Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
File: y2bnZjRVc9cVnWeU7a7bc5okH48.mft (raw, json)
Hash identifier: 84o7tWvdjmkmBSmQ0wl3tlpZG1N44kNt/cluXBQqBco=
Subject key identifier: 9B:70:BC:07:64:A2:3D:A1:31:2D:04:F7:C5:75:98:D1:45:C6:36:4E
Authority key identifier: CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
Certificate issuer: /CN=cb66e766345573d7159d6794edaedb739a241f8f
Certificate serial: 019D389C3149CA7AF80D4ED6E26F04347C46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
Manifest number: 08DE
Signing time: Sun 29 Mar 2026 08:00:53 +0000
Manifest this update: Sun 29 Mar 2026 08:00:53 +0000
Manifest next update: Mon 30 Mar 2026 08:00:53 +0000
Files and hashes: 1: y2bnZjRVc9cVnWeU7a7bc5okH48.crl (hash: /KeFCNGEyAHjjJspJsD9//s8MoR+Feaj0b+G5lv4xAI=)
2: zyxH_ZayU87vTJX81fgX-DVJmTk.roa (hash: v7IX/ua2uQXhjGalwVPCerFWeIG3hQEbj9ssotgdfjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:31:49:ca:7a:f8:0d:4e:d6:e2:6f:04:34:7c:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb66e766345573d7159d6794edaedb739a241f8f
Validity
Not Before: Mar 29 08:00:53 2026 GMT
Not After : Mar 30 08:00:53 2026 GMT
Subject: CN=9b70bc0764a23da1312d04f7c57598d145c6364e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ad:d3:b2:85:18:d8:55:88:cd:0c:c6:e9:65:
62:46:4d:1a:86:86:4a:33:b8:b4:8c:70:4f:58:ef:
e8:89:31:f7:79:41:e1:c2:b9:26:ca:b3:7a:4a:66:
1f:75:dc:a3:ef:80:4c:ff:e9:85:a0:27:ae:98:0d:
49:8e:8d:3c:3d:fe:6a:bc:81:41:4c:35:6b:29:4b:
db:67:1d:31:2c:b1:50:39:01:65:7c:f5:9a:b1:23:
08:47:e7:04:46:62:d0:9e:8a:15:86:92:04:60:8e:
84:08:36:75:af:8b:89:4f:56:4e:13:a0:9b:9c:36:
ca:a2:76:9a:ae:8c:92:a6:b1:7b:76:9f:f5:7a:37:
5c:ba:82:fe:fb:fa:6b:e7:5e:61:e9:a3:49:72:0f:
a5:a6:52:fc:9c:d5:05:66:b7:54:05:69:c1:b5:b9:
82:42:e3:35:74:db:2e:a3:65:f7:62:ec:15:6b:23:
58:db:d3:42:10:44:d6:c9:bb:d1:fc:75:af:c5:ce:
bc:fc:76:76:20:63:c5:6f:15:e3:26:d4:6d:f5:e8:
c6:5f:17:0b:11:a0:a2:c7:d2:01:e4:df:1d:39:37:
a2:99:70:64:6b:3a:7d:94:b1:c0:27:98:8b:9b:2b:
8e:23:f6:dd:67:80:5d:71:16:f9:7f:e9:5d:97:29:
9e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:70:BC:07:64:A2:3D:A1:31:2D:04:F7:C5:75:98:D1:45:C6:36:4E
X509v3 Authority Key Identifier:
keyid:CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:03:1e:58:7d:84:98:a8:83:05:74:cf:35:5d:e8:a4:63:a4:
c9:f7:60:66:78:8a:0b:83:ca:fd:c2:03:29:8b:e0:dd:9a:37:
85:0f:fd:09:66:a8:0a:b6:9b:4d:b1:38:18:24:28:61:bf:3b:
7f:6e:38:87:51:30:cc:c7:60:66:82:c9:d0:bd:3b:72:6a:01:
c9:6e:1b:03:60:05:fb:24:3a:e8:6e:55:ec:97:29:36:a3:fe:
30:80:be:1c:8e:63:74:8d:19:34:8a:07:1f:bf:bd:e0:c3:d1:
ad:77:a7:b1:d3:34:7a:b7:e0:b9:df:5d:ff:f6:25:66:02:86:
ab:3e:aa:31:fd:18:e0:a2:8d:f4:67:66:c7:5f:64:f9:80:37:
ed:ce:70:62:bd:00:55:29:a0:ad:b3:45:e5:8c:e0:2a:4d:2a:
f7:f5:cd:7f:7a:a3:cf:a6:17:92:b8:4e:6b:ec:22:b4:44:81:
ec:c4:5d:fb:b5:a0:a6:fc:d5:3c:c0:63:61:79:b5:23:e8:de:
20:9f:6c:bc:a3:ae:b1:ab:0d:bb:03:4a:83:74:c5:c9:da:66:
61:7d:7c:8d:0c:78:94:11:d0:e9:d2:b6:cc:fd:73:aa:ec:02:
a8:bc:8c:9a:3c:89:4e:7f:bf:80:df:d4:3c:e2:0d:7c:82:9e:
e6:47:2a:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:42:17 2026 by rpki-client