Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
File: ydWxKeBvlSRoXnABAoQfctaRXDM.mft (raw, json)
Hash identifier: cjuii8E/4gykFf15ntYvWxRvM2Io6K+DyJXPIh/dbN0=
Subject key identifier: 12:77:DE:CA:49:29:93:19:24:46:3D:59:F9:30:27:03:15:9B:AD:7A
Authority key identifier: C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
Certificate issuer: /CN=c9d5b129e06f9524685e700102841f72d6915c33
Certificate serial: 019D2327DF32345DC15CE032BF21E3727F4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
Manifest number: 0667
Signing time: Wed 25 Mar 2026 04:01:48 +0000
Manifest this update: Wed 25 Mar 2026 04:01:48 +0000
Manifest next update: Thu 26 Mar 2026 04:01:48 +0000
Files and hashes: 1: kwFPG9hW2RnxD_y7iGiEkD7ds7s.roa (hash: oBOX2hL6Q0voGuCACiRactuFniCHTuH8t84KLSlEN9Y=)
2: ydWxKeBvlSRoXnABAoQfctaRXDM.crl (hash: Q1auUKCRkrWQfrDe7Yv+y4rjcYNyGQkDncp+UAybDlU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:23:27:df:32:34:5d:c1:5c:e0:32:bf:21:e3:72:7f:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d5b129e06f9524685e700102841f72d6915c33
Validity
Not Before: Mar 25 04:01:48 2026 GMT
Not After : Mar 26 04:01:48 2026 GMT
Subject: CN=1277deca4929931924463d59f9302703159bad7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:61:85:3f:bf:04:26:f4:9a:8f:98:8b:de:01:
43:9b:48:88:13:8e:7f:20:37:cc:0c:e4:a3:1c:09:
c1:d3:38:39:55:8d:92:bf:52:67:95:f0:3d:5c:af:
31:f0:e3:f2:45:1c:d7:85:eb:d8:66:0b:99:1c:4b:
e6:53:2d:fe:a9:d4:2b:12:ef:4b:dc:2a:ea:d0:97:
0a:23:01:3b:13:0a:40:4b:47:c6:4b:6b:60:cb:b3:
d4:ed:97:54:64:be:67:17:d9:ab:70:47:40:86:ca:
ea:d5:6a:9c:7e:b5:54:65:89:8b:85:7c:0e:09:b7:
fc:1d:4b:f2:f8:6c:1f:46:a3:14:aa:8b:07:58:ab:
4c:cf:c6:d5:72:bb:bb:40:03:d1:c8:71:bd:b8:e2:
74:f0:82:f0:af:d0:f9:e3:41:be:01:9e:45:ec:c6:
b5:50:24:05:cb:1c:b4:0a:44:8d:f6:5d:9b:8d:8c:
f7:cf:db:de:50:f4:7f:c4:d4:3f:45:dc:d6:c3:d3:
3f:4d:af:a6:23:25:23:6c:83:bc:7a:95:0a:12:af:
2d:0f:63:52:8f:7e:cc:c4:e1:4d:c8:31:84:43:f3:
8f:b1:00:d2:11:dc:11:b0:eb:7e:04:d0:a8:01:9b:
aa:f5:3d:48:7f:dd:45:b1:6f:84:b0:0a:24:c1:02:
fd:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:77:DE:CA:49:29:93:19:24:46:3D:59:F9:30:27:03:15:9B:AD:7A
X509v3 Authority Key Identifier:
keyid:C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:85:65:58:85:68:aa:20:9c:4b:bd:f6:96:c1:e1:98:88:0e:
d7:ba:4c:bf:a6:f9:39:e0:e3:f6:5f:c1:9a:1d:73:ab:bf:4b:
fb:99:8e:31:7e:31:7d:be:b7:50:d7:97:e9:64:3b:ed:a2:cf:
f7:ca:ba:b4:1e:9f:82:85:78:4a:05:fc:d7:5a:a0:84:74:69:
82:6b:d5:5b:64:d0:89:22:2c:c7:b0:82:7a:97:bd:71:41:ab:
62:2e:29:59:97:2e:ed:4d:14:91:18:d5:37:61:4d:a0:df:b3:
ea:51:3b:ef:8a:a3:ce:61:3d:01:7d:eb:5b:df:8f:3e:cb:fc:
97:49:25:97:57:04:e2:29:e3:2f:df:76:7d:1b:f8:0d:bd:f9:
cc:08:85:54:f7:a1:10:51:42:f9:42:7e:aa:2d:45:db:d5:23:
40:f6:f4:b3:42:e8:8d:54:eb:37:8a:a5:27:79:ac:a4:1c:a6:
12:cb:a7:11:ac:c8:1b:66:82:0d:92:20:95:2c:e5:77:40:84:
50:ee:22:c1:8c:3c:78:e2:84:86:67:dc:de:10:a3:35:e3:ee:
36:ea:b6:89:20:a5:a0:75:4d:34:96:6e:0c:c4:11:66:3c:a9:
7f:25:b2:c2:e8:02:3f:4d:80:e5:45:a1:fa:0b:1b:04:3d:e3:
77:54:01:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 05:58:17 2026 by rpki-client