Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.mft
File: ypQrJwZ2HCunUyiXg-35heM48Xc.mft (raw, json)
Hash identifier: Hh23QBJ3BGKv6AP7NCTYoaeLXydrUj7Le6Xx2dOv7OE=
Subject key identifier: 8F:85:A5:55:97:3E:E0:C2:37:29:A0:91:80:57:B2:5C:E4:B4:DD:06
Authority key identifier: CA:94:2B:27:06:76:1C:2B:A7:53:28:97:83:ED:F9:85:E3:38:F1:77
Certificate issuer: /CN=ca942b2706761c2ba753289783edf985e338f177
Certificate serial: 019D27DFF7B7DEBF265FD85C4E7FF03795EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypQrJwZ2HCunUyiXg-35heM48Xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.mft
Manifest number: 0E14
Signing time: Thu 26 Mar 2026 02:01:22 +0000
Manifest this update: Thu 26 Mar 2026 02:01:22 +0000
Manifest next update: Fri 27 Mar 2026 02:01:22 +0000
Files and hashes: 1: nEZjRqy_IwSXLZe3qFcr_H8crVs.roa (hash: HnhhwXUkjtked8MCegHmBPoKwaPIPxEWmVxgxvO0rNE=)
2: ypQrJwZ2HCunUyiXg-35heM48Xc.crl (hash: 7NtvtgdVsVM/y6KHtaf09+tZh1/1cmFVXkPVuQXQmZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ypQrJwZ2HCunUyiXg-35heM48Xc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:f7:b7:de:bf:26:5f:d8:5c:4e:7f:f0:37:95:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca942b2706761c2ba753289783edf985e338f177
Validity
Not Before: Mar 26 02:01:22 2026 GMT
Not After : Mar 27 02:01:22 2026 GMT
Subject: CN=8f85a555973ee0c23729a0918057b25ce4b4dd06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:65:31:a7:8f:0e:a7:1a:5e:6a:2c:22:87:9a:
20:bc:cd:a9:61:c9:62:d1:dc:c1:38:d1:a9:91:d7:
cd:39:dc:4b:5c:a5:b6:f4:13:16:ed:7c:23:74:38:
88:52:7f:45:c5:a6:d0:ae:a9:71:60:4c:c8:1b:5f:
99:60:0c:2c:de:50:cd:e5:08:c6:a3:95:2c:8a:69:
14:ef:1f:91:54:bc:f0:e8:e5:4b:c1:81:bd:77:91:
7c:c5:85:8f:f5:d3:1f:2a:fb:71:70:18:ca:4e:04:
55:62:95:e2:0b:45:b4:7a:97:08:41:9a:72:71:c8:
7e:d3:66:0b:80:27:bf:3d:8e:5d:b5:28:4b:ae:84:
1d:1c:b5:b0:73:34:c9:b2:b9:74:ad:c1:3f:46:f2:
c4:61:18:c2:bf:15:c1:a7:02:f5:8c:83:f5:9e:09:
a4:65:78:2b:97:63:d9:3d:c8:6e:eb:57:28:c2:64:
14:5e:88:5e:b5:7b:39:7e:d3:05:1c:d1:b5:2b:71:
e6:1f:75:36:5e:58:61:98:fb:db:7f:13:c7:68:fc:
39:ef:b9:48:b7:f2:09:f0:45:0b:d3:e4:28:5c:d8:
31:8c:d9:7c:d4:2b:ba:c8:d9:34:69:a0:75:1e:80:
88:25:86:cc:2c:c9:d2:5c:71:12:40:53:47:3f:61:
c2:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:85:A5:55:97:3E:E0:C2:37:29:A0:91:80:57:B2:5C:E4:B4:DD:06
X509v3 Authority Key Identifier:
keyid:CA:94:2B:27:06:76:1C:2B:A7:53:28:97:83:ED:F9:85:E3:38:F1:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypQrJwZ2HCunUyiXg-35heM48Xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/b8c13d-e7d3-4aa9-a911-ed64805977f0/1/ypQrJwZ2HCunUyiXg-35heM48Xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:3a:c6:39:00:ca:43:03:26:ae:00:f8:b8:93:2b:46:c8:61:
35:5d:ea:56:1b:73:a2:b7:42:c5:b7:b0:d8:b3:54:2e:cf:60:
63:d5:1c:b1:7b:1c:87:2e:eb:d0:e8:77:e5:c5:aa:b9:0a:42:
6f:02:62:6c:e4:5a:dc:34:0f:d0:db:63:3c:d8:ca:bc:29:b9:
70:ec:f7:f0:e7:a7:f1:5b:5e:57:ca:52:12:19:74:75:f5:0a:
7e:f8:d9:f4:e2:0e:67:b1:ba:4d:28:d3:52:b6:a5:25:6e:09:
c0:11:d8:06:c5:a6:35:57:e9:16:77:62:9f:38:29:7d:39:84:
27:e5:76:84:e3:94:ee:8c:fd:15:3e:c9:a0:3a:46:d9:fa:b6:
e9:39:be:d6:9d:9f:19:a0:36:aa:55:14:61:8b:1a:e0:44:ac:
18:43:a4:92:a1:99:7b:61:b9:bd:44:c0:ad:38:b9:05:99:01:
3b:aa:bf:fe:6a:38:e5:55:72:09:5b:e1:db:39:c6:03:36:17:
fa:0c:3a:a9:4d:ca:f9:c9:b9:c8:7c:ef:78:10:2a:a8:6b:e2:
7d:1f:d9:58:91:2b:a3:72:0d:62:2d:78:1a:ee:a2:46:4f:e7:
b4:46:54:01:f0:bc:0b:a3:d5:48:04:81:94:94:8f:8e:e1:fc:
ba:89:b8:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:36:28 2026 by rpki-client