Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
File: yIYjh23RrY5iSiPdUossZMgKhSE.mft (raw, json)
Hash identifier: t4zmNxuYQeTFfyAxL0nNZWc93FfLMzjkbK3KkrDiFCk=
Subject key identifier: B8:A2:B7:43:38:4F:FC:83:BA:8F:3E:56:F6:39:08:59:66:23:2D:B2
Authority key identifier: C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
Certificate issuer: /CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Certificate serial: 019D25833E214EF9AE706DB056E3DB6E7C5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
Manifest number: 07A7
Signing time: Wed 25 Mar 2026 15:00:51 +0000
Manifest this update: Wed 25 Mar 2026 15:00:51 +0000
Manifest next update: Thu 26 Mar 2026 15:00:51 +0000
Files and hashes: 1: h1IcZRGY_rRXRhpZWTLbtpzh9tM.roa (hash: L8O1+G2QnBwVNFEY7LCl7zf6sGt3HNSfVfaE38wa8Uo=)
2: yIYjh23RrY5iSiPdUossZMgKhSE.crl (hash: gxVZAqOFBBM1O2J0FuUm7NVSQjeRabzmBiXRDOQ+Dps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:3e:21:4e:f9:ae:70:6d:b0:56:e3:db:6e:7c:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Validity
Not Before: Mar 25 15:00:51 2026 GMT
Not After : Mar 26 15:00:51 2026 GMT
Subject: CN=b8a2b743384ffc83ba8f3e56f639085966232db2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c2:7d:e3:bb:f3:c8:55:b5:f6:a0:b5:aa:bb:
be:af:82:44:fa:39:bf:fd:52:c7:c6:5b:c5:a7:b2:
cf:fe:a2:32:9d:81:b0:d2:fe:71:ac:96:d3:78:65:
ec:d9:06:25:66:8d:c1:89:07:9e:91:78:65:77:c2:
b5:b6:de:4a:7b:66:09:60:16:a6:c5:e0:51:3b:1d:
6a:34:82:fc:2a:a6:f8:5a:9c:6f:c2:57:53:80:31:
8c:da:b5:45:76:0f:bb:b5:70:54:43:1d:a6:81:56:
dd:03:14:b2:88:10:d4:d8:6e:fe:cf:0d:e6:16:68:
a2:17:93:d4:5d:58:3a:35:8a:64:b5:94:ae:ca:ec:
eb:35:f0:ae:5a:d2:5f:ac:a3:bd:60:7d:3d:9b:ce:
5b:f7:93:b8:05:63:79:7e:a8:6d:9a:2e:d7:d1:c7:
8d:02:0c:e5:55:77:ea:7a:ff:86:4c:2e:0b:e2:e9:
e3:f1:de:a9:d9:4f:36:95:d9:9a:a7:01:40:83:00:
28:6b:07:6d:8e:78:f6:c4:db:e0:50:a0:e6:78:72:
80:39:8f:29:89:ea:84:45:0a:3e:de:23:90:e9:7b:
f7:a4:df:b5:1d:90:d7:60:02:f1:19:2c:0b:5c:f7:
c6:75:65:d8:1c:27:33:e7:02:a0:16:c5:cb:2b:31:
50:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:A2:B7:43:38:4F:FC:83:BA:8F:3E:56:F6:39:08:59:66:23:2D:B2
X509v3 Authority Key Identifier:
keyid:C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:ff:11:54:18:cc:ac:6f:c0:c8:55:3b:d0:a1:5f:61:4b:72:
e7:e3:ad:ed:c5:50:5f:d5:89:a5:6a:80:ac:10:40:0e:f5:8a:
8c:28:c4:ce:b3:c0:55:ed:fe:f4:4b:87:7f:56:e3:5d:70:17:
31:38:bd:bd:79:79:4b:40:3f:a9:00:f3:41:06:66:5f:b1:26:
30:a7:54:15:98:53:8d:e7:cc:f7:c2:84:ec:1f:5c:88:5e:50:
61:1a:87:26:c4:32:4f:a6:e7:51:fb:30:c2:1f:c7:4a:77:7e:
35:a4:22:fb:e7:0b:86:39:ea:bf:5f:16:3d:34:92:e6:b4:62:
e3:af:36:7f:28:13:7c:aa:42:9f:41:08:8e:f5:24:1b:75:0d:
66:5e:a2:20:c2:b4:f4:bd:1f:df:f4:51:ef:98:3a:d6:a7:87:
e8:8e:f2:41:82:11:ea:1c:a7:ed:ec:50:fb:5e:6f:f9:2b:82:
37:92:0a:86:42:4f:76:00:ee:28:18:cb:14:6b:0e:bf:5c:d6:
f9:88:73:89:b4:e3:67:fd:60:16:f4:fe:e3:87:7c:2d:0f:ea:
3e:7a:dd:91:b6:fb:1e:ee:cd:42:0d:bd:65:75:fd:b9:a2:f4:
97:b7:02:44:de:de:e3:bf:09:a3:0a:cd:62:b5:c0:c5:fc:89:
4a:96:cc:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 01:01:53 2026 by rpki-client