Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
File: y78j_5hnaDYlSUYv4JLGMV6sykA.mft (raw, json)
Hash identifier: 5qlAqdQDJPnF6ujvT6SE4mDNqkzJ59xaSYUUFAyvETw=
Subject key identifier: 2F:17:06:6C:45:DF:7D:C5:CE:F6:A9:17:2E:6C:E8:AC:85:B0:30:40
Authority key identifier: CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40
Certificate issuer: /CN=cbbf23ff986768362549462fe092c6315eacca40
Certificate serial: 019D39416CE6DD4269865AE9D68FFFA360E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 11:01:22 +0000
Manifest this update: Sun 29 Mar 2026 11:01:22 +0000
Manifest next update: Mon 30 Mar 2026 11:01:22 +0000
Files and hashes: 1: 1-eZ3i0dxANHC7WiRV9EvIipS61A.roa (hash: Ak1nuU6x8cZ4QdQ6COojFaQA6BvDEXKIeiGaihwMfjI=)
2: y78j_5hnaDYlSUYv4JLGMV6sykA.crl (hash: 5nMQj8rkrA/VloKUggEC4vv7y9hJEUWjy3nwh5nKpks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:6c:e6:dd:42:69:86:5a:e9:d6:8f:ff:a3:60:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbbf23ff986768362549462fe092c6315eacca40
Validity
Not Before: Mar 29 11:01:22 2026 GMT
Not After : Mar 30 11:01:22 2026 GMT
Subject: CN=2f17066c45df7dc5cef6a9172e6ce8ac85b03040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5e:a8:6f:74:27:d7:9e:fc:6e:f0:74:2b:6f:
cd:8f:d2:f1:13:d3:88:aa:66:a5:ac:38:64:23:6b:
b5:81:d3:56:83:27:10:f6:23:56:bb:e8:36:96:57:
27:ad:6a:16:f6:1a:d3:bd:a1:1c:fc:c0:c7:d8:39:
a6:a7:24:f8:f1:5d:9e:6f:4d:9f:ea:54:de:a6:0d:
fd:0b:17:a0:51:ef:63:9b:e6:37:e5:41:f1:c9:c9:
bb:08:df:57:1d:7a:2b:ca:0f:79:18:af:23:42:bf:
7d:9f:16:6e:3f:6d:f2:37:0c:89:a1:4e:5f:16:ae:
ca:fc:67:8c:8e:5e:2d:12:b0:2c:b0:0e:db:88:1c:
41:cf:72:f8:0b:40:1d:27:b9:6d:1d:dc:41:aa:64:
4b:e5:d6:9c:33:80:30:c5:c1:bb:44:25:79:24:6b:
61:c9:e8:57:77:ed:3a:12:43:64:4a:03:f0:3e:39:
47:8f:6d:41:bc:53:97:80:2f:6d:08:05:52:a7:a8:
dc:b7:86:9f:39:ea:cb:e9:c7:34:d9:37:d0:1d:4f:
43:b2:1a:21:bc:3c:70:97:74:57:a3:80:d8:b8:25:
37:c1:03:54:d2:06:aa:0f:8e:8d:93:90:17:ff:63:
15:48:63:2a:c8:b0:de:9f:0c:7f:08:c0:cb:35:a5:
95:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:17:06:6C:45:DF:7D:C5:CE:F6:A9:17:2E:6C:E8:AC:85:B0:30:40
X509v3 Authority Key Identifier:
keyid:CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:79:96:b3:78:88:0a:28:54:0b:90:4c:07:ce:3e:d7:4d:0c:
75:65:ee:27:3b:38:dd:b2:24:50:72:55:65:57:0a:f3:d0:6c:
13:12:ef:75:7f:f5:5e:59:ea:bf:ca:25:fa:ba:a9:79:fe:ba:
5d:bf:69:37:03:ff:ed:ff:b5:59:8b:3e:af:c5:7a:4e:8b:0b:
32:02:fb:9c:70:cc:25:53:49:25:48:25:f9:47:38:c7:ca:06:
fe:84:be:ef:7d:f6:dd:f4:04:d6:1a:2c:c9:94:fc:66:89:d0:
b4:4b:2f:45:2a:af:02:45:22:84:d2:c9:e5:7a:31:dd:47:88:
d9:e4:eb:77:0a:3e:24:6a:d5:98:16:06:e4:3a:cc:53:8f:9d:
9a:64:f4:1f:49:75:ff:0e:17:b7:37:ef:1f:46:ea:08:39:ca:
b6:8a:25:28:a1:d8:db:98:5c:9b:72:f3:70:a5:fc:b4:0f:83:
d6:37:90:c5:fe:f0:b1:3f:65:cb:49:28:d1:ec:d5:ca:30:d4:
92:71:4d:69:e4:bb:c5:f2:cb:11:73:76:c8:9a:e0:48:a1:e1:
14:47:e2:f0:12:db:53:f9:3f:a7:00:8b:6b:c4:33:de:b5:1b:
82:5d:70:40:b8:9d:49:5e:11:47:77:15:70:47:57:13:fe:af:
3c:de:fe:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:38:35 2026 by rpki-client