Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
File: y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft (raw, json)
Hash identifier: /2ZOR5UebFSlxaibObRvrECDzuPSvCeifd7KpvLaVHw=
Subject key identifier: 85:40:05:DA:58:39:83:D0:49:E0:89:9B:EA:BA:BE:1E:F6:5A:0E:16
Authority key identifier: CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
Certificate issuer: /CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Certificate serial: 019D29292A37835C6968DDDBF2E93C766AB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
Manifest number: 1426
Signing time: Thu 26 Mar 2026 08:00:56 +0000
Manifest this update: Thu 26 Mar 2026 08:00:56 +0000
Manifest next update: Fri 27 Mar 2026 08:00:56 +0000
Files and hashes: 1: g8srjClL_WgGHUbPNnBUFgTpuTk.roa (hash: gDJAvf7gVoC2n87omYhiXK7E56pj3nGGaW/bXZGo4II=)
2: y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl (hash: fAgLs9JYQj1oUrZ2JcIx0xvkZRMIoQZZxXo4FqAH57Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:2a:37:83:5c:69:68:dd:db:f2:e9:3c:76:6a:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Validity
Not Before: Mar 26 08:00:56 2026 GMT
Not After : Mar 27 08:00:56 2026 GMT
Subject: CN=854005da583983d049e0899beababe1ef65a0e16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a3:a8:33:d8:bd:7d:cd:11:f0:d6:24:f7:fb:
fd:e5:da:82:7b:2e:96:f3:92:c8:0f:2c:da:d0:9f:
2c:86:ad:a6:90:30:54:38:61:d5:6a:92:39:5b:44:
8a:36:02:a4:cf:f0:c4:7e:98:94:28:69:13:50:bd:
ed:65:c6:36:5e:0a:88:3f:93:61:96:65:31:89:02:
da:c5:c2:49:b9:46:8d:42:e0:8a:9b:78:43:19:1c:
64:d6:bc:7c:c4:92:7f:e1:77:db:74:48:cd:a9:3e:
96:36:c9:b1:43:0c:e9:e8:5a:56:22:c9:e0:e6:42:
58:a3:b7:97:48:fe:d6:d9:9a:14:e4:ec:67:53:fa:
e7:f1:a0:fc:1f:d1:b4:0f:3a:1f:85:70:8b:fd:31:
db:e4:f0:81:2c:26:ce:c7:4b:8a:32:0b:56:9b:3d:
5a:01:c3:42:db:00:d9:11:d3:55:aa:f6:51:84:c4:
a6:2a:35:a4:e8:64:16:83:c6:1d:07:f6:ed:ee:34:
00:3c:5a:37:13:e0:64:83:8f:25:3e:2b:e5:f3:f8:
88:36:c5:44:9f:44:a7:2f:e8:cd:41:3b:ea:7a:b9:
96:a3:a6:a7:2e:34:f0:99:46:7c:16:4b:2d:da:5c:
d4:1a:e1:33:3b:3e:80:0b:e3:a9:7e:d7:c2:70:cb:
ff:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:40:05:DA:58:39:83:D0:49:E0:89:9B:EA:BA:BE:1E:F6:5A:0E:16
X509v3 Authority Key Identifier:
keyid:CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:6d:6c:ba:d4:69:7e:31:db:8a:1d:01:6d:d2:76:39:75:a8:
3a:e4:8b:a6:a3:96:c0:9b:1f:7d:54:2d:6d:c0:50:c0:a5:a0:
d5:9d:63:d3:5f:a4:ae:70:40:99:db:e3:26:be:11:42:e1:82:
98:10:61:6e:2b:10:57:b6:41:4e:ed:a1:c0:f6:99:b4:b8:59:
c6:12:4a:6a:59:58:2e:3d:34:60:ce:f2:0e:ee:67:f1:48:51:
d0:57:ff:3a:89:fe:55:70:02:0f:86:2e:1f:e3:fe:bf:31:de:
da:90:c9:f7:20:97:71:93:66:68:f4:d8:0d:4b:11:e1:2b:b6:
41:88:3d:dd:ae:f7:cd:88:fd:34:b5:3c:15:8e:e7:90:65:64:
ae:4f:98:6c:3d:80:dc:28:ef:39:9f:9c:ba:31:4f:75:37:f9:
dd:07:93:02:1f:39:40:35:a7:3e:d8:c2:0a:bc:76:5f:6c:fc:
fb:26:8c:c3:15:95:54:68:a3:68:b6:cf:fb:00:f7:36:68:1f:
2d:e8:e8:40:5a:80:48:08:98:b3:d7:b3:89:12:69:be:92:39:
fb:50:6b:a7:29:b7:c9:31:1c:65:7e:1a:6b:a5:56:1d:02:73:
87:66:a0:d5:8c:80:e3:63:9b:10:77:38:b3:29:ea:c6:51:45:
55:4f:87:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:15:40 2026 by rpki-client