Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.mft
File: yWncvDPoAQQ4EpKC03rU6L-EuB8.mft (raw, json)
Hash identifier: Ab2e1stC7fx9WJpw9a3e5BH77CVYH6Fk7r7B9YqtadA=
Subject key identifier: 42:FA:7E:BC:BA:F8:24:1C:58:B4:FE:BA:23:19:F2:3D:2B:0C:D9:BA
Authority key identifier: C9:69:DC:BC:33:E8:01:04:38:12:92:82:D3:7A:D4:E8:BF:84:B8:1F
Certificate issuer: /CN=c969dcbc33e8010438129282d37ad4e8bf84b81f
Certificate serial: 019D2A729743959C1D8B66560B6EF16E579F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yWncvDPoAQQ4EpKC03rU6L-EuB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.mft
Manifest number: 17B3
Signing time: Thu 26 Mar 2026 14:00:45 +0000
Manifest this update: Thu 26 Mar 2026 14:00:45 +0000
Manifest next update: Fri 27 Mar 2026 14:00:45 +0000
Files and hashes: 1: QX-Yd6enYEasfQySbQcOpc-S1R0.roa (hash: l4a+bU8pCXlKF2s60/wU4ac6DKkHq3Tb0TMI5WXKiic=)
2: yWncvDPoAQQ4EpKC03rU6L-EuB8.crl (hash: 4PyXqjyTeezL0pBFXT3fIJZnzTIGsuXLnkoAQ9D792s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/yWncvDPoAQQ4EpKC03rU6L-EuB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:97:43:95:9c:1d:8b:66:56:0b:6e:f1:6e:57:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c969dcbc33e8010438129282d37ad4e8bf84b81f
Validity
Not Before: Mar 26 14:00:45 2026 GMT
Not After : Mar 27 14:00:45 2026 GMT
Subject: CN=42fa7ebcbaf8241c58b4feba2319f23d2b0cd9ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9f:ec:a3:90:32:96:03:bb:7f:8f:31:dc:2e:
b4:18:cd:98:e6:2a:a4:f5:92:69:d9:79:35:13:95:
b5:21:a8:9d:09:61:a5:2c:ff:34:a7:27:3d:1e:d4:
5f:04:d8:7c:41:2f:68:7f:93:a3:df:f5:31:b0:b9:
5f:1b:c0:f0:8f:9c:35:56:ce:c9:fa:23:ab:a0:f8:
0a:ea:57:5c:72:c4:d1:fa:72:35:e0:d4:a8:e6:19:
57:4b:db:31:5e:d2:87:97:20:27:b4:d4:c4:f2:50:
76:a7:f1:26:51:17:d6:63:d0:e0:9a:cd:5f:59:43:
71:a3:80:6f:35:e2:66:ae:c1:b3:45:6e:00:19:5d:
1a:27:a9:60:fa:e2:e1:64:40:0a:ed:ad:4c:f1:77:
e0:b2:15:9f:3c:39:99:33:53:37:d9:45:ad:41:02:
b5:ae:42:bb:44:1a:59:2f:18:24:e8:b6:e6:9a:8d:
2e:2b:7e:59:7c:eb:5f:8a:6b:77:6e:3f:c9:64:42:
55:74:71:fc:51:ac:6a:ea:f7:c9:4f:91:a6:95:0c:
08:64:18:10:4a:82:e1:f7:8b:8d:12:83:9a:bf:fe:
51:a0:52:69:8f:ea:f4:f4:40:f8:1c:ad:12:7d:41:
dc:60:5b:da:0f:77:b4:80:06:5c:e9:d4:a6:8b:05:
1c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:FA:7E:BC:BA:F8:24:1C:58:B4:FE:BA:23:19:F2:3D:2B:0C:D9:BA
X509v3 Authority Key Identifier:
keyid:C9:69:DC:BC:33:E8:01:04:38:12:92:82:D3:7A:D4:E8:BF:84:B8:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yWncvDPoAQQ4EpKC03rU6L-EuB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:15:24:64:e4:76:db:84:24:bc:b4:8b:2c:e3:ff:77:8c:de:
e4:83:62:cc:65:22:20:76:7d:4d:a0:63:ad:93:8a:b8:99:94:
f6:a4:2f:43:a4:37:f9:82:c3:5d:4c:2c:8d:24:0c:4c:55:4a:
70:c7:68:18:44:1d:ac:86:1f:0b:be:37:ae:0f:15:b8:aa:a3:
74:3a:d0:37:0f:15:76:bf:9b:4d:19:81:ad:ba:bf:cc:bc:cc:
c5:86:85:ad:c0:8e:d5:67:2d:f6:a4:76:1c:74:65:90:87:96:
ca:bd:63:1b:48:bf:20:ce:70:b3:92:88:c5:74:7c:92:08:de:
d3:ca:2c:e9:29:48:15:61:8e:97:0e:58:e1:1e:af:58:71:60:
09:d5:bc:8e:e8:2a:de:5e:b2:0a:78:cb:db:2e:ca:b3:86:37:
40:ea:96:44:7a:0a:b7:e2:0d:ef:0e:52:b6:26:88:bd:7f:1e:
40:3e:f6:4d:e0:35:b7:be:78:1e:92:90:17:47:f4:5f:0c:e8:
56:bc:af:4d:b0:4d:4d:f5:b2:93:f2:6e:a6:e5:9b:22:fe:5a:
a2:1f:9d:ec:7c:40:16:8d:22:1c:09:36:52:ce:c4:49:04:f0:
26:b4:42:c9:d1:5e:09:c7:7b:b8:a6:f5:95:8c:6d:71:a1:09:
43:ed:71:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:41:41 2026 by rpki-client