Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
File: RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft (raw, json)
Hash identifier: 9mK+aTUHJ6+0PCtMlSz6lQF2QG7O5qcg0SVu/fPoFbg=
Subject key identifier: 71:33:BC:7F:22:7D:4B:E3:CA:A3:77:84:26:4E:93:CD:24:08:D7:94
Authority key identifier: 44:F6:10:F8:72:CF:31:B7:C3:22:4C:D2:C1:66:9C:99:68:35:0B:7A
Certificate issuer: /CN=44f610f872cf31b7c3224cd2c1669c9968350b7a
Certificate serial: 019D37C025C62BDA4A0A022054402A05E406
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 04:00:32 +0000
Manifest this update: Sun 29 Mar 2026 04:00:32 +0000
Manifest next update: Mon 30 Mar 2026 04:00:32 +0000
Files and hashes: 1: AT3AwmCGx61Hj5hqdELyQ8fLrSA.roa (hash: XVaOA+4kP/jBW0Nd2clUNIpHrMJJdCt1C6268n4aPw0=)
2: RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl (hash: /c0vm6Ab0Sh/7UpGXzmVZZPQ42DuMzQnSbKQ+cLv2t0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:25:c6:2b:da:4a:0a:02:20:54:40:2a:05:e4:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44f610f872cf31b7c3224cd2c1669c9968350b7a
Validity
Not Before: Mar 29 04:00:32 2026 GMT
Not After : Mar 30 04:00:32 2026 GMT
Subject: CN=7133bc7f227d4be3caa37784264e93cd2408d794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:54:c3:02:c2:c2:d8:e8:42:fa:c1:76:3b:9e:
76:57:3b:10:03:85:b8:a9:c3:11:84:b6:87:d0:01:
f9:cb:63:5e:77:66:89:ac:db:a5:58:89:6e:1a:7c:
5f:e3:f5:b6:31:51:6b:c9:9e:2e:e8:02:0e:fa:9f:
75:6d:59:e6:39:77:76:63:24:e3:b8:4a:fb:77:f9:
f3:ad:97:91:e1:2d:ef:f2:b6:80:9c:34:5d:67:c4:
12:ed:8a:4c:fc:d9:4b:74:37:10:8a:68:bf:b1:49:
56:8f:11:1b:73:88:64:58:aa:b0:08:23:f7:5c:5b:
12:a8:d7:88:8a:dc:f0:9b:a1:1e:44:3b:3e:44:c4:
8c:64:c5:29:32:f0:73:f7:5c:fd:95:31:b7:6d:03:
ac:51:75:6e:f4:17:5f:8e:6c:0b:01:10:7d:9a:36:
49:50:59:b4:56:84:89:ef:3f:20:c0:60:38:28:f8:
2f:41:5c:bc:51:b2:e1:51:6b:cd:da:c1:55:fb:c1:
04:16:92:f2:3a:3b:32:5d:dc:e2:3e:8a:c9:6e:ad:
37:b5:5a:48:9b:e4:0f:b3:7e:d9:b1:33:f7:e7:51:
34:18:4d:d6:08:90:6c:68:42:0f:c3:bd:a3:af:5a:
a7:c6:c7:5a:e6:82:7a:e7:2c:60:f5:3e:98:44:6f:
20:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:33:BC:7F:22:7D:4B:E3:CA:A3:77:84:26:4E:93:CD:24:08:D7:94
X509v3 Authority Key Identifier:
keyid:44:F6:10:F8:72:CF:31:B7:C3:22:4C:D2:C1:66:9C:99:68:35:0B:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:8a:bb:5a:a9:b9:f2:89:f3:98:f1:b3:7f:a5:dc:a3:08:fd:
63:45:0d:38:8a:5f:5e:43:62:44:d4:48:a3:ad:4b:ac:44:88:
f6:8d:e7:92:fc:c6:ab:b5:94:dd:79:ae:40:68:9e:d7:00:dd:
05:b0:10:5d:50:f9:be:e2:0b:5e:02:53:00:4b:34:54:f3:ed:
e8:06:f4:bf:d7:14:1e:96:82:b1:15:68:7a:54:43:49:3e:09:
ae:0c:bc:ac:53:76:53:7b:cc:b0:24:55:ff:a2:3f:23:54:f2:
74:c0:cc:b4:c2:a8:f3:24:d2:5c:00:48:78:76:e4:d9:4a:d0:
53:4b:64:8d:9e:37:c7:6b:ac:fc:28:70:d7:e6:1c:e6:00:63:
66:2b:72:b3:3b:ee:1a:43:84:d0:9a:52:44:a4:51:a9:04:54:
10:c9:b4:8d:a5:03:7d:b7:df:17:a8:96:2c:88:31:22:ba:46:
11:11:cc:cb:fe:a3:8c:84:ce:e9:e9:21:02:86:5a:cb:9c:0a:
25:85:f0:df:d2:c0:5f:94:44:d4:53:0c:49:7f:78:9e:96:a8:
95:1e:1b:cc:40:da:bf:ad:a8:9d:d5:54:b7:00:c5:7a:18:af:
07:9b:c7:52:d2:2d:4a:e2:fb:ab:a9:10:eb:d0:d9:59:ec:fc:
05:73:a6:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:43:55 2026 by rpki-client