Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.mft
File: yd_q7KItLSYYtDPPAKsUS9i4Db0.mft (raw, json)
Hash identifier: ybSb8nX1KGyNeWg7xiyL+KXjDHD11DQu9g63rgD5gf0=
Subject key identifier: CD:1B:05:E3:7B:9A:EA:4D:67:54:C6:F3:CA:AD:3A:06:17:61:CD:13
Authority key identifier: C9:DF:EA:EC:A2:2D:2D:26:18:B4:33:CF:00:AB:14:4B:D8:B8:0D:BD
Certificate issuer: /CN=c9dfeaeca22d2d2618b433cf00ab144bd8b80dbd
Certificate serial: 019D2703B7D9B622F5A33AD6ADFA133E2C84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yd_q7KItLSYYtDPPAKsUS9i4Db0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.mft
Manifest number: 09BA
Signing time: Wed 25 Mar 2026 22:00:48 +0000
Manifest this update: Wed 25 Mar 2026 22:00:48 +0000
Manifest next update: Thu 26 Mar 2026 22:00:48 +0000
Files and hashes: 1: 820vIRF1IvHmMeX3TIHoslLaymk.roa (hash: nxsc5hiaKPfRF3Jfau9U9QFL2zAQ/W9nSHpc/OJ2IbA=)
2: yd_q7KItLSYYtDPPAKsUS9i4Db0.crl (hash: 2HkGfveBH/B0Laq5ZW0rSEaXREfo4dctlUDJrpGTxIg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.mft
rsync://rpki.ripe.net/repository/DEFAULT/yd_q7KItLSYYtDPPAKsUS9i4Db0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:b7:d9:b6:22:f5:a3:3a:d6:ad:fa:13:3e:2c:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9dfeaeca22d2d2618b433cf00ab144bd8b80dbd
Validity
Not Before: Mar 25 22:00:48 2026 GMT
Not After : Mar 26 22:00:48 2026 GMT
Subject: CN=cd1b05e37b9aea4d6754c6f3caad3a061761cd13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ea:13:11:f5:9d:c7:15:da:71:03:94:39:2d:
94:1b:a5:23:fd:1d:f7:98:b4:c5:bf:69:26:fd:6d:
d2:e9:81:64:08:e2:7c:17:3b:78:3a:58:45:b4:85:
6b:53:b2:2d:51:2a:b1:c3:27:49:ed:b0:67:22:e2:
58:fd:ab:b2:7b:cb:eb:62:f2:c0:7b:c2:99:7f:14:
7b:2c:b8:fc:40:13:19:9a:b5:8c:8a:31:24:bb:c3:
33:27:e4:45:1e:8d:49:31:db:94:7d:3c:e3:bd:e8:
e1:8e:4f:90:54:78:d5:b2:92:d3:8c:fa:4f:48:a1:
18:45:02:b0:93:81:db:67:99:98:47:af:79:7a:52:
75:a8:5f:d8:17:13:9b:5e:74:f1:f1:25:7e:70:9d:
a1:32:df:55:d8:75:1c:e9:43:68:10:a6:14:ee:68:
bc:05:73:49:1a:45:ea:34:e0:5c:c9:fe:d7:f6:2b:
9d:48:ec:87:7e:eb:07:cc:19:23:fd:fc:13:17:eb:
ae:18:34:54:e4:ae:15:fe:d2:07:20:d6:d3:f6:8b:
9e:04:99:c5:e9:55:a5:f5:d2:64:76:84:da:52:43:
b5:c5:f6:53:28:be:e8:38:3e:5d:e3:6a:29:9f:5e:
93:ea:df:0a:93:a9:96:e8:d9:80:71:99:e1:8e:25:
bf:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:1B:05:E3:7B:9A:EA:4D:67:54:C6:F3:CA:AD:3A:06:17:61:CD:13
X509v3 Authority Key Identifier:
keyid:C9:DF:EA:EC:A2:2D:2D:26:18:B4:33:CF:00:AB:14:4B:D8:B8:0D:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yd_q7KItLSYYtDPPAKsUS9i4Db0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957b15-d5dc-43e5-809c-bc362d3768bd/1/yd_q7KItLSYYtDPPAKsUS9i4Db0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:d8:35:30:8f:e6:de:6a:21:1f:e5:02:09:a1:ef:72:43:7c:
5d:34:0b:6c:0d:a7:dd:e0:de:3c:ca:88:f3:31:8e:23:55:3b:
ec:8e:11:66:a7:63:f0:9e:41:04:18:bc:39:7d:94:5d:95:ff:
2c:53:d5:e8:9e:92:00:d6:1b:b8:34:24:33:10:b4:78:e1:8b:
2e:d7:5e:92:84:fb:55:5e:26:3e:9d:50:b0:0a:bf:c8:ed:10:
df:4b:bc:35:d5:09:be:a2:ca:45:a6:1a:87:95:fb:bc:aa:c4:
4c:af:13:e3:da:44:8a:91:07:d4:d5:fb:90:3a:22:0e:1c:6e:
85:5a:a6:9a:f6:a3:2e:14:2b:3a:51:30:9b:6c:74:c2:62:f6:
7d:e7:37:a0:c4:d8:cc:7a:21:b3:38:6f:46:f3:ca:ba:b1:7a:
7e:c1:75:2f:c8:4e:0d:38:40:7e:62:68:fb:78:d2:96:03:c2:
29:19:57:63:2c:dd:fd:63:44:4f:5b:93:88:39:23:48:df:89:
80:06:74:aa:92:1a:ce:e3:11:98:08:2f:4a:9d:c5:dd:2d:b6:
92:87:ea:7c:98:2c:c3:72:b2:f6:44:65:27:64:4e:77:33:28:
9c:85:ed:6b:46:63:c6:41:35:e5:15:19:e0:02:30:6d:73:cb:
a1:23:a6:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:54:38 2026 by rpki-client