Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.mft
File: Y3A8pQxDKs1_HLunwH2iICKZymM.mft (raw, json)
Hash identifier: 1RHwmBR3ioIjQ/NKwpzaZQ4YrIipBPNXx7dA1mdpe8k=
Subject key identifier: 03:0A:80:02:7A:D9:55:9B:13:06:DE:D1:47:02:E9:47:97:82:2C:35
Authority key identifier: 63:70:3C:A5:0C:43:2A:CD:7F:1C:BB:A7:C0:7D:A2:20:22:99:CA:63
Certificate issuer: /CN=63703ca50c432acd7f1cbba7c07da2202299ca63
Certificate serial: 019D2703C58EA99992EA92AD1B2FF7DE4FF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3A8pQxDKs1_HLunwH2iICKZymM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.mft
Manifest number: 158B
Signing time: Wed 25 Mar 2026 22:00:51 +0000
Manifest this update: Wed 25 Mar 2026 22:00:51 +0000
Manifest next update: Thu 26 Mar 2026 22:00:51 +0000
Files and hashes: 1: 8sUmY3d_fBjNKoah_kXD2nXdcuY.roa (hash: 97Wzx4qbPJ85JZpPVzF/01GChfo0hYHtP4G+A4D6wjE=)
2: Y3A8pQxDKs1_HLunwH2iICKZymM.crl (hash: xzaa8LGqmVLzZfKFczoko1CLHtB7++TXrbIYnxmkoBs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y3A8pQxDKs1_HLunwH2iICKZymM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:c5:8e:a9:99:92:ea:92:ad:1b:2f:f7:de:4f:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63703ca50c432acd7f1cbba7c07da2202299ca63
Validity
Not Before: Mar 25 22:00:51 2026 GMT
Not After : Mar 26 22:00:51 2026 GMT
Subject: CN=030a80027ad9559b1306ded14702e94797822c35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:bd:bf:3c:c6:f3:1b:b9:ef:39:28:03:a8:9d:
77:10:f5:e7:44:76:6c:11:65:7b:24:ce:fe:ee:75:
36:65:f6:e8:d3:8a:2b:a2:95:c1:e6:2b:71:7d:7a:
99:75:42:4a:b1:eb:53:1e:d2:ae:a8:6c:c7:0c:28:
df:2f:f4:3e:86:f8:9c:85:ab:3f:b5:29:2e:54:f6:
7f:0e:a1:e4:f6:55:0c:a8:59:a0:9b:1f:7c:af:50:
af:55:8a:f2:30:4f:77:c1:0b:9d:19:e5:58:c6:78:
dc:13:61:11:3d:9f:70:3f:4b:e3:55:cf:c5:8b:de:
47:73:7c:fd:16:e9:4d:c2:03:2f:6d:ac:c7:a8:84:
64:ee:28:82:2b:38:66:f3:5a:53:fc:ff:fa:9c:d7:
dd:55:44:30:18:39:1b:9a:85:ee:5d:e7:ea:21:28:
ff:43:5a:46:cf:43:44:1a:9d:72:d2:2a:4e:8f:66:
aa:2f:ef:39:a4:d3:64:42:2c:07:ab:4b:b7:31:4f:
2e:ef:68:e7:e3:91:ad:f6:9e:2f:b8:dd:0b:78:ad:
6c:da:25:8f:23:42:a8:db:df:9e:d3:f5:b6:d6:b3:
9f:a1:4b:92:3b:82:e4:6d:c2:45:0e:1d:1c:94:a6:
c7:7f:de:3a:59:98:be:b0:f0:56:36:f3:df:42:7d:
12:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:0A:80:02:7A:D9:55:9B:13:06:DE:D1:47:02:E9:47:97:82:2C:35
X509v3 Authority Key Identifier:
keyid:63:70:3C:A5:0C:43:2A:CD:7F:1C:BB:A7:C0:7D:A2:20:22:99:CA:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3A8pQxDKs1_HLunwH2iICKZymM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:a4:a6:f4:5f:da:3c:e2:0c:10:7b:b1:73:ac:b8:b1:0a:0d:
eb:59:bf:87:0f:ba:bb:fc:2a:7a:ae:3b:32:bf:27:d4:e6:a5:
0b:b3:25:5b:dd:47:f7:e6:80:52:48:9d:a8:d4:00:55:39:5b:
36:e5:e9:e5:37:de:31:ea:03:f8:33:12:b7:7c:21:75:fe:a6:
66:3a:64:0c:d8:fe:7a:f6:32:4f:db:b9:6f:1e:e9:6b:c0:4c:
d7:44:bc:fd:cf:70:85:ea:16:16:6e:ce:00:92:14:39:ab:42:
f7:ad:f1:0f:07:9e:e6:80:f9:e9:c5:fb:06:d0:08:ee:4f:be:
d6:9e:f6:9d:71:07:7d:fa:57:96:e5:36:41:f9:61:d1:1e:43:
a6:21:3f:43:b5:58:23:f7:66:92:c9:b7:b4:29:b7:61:9d:6b:
89:cd:c6:d7:75:3e:07:65:aa:eb:00:62:4f:46:cd:79:05:2f:
5c:54:b0:1c:1b:1d:f6:bc:dd:f5:41:b6:83:02:16:f9:68:74:
2c:21:4c:0a:64:1a:0c:60:98:61:db:2a:46:26:8f:e7:b3:c5:
37:29:77:ba:94:d8:d1:ae:62:4f:15:8f:63:13:de:29:2d:d0:
39:39:ad:09:9d:e3:f6:fa:f7:5e:26:9c:66:c9:c3:3e:24:b3:
68:f2:c5:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:22:21 2026 by rpki-client