Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
File: RyyyiCCZANGvGpmLsDnsdX5JPdU.mft (raw, json)
Hash identifier: hLrl0bSu8htDh6fuTNC/7vFYSkBY/JMzoYyLnZgTQSA=
Subject key identifier: E6:74:1B:20:D4:11:76:C7:E4:48:3B:CC:0A:76:CD:3A:CF:44:D9:BC
Authority key identifier: 47:2C:B2:88:20:99:00:D1:AF:1A:99:8B:B0:39:EC:75:7E:49:3D:D5
Certificate issuer: /CN=472cb288209900d1af1a998bb039ec757e493dd5
Certificate serial: 019D389C5E13D6621BB1530E9B8FB01BCB5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
Manifest number: 0AB8
Signing time: Sun 29 Mar 2026 08:01:04 +0000
Manifest this update: Sun 29 Mar 2026 08:01:04 +0000
Manifest next update: Mon 30 Mar 2026 08:01:04 +0000
Files and hashes: 1: JJzMSTrLw8Mj9A-jTJgxuAcpCQg.roa (hash: bTN07ZSVj23jINcVNw98RDlf14ha9z+H0npRvmlsk8E=)
2: RyyyiCCZANGvGpmLsDnsdX5JPdU.crl (hash: UvxdUZT+T1V/L4l7DRvogptU0amzPFXhvlQKvhFhwY0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:5e:13:d6:62:1b:b1:53:0e:9b:8f:b0:1b:cb:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=472cb288209900d1af1a998bb039ec757e493dd5
Validity
Not Before: Mar 29 08:01:04 2026 GMT
Not After : Mar 30 08:01:04 2026 GMT
Subject: CN=e6741b20d41176c7e4483bcc0a76cd3acf44d9bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c9:6d:1a:83:ad:f2:d7:75:c2:4e:cd:83:a9:
b0:2b:10:a8:df:04:6a:9d:97:14:3f:72:e7:ce:a9:
01:e3:08:19:92:67:97:81:30:01:eb:ff:df:53:77:
97:2e:0c:75:16:d1:7d:d8:63:58:8c:fe:25:d2:5a:
f4:4a:e5:32:f4:ed:08:e0:11:06:30:e2:30:05:74:
74:c6:46:7f:e4:df:97:85:8d:60:49:73:c0:ec:1f:
b4:5e:47:61:58:25:06:e4:9c:f9:7e:a2:07:31:15:
30:02:0d:a3:59:02:12:36:01:23:03:b3:04:ce:5d:
e5:d9:96:a0:26:dd:fc:04:f9:fc:06:f6:18:b2:be:
77:8a:1d:ea:19:84:39:af:e2:f7:8e:f2:44:9f:63:
e6:9d:00:21:c6:48:d7:75:03:b3:98:ea:69:1a:ec:
f1:dc:0a:48:c8:26:da:e4:68:9b:87:47:f6:34:38:
0d:b2:3b:de:22:2d:89:43:8b:71:d4:6a:eb:ef:0d:
88:60:f0:e9:bc:cb:e6:44:ae:9f:6d:7e:04:13:b7:
6e:15:90:8d:c4:0f:b7:48:1c:d2:24:00:6a:22:ac:
7e:fc:d9:c5:e8:f6:cb:55:60:7d:0c:db:6b:56:71:
90:85:53:67:a2:4d:12:97:0e:08:95:df:cf:d6:a2:
ca:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:74:1B:20:D4:11:76:C7:E4:48:3B:CC:0A:76:CD:3A:CF:44:D9:BC
X509v3 Authority Key Identifier:
keyid:47:2C:B2:88:20:99:00:D1:AF:1A:99:8B:B0:39:EC:75:7E:49:3D:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:5c:26:3b:dd:40:88:84:25:36:b6:48:05:4b:d0:49:8a:28:
ef:43:37:d9:a1:b6:0e:7a:9d:15:16:ae:f6:8d:47:72:cb:a6:
3c:02:9f:bd:5d:f6:98:96:a1:6e:93:1b:ba:d5:28:da:75:62:
5f:82:63:9f:a8:7e:ad:11:2b:17:68:26:1e:b4:b0:e9:f5:3d:
ed:26:44:30:24:b6:e7:dc:42:ca:c4:bf:22:6e:2b:ba:ca:d3:
59:ce:94:6e:92:fc:fd:f8:f2:55:0d:3e:7b:7a:a6:db:de:c4:
0c:ae:63:53:33:94:c2:8d:74:4d:06:2c:2c:1c:71:f2:84:05:
fe:0f:d0:ec:a8:c3:e0:22:1c:f3:e5:a2:9b:d4:26:d8:27:30:
c1:7e:14:23:8d:52:d1:d9:9a:03:34:87:62:3c:d6:6c:16:03:
ca:32:aa:fc:ad:ef:b8:d5:ad:3e:dd:8a:ef:84:76:c5:86:59:
df:62:91:76:d9:b2:68:04:b6:5e:9b:a0:73:33:a1:ee:76:ec:
f3:18:4b:6a:2e:bd:2f:f4:45:dc:c2:ee:ed:b7:3f:b6:1c:e7:
2f:63:c5:eb:17:ed:7d:65:d1:11:bc:b8:6d:b7:e5:bc:fd:3f:
39:68:02:92:55:cf:13:d0:bc:7b:1b:15:6c:bf:48:83:be:d1:
eb:9e:3c:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:48:47 2026 by rpki-client