Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.mft
File: yR1-RJz-wxIKmFEWPHeaYCaYYXI.mft (raw, json)
Hash identifier: HSNozGC1IY4mFbuCgGRcAM2eRTdLjIGSqpzKc+6dLV8=
Subject key identifier: 3B:C3:40:81:4D:12:ED:62:89:CC:5D:FD:13:A5:C4:10:65:9D:22:08
Authority key identifier: C9:1D:7E:44:9C:FE:C3:12:0A:98:51:16:3C:77:9A:60:26:98:61:72
Certificate issuer: /CN=c91d7e449cfec3120a9851163c779a6026986172
Certificate serial: 019D28BB3BE46F7E7DD5CCD66412EA42E4AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yR1-RJz-wxIKmFEWPHeaYCaYYXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.mft
Manifest number: 05BE
Signing time: Thu 26 Mar 2026 06:00:52 +0000
Manifest this update: Thu 26 Mar 2026 06:00:52 +0000
Manifest next update: Fri 27 Mar 2026 06:00:52 +0000
Files and hashes: 1: f0ZfMdVeao4owuizr0ASA2Z5qek.roa (hash: Vu0vptFiDdpzGvBS9Sa9FzNYtks3M2qfeAe2doEPj6k=)
2: yR1-RJz-wxIKmFEWPHeaYCaYYXI.crl (hash: FNmxM7o4sEGitUQ7ZzNG3RWTjW7BjyPo1ji3wtm5BrE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/yR1-RJz-wxIKmFEWPHeaYCaYYXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 06:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:3b:e4:6f:7e:7d:d5:cc:d6:64:12:ea:42:e4:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c91d7e449cfec3120a9851163c779a6026986172
Validity
Not Before: Mar 26 06:00:52 2026 GMT
Not After : Mar 27 06:00:52 2026 GMT
Subject: CN=3bc340814d12ed6289cc5dfd13a5c410659d2208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4e:5d:fb:02:cf:e2:4a:30:6f:74:6e:b7:75:
6d:3a:8a:84:12:f0:ea:7f:e4:cd:e2:33:29:2b:92:
de:57:55:1e:71:09:92:94:f0:2b:61:85:89:18:9a:
41:d8:f0:26:51:7a:8a:7e:71:5f:f7:08:01:f2:0e:
81:ce:91:6c:cb:b3:5d:a2:a9:dd:05:bb:93:70:f4:
4e:9b:e1:9c:5e:00:88:c8:42:0b:00:b1:ef:21:a5:
4c:7e:cf:0a:0e:f1:9a:65:29:7e:b0:d7:af:a3:a4:
4a:b9:11:ba:66:31:40:02:3d:e3:40:eb:54:f5:7c:
23:04:60:e4:f3:89:01:43:06:ee:d1:8e:37:71:2d:
8b:e8:6e:a3:b3:fb:f5:16:01:07:c1:35:04:a7:b0:
70:55:bf:5c:4b:fe:b5:1b:f5:1c:8d:32:0f:1b:c8:
81:37:0d:b3:12:a0:4e:94:37:c8:90:b3:77:90:f8:
18:d0:37:90:a9:26:35:ee:86:8e:2a:84:2d:bb:d2:
22:62:21:11:6e:f5:ed:fb:52:51:d5:e1:2d:f7:8d:
40:2c:8f:27:94:33:be:1f:57:1d:a1:16:f6:af:b5:
f4:dc:3a:61:45:9c:c0:61:0b:92:5f:68:1a:0d:6f:
94:a7:34:38:f1:77:6f:d2:42:60:dd:1a:06:bb:86:
aa:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:C3:40:81:4D:12:ED:62:89:CC:5D:FD:13:A5:C4:10:65:9D:22:08
X509v3 Authority Key Identifier:
keyid:C9:1D:7E:44:9C:FE:C3:12:0A:98:51:16:3C:77:9A:60:26:98:61:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yR1-RJz-wxIKmFEWPHeaYCaYYXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1de954-97e8-4c13-834b-cda6bb406974/1/yR1-RJz-wxIKmFEWPHeaYCaYYXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:c4:27:44:04:2d:12:14:1b:5a:6c:20:e3:15:14:f3:8c:2b:
d7:0b:77:f3:97:9f:84:d1:59:80:ba:fa:28:3d:db:8a:b9:12:
68:2d:73:cc:7d:14:48:53:f6:c8:d4:ae:d3:03:c4:69:fa:8c:
d1:cb:a1:22:fc:21:25:9f:e0:43:97:07:ff:71:85:e6:19:8d:
6d:85:cf:70:6e:dc:79:95:e8:52:cd:db:c9:93:31:d3:19:a5:
ce:40:8b:29:ca:7b:11:5d:5a:ff:56:fe:3b:65:a1:cb:9d:26:
c3:53:e5:a5:92:25:27:aa:a5:a6:63:e7:80:f0:ac:21:c6:0b:
8e:d2:1b:00:5a:57:12:27:af:f2:bb:60:90:86:b3:5b:56:4d:
13:ec:64:0e:74:c5:6d:a0:41:6c:62:c6:82:d9:0d:2f:30:23:
d0:46:37:30:9f:4b:53:0a:d8:0b:3c:87:20:ae:80:a9:24:58:
5a:50:0a:b3:81:84:80:50:78:cb:a9:d2:da:5d:05:8b:3b:52:
af:d3:a4:91:3d:eb:0b:7f:12:51:ff:22:7b:e6:74:89:f9:39:
1b:0e:4b:96:51:c7:66:f0:7d:d6:1f:8d:5e:2c:27:68:97:ae:
d2:a2:dd:a0:e8:30:eb:27:32:e4:0c:92:3f:bb:c8:51:ec:a3:
8c:dc:ed:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:35:19 2026 by rpki-client