Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/f3e494-ea53-413c-ae14-a1f859517c1b/1/y1bGreHiphfnx3VXuV8GlU2TkLo.mft
File: y1bGreHiphfnx3VXuV8GlU2TkLo.mft (raw, json)
Hash identifier: xAvz3JKKckBSO4kKsTvdF8436jxggwk/TdoklzXSK+g=
Subject key identifier: E8:09:2F:91:30:4D:4F:98:AE:78:9D:91:E1:02:1A:8B:53:D6:81:C1
Authority key identifier: CB:56:C6:AD:E1:E2:A6:17:E7:C7:75:57:B9:5F:06:95:4D:93:90:BA
Certificate issuer: /CN=cb56c6ade1e2a617e7c77557b95f06954d9390ba
Certificate serial: 019D2B4EE06640510A8330A7FFDAB9151E77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y1bGreHiphfnx3VXuV8GlU2TkLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/f3e494-ea53-413c-ae14-a1f859517c1b/1/y1bGreHiphfnx3VXuV8GlU2TkLo.mft
Manifest number: 95
Signing time: Thu 26 Mar 2026 18:01:22 +0000
Manifest this update: Thu 26 Mar 2026 18:01:22 +0000
Manifest next update: Fri 27 Mar 2026 18:01:22 +0000
Files and hashes: 1: 3P0VzD1dKCF2UiQ8qkWCmQrm2Gw.roa (hash: gjopDXHjONuosWi6hy78AAJGtkv7Tbfx273i024Q360=)
2: y1bGreHiphfnx3VXuV8GlU2TkLo.crl (hash: LDQI1fbMLRT1ejiHWKVkfjHA+XcoH4j/eyhYbruh0x8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/f3e494-ea53-413c-ae14-a1f859517c1b/1/y1bGreHiphfnx3VXuV8GlU2TkLo.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/f3e494-ea53-413c-ae14-a1f859517c1b/1/y1bGreHiphfnx3VXuV8GlU2TkLo.mft
rsync://rpki.ripe.net/repository/DEFAULT/y1bGreHiphfnx3VXuV8GlU2TkLo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:4e:e0:66:40:51:0a:83:30:a7:ff:da:b9:15:1e:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb56c6ade1e2a617e7c77557b95f06954d9390ba
Validity
Not Before: Mar 26 18:01:22 2026 GMT
Not After : Mar 27 18:01:22 2026 GMT
Subject: CN=e8092f91304d4f98ae789d91e1021a8b53d681c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:06:a7:6b:fb:e9:86:67:10:93:d1:c1:d6:b2:
83:3a:60:59:ef:ba:02:e1:16:8a:4c:a0:82:13:8e:
1a:d7:75:3d:44:ff:91:de:0f:46:55:f5:1a:75:d8:
ef:06:4d:8d:11:3e:93:f1:a9:fb:a3:9b:ec:95:98:
ae:3a:e9:5a:89:c0:5b:aa:d1:67:95:99:d7:54:10:
6c:6d:9d:30:fa:db:88:0e:a0:41:c0:a1:fa:c6:ce:
bd:f0:39:3f:d0:fa:8d:b2:ec:d2:a7:58:d2:26:d1:
6e:85:ac:90:2e:67:13:b0:87:2f:dc:ca:c1:70:59:
bc:23:32:a1:54:d8:11:89:46:8f:bf:f7:11:85:7c:
eb:9c:45:1e:cc:8d:d7:93:78:f2:b7:fd:c9:2c:f7:
a0:2f:ac:c8:f2:63:88:f1:97:a6:fe:1c:a4:e2:5c:
f8:9e:97:e5:b9:ff:34:a6:c8:ec:fd:58:ef:87:48:
52:51:ea:40:73:30:11:13:69:82:b1:61:9a:1d:3f:
dc:9e:1d:23:f5:b9:25:b6:3e:5b:3f:cc:c4:78:d9:
e5:cf:a1:c3:2e:54:b3:57:84:52:ee:0c:37:84:f7:
97:3d:a4:36:19:87:5c:8b:6a:9f:49:c0:df:bd:62:
7e:59:e8:5a:48:a4:5f:90:ca:75:5e:4a:f9:1b:06:
82:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:09:2F:91:30:4D:4F:98:AE:78:9D:91:E1:02:1A:8B:53:D6:81:C1
X509v3 Authority Key Identifier:
keyid:CB:56:C6:AD:E1:E2:A6:17:E7:C7:75:57:B9:5F:06:95:4D:93:90:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y1bGreHiphfnx3VXuV8GlU2TkLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f3e494-ea53-413c-ae14-a1f859517c1b/1/y1bGreHiphfnx3VXuV8GlU2TkLo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f3e494-ea53-413c-ae14-a1f859517c1b/1/y1bGreHiphfnx3VXuV8GlU2TkLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:11:4d:0a:31:75:92:c7:ec:8b:74:24:35:1e:d0:ff:ee:dc:
dd:a6:52:1a:7e:ec:9f:b0:a0:3c:69:1d:67:3c:fe:36:9e:9f:
7b:2a:3f:9d:56:b8:c6:ac:de:d2:eb:5b:ff:62:83:72:60:d6:
18:4c:e7:5f:4c:f4:25:0f:89:6f:f5:17:82:81:ca:fd:da:51:
dc:48:df:3f:ea:48:45:c8:0f:0a:81:13:f9:cc:ad:a8:8c:34:
66:c6:5c:66:51:3a:b3:ba:91:8f:45:a2:06:11:0a:ed:4c:d7:
1a:81:77:64:53:db:ce:7d:e3:a9:50:d0:40:94:6d:06:a4:6d:
a0:2d:49:14:cf:cd:59:59:b5:16:7d:c0:bd:59:c5:1e:16:ad:
04:b4:15:49:16:ce:7e:2a:2e:bc:75:e8:a1:4b:eb:e3:69:26:
bd:69:61:a6:1e:87:ae:4e:d8:bc:47:a3:4f:7a:71:ce:a0:dd:
1d:44:a3:e2:65:75:52:26:22:22:69:76:82:47:64:f1:2d:9b:
3e:a9:c6:8f:70:38:af:c9:1b:8c:90:28:30:9f:72:26:d6:4f:
ec:01:1d:7f:71:3e:4e:37:64:03:03:51:cc:e8:53:9b:53:0e:
43:70:67:5a:25:a4:7d:fe:65:cd:5b:a6:bf:4c:6f:e9:6e:e9:
1a:f9:64:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 20:07:00 2026 by rpki-client