Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
File: lYj7Sw-weytS4w2SGYmPKM-8mi0.mft (raw, json)
Hash identifier: /lVVzRuCKOyuoB7GsEhVlv8JV+79tbctWoJMVOfN0BE=
Subject key identifier: 05:54:ED:C0:9F:AC:06:32:19:A4:EC:62:C9:D1:60:05:E8:43:99:16
Authority key identifier: 95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
Certificate issuer: /CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Certificate serial: 019D28F20F96D40B43910EDF6D2408764EA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
Manifest number: 1604
Signing time: Thu 26 Mar 2026 07:00:45 +0000
Manifest this update: Thu 26 Mar 2026 07:00:45 +0000
Manifest next update: Fri 27 Mar 2026 07:00:45 +0000
Files and hashes: 1: lYj7Sw-weytS4w2SGYmPKM-8mi0.crl (hash: Er85f48gZPOMrZz3cb7TEdAejD03qtILwJWZ68uk7P8=)
2: nwCKURFvKAdbQU38fWCHq9Su4qo.roa (hash: C9xiWCIHazX19G/OBW1EkzJey6ARQXArUE2/+FTm9Z4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:0f:96:d4:0b:43:91:0e:df:6d:24:08:76:4e:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Validity
Not Before: Mar 26 07:00:45 2026 GMT
Not After : Mar 27 07:00:45 2026 GMT
Subject: CN=0554edc09fac063219a4ec62c9d16005e8439916
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6d:23:a1:59:05:7d:1c:cf:56:a6:80:ae:37:
c5:cf:28:8a:b2:5d:b1:d7:c2:9e:10:8b:a7:eb:77:
b2:54:77:7d:8b:a6:6f:42:4e:77:25:70:8a:d7:ac:
eb:09:e9:e2:96:53:cf:7d:00:f2:cf:ce:9f:67:81:
02:59:41:08:3d:32:13:83:35:22:d6:fb:82:72:2f:
12:d0:25:7d:45:69:f4:ca:7a:ff:33:67:df:83:6c:
c5:c0:84:eb:05:67:7b:25:21:22:e6:55:f8:76:c0:
2e:2a:23:fe:50:ef:1b:2b:f7:23:e4:a0:c9:69:31:
e3:78:97:9f:21:95:66:96:24:a2:92:65:1b:33:a0:
46:2a:4f:db:07:bb:42:60:fb:01:85:10:60:b6:69:
36:b1:24:cc:74:11:8d:bf:95:f0:72:41:0c:61:c5:
d8:c6:4b:34:7e:71:09:32:db:c0:70:10:8e:9f:29:
e8:1a:94:4c:00:a3:7c:bd:bb:62:ec:c3:da:55:05:
84:01:00:aa:9d:5a:fa:69:ce:a1:9d:3f:75:54:31:
f6:12:c6:db:e1:cc:7d:93:ee:cf:2c:10:a1:d5:29:
ce:15:00:fc:a8:50:11:5b:9a:ab:bc:38:99:da:d4:
af:33:66:1b:8d:5f:2e:9e:1d:c8:c1:7b:02:02:0c:
04:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:54:ED:C0:9F:AC:06:32:19:A4:EC:62:C9:D1:60:05:E8:43:99:16
X509v3 Authority Key Identifier:
keyid:95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:4c:50:79:9e:f7:96:d7:2e:51:f5:a1:e9:df:86:50:f3:8e:
1c:5b:f5:47:70:02:a9:10:89:59:e5:6b:5c:3c:e0:af:90:e6:
53:93:04:40:65:e4:c5:c4:6f:47:07:35:81:b4:91:42:d9:90:
c1:8d:a9:33:dd:1f:a1:0b:9b:69:e1:66:63:a4:18:2d:e2:81:
ca:6b:14:e8:43:d3:d8:b3:3a:52:ac:fd:2a:f6:14:cf:a0:eb:
9d:e0:d5:ae:6f:a6:87:37:6c:c0:92:29:f4:df:42:9e:7b:c3:
80:57:c8:71:84:99:18:90:ac:14:21:32:ef:49:29:62:2a:1e:
42:b7:c5:e6:39:6f:43:98:a8:fb:d1:2f:c6:01:86:c1:0b:19:
ea:3e:20:78:d3:cd:b7:47:fb:8c:72:39:ea:ff:a3:5c:6f:0b:
5f:c0:aa:cd:d5:ba:a4:5e:26:d1:58:7c:38:2e:ce:dc:a0:bd:
72:b4:ea:51:8e:33:cb:38:05:7f:28:d5:6d:47:0e:eb:48:60:
5a:db:47:7c:c3:93:2c:83:14:e1:91:29:9a:65:3e:4d:aa:fe:
74:d7:48:af:3e:f5:87:f4:b6:8e:55:8a:04:7e:a9:3f:eb:b8:
18:27:7e:b1:88:2c:56:a9:2d:de:ee:bd:51:f8:de:d1:10:4f:
72:76:1d:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:01:40 2026 by rpki-client