Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
File: yaOl5BHeryKE_9AVML-0H4Fsu6M.mft (raw, json)
Hash identifier: +pXNpuQOioKkBsd8DAqaohRfQRYxZVG8+8bDWQ7lieE=
Subject key identifier: 70:8B:15:DA:3D:23:2B:88:2F:68:D0:48:FF:E0:58:68:93:0B:F9:C0
Authority key identifier: C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3
Certificate issuer: /CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3
Certificate serial: 019D273B1CD1DAF8AD4981404607AFE50E71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
Manifest number: 0661
Signing time: Wed 25 Mar 2026 23:01:18 +0000
Manifest this update: Wed 25 Mar 2026 23:01:18 +0000
Manifest next update: Thu 26 Mar 2026 23:01:18 +0000
Files and hashes: 1: 05sJvKsPpEQygCgsV_MGQHN9_TM.roa (hash: nFTOD6KUcpEnrht3gN5bskiFEmc9rtUM9QNFKCOE0Vc=)
2: 1-xtDrU7wKNsIkkfW8E-ZbC6rELU.roa (hash: rgHDDCujsocFhMaTOl2AntkEyFdfyoyY4MLtmaNj0qw=)
3: s5h_FbOSJtTwNWZ7nw-DoslTY04.roa (hash: 3rYcvADDI43HpDRf99rDIKGF7HoSWoEsrigLvsY6+nw=)
4: yaOl5BHeryKE_9AVML-0H4Fsu6M.crl (hash: u5p7guBLriD8XcPynhXPhTQV2zuOo7elDCUMV1hE6Ow=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:1c:d1:da:f8:ad:49:81:40:46:07:af:e5:0e:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3
Validity
Not Before: Mar 25 23:01:18 2026 GMT
Not After : Mar 26 23:01:18 2026 GMT
Subject: CN=708b15da3d232b882f68d048ffe05868930bf9c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:15:36:7b:e0:c6:e7:6c:01:2b:1b:48:90:e3:
90:7c:1e:c2:62:e2:d2:7e:03:19:a4:e2:03:90:ec:
13:b5:b1:75:bb:e2:a6:0a:52:e1:7c:66:45:65:5e:
3b:dd:3e:98:b4:58:60:cd:3d:da:97:3d:41:1a:da:
f5:75:0e:68:1c:22:2a:85:d8:e6:a5:f0:5f:4a:96:
57:2b:fd:46:27:71:61:cb:7b:0a:0e:af:c3:f1:66:
e3:ad:21:f2:c3:50:e9:32:74:d7:24:8a:02:91:80:
06:50:f7:b1:cf:5e:6f:2e:04:eb:58:dd:7a:17:be:
ad:39:53:cd:a7:a4:bc:91:64:57:c2:26:f9:24:9a:
ff:46:87:64:b0:de:44:8c:4f:25:75:1e:b1:02:0c:
bd:bd:16:73:14:7b:22:70:88:d5:1d:b0:1e:b4:2c:
47:83:da:b8:7c:6e:4e:63:24:a8:ad:40:b4:66:c3:
82:48:f6:30:70:e2:ea:4a:e4:11:88:b4:81:80:45:
08:4c:a1:74:48:1c:f7:2d:f1:6f:33:9c:73:f6:29:
5a:9c:ea:45:30:96:20:85:07:cf:3d:c7:6f:01:22:
ae:f8:1e:2d:f4:4d:f1:b0:78:fd:43:4b:9a:8c:19:
13:fd:aa:fe:17:11:d2:24:08:94:81:d4:10:c4:c6:
e9:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:8B:15:DA:3D:23:2B:88:2F:68:D0:48:FF:E0:58:68:93:0B:F9:C0
X509v3 Authority Key Identifier:
keyid:C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:5d:46:c4:4c:2e:81:7d:56:54:51:ab:66:c2:ef:4d:36:97:
d1:47:32:fe:54:f4:f6:c9:0f:96:0d:1b:76:58:93:26:81:62:
88:46:f8:c4:a2:c1:2b:92:d0:82:1b:f1:ab:b8:44:3e:8e:6e:
fb:62:50:e3:de:03:61:66:b1:5f:ea:83:0d:b3:36:54:b6:9b:
9e:24:92:77:b4:e0:c2:4b:6c:74:d2:aa:31:9f:0d:7c:d8:79:
ec:b9:e4:89:76:c8:f9:4f:93:ef:96:af:c5:08:dc:67:ef:60:
56:a2:19:6b:ef:63:87:10:83:6a:e8:ca:e5:17:cc:60:0c:51:
bc:5f:98:c3:9b:7d:5b:e1:1b:0a:60:a2:bd:53:23:55:44:ac:
e7:3f:71:5d:00:5f:c1:b3:f9:3c:12:7a:8a:8a:d2:f9:e6:fa:
cf:b4:41:36:f1:3c:b2:2e:51:d3:25:2c:5a:32:9b:45:b2:05:
6b:a9:a8:82:e7:0b:a0:10:f5:c7:30:a0:08:23:31:55:a1:41:
c3:9b:8b:ab:54:5e:99:38:7b:66:71:a7:a7:cd:1b:69:33:6c:
3b:e0:02:db:a1:2e:8a:ad:d1:d4:21:02:97:79:83:24:ac:a1:
04:85:b3:0c:6b:1b:99:7d:8b:44:c0:ba:bf:30:b9:29:7b:74:
ce:02:41:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:06:18 2026 by rpki-client