Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
File: dy9wNcKJOyjNBP0amzys0kKMjf0.mft (raw, json)
Hash identifier: Tm26bKyilrhD6pS3q1vxLEQeh0Cb+Y9E3uwgucfmxLc=
Subject key identifier: 43:54:FD:BB:D5:C5:81:FE:02:47:91:3A:18:7F:78:90:AA:53:37:D5
Authority key identifier: 77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
Certificate issuer: /CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Certificate serial: 019D2771FDDBE13C716B2B59FACC9058FEF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
Manifest number: 05A3
Signing time: Thu 26 Mar 2026 00:01:14 +0000
Manifest this update: Thu 26 Mar 2026 00:01:14 +0000
Manifest next update: Fri 27 Mar 2026 00:01:14 +0000
Files and hashes: 1: 8Qo74UQPSqvugCWFfb9DBf7wKqE.roa (hash: M/pOvg/hdX2EdZ83UmfDv3mPILFnj+u5MLVly1CyGXs=)
2: NZYrDqHNM7w06ZqIbetRmQuvkI8.roa (hash: aqDX81Tnke9g7oa5zcmS5K2aP4v9bwtCbdPJWZIvsEE=)
3: dy9wNcKJOyjNBP0amzys0kKMjf0.crl (hash: YS2GVdrnecfc4/amBAmGGm3GT/kG6uPG+gfSZFyvxMU=)
4: j7E0VOUyJDRGY1mXB_LTgfCHtec.roa (hash: DmIJX6VYUzzGV5IX9wpqM+xTHY2Teuv8gdmzrljcdLA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:71:fd:db:e1:3c:71:6b:2b:59:fa:cc:90:58:fe:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Validity
Not Before: Mar 26 00:01:14 2026 GMT
Not After : Mar 27 00:01:14 2026 GMT
Subject: CN=4354fdbbd5c581fe0247913a187f7890aa5337d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e3:aa:e8:74:44:15:e9:0b:e8:dd:33:b4:3b:
f5:9b:cc:90:89:8a:68:ef:50:6e:3c:9a:e1:d7:d6:
3d:bd:ba:96:d5:1b:fd:7f:c5:4a:dc:9b:c4:f5:42:
c2:9b:33:db:ed:e9:b7:22:91:9a:4e:a0:53:f6:ba:
0a:61:bb:78:c1:e4:d0:dd:71:c1:0f:c6:9b:84:6b:
74:e5:31:ec:54:06:3c:be:a7:e1:b1:7b:04:34:de:
cc:c6:73:e6:29:70:db:fd:e6:35:18:88:82:41:3b:
8b:5a:f9:04:04:97:22:29:b6:af:ce:19:ef:4f:36:
a5:e1:03:23:6e:f7:ba:37:c5:1a:0f:8e:a0:b2:5c:
66:c9:78:bf:48:0b:4e:50:b6:2b:7e:35:f4:9c:e6:
47:7b:05:54:59:cd:cd:f5:11:69:12:a7:ef:11:17:
72:14:1e:d7:c9:f0:e1:d8:77:56:e5:e4:eb:99:3c:
73:83:e4:38:4e:61:1c:a9:42:36:bc:d3:28:b8:34:
99:d6:ce:54:63:8e:76:c1:82:2b:63:08:e4:dd:61:
47:36:13:2d:3b:9c:10:76:ce:a3:af:75:3d:b8:ad:
02:78:92:e8:e7:53:65:1b:c5:80:a4:f4:06:c1:3d:
22:48:d2:0c:77:16:a3:16:00:0d:17:bb:fe:19:95:
da:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:54:FD:BB:D5:C5:81:FE:02:47:91:3A:18:7F:78:90:AA:53:37:D5
X509v3 Authority Key Identifier:
keyid:77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:b2:34:9a:c7:dc:05:60:64:5e:6c:75:12:42:26:32:11:a7:
b2:f0:bc:af:63:b4:98:12:6a:cc:56:cc:a8:14:95:ae:70:2a:
ed:57:af:37:89:58:23:79:1e:6c:8c:58:ca:34:00:4f:51:b5:
df:06:62:6a:6e:c1:8b:3c:23:43:cc:50:4b:d5:8b:95:e6:be:
5b:28:d1:8c:05:22:70:03:f2:16:fa:2e:a1:27:cd:9f:d4:ee:
a8:f0:17:8e:a0:f7:8f:f3:88:b7:c8:bd:4d:73:70:b0:d9:82:
ba:0c:b6:36:c8:bc:28:81:1a:56:bc:2e:e9:3f:dc:e4:f6:a9:
d6:83:7a:74:e6:17:e6:85:15:e8:eb:10:d8:0c:ff:23:0a:4f:
9c:c4:c9:0a:11:03:a3:bc:2c:25:bc:e1:f1:fe:14:69:65:3c:
45:9c:74:04:4b:fa:c0:64:ae:c9:69:98:ee:45:f7:1f:28:bd:
3a:74:36:c2:f0:ad:da:02:cf:64:c9:1b:0f:f2:cd:09:b4:d4:
89:81:a0:5a:5a:80:e5:89:b1:70:6f:7c:30:9a:2b:1d:7b:66:
53:1e:12:b1:36:fc:da:58:94:87:ba:c7:f8:51:e1:1d:26:78:
dd:9c:be:9a:a3:f2:28:6d:73:eb:e0:a8:c5:1a:19:30:82:22:
9e:c8:e4:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:56:11 2026 by rpki-client