Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
File: yoFg7-OfGjB3_dL68ipkgEtUE4I.mft (raw, json)
Hash identifier: kMnF+t4o/enrd5oH5i8VVKNPIknvCMjRJtTRap3tw1I=
Subject key identifier: C1:40:B1:8C:23:C9:BD:29:8D:FB:CE:51:0B:6D:6B:86:30:DB:30:D9
Authority key identifier: CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82
Certificate issuer: /CN=ca8160efe39f1a3077fdd2faf22a64804b541382
Certificate serial: 019D2BBBC43668B6CA37F4A95001E34E5783
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
Manifest number: 1529
Signing time: Thu 26 Mar 2026 20:00:18 +0000
Manifest this update: Thu 26 Mar 2026 20:00:18 +0000
Manifest next update: Fri 27 Mar 2026 20:00:18 +0000
Files and hashes: 1: c09YJVIz1gAeeersG-N_XV14zPo.roa (hash: A4WIJzWdDctFX+Ynr5FMyCdWVozIwFvvlX52iKZ/Phw=)
2: yoFg7-OfGjB3_dL68ipkgEtUE4I.crl (hash: ehEcg06JYzZV0Dzog1nbKzipyulKkv8rKJUFE5osLoU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 20:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:bb:c4:36:68:b6:ca:37:f4:a9:50:01:e3:4e:57:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca8160efe39f1a3077fdd2faf22a64804b541382
Validity
Not Before: Mar 26 20:00:18 2026 GMT
Not After : Mar 27 20:00:18 2026 GMT
Subject: CN=c140b18c23c9bd298dfbce510b6d6b8630db30d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ac:2f:69:17:bd:7c:60:00:55:8f:75:eb:c1:
39:28:ea:ef:74:60:76:20:d1:2b:14:e6:a1:9a:49:
28:66:a7:5d:22:81:96:05:27:62:b7:f1:65:79:28:
cc:8f:de:a9:c1:c9:bd:36:a1:13:94:58:db:3e:d1:
59:e1:6b:18:b0:82:43:4b:66:00:b0:24:b6:d0:95:
b2:b6:45:74:0b:9c:b2:87:19:48:6c:be:11:cd:e3:
c4:9c:04:2e:51:cd:c1:e9:e4:0b:32:ad:df:47:1c:
99:74:c0:ef:6c:28:f8:df:c4:b4:ed:a9:74:37:9c:
bb:26:40:12:9a:76:0c:c6:1e:b5:ee:46:f4:52:11:
92:83:3f:f0:51:6e:3a:e1:9f:c7:83:8c:76:2c:5c:
e1:73:c0:4a:19:ae:b6:f4:52:0a:45:3d:6e:a8:87:
64:9c:ef:8b:16:f5:4e:ca:42:99:6d:4c:f2:a0:b6:
e0:c0:69:19:16:07:f1:0e:7c:36:89:5b:89:e3:a4:
7e:f5:53:bf:51:e6:79:0c:8f:56:84:51:1d:45:ff:
fb:1b:da:34:e6:d6:33:72:48:ff:d0:da:0c:e6:60:
46:c1:9f:05:8f:cb:65:83:1e:7e:49:80:b7:41:af:
85:91:d1:9d:cf:0b:0f:5e:2d:0f:72:36:04:bc:b2:
32:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:40:B1:8C:23:C9:BD:29:8D:FB:CE:51:0B:6D:6B:86:30:DB:30:D9
X509v3 Authority Key Identifier:
keyid:CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:d2:53:48:d1:84:7a:be:2e:2d:4a:01:c1:16:1c:a4:cd:c6:
34:3f:14:5c:8a:10:60:17:ad:16:44:02:e7:38:e5:a4:9c:27:
d8:9e:b2:b0:3b:d9:5e:4f:31:02:37:b1:eb:56:e0:db:3e:26:
df:a5:f8:2c:08:39:14:66:b2:c7:18:09:20:17:8e:92:af:b7:
56:38:e9:47:52:c8:de:e2:70:5a:87:a3:ac:eb:e2:a6:8d:09:
5f:9b:bd:91:8f:fb:3e:b3:82:41:5b:91:b9:aa:5f:ed:06:b7:
0d:1e:29:ef:0e:d3:02:df:9c:00:87:dd:ea:7f:bf:76:e3:11:
9c:cd:72:ea:d7:c8:0e:da:79:56:07:89:d3:55:8f:54:17:0a:
35:49:9f:df:44:d9:f2:4b:f2:85:8f:7b:b1:81:68:32:24:4a:
c9:c1:26:d8:d8:d5:01:94:2c:08:c2:0e:6c:e7:30:9a:f5:e2:
c3:6b:42:2e:84:9c:cf:94:2d:28:06:07:15:7b:7a:12:75:1f:
92:36:bc:0a:ee:85:f4:f4:6f:1a:f6:a8:a9:8f:4d:b8:e2:3f:
83:0b:ff:4b:dc:f8:2d:65:14:4c:19:6f:fa:21:2f:b0:dc:76:
01:ea:79:35:20:99:a2:7f:6d:d6:d0:19:10:c5:7f:13:41:e9:
64:cd:4e:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 03:43:33 2026 by rpki-client