Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
File: hYYCc-snGSK59-yPSlkQFjVtcys.mft (raw, json)
Hash identifier: u/LLrJizI2gNTo+15NZaYaOhiJr27hGNgpM2JWyC00E=
Subject key identifier: B9:FB:11:CE:EC:CA:7A:0D:39:4D:9A:61:DC:E1:7F:05:8F:CB:C9:16
Authority key identifier: 85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
Certificate issuer: /CN=85860273eb271922b9f7ec8f4a591016356d732b
Certificate serial: 019D3789A5840DC7663DD951D7C2401F3E47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
Manifest number: 0DAE
Signing time: Sun 29 Mar 2026 03:01:00 +0000
Manifest this update: Sun 29 Mar 2026 03:01:00 +0000
Manifest next update: Mon 30 Mar 2026 03:01:00 +0000
Files and hashes: 1: D6JPgBB3y0DTXsN5OydtRsPiiEk.roa (hash: hsVhJoG6wAvpL0vm+kbIsCX/IqBHmR9dNribJiBqlUk=)
2: hYYCc-snGSK59-yPSlkQFjVtcys.crl (hash: KFRccFVRvN+v5Vce9jPBAwknLZIiiH9CIrSEkNRUSGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:a5:84:0d:c7:66:3d:d9:51:d7:c2:40:1f:3e:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85860273eb271922b9f7ec8f4a591016356d732b
Validity
Not Before: Mar 29 03:01:00 2026 GMT
Not After : Mar 30 03:01:00 2026 GMT
Subject: CN=b9fb11ceecca7a0d394d9a61dce17f058fcbc916
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:c9:1a:3e:45:35:ff:ff:af:ac:ce:4b:9e:ed:
d7:bd:95:3b:d1:85:e5:a3:e5:a8:df:21:a3:25:5e:
e6:f8:8e:13:2a:d2:28:22:e9:2c:e8:b8:eb:10:3b:
08:00:f1:02:e9:26:b9:11:db:9c:63:75:67:76:44:
6d:54:8d:91:a4:80:6c:eb:3e:9e:d0:40:1f:8f:0b:
47:e1:cb:c6:d3:42:e0:18:28:0c:93:a8:60:0c:e1:
a3:51:6e:b3:ce:e6:c6:b9:e7:8d:e7:d8:6d:64:3d:
88:a9:85:e4:9c:48:18:68:82:6c:99:84:d5:97:0e:
7c:ae:9c:73:74:59:f0:cd:36:f7:25:fd:98:c5:24:
a9:d0:9e:73:bc:31:4c:af:c6:ee:e1:eb:85:e8:46:
cf:a1:a3:a7:0e:e0:81:b2:2a:59:e3:90:bc:7a:db:
08:b6:65:a9:48:89:90:89:ce:bd:6e:45:06:1d:24:
48:af:9f:da:89:92:99:90:15:bc:57:4f:52:dc:f9:
ea:e2:69:54:ab:99:fe:af:36:9f:d1:74:53:ff:f7:
06:ec:9f:d6:15:d0:5b:33:2f:56:d0:54:51:aa:8a:
c9:04:e8:32:fa:ed:e4:68:f2:de:8a:d8:f0:e1:b0:
a7:1b:9f:28:7b:00:7c:c4:bc:13:c9:17:ca:bb:1b:
d8:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:FB:11:CE:EC:CA:7A:0D:39:4D:9A:61:DC:E1:7F:05:8F:CB:C9:16
X509v3 Authority Key Identifier:
keyid:85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:99:aa:f1:02:f2:4d:4a:de:bc:10:9a:37:e0:6b:71:b2:61:
ac:2f:29:cd:51:03:15:8f:6e:a4:a3:f1:4c:c5:37:9c:b6:d6:
d3:00:c3:63:6f:89:28:82:b1:59:d4:9f:4a:0d:c8:b5:cc:22:
73:73:c0:60:1a:ef:d7:e4:cc:02:2c:68:2d:56:65:30:b1:ed:
89:1a:1d:e3:0b:0d:e6:19:33:1d:25:b0:de:b5:cd:5c:c2:8b:
95:9d:c7:a6:7b:d4:fc:a1:a2:fc:9f:d5:6a:9b:41:34:3d:4c:
28:44:9a:da:ef:69:32:3b:c4:b5:59:92:cf:29:71:41:3b:bc:
17:2f:bc:ad:9e:e6:4b:54:54:27:c3:d0:33:86:90:8f:af:ab:
f7:c9:c1:e7:bb:4c:b0:96:3d:ba:02:ca:ae:11:2d:b7:30:19:
02:67:36:1f:7b:43:74:95:15:79:81:32:df:de:35:17:66:e2:
02:6f:89:dd:31:fa:89:96:2c:1b:23:f7:06:70:c3:9b:3b:12:
ec:71:52:4d:25:a1:1e:4f:94:42:44:b3:8f:d5:de:18:68:9a:
e3:a7:79:5e:de:28:10:13:c2:40:71:d9:9e:85:35:6d:30:e7:
38:39:a9:85:1b:e3:e7:81:fe:17:8d:4d:a9:e3:aa:11:59:2a:
19:48:6a:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:55 2026 by rpki-client