Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
File: yF0BtEKUbhkkMT1WTzG35C4kVec.mft (raw, json)
Hash identifier: gZgLx+59J1qESP7kXcim1pn6KoS7dc+lTV4lgSOjlEg=
Subject key identifier: F7:4C:F7:41:2F:60:DA:29:DA:B2:DE:22:89:86:C4:E2:AB:A7:93:D0
Authority key identifier: C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
Certificate issuer: /CN=c85d01b442946e1924313d564f31b7e42e2455e7
Certificate serial: 019D2AE1209E9362340449241AF316073823
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
Manifest number: 0D0A
Signing time: Thu 26 Mar 2026 16:01:29 +0000
Manifest this update: Thu 26 Mar 2026 16:01:29 +0000
Manifest next update: Fri 27 Mar 2026 16:01:29 +0000
Files and hashes: 1: sKXRq8aEnFIgbr4b51dpoMmQO8Y.roa (hash: c2iR1V9JRLqe/KQCQ1Fbh3FmzQaok+nemeB5OzyBRRk=)
2: yF0BtEKUbhkkMT1WTzG35C4kVec.crl (hash: OmUR6LlhNc1hvSd3851xVFwj3gm8EeP9ElMMVYUlKiI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:e1:20:9e:93:62:34:04:49:24:1a:f3:16:07:38:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c85d01b442946e1924313d564f31b7e42e2455e7
Validity
Not Before: Mar 26 16:01:29 2026 GMT
Not After : Mar 27 16:01:29 2026 GMT
Subject: CN=f74cf7412f60da29dab2de228986c4e2aba793d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7a:a8:c3:ae:76:7d:2d:fb:a7:03:0a:fe:7c:
a9:f6:55:aa:25:cc:db:09:09:5a:ee:f7:a1:27:da:
b5:8f:2d:26:10:8d:3d:53:c2:22:a5:df:ee:1b:3d:
e0:c2:fa:17:3b:cb:d8:2e:86:0d:1c:7f:42:6e:e1:
d3:e6:9e:b5:ab:3b:a0:8f:22:a2:ec:b0:c9:90:0a:
8c:94:2c:26:90:a9:39:18:bb:07:cd:3a:d8:65:09:
22:71:2a:4c:83:4e:14:c4:ef:46:30:d4:79:a8:f5:
74:a6:54:b5:ac:89:cf:3b:29:b1:6a:94:b5:29:3f:
b1:98:4e:68:c9:65:ef:1d:1e:17:22:0e:91:91:1f:
52:cf:2a:df:ac:10:0b:67:2b:92:e6:70:6f:ef:29:
7a:00:ea:37:cd:e5:eb:33:ae:8b:39:ce:54:5a:dc:
44:d2:a2:27:6f:39:7f:ec:f9:3c:ae:25:06:25:d7:
51:8b:89:1b:ba:c0:01:9e:de:db:94:ce:84:54:5e:
59:00:62:ad:6c:d6:a0:89:af:17:47:a4:b6:d6:dd:
f9:78:16:a4:0d:42:9a:de:44:d0:0d:d9:c4:0d:3c:
50:79:dd:9a:88:14:c6:fc:e0:cc:39:dc:b8:31:5c:
43:02:7d:57:46:59:e2:1c:12:15:11:95:d8:23:43:
b6:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:4C:F7:41:2F:60:DA:29:DA:B2:DE:22:89:86:C4:E2:AB:A7:93:D0
X509v3 Authority Key Identifier:
keyid:C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:4e:a7:2f:b6:4e:82:d1:f3:c6:96:d8:0f:a8:2f:b0:0e:53:
64:49:18:25:72:29:db:9d:0d:28:7c:1d:89:e6:91:49:f4:08:
d3:ce:61:98:0b:18:6e:aa:7d:da:58:4a:df:37:69:56:1a:ad:
2d:cb:7d:53:93:49:24:7b:b8:e3:bb:c9:5f:0e:59:ce:ff:49:
84:93:ec:95:e1:45:69:96:ce:37:5d:ad:d0:f0:29:8b:19:10:
c1:40:5d:bf:91:49:a9:d7:a3:bc:b5:69:8c:81:3e:44:d9:62:
55:6b:f7:ab:63:e8:83:12:b4:58:16:ef:c3:8b:0f:37:55:f9:
26:2c:da:7b:17:37:20:1b:d6:47:89:3b:31:d7:d0:6a:05:cb:
33:42:9c:72:da:03:15:75:9f:0c:11:3e:9a:43:97:69:61:80:
4d:47:96:21:5b:d1:79:59:d1:3d:e2:0a:f6:ce:1d:14:70:2a:
a4:58:e8:9f:a1:69:94:b5:61:b2:69:46:85:9f:8a:ec:61:b8:
df:de:84:1f:5c:fd:93:af:a8:a5:e9:e1:a6:d2:b3:59:65:05:
10:4c:5c:16:e9:ae:22:71:22:9c:3c:b3:6a:60:e7:1f:6d:ca:
30:39:fb:72:c5:6e:76:b9:fa:a7:62:df:05:a3:c9:98:67:b0:
4c:af:65:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 21:13:25 2026 by rpki-client