Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
File: _YmzSchPx7NBKlLWX_Jg0swomrk.mft (raw, json)
Hash identifier: EOexwNH8Pg2MlcPaeacF+JO88ZNwgecUUmgwoU1/OQY=
Subject key identifier: B8:D0:5B:3A:01:88:F0:97:D5:FB:AD:D5:5D:C6:DC:44:A2:98:AF:95
Authority key identifier: FD:89:B3:49:C8:4F:C7:B3:41:2A:52:D6:5F:F2:60:D2:CC:28:9A:B9
Certificate issuer: /CN=fd89b349c84fc7b3412a52d65ff260d2cc289ab9
Certificate serial: 019D281643B3FDABDA594ADD8EACFA39614A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
Manifest number: 0F17
Signing time: Thu 26 Mar 2026 03:00:40 +0000
Manifest this update: Thu 26 Mar 2026 03:00:40 +0000
Manifest next update: Fri 27 Mar 2026 03:00:40 +0000
Files and hashes: 1: 7B9W0clLzsK4p1pr53bEH61EQBg.roa (hash: g9Qq+800T4dGI74x3Nt1LLvxWvY9mzvmzZ74GSFdjw0=)
2: _YmzSchPx7NBKlLWX_Jg0swomrk.crl (hash: dExUDzqOKCPNw8ctDDgielbFIh44HD3LUw0Qogm8v2Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 03:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:43:b3:fd:ab:da:59:4a:dd:8e:ac:fa:39:61:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd89b349c84fc7b3412a52d65ff260d2cc289ab9
Validity
Not Before: Mar 26 03:00:40 2026 GMT
Not After : Mar 27 03:00:40 2026 GMT
Subject: CN=b8d05b3a0188f097d5fbadd55dc6dc44a298af95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a7:89:53:fe:d1:da:1f:37:cb:ad:09:1f:37:
9d:f3:17:b2:55:de:e2:80:c8:8d:75:d9:70:c8:44:
92:33:a7:06:76:b4:9f:f8:25:82:91:25:43:6d:8c:
12:ad:7c:fd:b0:00:b8:e9:f7:6f:4e:ca:f1:ff:0f:
95:7d:62:fe:1e:94:15:23:a4:6f:9b:68:6d:1b:3a:
f4:6c:32:15:d1:83:85:15:e4:37:a8:a5:f4:04:1a:
98:3c:b7:5b:06:5f:51:99:8d:fe:f2:09:6e:ba:d6:
4e:da:f3:ea:d7:08:6a:09:13:0a:26:a3:82:65:15:
34:c7:47:27:f0:82:61:89:46:86:27:00:62:de:59:
26:45:ea:c0:85:e9:4b:47:65:91:51:22:59:16:28:
44:7a:98:6f:aa:16:d0:69:a5:6b:9b:a6:eb:8e:13:
6e:1a:13:37:f7:83:2c:11:16:d7:9a:6f:4d:e2:34:
db:d1:9f:3f:a6:09:79:41:d1:81:12:ff:f4:20:ad:
ca:bd:a7:08:79:ca:51:ab:32:f4:ed:66:1b:07:88:
39:3e:cc:39:77:e3:46:c6:82:12:ca:53:a7:54:3a:
1c:68:2d:ae:01:7b:7b:b9:35:4e:a4:2e:20:1e:79:
e5:b9:98:45:f6:73:6d:c5:e7:9f:00:e6:a7:14:79:
c2:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:D0:5B:3A:01:88:F0:97:D5:FB:AD:D5:5D:C6:DC:44:A2:98:AF:95
X509v3 Authority Key Identifier:
keyid:FD:89:B3:49:C8:4F:C7:B3:41:2A:52:D6:5F:F2:60:D2:CC:28:9A:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:4e:75:60:82:9c:c8:50:31:55:7c:5f:11:ac:5a:c3:da:a4:
12:11:8c:7b:77:75:24:dc:38:c6:64:01:ae:32:f5:db:7e:f7:
9a:c8:95:82:85:36:40:f7:4c:6d:d7:d3:3e:db:40:f2:3a:5f:
89:c2:b9:6a:68:66:18:1e:44:e6:5a:fb:4c:78:a7:68:80:13:
44:a3:1c:c1:ad:a5:c0:95:07:2d:d7:80:23:86:69:ea:cd:f8:
a3:13:04:7f:73:a6:d1:a3:97:1f:ba:c1:9a:e8:5d:9a:dc:d3:
e4:63:f4:fe:62:8b:7d:b6:71:03:35:42:df:c5:39:f3:81:cc:
d6:a4:e0:7c:78:ae:17:bf:49:7a:1e:e0:a0:d2:d3:6d:4e:83:
b7:4b:92:a4:7a:55:d6:92:23:0e:e9:a7:28:4c:93:82:1b:3d:
38:71:1d:1d:a1:99:a9:01:e2:b6:65:eb:6d:16:93:06:e6:60:
00:32:07:f6:ba:8c:d7:45:05:6f:6d:26:3a:e7:29:90:ae:d7:
fc:31:4b:64:23:70:5b:c8:76:b0:23:df:83:e3:15:14:dc:4a:
51:77:14:12:32:2f:e0:41:bb:b2:b7:35:be:76:84:b4:28:90:
85:a2:4c:a8:d0:36:d1:44:13:e2:db:b0:af:e5:45:f6:8a:8e:
a3:c5:af:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:52:15 2026 by rpki-client