Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b84500-ffdb-42d2-9465-a2eade83955d/1/y5-GErfxR1ABa4SMQvYN82rYMtk.mft
File: y5-GErfxR1ABa4SMQvYN82rYMtk.mft (raw, json)
Hash identifier: ijPlrEBp+MrJM6woGrv894Pd+bGBoEL+qgH+q/FZ3vI=
Subject key identifier: B0:8F:B7:86:A8:35:BC:C4:8D:0A:81:6F:1E:72:0A:D2:9D:6A:63:6D
Authority key identifier: CB:9F:86:12:B7:F1:47:50:01:6B:84:8C:42:F6:0D:F3:6A:D8:32:D9
Certificate issuer: /CN=cb9f8612b7f14750016b848c42f60df36ad832d9
Certificate serial: 019D265FDE6608A58B0E1FB795793E913DFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y5-GErfxR1ABa4SMQvYN82rYMtk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b84500-ffdb-42d2-9465-a2eade83955d/1/y5-GErfxR1ABa4SMQvYN82rYMtk.mft
Manifest number: 1886
Signing time: Wed 25 Mar 2026 19:01:50 +0000
Manifest this update: Wed 25 Mar 2026 19:01:50 +0000
Manifest next update: Thu 26 Mar 2026 19:01:50 +0000
Files and hashes: 1: FJbFKH-6UB81LJVXgZhFufQ6Xq4.roa (hash: 7HbLW1cCSqJyLk1viO303bfiZDF4gFvFTCIiS0JMJOM=)
2: y5-GErfxR1ABa4SMQvYN82rYMtk.crl (hash: 6XFzU50xWykGR7QrNPzTx8bF2pz3ICjiIzMuqAdkPDY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/b84500-ffdb-42d2-9465-a2eade83955d/1/y5-GErfxR1ABa4SMQvYN82rYMtk.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/b84500-ffdb-42d2-9465-a2eade83955d/1/y5-GErfxR1ABa4SMQvYN82rYMtk.mft
rsync://rpki.ripe.net/repository/DEFAULT/y5-GErfxR1ABa4SMQvYN82rYMtk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:de:66:08:a5:8b:0e:1f:b7:95:79:3e:91:3d:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb9f8612b7f14750016b848c42f60df36ad832d9
Validity
Not Before: Mar 25 19:01:50 2026 GMT
Not After : Mar 26 19:01:50 2026 GMT
Subject: CN=b08fb786a835bcc48d0a816f1e720ad29d6a636d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d9:06:44:a6:25:62:ef:ad:5a:3d:bc:4c:98:
98:f9:82:4d:f2:dd:47:f4:05:dd:b6:cb:57:65:38:
a7:a0:1b:2a:21:e3:4c:5d:cb:db:7b:96:8d:32:fa:
db:38:ff:9e:ea:cc:3d:99:50:a7:07:38:4b:d5:6b:
b3:41:1c:7b:06:20:1f:98:c4:72:c7:15:2e:39:95:
e1:e9:5b:c2:b7:09:d7:9a:58:78:f9:d0:01:3a:7f:
b7:de:32:4d:c5:bb:0f:53:69:69:b8:4a:a3:cf:5d:
a7:91:7f:1d:5d:f1:15:a7:97:f5:52:62:0c:1d:38:
75:0f:78:78:98:d3:3c:6e:72:a7:50:d6:29:c4:23:
d4:35:48:49:d1:19:4a:74:c6:04:86:fb:1a:72:c3:
8d:4d:ba:39:6d:19:aa:67:af:23:7d:f9:e2:8d:48:
fb:a1:fc:08:af:d7:23:37:90:de:7e:38:44:9c:74:
94:c8:73:fa:1e:c2:19:53:f3:3a:40:46:71:1e:f8:
b2:20:54:de:79:c9:78:1d:48:0b:53:f9:49:71:dc:
3c:8c:38:94:64:93:fa:c3:4b:2e:87:d4:92:cb:b0:
7e:d9:0b:0f:24:54:db:9d:21:5e:62:d9:a0:33:50:
9e:d9:67:81:b0:95:59:6b:ac:34:17:9a:64:69:ba:
e2:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:8F:B7:86:A8:35:BC:C4:8D:0A:81:6F:1E:72:0A:D2:9D:6A:63:6D
X509v3 Authority Key Identifier:
keyid:CB:9F:86:12:B7:F1:47:50:01:6B:84:8C:42:F6:0D:F3:6A:D8:32:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y5-GErfxR1ABa4SMQvYN82rYMtk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b84500-ffdb-42d2-9465-a2eade83955d/1/y5-GErfxR1ABa4SMQvYN82rYMtk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b84500-ffdb-42d2-9465-a2eade83955d/1/y5-GErfxR1ABa4SMQvYN82rYMtk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:9d:d9:ff:e5:7d:ab:55:3c:83:bb:7a:92:8c:e6:f0:50:73:
45:3c:27:39:d4:6d:41:57:f3:6f:ab:8f:72:f6:a4:08:e7:63:
60:21:8a:70:43:c4:94:1c:65:8c:04:10:ef:a4:ae:ac:57:c0:
48:d6:a5:ba:dd:af:69:6a:e8:bb:bd:b5:f6:f3:9b:32:e3:22:
8b:9b:5d:bc:96:14:56:d8:d6:9a:a3:5f:15:fc:d3:91:7d:3a:
10:7e:7a:11:60:66:1f:c9:86:6a:5b:71:14:2e:87:48:4e:53:
f0:01:f3:e3:1f:37:86:88:50:bc:80:81:0b:fb:74:b6:a1:2c:
c6:41:9e:10:69:cf:55:8a:8a:89:09:13:41:bf:07:b8:9a:12:
c5:16:d1:ef:4a:79:66:b5:e6:74:61:1c:8d:65:b8:4a:9d:5d:
dc:9f:3c:6e:e2:11:aa:7a:28:b9:60:94:56:a3:a6:eb:08:a7:
88:ea:6e:3f:e7:da:ea:6f:54:d9:ef:42:a6:9f:c5:b1:29:07:
81:10:3e:72:af:f0:78:8b:d3:d6:4e:1c:22:07:b0:fc:94:5e:
f2:3a:25:10:e7:94:c0:d3:f9:a3:e0:11:8d:c2:2b:2f:e0:4f:
a0:2e:31:7f:84:1d:ad:51:57:35:20:47:a0:16:9e:d0:fc:6c:
66:cd:e4:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:10:08 2026 by rpki-client