Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
File: yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft (raw, json)
Hash identifier: X8W/EqTBi16vUCxX39mg+xe8Jmc9c5MvfO+q6MyOTcg=
Subject key identifier: A3:00:2A:B8:72:87:15:A2:90:16:82:B1:7E:68:CD:04:84:C1:36:64
Authority key identifier: C8:5F:51:0C:72:CE:0B:79:C2:89:9B:35:84:5F:FE:36:70:69:3F:05
Certificate issuer: /CN=c85f510c72ce0b79c2899b35845ffe3670693f05
Certificate serial: 019D2817094E28760CCC39C1C14FAF338432
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 03:01:31 +0000
Manifest this update: Thu 26 Mar 2026 03:01:31 +0000
Manifest next update: Fri 27 Mar 2026 03:01:31 +0000
Files and hashes: 1: Y7bdVsOqZQqj1I_OKBkoS9oMFd0.roa (hash: uxAajtv2PDYgeD7fkffrgQE1gHL9LPe5ZmBXFSGnqgI=)
2: yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl (hash: SHlMV6mAOcYgWkSbLRbWgD7zwtXY0oi/Au7bPS2cVTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:17:09:4e:28:76:0c:cc:39:c1:c1:4f:af:33:84:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c85f510c72ce0b79c2899b35845ffe3670693f05
Validity
Not Before: Mar 26 03:01:31 2026 GMT
Not After : Mar 27 03:01:31 2026 GMT
Subject: CN=a3002ab8728715a2901682b17e68cd0484c13664
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:db:96:62:ac:af:d9:4d:81:ea:ce:4c:9f:f9:
cf:d0:68:8d:6b:7a:fa:f0:49:d7:d3:14:0e:b1:c1:
22:1d:96:5b:58:c2:69:20:c4:cc:93:42:9a:9e:cf:
9f:c0:af:8a:38:0b:e1:04:61:bc:51:18:32:e9:35:
a6:78:3b:d1:69:ad:39:dd:65:3a:55:27:f5:b0:4f:
f4:99:ff:0f:fe:ab:c3:f3:76:18:64:af:35:2b:4d:
13:ed:73:81:b8:f8:ae:72:55:a2:4a:fc:4f:46:89:
db:1b:5b:36:96:4b:9f:f4:28:fe:a9:b0:b7:55:ed:
89:f9:5c:a0:06:73:ab:46:45:2c:52:d2:51:0c:23:
f1:d2:73:15:7c:91:b5:65:97:2c:b9:de:71:17:99:
d2:1d:ab:c9:a1:6b:24:38:27:64:b1:58:13:e1:22:
f9:e1:b5:d0:1f:24:86:69:7f:41:36:5c:63:79:4d:
a1:eb:64:ee:ef:1f:69:07:ad:47:fa:a0:e9:6b:1a:
70:f3:cb:04:94:72:f4:55:bb:63:d4:95:d9:73:05:
dc:57:2c:37:d6:04:52:8b:f3:66:5f:24:d5:72:7a:
83:16:ed:43:d8:bf:a6:f8:f3:86:9b:dc:96:10:b1:
fc:83:47:d2:3e:d9:e5:8c:e2:e3:a6:e5:26:89:b7:
52:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:00:2A:B8:72:87:15:A2:90:16:82:B1:7E:68:CD:04:84:C1:36:64
X509v3 Authority Key Identifier:
keyid:C8:5F:51:0C:72:CE:0B:79:C2:89:9B:35:84:5F:FE:36:70:69:3F:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:6a:3f:bc:a8:ee:a8:9e:7b:f4:c7:02:f7:76:2a:e7:74:af:
b1:c4:45:c6:51:ac:bc:97:9b:17:4c:dd:96:ad:51:14:7c:a9:
aa:0b:30:dc:15:e2:df:a8:d4:b7:60:59:09:19:ae:12:7d:c8:
6d:ea:9f:97:62:33:bd:1c:bd:fc:01:49:20:1a:2e:c7:57:5f:
3b:95:db:f3:0b:16:a5:3a:b6:eb:25:ae:4b:d0:70:3f:06:65:
eb:92:bb:1b:95:0f:d8:8a:8f:1b:03:c8:40:a1:bc:eb:25:29:
b2:25:e5:b8:d6:29:fb:cb:bc:a9:3f:f8:4d:8f:30:bf:14:2a:
95:c9:b8:29:9b:ac:bc:e3:fb:f3:50:2e:80:98:b7:03:d4:65:
f8:db:3b:79:7d:d1:e1:41:13:d1:ee:cf:02:79:d3:91:ca:43:
82:30:de:c6:d1:98:97:1e:9d:f5:fb:83:d8:d1:0f:4c:94:45:
13:c3:5d:4b:ae:b7:13:13:a9:a0:bd:8a:7d:d4:17:1c:b7:bd:
c6:53:9f:45:10:7e:2f:68:3a:50:33:17:c3:14:9d:c8:86:f8:
29:cb:3c:bc:8e:94:40:b2:a1:61:df:a8:96:98:8c:53:8e:d2:
a0:fa:42:04:79:a2:37:47:9f:54:5f:aa:83:a5:04:84:1c:cb:
c7:4b:72:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:55:48 2026 by rpki-client