Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
File: yda1mpPjJAg_vKQjfkfp9evzcas.mft (raw, json)
Hash identifier: kIcB7ftA4WPHQOi7WMya73wfMHxMRhiVhT6/ihCM2Es=
Subject key identifier: 6E:91:6D:AA:6C:34:26:76:69:6A:EB:84:F6:2F:A7:5F:43:F3:5C:F1
Authority key identifier: C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
Certificate issuer: /CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Certificate serial: 019D273AE8DAB115714B1E3F24AE3E5DC85E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
Manifest number: 18AD
Signing time: Wed 25 Mar 2026 23:01:05 +0000
Manifest this update: Wed 25 Mar 2026 23:01:05 +0000
Manifest next update: Thu 26 Mar 2026 23:01:05 +0000
Files and hashes: 1: FBCGTG64vLpl2gDVPvanQJATgB8.roa (hash: axM4/0Pr+RIyWyZE+LhS3ebRSN92aTrPRUXzdJeL/U0=)
2: Gqg2-sCdeAnxIxjnCqOjFkh4pyY.roa (hash: fXnPA1IUb+WwCmX8j2rz10mUAQFbNKLaEL207SLATEk=)
3: Xh_fZpcuD-kXAKnMm-XCgP1QCcM.roa (hash: E/KI5295u2flUvuXh7zmO0XDhUT77Ekqi6kGos1unAA=)
4: cdMwDxOwsmOgnXKtKxgQS9EwG5s.roa (hash: 9KAJy5B5/gYF9JmztZmHa3vCIGRv+J2QDYi/xV8zpFc=)
5: w9cLMtPbCYYrwoKERp06IPmC2bE.roa (hash: ey9n1gs4fwmE4LkooDwQ9cZLvMTfaqnyxO7TGDUAj68=)
6: wywpQzax_4ZtKoz9uAZxDjtcPmw.roa (hash: Q0w8drpmsGxodbGwxBVJJ2K2KkXwUZiHuoYb5PWlT/8=)
7: yda1mpPjJAg_vKQjfkfp9evzcas.crl (hash: tGaI1Ll5nZ/W2j+h3LuR9QuOkOiihIyBUtuSs887WnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:e8:da:b1:15:71:4b:1e:3f:24:ae:3e:5d:c8:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Validity
Not Before: Mar 25 23:01:05 2026 GMT
Not After : Mar 26 23:01:05 2026 GMT
Subject: CN=6e916daa6c342676696aeb84f62fa75f43f35cf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2e:e7:33:7a:0f:5c:ea:08:09:ae:97:f7:6f:
58:d7:7b:b6:3c:15:53:89:52:ec:16:7c:13:c8:28:
fa:dc:d3:99:df:26:39:fd:e3:c0:e1:f7:fa:ad:f4:
59:24:45:64:18:f0:bc:35:f7:a3:5d:75:1b:88:a3:
b0:8e:3a:9e:4c:fc:88:05:ad:76:86:90:0c:93:64:
ab:98:18:4c:b4:5a:37:8d:c2:34:fb:70:be:9e:68:
98:64:87:11:4f:65:ec:c4:81:f5:15:e4:bb:0b:03:
ac:ca:66:88:ee:a1:75:1a:f9:cd:a6:3b:78:7f:24:
23:ea:48:f9:c8:78:8a:f9:50:b9:3b:0a:7d:32:2a:
0e:35:66:87:42:c0:96:a0:fe:a7:7b:93:21:0c:c9:
76:c8:35:58:e9:84:96:4f:03:3c:f1:0c:66:f8:19:
68:6a:12:d6:02:0a:f2:65:de:e2:39:9f:27:5e:48:
a2:c5:13:ae:e3:c8:fc:df:c2:c4:9b:b6:6b:07:94:
51:bf:9f:5a:74:22:65:79:ee:40:b2:67:a2:6c:a3:
92:4e:9a:5c:29:60:a4:6b:61:d9:64:d8:fe:93:cd:
cf:88:07:76:e7:86:6c:0a:31:75:a3:2e:4a:0b:b5:
53:59:a0:d4:bc:5f:f5:9a:1a:09:c4:af:75:b9:1f:
47:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:91:6D:AA:6C:34:26:76:69:6A:EB:84:F6:2F:A7:5F:43:F3:5C:F1
X509v3 Authority Key Identifier:
keyid:C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:c2:5f:7c:81:75:5d:5f:90:66:1c:67:25:48:b8:9a:3c:b0:
ff:bf:33:ec:f8:f0:f4:11:e8:90:9a:86:1c:05:16:25:c7:80:
32:77:9e:4d:58:c3:47:8f:e3:d7:24:2b:9c:c9:6f:cc:60:91:
6e:55:1d:3f:25:02:53:29:76:8a:c6:42:66:81:45:b5:16:37:
f2:59:7b:18:70:9e:d4:52:f2:7a:58:37:64:84:4c:1b:d0:8a:
d5:12:69:0e:fe:5f:2c:69:95:bf:22:0a:cf:75:78:8a:ae:fc:
3d:42:8f:aa:30:0b:17:84:ee:56:e4:a1:84:7b:21:c0:52:0f:
97:c0:4b:d3:3b:26:bf:97:fa:80:04:c6:6a:ca:53:ed:13:f9:
4f:ab:cd:01:9d:14:7b:1e:2e:27:1d:16:73:1b:13:67:be:a4:
d6:46:1c:e4:f8:52:ff:29:4d:33:ed:9d:cc:d1:77:e6:ec:0a:
27:d1:8f:74:f2:cc:b8:10:44:37:e0:d2:8f:1d:b0:50:ce:37:
4e:5f:06:17:a4:97:ee:8e:f0:e9:67:8f:01:96:0c:34:89:44:
b9:7e:11:c4:65:90:63:86:8d:b5:12:3b:16:42:46:63:55:20:
08:44:32:c3:4c:8a:83:47:5e:86:52:cb:7a:9c:62:06:4e:9f:
2e:03:07:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:27:19 2026 by rpki-client