Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
File: A_P-YHUIK-jliDKbQ9dhv257AdA.mft (raw, json)
Hash identifier: FoBFIP0f3JAAtnSkfoDKHa+NNidP+JsKH+m+ioaqzG0=
Subject key identifier: F8:D6:D4:6C:18:3A:45:E6:09:AE:C9:F4:38:C0:CE:8C:49:B8:69:35
Authority key identifier: 03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0
Certificate issuer: /CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
Certificate serial: 019D29970707ECCC8F0DFC2902BE435823DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
Manifest number: 0ABB
Signing time: Thu 26 Mar 2026 10:00:56 +0000
Manifest this update: Thu 26 Mar 2026 10:00:56 +0000
Manifest next update: Fri 27 Mar 2026 10:00:56 +0000
Files and hashes: 1: A_P-YHUIK-jliDKbQ9dhv257AdA.crl (hash: 99DcqmCdbzPzZSraEQFcSucTms+9kTN5QnJ21sXXTUs=)
2: y8-TomRf2SfXgjAfIqDbASYx4Kw.roa (hash: uG779XP+SowZScRgyybF2Yr7PqJO6NR4pXnq6h4jggk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:07:07:ec:cc:8f:0d:fc:29:02:be:43:58:23:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
Validity
Not Before: Mar 26 10:00:56 2026 GMT
Not After : Mar 27 10:00:56 2026 GMT
Subject: CN=f8d6d46c183a45e609aec9f438c0ce8c49b86935
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:40:8f:a1:f3:ee:38:71:e6:31:f0:af:62:28:
da:47:3d:1c:4b:53:54:f7:57:1e:96:ce:7d:f8:77:
45:00:67:0f:2a:b9:67:75:c2:df:5c:d4:4f:b1:6e:
bd:d3:c8:50:15:d7:a5:d1:b6:4e:27:0f:39:62:da:
4c:92:3d:ec:7e:80:5f:c1:33:68:8e:26:d2:ea:79:
21:3f:13:d1:c6:ac:ae:94:dc:58:75:3d:d5:27:c9:
82:ea:88:6f:d9:77:d4:5e:26:c6:97:01:96:15:bf:
9d:2f:3a:cb:d4:7e:66:c0:7d:a5:64:04:4b:e7:cf:
3a:1c:8d:79:89:02:0b:98:b9:a1:44:bf:37:6a:27:
a7:3e:e1:b5:76:b9:81:26:d2:c4:b3:ac:92:e0:5f:
e0:79:08:b0:60:1d:8f:0c:79:b9:d7:96:49:0a:09:
03:7e:eb:38:0c:e8:74:a3:ef:1a:61:f3:ea:97:72:
ea:3b:e6:2f:6f:7d:ad:ee:9c:66:94:e6:66:db:ec:
ee:48:f3:73:e6:e8:13:d8:8f:c3:e1:fd:f0:97:35:
bd:2d:c0:eb:e6:c0:ca:4b:ef:cd:fc:d0:df:59:64:
29:bf:36:16:1a:3b:ac:1d:61:a3:60:cf:2c:2b:6b:
3c:47:5c:84:3c:df:61:55:e0:94:12:43:6b:d9:5e:
dc:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:D6:D4:6C:18:3A:45:E6:09:AE:C9:F4:38:C0:CE:8C:49:B8:69:35
X509v3 Authority Key Identifier:
keyid:03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:fe:7b:95:4d:51:5e:9e:5e:1b:be:72:30:18:16:61:fd:b1:
ea:0c:e8:ac:c2:cc:27:fd:3e:9e:d4:ec:5b:87:33:f8:1f:92:
30:ef:27:20:73:5c:57:26:ac:60:4a:bc:01:e6:c2:f5:2d:b7:
a3:c9:58:29:cd:eb:bd:ee:a8:e5:d0:7d:12:3c:8d:47:e2:07:
90:6e:7e:fe:b7:82:cc:d6:37:63:1f:37:4f:7b:6e:47:15:ef:
ea:2c:cc:2a:f4:52:4a:dc:a3:6c:b4:b9:9b:11:d8:53:cc:08:
0b:68:8b:9f:f6:00:a3:9d:16:e1:ac:b2:c5:56:e8:ac:a9:32:
94:b7:1a:1b:bf:27:f8:fc:94:b8:c2:7d:e9:69:0c:e6:ce:aa:
23:86:33:14:92:28:a8:29:18:9f:cc:47:a3:32:10:ab:71:18:
9f:bd:66:3d:84:f4:be:5a:b5:6f:e4:ed:bc:39:63:f0:58:e3:
c8:94:ad:ee:0c:34:a0:fe:c9:91:62:07:c3:27:01:83:c2:44:
b0:92:ef:0a:5a:0d:34:fe:f0:d7:31:9e:6b:02:f8:e6:e4:d9:
3c:06:25:3d:96:1d:72:8c:e5:da:20:c1:a8:ed:21:71:cf:63:
e4:75:fa:e6:e4:51:8a:06:bc:13:e4:ba:21:e7:e8:ba:fa:75:
d6:05:4e:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:32:33 2026 by rpki-client