Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
File: ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft (raw, json)
Hash identifier: VpqljAg0ts0pD6+UFLMM7fMYA1veRFtr8SgWU+Fsykk=
Subject key identifier: 71:30:8E:DE:FA:B6:BD:07:F3:77:7E:35:70:99:16:6F:46:E7:C6:A8
Authority key identifier: CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2
Certificate issuer: /CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2
Certificate serial: 019D2816D58C79FF66A04D9919640DAF53D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
Manifest number: 043F
Signing time: Thu 26 Mar 2026 03:01:18 +0000
Manifest this update: Thu 26 Mar 2026 03:01:18 +0000
Manifest next update: Fri 27 Mar 2026 03:01:18 +0000
Files and hashes: 1: oige68hRBiXUkOK8iHHDWo8nk74.roa (hash: j1qWPqgO+nK+2rkNLUIphbABAHPc6uAzHBH1FOhC3L4=)
2: ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl (hash: 9tlm4oGjfsAISRsgsmPcpOjKsXazTADeCtOsv2eym5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 03:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:d5:8c:79:ff:66:a0:4d:99:19:64:0d:af:53:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2
Validity
Not Before: Mar 26 03:01:18 2026 GMT
Not After : Mar 27 03:01:18 2026 GMT
Subject: CN=71308edefab6bd07f3777e357099166f46e7c6a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:91:bf:b2:8e:08:f5:95:78:45:da:3e:12:b1:
a7:e0:74:fe:e1:a1:8b:4e:00:9d:31:15:f2:c6:c8:
b9:21:8b:df:98:f5:09:ab:53:b4:b2:89:7c:77:e6:
c4:05:8a:07:97:73:6f:45:4d:8d:2e:fc:18:c7:83:
59:7b:0e:07:60:c2:34:c6:bf:10:01:c8:ac:3e:b3:
5e:24:0d:eb:fd:67:bf:61:4f:5b:9d:4d:90:83:44:
d1:c4:e0:88:fe:00:02:00:86:9b:38:3c:58:09:06:
85:63:0e:66:c6:a8:ab:00:28:ed:e7:b1:4d:f5:18:
c9:27:15:84:4a:5c:37:bc:30:c3:2d:10:9b:79:26:
d0:0c:19:a3:a3:88:26:e1:b6:1f:28:4e:0e:74:f2:
71:89:f0:64:53:e0:b0:d0:01:e2:72:d9:00:53:60:
ee:fc:78:66:dc:4f:2d:08:5a:44:60:bf:7d:76:69:
1c:c5:bc:2b:87:99:be:5d:52:55:55:8f:57:ed:a2:
41:57:44:5d:06:62:ae:47:53:cd:42:ab:4e:75:5a:
ba:0e:d7:9f:bf:3f:b7:a8:43:77:c1:93:38:d8:1b:
18:7c:3f:c5:fc:a6:0a:73:3a:49:51:8c:3d:31:01:
f4:73:c1:98:9a:48:9e:09:df:73:56:55:8d:db:08:
04:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:30:8E:DE:FA:B6:BD:07:F3:77:7E:35:70:99:16:6F:46:E7:C6:A8
X509v3 Authority Key Identifier:
keyid:CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:8f:5e:39:59:65:e8:68:1a:82:dc:72:18:4e:32:54:9d:b1:
0e:f4:84:24:1f:23:b9:62:97:50:5b:c7:81:8e:0d:40:3b:95:
06:54:9f:c3:ca:61:c8:8f:72:00:99:31:8b:67:23:86:66:68:
4d:8a:73:5e:79:1e:c1:9c:4a:ff:c6:a3:af:74:0e:94:e2:17:
14:27:5b:e5:12:35:92:ec:72:65:bd:04:9c:30:96:c1:37:e4:
19:ef:ef:ef:78:aa:65:85:8e:47:fb:dd:76:19:f5:5d:f5:85:
e6:63:02:06:40:ee:9f:fe:08:3d:67:4d:19:86:07:14:70:19:
b9:eb:5a:34:9c:90:26:7a:b8:11:b8:73:52:fe:2f:fe:75:69:
9b:76:4b:de:bc:e5:2c:98:f6:35:6e:f9:73:fc:d5:cb:b3:49:
21:f6:99:50:67:01:95:8a:9f:a9:d2:1d:79:45:61:0f:cc:ee:
69:f2:c3:fe:31:64:f0:ae:60:a0:20:2e:96:46:7c:4c:11:11:
5f:3a:03:6d:47:4b:ee:6e:ee:38:3c:f6:2a:39:96:82:0f:cb:
0e:56:f7:78:bc:fb:64:a4:bb:3b:42:2c:8b:fd:6d:f5:46:fd:
a9:cb:74:69:57:26:71:0e:8a:40:0c:89:15:f1:5b:29:3b:35:
02:61:97:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:06:44 2026 by rpki-client