7a7bc5okH48.crl (hash: SqH4F/Z+H7bVziQEQMaVSUSWQszbQWURC96YyfhCNRA=)
2: zyxH_ZayU87vTJX81fgX-DVJmTk.roa (hash: v7IX/ua2uQXhjGalwVPCerFWeIG3hQEbj9ssotgdfjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:0f:96:fb:4a:6a:0d:40:52:09:06:63:5d:c6:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb66e766345573d7159d6794edaedb739a241f8f
Validity
Not Before: Mar 26 08:00:49 2026 GMT
Not After : Mar 27 08:00:49 2026 GMT
Subject: CN=a194fd1c55d7470e19328ee27acb616c618738cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:49:07:8b:53:94:a6:7c:95:fb:57:89:10:47:
0e:cc:56:65:d2:cb:6d:96:99:ba:41:b9:dd:4d:1a:
a5:73:0e:7a:12:26:be:f9:ba:15:df:29:cd:72:9c:
e8:4b:ae:a0:c6:a4:ae:09:c2:c9:b0:b0:76:00:7d:
13:62:3c:30:e3:ea:c5:14:5c:f1:42:e1:1a:2a:eb:
26:90:6b:e5:8a:ca:d9:16:6d:34:84:f4:a3:37:d2:
d1:b9:fa:67:c3:25:e7:43:e7:01:6e:1d:97:37:92:
cb:53:65:29:37:aa:d2:40:f5:80:fc:46:19:04:a1:
e2:c1:7f:35:0a:75:a4:d2:61:0c:23:b7:80:3d:a5:
b8:f8:1e:03:83:a7:f3:e6:73:1e:42:2b:f1:cb:73:
fc:3f:a6:13:d8:de:e7:d8:9e:f8:b8:6d:3e:43:0f:
33:9f:55:6b:1e:89:9d:f3:52:bb:de:8d:f5:61:54:
f1:75:68:67:09:4f:aa:cc:77:dd:79:67:9f:85:b9:
da:07:bb:b8:9a:57:f7:12:6e:8d:4a:17:f1:1e:db:
2f:dc:73:46:4d:15:72:1b:1d:83:f4:55:ed:7f:ab:
0c:9d:f0:93:86:71:05:45:03:ca:be:d1:23:5b:c4:
a1:5f:b4:41:d7:59:e6:c0:3d:7e:58:e2:12:ce:62:
3c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:94:FD:1C:55:D7:47:0E:19:32:8E:E2:7A:CB:61:6C:61:87:38:CD
X509v3 Authority Key Identifier:
keyid:CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:66:51:6e:11:ec:4b:46:01:31:0d:b4:16:71:ee:3f:47:28:
4b:bd:04:54:a0:51:77:dc:e1:dc:0f:bb:e3:1b:bd:f5:2d:8f:
82:dc:00:4b:48:19:9f:57:02:07:92:80:b9:98:78:12:7a:13:
23:09:c6:c9:d7:ad:be:9a:c0:d2:c8:ca:94:8a:80:cc:ae:75:
3c:eb:d0:0d:2a:50:9b:aa:e2:d8:33:9d:6d:42:da:09:fb:ad:
ea:6d:01:c6:1f:a8:94:a4:2c:20:ce:8b:77:30:32:90:44:6e:
c7:e9:53:5b:04:3f:c7:f5:f5:09:e6:66:68:38:e2:07:4e:f1:
01:7b:45:5b:60:38:05:b2:4b:cc:51:79:5e:a4:7d:6e:22:57:
d6:e9:2f:39:2e:5c:81:3a:ef:9a:3a:1a:91:03:41:f8:16:74:
95:34:9b:aa:e4:7d:22:92:89:b5:d8:6c:c8:f3:63:34:51:ea:
19:18:20:77:e1:fe:b9:72:84:81:b0:4c:5e:83:1d:9d:d3:37:
d2:c2:8d:fa:38:a4:cc:67:a5:6a:d5:4e:43:70:21:b5:55:23:
78:32:5b:fd:b3:56:b6:c7:59:6f:b1:a9:f1:1b:b0:55:d4:6b:
80:b9:43:e4:a0:39:65:0a:e9:b7:fb:2b:ea:e3:09:c6:45:ce:
78:92:c9:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:53:52 2026 by rpki-client