Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/9d7e6a-0eae-434f-9a35-8c97161e062f/1/ySi2NBei54heM4gakkqsnUCqymA.mft
File: ySi2NBei54heM4gakkqsnUCqymA.mft (raw, json)
Hash identifier: jdrnyjIB4rRJEOJkwtNAvxYrowMi4Tz2Gq1uICLef/w=
Subject key identifier: 25:98:FD:72:A4:FA:D8:7D:3A:4E:08:E0:B3:DD:79:AD:FB:DB:54:31
Authority key identifier: C9:28:B6:34:17:A2:E7:88:5E:33:88:1A:92:4A:AC:9D:40:AA:CA:60
Certificate issuer: /CN=c928b63417a2e7885e33881a924aac9d40aaca60
Certificate serial: 019D390A3761922059FE796BD6F06436E015
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ySi2NBei54heM4gakkqsnUCqymA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/9d7e6a-0eae-434f-9a35-8c97161e062f/1/ySi2NBei54heM4gakkqsnUCqymA.mft
Manifest number: 06ED
Signing time: Sun 29 Mar 2026 10:01:03 +0000
Manifest this update: Sun 29 Mar 2026 10:01:03 +0000
Manifest next update: Mon 30 Mar 2026 10:01:03 +0000
Files and hashes: 1: weXQO5Zhks4AnxcOCqcdzSxxPsw.roa (hash: ppnHsXhOiw58x/xYY5Ym72woaS7PHjIfKEtOPYGXh1U=)
2: ySi2NBei54heM4gakkqsnUCqymA.crl (hash: VqbTtoOCX4AO1+rHjwwMveqRs1MlVPrIfCMsC3Wj19c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/9d7e6a-0eae-434f-9a35-8c97161e062f/1/ySi2NBei54heM4gakkqsnUCqymA.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/9d7e6a-0eae-434f-9a35-8c97161e062f/1/ySi2NBei54heM4gakkqsnUCqymA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ySi2NBei54heM4gakkqsnUCqymA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:37:61:92:20:59:fe:79:6b:d6:f0:64:36:e0:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c928b63417a2e7885e33881a924aac9d40aaca60
Validity
Not Before: Mar 29 10:01:03 2026 GMT
Not After : Mar 30 10:01:03 2026 GMT
Subject: CN=2598fd72a4fad87d3a4e08e0b3dd79adfbdb5431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:91:34:98:e6:6c:7b:a2:bb:89:8d:ab:69:00:
b1:e5:6b:91:f6:9d:c1:9b:16:22:69:ad:af:10:ba:
20:5f:75:7c:f0:51:ab:1d:f2:42:e0:49:03:06:a6:
b5:1f:cb:25:ee:bf:51:40:04:b2:db:71:65:f6:3f:
7a:78:bb:86:76:57:62:0b:ac:0c:5a:96:9c:a4:fa:
24:df:ee:b4:cb:b6:f8:a8:33:d0:18:75:43:90:01:
de:2f:0e:2b:6f:48:a2:29:8d:2f:94:06:1e:e4:6a:
46:11:3c:c5:cf:4e:16:99:ac:90:ea:89:0f:f9:70:
af:be:81:67:89:5e:1c:35:14:83:84:f9:9a:41:04:
0e:fc:25:23:bf:cb:f3:75:6c:4a:e3:81:91:4a:86:
fc:48:17:29:cb:9c:80:27:64:66:33:1a:9c:7c:f1:
cc:d0:79:3d:9d:42:e0:b9:70:0a:e3:9c:35:59:a8:
d3:77:41:e5:a8:f8:91:0c:44:38:67:ab:cc:62:ee:
8d:a5:67:a0:d7:59:c5:92:83:10:a6:16:09:68:2c:
48:0f:3b:c0:7e:89:fb:94:f2:57:0c:e4:fe:0f:a4:
53:19:dd:ae:d8:8f:ce:c6:6f:aa:ec:85:c3:65:d4:
f0:bc:95:c7:5e:c0:aa:95:95:7f:41:4e:6f:8e:54:
b7:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:98:FD:72:A4:FA:D8:7D:3A:4E:08:E0:B3:DD:79:AD:FB:DB:54:31
X509v3 Authority Key Identifier:
keyid:C9:28:B6:34:17:A2:E7:88:5E:33:88:1A:92:4A:AC:9D:40:AA:CA:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ySi2NBei54heM4gakkqsnUCqymA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/9d7e6a-0eae-434f-9a35-8c97161e062f/1/ySi2NBei54heM4gakkqsnUCqymA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/9d7e6a-0eae-434f-9a35-8c97161e062f/1/ySi2NBei54heM4gakkqsnUCqymA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:2c:75:94:a7:8f:5d:1b:c2:da:85:35:9f:b1:16:39:84:a7:
6e:68:c0:7f:b1:ce:81:4b:04:e0:e2:2a:b7:1e:2f:1e:90:98:
5d:19:d9:b5:06:69:56:34:2e:dd:12:95:da:77:57:f7:7d:02:
27:ad:36:dd:20:04:c3:d6:2c:be:cf:f8:58:a5:b2:b3:68:7f:
2b:5b:5a:e0:ab:3f:8f:15:77:08:12:87:21:5a:39:41:b1:62:
0a:09:9d:32:71:97:65:80:d8:54:b6:26:c0:05:95:3b:dc:d5:
e3:e2:a4:d0:b3:ad:ad:1f:5c:9a:81:68:e9:9b:ab:5a:10:e6:
d3:5d:32:44:e1:cf:15:5f:c2:25:34:5b:13:0c:46:94:f5:64:
90:d5:14:9a:70:ef:d4:28:25:83:1b:90:fc:4f:9b:5d:22:18:
ff:7c:70:04:55:cf:86:7e:ef:a5:77:4d:5c:8c:9b:23:93:de:
8f:01:3e:ac:4a:35:c9:16:10:fc:49:81:84:ac:87:68:43:fb:
7e:3b:53:16:69:4c:89:f5:c6:06:84:a9:38:95:27:eb:5c:e4:
4b:2a:7e:bb:f3:84:4b:ad:be:de:ac:67:a7:21:5a:33:99:56:
84:2c:24:bc:29:84:b9:2f:6f:8f:48:a9:2f:32:cc:04:23:c9:
2d:c1:e0:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:35:57 2026 by rpki-client