Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
File: 1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft (raw, json)
Hash identifier: 8wNAXO6fq5eafm/q82iYmJc7ePlP+ULDAU5NFcM56Ho=
Subject key identifier: 9F:A0:1F:5A:EE:F9:00:A0:AD:9E:6D:6C:53:6C:11:42:0E:19:2C:01
Authority key identifier: F9:86:69:D3:1A:14:DB:DC:50:77:15:9C:F0:A6:53:53:BF:BF:A2:0A
Certificate issuer: /CN=f98669d31a14dbdc5077159cf0a65353bfbfa20a
Certificate serial: 019D382E593274A95929ACD9592CCD8C5C35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
Manifest number: 04F6
Signing time: Sun 29 Mar 2026 06:00:54 +0000
Manifest this update: Sun 29 Mar 2026 06:00:54 +0000
Manifest next update: Mon 30 Mar 2026 06:00:54 +0000
Files and hashes: 1: 1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl (hash: H4Wn4XFTrRgMvYwA6uqxCHMTSl6jdvy5iPVpRcHd5Zg=)
2: 67fn5GTCeyuZQBLDAbthDHukFBc.roa (hash: mGoog7qE1SUu5tq0Qw3ikg4XEdKFRtMMptWXJMMEWPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:59:32:74:a9:59:29:ac:d9:59:2c:cd:8c:5c:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f98669d31a14dbdc5077159cf0a65353bfbfa20a
Validity
Not Before: Mar 29 06:00:54 2026 GMT
Not After : Mar 30 06:00:54 2026 GMT
Subject: CN=9fa01f5aeef900a0ad9e6d6c536c11420e192c01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:07:93:20:3c:09:f9:ab:a4:2f:a5:cd:01:67:
70:9f:01:78:43:05:2d:2d:aa:21:e6:0b:bc:b0:94:
be:23:e2:d4:3e:05:97:cd:2b:2e:95:a8:74:78:44:
6a:80:a0:6c:a8:20:4a:67:83:b0:cb:d5:0e:9f:ac:
08:70:96:8c:a2:5e:15:9b:05:62:7f:ff:48:85:12:
27:be:5f:11:9f:43:9b:68:18:0b:c7:d2:37:67:f9:
99:9a:55:25:72:70:18:89:db:ea:01:29:b0:6e:cb:
19:ab:14:0c:68:5e:ee:81:10:62:e3:cf:11:81:cb:
6d:a3:73:a0:76:ac:db:6d:60:b3:2d:13:b4:47:9f:
a1:fd:08:85:a9:b6:20:00:a6:08:88:f7:6b:28:e4:
47:fc:4c:d5:cd:00:fa:b0:60:7a:81:57:70:d2:7a:
ba:f6:1a:c1:0d:d2:dc:82:d8:6b:01:14:f0:f1:56:
69:65:dc:a6:dd:0b:9e:ee:55:81:b3:a1:66:65:b7:
9a:28:0b:a7:e6:8d:65:bc:9d:4d:ec:2e:50:76:12:
e9:17:e4:54:11:b0:43:18:17:c1:76:cc:d2:97:2d:
e5:89:09:3d:c2:50:11:8e:8c:91:32:43:45:97:ce:
d6:27:8b:dd:6b:ba:1d:17:3f:5a:77:ab:d7:a9:c9:
66:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:A0:1F:5A:EE:F9:00:A0:AD:9E:6D:6C:53:6C:11:42:0E:19:2C:01
X509v3 Authority Key Identifier:
keyid:F9:86:69:D3:1A:14:DB:DC:50:77:15:9C:F0:A6:53:53:BF:BF:A2:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YZp0xoU29xQdxWc8KZTU7-_ogo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/2b417d-2869-411f-aeda-4a05bac5265f/1/1-YZp0xoU29xQdxWc8KZTU7-_ogo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:3c:88:06:d4:c0:d7:b3:54:a3:c0:63:24:4d:91:09:b9:f8:
44:d9:19:7a:5a:c9:dd:b3:a6:ea:12:c5:d0:67:bc:37:bd:90:
a7:f9:0c:4d:02:b2:75:57:ff:69:2a:98:e6:2d:ad:35:82:2f:
f4:a8:44:99:31:7c:48:81:05:ca:02:ff:c3:a5:e9:12:72:86:
72:d7:c0:b4:cd:5f:17:43:75:11:0d:f0:8d:d2:e7:7a:19:b6:
c2:2e:15:79:cb:1a:b9:4a:5d:e3:68:0f:38:2d:2b:5e:e0:06:
a5:de:2c:f8:4d:da:01:6d:a6:83:13:42:71:12:a9:0b:de:1c:
7c:4d:43:80:5e:ba:f6:94:e9:be:a8:70:d5:8a:c7:c9:3c:a9:
9d:e0:da:ec:e3:e5:14:94:52:da:2b:1f:a0:e4:d8:4c:cb:79:
4c:d0:c1:4a:69:86:62:76:eb:b7:c2:44:b8:30:33:7c:d6:85:
d4:61:33:91:2f:e7:98:ff:b9:ac:c5:1d:d8:87:22:53:d6:21:
01:bb:c2:25:8a:e3:62:38:a4:f5:46:98:97:3c:c0:b5:5e:37:
12:ff:92:2d:8e:92:4c:3b:22:06:2f:f8:f6:04:f2:0e:9c:5c:
54:99:d0:b4:c6:f6:fc:1d:bd:4e:df:45:2e:63:1d:63:09:d4:
93:22:8f:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:51:08 2026 by rpki-client