Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.mft
File: YdnzrFCGTRj_Jokzx04qia7GEJ0.mft (raw, json)
Hash identifier: ai8dexn9vas8kmeumkZ3kF9tIEgE7MR6ZdtjpMf0/DE=
Subject key identifier: DA:D3:06:5D:72:54:7E:9E:09:20:4A:56:89:5E:C1:DE:4E:CD:E8:B4
Authority key identifier: 61:D9:F3:AC:50:86:4D:18:FF:26:89:33:C7:4E:2A:89:AE:C6:10:9D
Certificate issuer: /CN=61d9f3ac50864d18ff268933c74e2a89aec6109d
Certificate serial: 019D2AA948F5C6DD804AB40FBB62F63B2F49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YdnzrFCGTRj_Jokzx04qia7GEJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.mft
Manifest number: 05C3
Signing time: Thu 26 Mar 2026 15:00:30 +0000
Manifest this update: Thu 26 Mar 2026 15:00:30 +0000
Manifest next update: Fri 27 Mar 2026 15:00:30 +0000
Files and hashes: 1: 0i_alcfMXBsM8Yz7Pmg1_JjXkOU.roa (hash: MMsMTbsCqDU1LtCGJGBX/vBCIrKWQpXi11BOEfnfMFE=)
2: YdnzrFCGTRj_Jokzx04qia7GEJ0.crl (hash: sR5fhtoYuhrw1FKBMK+iK+DGXl2uwSOhHQ+xi5DoUCI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/YdnzrFCGTRj_Jokzx04qia7GEJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:a9:48:f5:c6:dd:80:4a:b4:0f:bb:62:f6:3b:2f:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61d9f3ac50864d18ff268933c74e2a89aec6109d
Validity
Not Before: Mar 26 15:00:30 2026 GMT
Not After : Mar 27 15:00:30 2026 GMT
Subject: CN=dad3065d72547e9e09204a56895ec1de4ecde8b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:24:b8:82:6e:8a:d8:7e:c3:bf:1b:d4:2a:03:
78:2c:ce:59:3e:cd:97:f2:36:4e:c7:83:72:22:09:
08:30:a6:ae:a6:7f:b9:4d:33:e6:21:1f:3a:72:49:
ef:78:17:b3:bd:52:ac:b4:66:b4:35:be:e4:9a:55:
32:fe:f4:2b:3c:8e:92:1b:20:be:53:1c:9f:bd:ff:
e1:fd:31:fc:a3:9e:5f:0c:f2:d4:3b:45:3b:41:98:
e3:45:e3:51:e5:68:d2:bf:e6:d0:ad:19:6d:d7:fe:
f0:a7:39:5d:2c:0a:fb:54:ee:18:28:29:61:c0:57:
4b:2c:6f:e0:02:fe:96:3e:77:92:4f:1e:56:7f:39:
74:3d:4d:ef:b4:aa:65:48:1e:05:9d:2b:80:a2:24:
3a:33:3f:37:59:31:20:73:4f:56:4f:b5:80:14:22:
16:a1:57:47:0f:9a:73:67:50:c0:d1:d4:6e:74:7f:
fd:e0:04:bb:5e:05:e0:88:1f:f8:68:96:dd:10:c8:
1e:73:f2:08:77:52:b9:56:96:d1:e4:b7:2a:5f:e8:
2d:b6:6e:98:ea:00:30:40:dc:03:e6:73:a7:0d:65:
94:ae:46:2b:51:45:16:e7:9b:14:54:f9:2c:0a:9e:
1b:97:4c:65:e2:05:ce:ce:1a:17:2d:3d:70:0a:90:
ad:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:D3:06:5D:72:54:7E:9E:09:20:4A:56:89:5E:C1:DE:4E:CD:E8:B4
X509v3 Authority Key Identifier:
keyid:61:D9:F3:AC:50:86:4D:18:FF:26:89:33:C7:4E:2A:89:AE:C6:10:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YdnzrFCGTRj_Jokzx04qia7GEJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:91:b7:5f:d8:26:10:21:9b:f5:af:a6:e4:27:f1:52:48:1a:
20:3f:07:fd:90:66:9b:7d:cf:04:8b:8e:c7:ca:13:6a:2e:61:
6b:21:05:00:cd:06:37:42:e5:21:46:e3:9a:9d:08:f5:c2:fe:
07:e3:81:87:6c:92:3b:ff:1f:4b:76:ab:bb:21:d2:47:8a:65:
64:52:df:72:a2:89:e4:6b:c1:be:f5:eb:32:9b:5c:88:6b:33:
5a:3e:b1:6b:aa:7a:1e:d7:fe:b2:8e:58:39:b2:5d:98:b0:ed:
e7:c0:e3:ce:64:4d:16:97:82:41:fc:9d:6f:46:0f:b0:39:2f:
67:8b:b4:a1:9f:27:01:2c:e2:9e:68:21:3d:dd:66:57:d2:f5:
67:21:01:5b:10:59:80:be:0b:18:97:5f:10:9d:c9:47:28:a3:
63:1b:c1:f7:84:de:f3:3b:49:42:48:d8:ad:27:f1:44:9e:ea:
52:6b:5f:45:da:5e:45:0a:52:22:02:28:39:40:c9:b9:25:a1:
f4:73:c8:c2:fb:3b:1a:77:5c:72:84:31:6f:2e:d2:0b:47:58:
a3:76:b0:cd:f3:7f:64:bd:99:ff:b1:6b:ff:7f:e7:98:bc:9e:
2f:45:f8:17:f2:1f:10:dd:10:be:94:2c:03:11:0a:81:83:2e:
5e:05:18:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:30:20 2026 by rpki-client