Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
File: y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft (raw, json)
Hash identifier: 5EDh+cq72XEnmcdjFbU6PtvMp+BQK55Ra2BjmgFy6YU=
Subject key identifier: 7D:35:E1:A9:BD:8C:9E:D5:79:51:00:6F:C2:C3:89:AA:BC:2A:26:DB
Authority key identifier: CB:D7:FC:13:E1:83:6C:39:6C:CA:21:78:97:04:AB:39:FD:9E:5B:64
Certificate issuer: /CN=cbd7fc13e1836c396cca21789704ab39fd9e5b64
Certificate serial: 019CE9DCB1D51E617139161DC4A440B0D15E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
Manifest number: 041A
Signing time: Sat 14 Mar 2026 01:01:20 +0000
Manifest this update: Sat 14 Mar 2026 01:01:20 +0000
Manifest next update: Sun 15 Mar 2026 01:01:20 +0000
Files and hashes: 1: ILxA1XEGj58DPvCJ70R3V0QUW0o.roa (hash: 2pgTad0+RDSMUqb1cSCzcPHq0QPOVvclokToC+rjLTI=)
2: y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl (hash: /KDKbpsZhyVtUh2AohbX8SSx8h9WZY9JzqkPEnYICCc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Mar 2026 01:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e9:dc:b1:d5:1e:61:71:39:16:1d:c4:a4:40:b0:d1:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd7fc13e1836c396cca21789704ab39fd9e5b64
Validity
Not Before: Mar 14 01:01:20 2026 GMT
Not After : Mar 15 01:01:20 2026 GMT
Subject: CN=7d35e1a9bd8c9ed57951006fc2c389aabc2a26db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ca:36:f9:24:d5:68:4a:d8:b8:89:f4:a3:70:
72:bb:c3:c5:e0:53:50:0a:25:0e:56:3e:b5:52:28:
83:c4:a0:02:a5:58:50:91:19:fb:77:dd:c0:d7:96:
dc:5d:4f:cb:47:41:18:5e:b3:45:53:04:6e:a4:c3:
3f:8f:0e:6a:a7:6c:0c:f2:15:42:e1:d7:1f:6d:f7:
92:d4:22:70:d5:7c:e7:a9:6b:11:67:22:cf:d7:2d:
42:df:57:d4:99:15:ea:5f:af:31:98:a7:87:65:56:
b4:43:04:96:3a:c6:07:68:c0:6a:6b:22:8f:dd:95:
43:b3:d6:70:aa:06:16:8b:77:7d:87:b8:45:e9:3a:
e1:32:00:f7:32:72:03:94:21:32:eb:df:fc:2f:2c:
77:9f:48:8d:e7:c0:d9:8e:86:77:ab:15:0e:c1:02:
00:45:c4:d1:23:2c:a4:ac:b9:a8:e5:2b:66:1b:72:
cb:0c:a2:ea:5f:59:49:ac:c6:56:06:9c:e9:82:3d:
59:d6:af:8a:c0:b7:aa:61:9e:c7:fd:a9:7c:a8:0a:
50:4d:b9:4e:2c:43:38:d7:cf:4f:c5:a7:9f:77:29:
3d:8e:3f:97:da:a4:34:e6:89:c9:89:92:96:33:09:
fc:a2:54:07:67:d9:a3:5b:a0:0d:73:89:03:aa:f9:
6d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:35:E1:A9:BD:8C:9E:D5:79:51:00:6F:C2:C3:89:AA:BC:2A:26:DB
X509v3 Authority Key Identifier:
keyid:CB:D7:FC:13:E1:83:6C:39:6C:CA:21:78:97:04:AB:39:FD:9E:5B:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:c5:d3:2d:1a:3a:0f:ac:4e:35:95:d2:e5:34:c0:cd:2c:1d:
fb:36:79:50:2d:6b:eb:ff:db:a8:1c:db:2d:c4:19:2a:6d:a6:
dc:c8:81:05:2e:12:ec:1b:38:86:aa:65:4e:8f:f2:0c:43:aa:
99:e4:b5:8c:57:0b:40:49:18:2c:c1:8b:a0:83:61:79:7b:b7:
9b:9f:56:d3:f5:bd:08:fe:4c:e0:dd:72:74:86:cf:a9:08:4a:
4b:31:8f:ad:14:73:de:be:bc:7e:77:3f:22:7a:51:08:b9:b3:
f5:c1:d5:2a:17:c3:01:33:d6:2b:aa:d8:2d:f8:ac:7d:fb:fd:
9f:1c:67:c0:81:9b:73:2e:cd:89:64:f7:b8:56:ac:33:36:c7:
9d:37:7e:21:1d:ed:22:ec:e7:12:66:c9:b2:b9:38:01:fb:d7:
df:23:62:02:9a:e2:be:32:73:e9:86:e1:22:f2:f6:ee:77:3a:
e9:a5:ca:bd:07:84:e0:b3:fa:d1:b5:a2:19:2c:36:ed:1a:73:
75:d9:34:8c:a6:53:91:b0:67:55:20:05:5d:ba:18:b0:a5:f1:
67:ed:82:5d:23:cb:8c:3b:7d:20:a1:5b:9c:96:6f:7f:d7:5a:
ba:84:5e:91:1b:03:94:b0:34:99:56:fb:cc:09:bf:c4:9e:36:
81:e7:76:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 14 11:46:23 2026 by rpki-client