Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
File: y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft (raw, json)
Hash identifier: Ih0C9IgdBgL3h595Ulle8WeTO21PC4HPi9TXDFxN4pA=
Subject key identifier: B7:A5:4E:38:A8:37:91:52:C5:D7:78:1F:A9:0B:6B:05:87:E1:13:E2
Authority key identifier: CB:B5:25:E2:63:A9:5B:16:52:06:4B:DF:F8:96:4D:4B:F6:2B:53:3D
Certificate issuer: /CN=cbb525e263a95b1652064bdff8964d4bf62b533d
Certificate serial: 019D26CCF7599EA0ECA8E96DEFB154A4E18D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
Manifest number: 053A
Signing time: Wed 25 Mar 2026 21:00:59 +0000
Manifest this update: Wed 25 Mar 2026 21:00:59 +0000
Manifest next update: Thu 26 Mar 2026 21:00:59 +0000
Files and hashes: 1: mQ0ACAyJhS24Ge7JfejryYjhrr4.roa (hash: vb4PW+qjvJj8W9hO5gMvw1SrDAuFxyDok45TJihaRuk=)
2: y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl (hash: KaquDnSVHXxmICh5X/560NeJCf6S0FBXjJUlAjF5MEI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:f7:59:9e:a0:ec:a8:e9:6d:ef:b1:54:a4:e1:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbb525e263a95b1652064bdff8964d4bf62b533d
Validity
Not Before: Mar 25 21:00:59 2026 GMT
Not After : Mar 26 21:00:59 2026 GMT
Subject: CN=b7a54e38a8379152c5d7781fa90b6b0587e113e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a5:b2:75:df:82:e1:5d:55:23:bc:d0:9a:3b:
ed:9b:d9:1c:87:c7:ca:91:b4:7d:fa:05:7c:5f:97:
2d:be:b5:93:ad:c9:36:d3:09:48:da:0f:16:28:0a:
01:a4:f5:07:87:d6:00:8c:e4:52:15:4d:e1:dc:6b:
ac:8f:7e:8c:71:12:b7:96:84:18:ca:c1:66:bd:35:
7a:74:b0:6c:70:2c:7b:00:a5:89:b6:9f:9a:2a:be:
cd:2d:12:75:68:41:4b:cc:88:89:50:9c:d2:8a:22:
17:ed:11:ea:36:0e:1c:75:0c:0e:14:6c:f2:e4:01:
68:ba:d0:1e:de:2e:92:5a:31:24:aa:f4:f9:da:d0:
63:bb:b8:b7:b7:6f:3c:ad:4e:86:b4:ad:3c:c8:41:
5e:2f:f7:48:c3:60:1d:26:d8:1e:b2:b2:eb:48:2d:
69:d0:f5:54:c3:d7:51:0f:d7:71:94:ff:d7:2f:4a:
29:c9:b6:7f:67:b8:b7:12:94:d2:6f:36:b3:74:d6:
a4:4b:25:00:e2:52:a5:ee:95:5a:69:da:cd:25:4c:
ab:a0:2b:3c:6d:6f:02:5e:19:67:37:7a:fb:93:aa:
f7:6c:fa:7f:b4:3c:1c:e8:34:67:74:e1:21:f6:4c:
44:12:77:53:d6:cd:84:e0:b1:f4:5c:f5:12:c6:21:
bd:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A5:4E:38:A8:37:91:52:C5:D7:78:1F:A9:0B:6B:05:87:E1:13:E2
X509v3 Authority Key Identifier:
keyid:CB:B5:25:E2:63:A9:5B:16:52:06:4B:DF:F8:96:4D:4B:F6:2B:53:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:e4:75:60:65:58:d3:36:66:90:42:79:4e:a6:f1:03:66:95:
61:50:a3:16:61:14:73:0d:76:54:0c:6c:28:54:55:a2:1d:bd:
0e:a3:dd:44:33:44:d1:9f:08:10:de:c0:b8:7f:77:c4:99:7f:
46:43:7a:67:9a:98:09:29:2a:31:98:15:96:b7:d6:2b:95:dd:
18:ef:05:29:31:62:62:72:64:cc:9d:9a:e3:0b:a2:1e:b2:3b:
ee:6f:5c:c4:74:a1:df:dc:f3:5e:b8:b4:ff:84:08:39:dd:99:
e3:31:66:e5:5c:81:67:97:11:41:4b:bd:77:a1:ff:4a:d2:26:
db:31:ef:8a:0f:fc:99:43:17:57:e2:17:96:7a:0e:4b:51:30:
6f:f3:f4:aa:9c:84:7c:41:84:11:00:63:18:70:6c:58:96:bc:
57:26:3c:77:82:59:e3:2c:6e:fc:01:1e:bb:50:9b:c4:a8:3f:
44:a6:15:b1:08:38:91:4b:68:0f:00:e9:96:74:29:1a:45:20:
7c:e3:f5:5e:b0:68:36:e9:88:ea:0d:bb:7c:7e:42:bc:c8:7f:
91:66:af:d0:d2:74:01:c6:35:be:ea:e5:4b:a5:87:bf:08:ef:
ea:ea:ef:24:5a:8c:6e:2d:51:5c:08:78:d1:3c:32:c8:cf:60:
35:e0:55:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:01:20 2026 by rpki-client