Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.mft
File: YwYjArQ4WSN2xCZPSdxeZz7bLPs.mft (raw, json)
Hash identifier: GsrcT67RZuUhOHuSZHVoEVCSXUCK2CttSVpcMswYUoY=
Subject key identifier: A7:21:16:6E:23:B1:EC:F2:99:B5:46:D2:DF:FD:B1:FC:48:22:AC:45
Authority key identifier: 63:06:23:02:B4:38:59:23:76:C4:26:4F:49:DC:5E:67:3E:DB:2C:FB
Certificate issuer: /CN=63062302b438592376c4264f49dc5e673edb2cfb
Certificate serial: 019D254C6AFE6E43C37281F5B035195CC82C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YwYjArQ4WSN2xCZPSdxeZz7bLPs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.mft
Manifest number: 0C70
Signing time: Wed 25 Mar 2026 14:00:58 +0000
Manifest this update: Wed 25 Mar 2026 14:00:58 +0000
Manifest next update: Thu 26 Mar 2026 14:00:58 +0000
Files and hashes: 1: MIQkIHdhTszjAc1iDyqPsWr05vI.asa (hash: q47vAO9a9jNCz72lMsICdLEfl+TVo350DLcpbspUzro=)
2: YwYjArQ4WSN2xCZPSdxeZz7bLPs.crl (hash: FWQTSDN/iUKwFyAdcN95DcqXERDGFl0R+ABmIQBqOVI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YwYjArQ4WSN2xCZPSdxeZz7bLPs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 14:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:4c:6a:fe:6e:43:c3:72:81:f5:b0:35:19:5c:c8:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63062302b438592376c4264f49dc5e673edb2cfb
Validity
Not Before: Mar 25 14:00:58 2026 GMT
Not After : Mar 26 14:00:58 2026 GMT
Subject: CN=a721166e23b1ecf299b546d2dffdb1fc4822ac45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f9:15:8e:81:c7:32:31:92:58:25:8c:e8:22:
f2:89:2a:bf:d3:72:7e:98:cb:91:39:1a:3c:72:f6:
bd:94:32:7e:0a:eb:fd:79:ea:50:61:c1:35:34:52:
b7:2a:a0:5b:e1:08:a7:33:13:cb:f9:6c:b6:32:f5:
56:bf:47:30:0a:ce:f4:ab:6b:48:ba:bb:3d:f7:7d:
97:d0:40:32:15:11:58:eb:9d:9f:c9:5f:65:52:89:
f3:ef:09:ec:ee:62:50:c8:17:e4:71:f8:52:52:b9:
69:5d:26:1a:62:c7:58:c0:7a:3c:bd:b6:81:5c:39:
65:da:20:eb:19:44:11:00:52:11:0a:a1:53:f2:bd:
15:a6:10:4d:09:bc:34:b7:c5:b1:56:b0:34:e4:b5:
2e:b0:f9:86:c3:c2:b9:7a:ea:c4:56:93:14:a0:42:
83:0f:2d:fe:ab:28:42:72:5e:7e:6c:88:7a:c2:df:
25:ce:5e:c4:22:1d:5c:e6:6f:da:7a:6f:47:7e:40:
96:b1:50:da:b8:52:d6:b5:2e:ef:0b:b6:7a:3e:49:
96:bb:90:0c:14:39:98:3b:7f:5b:25:a6:cc:cb:33:
1d:e3:95:5f:5c:5f:25:5d:54:47:6c:86:da:fe:13:
86:a6:94:a3:41:38:84:45:a1:82:c3:54:b9:6c:0e:
2f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:21:16:6E:23:B1:EC:F2:99:B5:46:D2:DF:FD:B1:FC:48:22:AC:45
X509v3 Authority Key Identifier:
keyid:63:06:23:02:B4:38:59:23:76:C4:26:4F:49:DC:5E:67:3E:DB:2C:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YwYjArQ4WSN2xCZPSdxeZz7bLPs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:97:84:67:3e:08:f1:00:bb:6c:b1:c4:7c:ad:71:3c:46:44:
1a:72:3e:2c:9e:69:ae:53:e1:cd:c6:ac:95:8d:9a:2a:61:3b:
54:a6:df:77:c2:70:06:dc:21:46:b0:7f:8d:f3:36:34:3e:2d:
0c:f9:53:a4:65:63:b5:8d:f4:8a:d9:55:fc:c2:23:ed:a3:19:
5c:c2:4d:ff:a4:da:0a:ca:28:e8:7a:c8:b6:fe:81:d2:4d:52:
34:7a:aa:ce:16:16:d8:c5:d4:8b:6e:56:1d:e7:43:ef:bd:b2:
39:d5:08:ee:ae:ac:54:67:2f:7e:ce:6b:b6:63:fd:9f:02:06:
bc:42:aa:92:3f:f2:f6:2e:64:dc:10:d5:a5:29:75:de:f8:64:
cd:90:a6:73:85:05:0e:39:fe:6f:5b:48:f2:9a:a3:cb:65:9f:
e5:a2:b1:97:7c:c2:3b:23:ee:1c:c5:59:ef:75:ba:91:79:76:
be:69:ed:3f:b7:01:51:68:d5:d3:09:97:69:57:83:fd:74:21:
2d:dc:87:d0:d7:39:83:53:e9:30:b5:07:28:ab:8a:2d:50:5a:
44:a2:8a:3b:71:ef:d8:f4:32:c9:d6:53:be:a2:9f:5a:e5:12:
b0:d9:f8:22:21:5a:14:6b:0e:5a:9f:d4:e5:b6:0e:a2:df:12:
9b:84:8c:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 23:14:13 2026 by rpki-client