Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
File: yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft (raw, json)
Hash identifier: Y6nKt6BUFinljVMgjcHM1DfEbn1V+S59R4kchHFc6O8=
Subject key identifier: E8:D8:6D:11:C2:FB:9F:10:F4:5C:2B:E5:FD:0D:FB:88:89:A3:57:03
Authority key identifier: CA:23:1A:43:62:BC:1E:C0:FD:B4:34:99:01:B6:1C:CF:9D:67:9D:65
Certificate issuer: /CN=ca231a4362bc1ec0fdb4349901b61ccf9d679d65
Certificate serial: 019D2771CB49E75D1CBBF3F72E194CB401C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
Manifest number: 060C
Signing time: Thu 26 Mar 2026 00:01:02 +0000
Manifest this update: Thu 26 Mar 2026 00:01:02 +0000
Manifest next update: Fri 27 Mar 2026 00:01:02 +0000
Files and hashes: 1: WxNi3FY5cr-Bjj8BRJGuFpl1ulQ.roa (hash: uM3IRzOQy7yokmWWB+yCvHyVpY0d0sa0ZM1vmaCKkO8=)
2: yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl (hash: TsjKYLZqZ3f5CDy8nyX6EpgM2u0nqS+HrKSFdaIVSqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:71:cb:49:e7:5d:1c:bb:f3:f7:2e:19:4c:b4:01:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca231a4362bc1ec0fdb4349901b61ccf9d679d65
Validity
Not Before: Mar 26 00:01:02 2026 GMT
Not After : Mar 27 00:01:02 2026 GMT
Subject: CN=e8d86d11c2fb9f10f45c2be5fd0dfb8889a35703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:cf:d3:92:4a:7f:e8:d5:7e:59:8b:33:3a:18:
ce:bd:0b:a3:7c:1e:a7:c9:1e:67:8f:e4:f7:50:ae:
e1:85:c8:ef:09:44:da:29:a0:85:76:27:bb:ad:43:
c9:24:b5:06:0b:8a:0a:c8:9d:39:f1:ed:29:72:72:
8d:25:c7:05:0b:fc:fd:f3:5c:6c:35:28:47:54:a6:
75:87:c6:aa:f7:ab:ec:24:cc:05:07:aa:83:46:d3:
da:37:4a:ef:6f:da:16:e4:b6:43:3b:27:b0:42:99:
a8:47:90:70:31:2b:d4:34:de:5b:9d:42:f9:f0:43:
cf:fb:b5:9c:11:be:66:e9:57:96:78:f9:af:4e:da:
47:e1:1d:67:86:cd:e6:28:81:45:bb:40:93:67:2d:
42:95:4e:bd:65:57:89:43:f2:7c:f1:70:ae:ec:c6:
04:bf:e9:f1:d1:cd:f2:6f:73:5b:de:e7:f1:d8:20:
24:be:a6:52:d3:77:91:4a:a2:07:34:24:f2:e5:52:
47:fc:10:02:a0:ed:06:9b:1c:74:fa:c0:19:5e:5b:
45:57:ba:93:53:97:b2:e1:11:b2:f3:53:d5:88:5a:
31:b2:ef:0b:7c:23:be:b5:20:ee:61:a2:72:10:75:
c2:b6:c7:b1:73:c0:15:5b:32:a6:7f:0a:41:1d:31:
27:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:D8:6D:11:C2:FB:9F:10:F4:5C:2B:E5:FD:0D:FB:88:89:A3:57:03
X509v3 Authority Key Identifier:
keyid:CA:23:1A:43:62:BC:1E:C0:FD:B4:34:99:01:B6:1C:CF:9D:67:9D:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:d1:3d:4d:19:d4:fb:d2:b8:8f:07:d4:75:5c:90:5d:a6:98:
bc:37:09:b9:88:1e:1c:5a:d1:fd:7c:8e:30:76:08:01:6c:7c:
99:2d:03:7b:d8:81:af:88:a9:c7:fb:7a:0c:8b:b0:df:92:08:
c8:db:b0:66:0c:48:5e:34:37:1d:99:5a:02:b3:e8:a2:35:f4:
28:e0:28:83:a0:d0:af:35:e5:83:82:c2:3c:21:98:6b:b2:1a:
05:13:bd:6c:80:51:3e:2c:b9:b5:0c:05:e5:5c:e2:62:91:08:
cc:2a:9d:4c:e9:3f:2c:a8:c2:57:12:66:8c:4b:a5:d7:90:a9:
37:39:88:53:80:34:4d:bb:83:8c:d8:c4:0f:3f:75:43:7d:62:
12:d2:99:22:0a:6d:67:10:09:41:9c:ff:e6:ab:f2:b0:47:c1:
7e:ad:29:f4:2b:ff:30:3c:0e:ab:16:03:42:f0:45:5e:94:bd:
5d:f3:0c:c5:4e:8c:32:0e:31:b2:25:c8:49:c1:a1:9b:d5:1c:
a1:db:f3:82:68:61:7e:5d:1f:29:27:45:ea:26:4f:46:98:37:
35:a8:ae:58:22:81:29:5d:d2:33:a3:96:fa:73:c4:4b:b9:9d:
d0:f9:0d:e9:75:26:5f:26:a3:70:43:1b:5f:57:33:9e:ab:64:
8d:f5:52:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:52:35 2026 by rpki-client