Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
File: 0YZHAF-osG5H7i77_e3Jegx3Vfg.mft (raw, json)
Hash identifier: /3ACdkzc827l0hWTl1kxw5H+d0ITsG+OHKweXvxCeXg=
Subject key identifier: E1:31:E0:94:65:49:24:DA:BB:94:E7:75:D5:42:2A:78:66:24:D5:83
Authority key identifier: D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8
Certificate issuer: /CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8
Certificate serial: 019D25BAAF166AA4D8A0E99826DF3778BCB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
Manifest number: 1886
Signing time: Wed 25 Mar 2026 16:01:24 +0000
Manifest this update: Wed 25 Mar 2026 16:01:24 +0000
Manifest next update: Thu 26 Mar 2026 16:01:24 +0000
Files and hashes: 1: 0YZHAF-osG5H7i77_e3Jegx3Vfg.crl (hash: 6i2O5dfmPovvKDo/JuvDN9rOOJGHLN6P7kOSfdhR2C4=)
2: GmHD_yxmhmb7r8gjp6el8HpBXOw.roa (hash: fVaQ2rKEBssbb0vmO7FX3uJ1zApwIkrOyFVIx+Y+u/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:af:16:6a:a4:d8:a0:e9:98:26:df:37:78:bc:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8
Validity
Not Before: Mar 25 16:01:24 2026 GMT
Not After : Mar 26 16:01:24 2026 GMT
Subject: CN=e131e094654924dabb94e775d5422a786624d583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:65:d0:c2:26:77:cb:64:11:78:7a:a6:28:b7:
ae:64:e2:b4:80:51:fe:6b:69:79:df:bf:70:1b:9c:
8f:d3:db:87:ce:f2:41:87:4a:5c:f5:91:04:99:4d:
73:ae:47:e8:ca:11:f9:4f:16:b9:a3:88:f9:70:fa:
43:63:a6:f6:2e:ea:39:cb:57:60:43:f6:b2:bd:b1:
f0:8c:ff:a5:76:7f:dc:81:d7:73:bc:ff:90:ab:32:
75:0a:0c:50:e9:c5:4e:b3:c1:5e:6e:e7:41:bc:c5:
bc:6b:6b:cd:32:24:50:4f:af:f7:ac:dd:fa:a2:fe:
e0:b0:8c:31:77:60:66:58:0c:61:f0:0f:83:44:9e:
45:7f:dd:73:be:c6:fe:21:ef:94:17:cf:74:b1:f3:
9d:44:7e:73:d6:42:ff:81:ac:a8:15:78:42:6e:ba:
9b:bb:0d:30:20:74:74:54:dc:c0:43:ab:e1:e7:fb:
8e:24:a4:6b:11:6c:51:94:0a:d7:b2:a4:6d:a4:60:
ae:51:87:e2:e3:9c:e5:1e:75:e0:7f:70:a8:cb:78:
cc:9a:6c:fe:29:2f:c9:10:1d:4a:58:1a:f2:1a:41:
9e:5a:b4:3d:90:ee:b5:1f:31:c3:22:9f:f3:9f:fb:
4b:36:d9:b5:ff:9f:52:d0:2d:c3:3e:4d:d4:ad:fd:
ac:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:31:E0:94:65:49:24:DA:BB:94:E7:75:D5:42:2A:78:66:24:D5:83
X509v3 Authority Key Identifier:
keyid:D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:99:a2:54:4e:06:d3:b2:5e:27:96:42:ac:e1:fa:1d:61:b5:
7d:e5:b1:09:be:1a:2a:5a:60:b4:9d:f7:a7:aa:93:7c:00:da:
8f:a6:b6:d2:ce:4b:f8:b1:e6:a4:c7:98:ac:b4:b6:97:97:8a:
59:bd:11:96:8b:6c:d5:62:2e:58:ad:94:69:62:09:17:4f:8b:
6d:2d:1b:fc:b9:35:91:6d:b4:48:55:d9:be:31:27:01:25:a9:
11:11:8c:61:5d:ab:3c:8d:53:47:f0:d8:c3:ee:91:e9:da:12:
8b:32:a9:86:a4:e5:c7:b3:51:47:40:17:3b:38:39:3e:f4:f8:
ab:e6:40:3f:b0:3d:d2:ce:53:cc:03:8d:24:f0:25:32:88:e2:
68:f1:0f:32:c3:8d:83:b1:d9:c0:ab:1d:9f:90:d3:cf:86:46:
e5:85:03:63:08:37:e8:d5:80:25:14:5c:7b:c4:e0:7d:df:d3:
5e:6d:40:4c:ab:df:8a:01:c2:f0:e4:99:f0:a8:33:dc:46:3a:
79:f9:b5:3d:5a:53:61:4f:32:88:3b:46:13:8a:de:c2:30:74:
84:ac:f0:2a:67:28:d4:b9:f3:3d:6f:d6:5e:e7:4e:93:3b:7c:
88:22:30:c6:b7:ad:e1:59:0d:c3:a3:9b:e1:73:21:8b:83:78:
4b:53:14:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0luq8WaqTYoOmYJt83eLy0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxODY0NzAwNWZhOGIwNmU0N2VlMmVmYmZkZWRjOTdhMGM3
NzU1ZjgwHhcNMjYwMzI1MTYwMTI0WhcNMjYwMzI2MTYwMTI0WjAzMTEwLwYDVQQD
EyhlMTMxZTA5NDY1NDkyNGRhYmI5NGU3NzVkNTQyMmE3ODY2MjRkNTgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj2XQwiZ3y2QReHqmKLeuZOK0gFH+
a2l5379wG5yP09uHzvJBh0pc9ZEEmU1zrkfoyhH5Txa5o4j5cPpDY6b2Luo5y1dg
Q/ayvbHwjP+ldn/cgddzvP+QqzJ1CgxQ6cVOs8FebudBvMW8a2vNMiRQT6/3rN36
ov7gsIwxd2BmWAxh8A+DRJ5Ff91zvsb+Ie+UF890sfOdRH5z1kL/gayoFXhCbrqb
uw0wIHR0VNzAQ6vh5/uOJKRrEWxRlArXsqRtpGCuUYfi45zlHnXgf3Coy3jMmmz+
KS/JEB1KWBryGkGeWrQ9kO61HzHDIp/zn/tLNtm1/59S0C3DPk3Urf2sAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOEx4JRlSSTau5TnddVCKnhmJNWDMB8GA1UdIwQY
MBaAFNGGRwBfqLBuR+4u+/3tyXoMd1X4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMFlaSEFGLW9zRzVIN2k3N19lM0plZ3gzVmZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83ZmE3OTEtYjNjOS00OGFlLTgwMzQt
YzIxMDQ2NzNjMjBiLzEvMFlaSEFGLW9zRzVIN2k3N19lM0plZ3gzVmZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi83ZmE3OTEtYjNjOS00OGFlLTgwMzQtYzIxMDQ2NzNjMjBi
LzEvMFlaSEFGLW9zRzVIN2k3N19lM0plZ3gzVmZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcpmiVE4G
07JeJ5ZCrOH6HWG1feWxCb4aKlpgtJ33p6qTfADaj6a20s5L+LHmpMeYrLS2l5eK
Wb0Rlots1WIuWK2UaWIJF0+LbS0b/Lk1kW20SFXZvjEnASWpERGMYV2rPI1TR/DY
w+6R6doSizKphqTlx7NRR0AXOzg5PvT4q+ZAP7A90s5TzAONJPAlMojiaPEPMsON
g7HZwKsdn5DTz4ZG5YUDYwg36NWAJRRce8Tgfd/TXm1ATKvfigHC8OSZ8Kgz3EY6
efm1PVpTYU8yiDtGE4rewjB0hKzwKmco1LnzPW/WXudOkzt8iCIwxret4VkNw6Ob
4XMhi4N4S1MUjg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 00:37:27 2026 by rpki-client