Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/36708b-d66b-407f-9547-f02116226a88/1/dYYhYjrGyrj2veVSbnopMdYm_ow.mft
File: dYYhYjrGyrj2veVSbnopMdYm_ow.mft (raw, json)
Hash identifier: 3148rWn7ZNNuDCS5BYEdk2jLqZ2TQngEahWQ3oUhZl4=
Subject key identifier: 24:0E:A7:C0:A2:97:EE:AD:AB:80:16:46:24:BD:BD:30:6D:40:A2:59
Authority key identifier: 75:86:21:62:3A:C6:CA:B8:F6:BD:E5:52:6E:7A:29:31:D6:26:FE:8C
Certificate issuer: /CN=758621623ac6cab8f6bde5526e7a2931d626fe8c
Certificate serial: 019D258381EB7536A384ED11961DF4858F9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dYYhYjrGyrj2veVSbnopMdYm_ow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/36708b-d66b-407f-9547-f02116226a88/1/dYYhYjrGyrj2veVSbnopMdYm_ow.mft
Manifest number: 1819
Signing time: Wed 25 Mar 2026 15:01:08 +0000
Manifest this update: Wed 25 Mar 2026 15:01:08 +0000
Manifest next update: Thu 26 Mar 2026 15:01:08 +0000
Files and hashes: 1: EXopuR5ESiK7_JfMXbRvvwemOwM.roa (hash: /csuVRW3pPg52UWTPGC8VigLMZFh8XPz4sQJGV29ruU=)
2: dYYhYjrGyrj2veVSbnopMdYm_ow.crl (hash: tTfMBDuu4iT+hz/8Er9HIS2rSWaYhP9dV8qpx1+OjnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/36708b-d66b-407f-9547-f02116226a88/1/dYYhYjrGyrj2veVSbnopMdYm_ow.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/36708b-d66b-407f-9547-f02116226a88/1/dYYhYjrGyrj2veVSbnopMdYm_ow.mft
rsync://rpki.ripe.net/repository/DEFAULT/dYYhYjrGyrj2veVSbnopMdYm_ow.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:81:eb:75:36:a3:84:ed:11:96:1d:f4:85:8f:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=758621623ac6cab8f6bde5526e7a2931d626fe8c
Validity
Not Before: Mar 25 15:01:08 2026 GMT
Not After : Mar 26 15:01:08 2026 GMT
Subject: CN=240ea7c0a297eeadab80164624bdbd306d40a259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:27:75:28:a6:31:4f:d9:bd:b2:ed:c6:e3:98:
1b:ba:73:70:7b:93:7b:ee:e4:dd:4d:c8:69:1c:27:
83:bc:9f:5b:a9:a9:4b:dc:0d:d1:38:e2:75:3d:45:
f2:b2:7c:b7:2d:00:22:e7:a2:bd:e7:f6:9b:d1:62:
9b:ae:12:5b:6b:06:83:f1:79:39:0f:e6:62:4a:36:
37:8f:a1:19:c9:23:7f:37:17:cf:76:9a:66:5a:ed:
89:dc:06:4d:6d:57:46:04:46:bd:b0:7c:aa:66:90:
9e:7b:dc:63:c0:b5:5a:4f:b2:bb:94:f0:04:3b:c7:
bb:cd:20:82:36:58:51:0e:39:b5:25:64:20:e5:3b:
cd:ea:f1:22:ae:09:2d:7b:60:b3:08:8f:2c:02:c7:
1d:1c:f9:b8:b6:b6:10:cc:04:34:41:b6:30:e4:f0:
79:71:9f:98:3e:8c:bb:9c:1e:79:ad:d6:e2:b2:c2:
7a:4c:86:49:1f:a2:93:9e:8f:ec:0e:0f:5e:b4:ff:
b3:43:c4:67:20:0b:a6:1d:d2:4b:e8:31:d3:a9:8f:
0c:4f:fe:dd:e7:19:1c:62:d0:43:80:ad:5e:6d:d6:
a8:24:13:3b:f2:ed:61:ea:6c:07:22:69:fc:53:82:
37:fd:cf:51:f7:6a:0f:a5:a7:1b:80:0e:e9:48:27:
fc:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:0E:A7:C0:A2:97:EE:AD:AB:80:16:46:24:BD:BD:30:6D:40:A2:59
X509v3 Authority Key Identifier:
keyid:75:86:21:62:3A:C6:CA:B8:F6:BD:E5:52:6E:7A:29:31:D6:26:FE:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dYYhYjrGyrj2veVSbnopMdYm_ow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/36708b-d66b-407f-9547-f02116226a88/1/dYYhYjrGyrj2veVSbnopMdYm_ow.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/36708b-d66b-407f-9547-f02116226a88/1/dYYhYjrGyrj2veVSbnopMdYm_ow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:f5:fb:93:b8:67:41:fc:06:f5:a7:98:e0:ad:7d:25:2b:ce:
8d:03:3f:27:18:4f:d1:e0:67:35:7b:2f:e7:22:be:98:bc:38:
01:85:82:20:c9:d3:7e:33:75:c2:9b:82:b7:a5:c0:4c:c4:bb:
3e:42:c7:34:b9:5e:2a:f1:57:df:58:3e:96:56:14:73:2a:95:
85:7f:d8:48:7d:c3:d1:9a:b7:ab:80:64:1f:40:11:88:05:89:
61:6f:df:fa:e6:cf:cd:a0:01:e3:dc:d6:69:1f:65:38:ca:89:
80:34:a4:62:a6:15:7c:83:29:94:bf:86:74:cf:7b:8a:6e:b1:
4b:63:9a:db:af:57:68:57:39:d8:6d:d4:ea:f4:f8:c6:9b:16:
22:6e:3b:fd:24:c1:cb:62:39:e7:b2:cb:2a:ce:b2:c1:c9:16:
5a:c2:f6:6d:fb:8a:43:17:08:d9:89:a6:86:0d:d8:63:08:4f:
28:ac:7f:f4:f2:e9:ef:17:6c:fd:ce:5a:3e:46:b0:71:77:a4:
1a:14:65:00:9f:d3:d6:cd:38:60:f4:cb:bb:c7:57:65:b9:a1:
4c:88:e6:fa:b4:dc:74:e8:99:8a:b1:19:d0:8a:12:bb:a1:75:
60:c3:99:d7:8a:e1:df:33:7e:52:31:d1:7d:31:ab:f2:31:e3:
bf:dc:06:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:21:40 2026 by rpki-client