Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
File: Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft (raw, json)
Hash identifier: z7pFRr6Z2sgxp/yE5B5jzWexedETJuNL6KPDNVe/PME=
Subject key identifier: 66:AD:7E:16:F8:72:B7:7F:DA:48:42:EA:08:21:3D:D4:72:EE:6B:99
Authority key identifier: 63:64:2C:1C:A3:D3:8C:7E:15:E6:87:E0:D9:48:5C:78:26:93:8C:10
Certificate issuer: /CN=63642c1ca3d38c7e15e687e0d9485c7826938c10
Certificate serial: 019D397807E55A0345D994D35E38C6EDDA0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
Manifest number: 05BC
Signing time: Sun 29 Mar 2026 12:01:00 +0000
Manifest this update: Sun 29 Mar 2026 12:01:00 +0000
Manifest next update: Mon 30 Mar 2026 12:01:00 +0000
Files and hashes: 1: Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl (hash: nwqI83+cEBmKuzihq//UY89Fxtl/YzrhF3xiAxDx4J8=)
2: pGs7xsxzlpU1tXn2yh5NBLhf9X0.roa (hash: uYgJSnGFmsrKbeTYAmeT6QjGNlnW8e1sEIOLhpiP3oY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:78:07:e5:5a:03:45:d9:94:d3:5e:38:c6:ed:da:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63642c1ca3d38c7e15e687e0d9485c7826938c10
Validity
Not Before: Mar 29 12:01:00 2026 GMT
Not After : Mar 30 12:01:00 2026 GMT
Subject: CN=66ad7e16f872b77fda4842ea08213dd472ee6b99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ea:46:cf:2b:0f:e5:03:7b:70:3b:8a:58:d0:
c3:7f:73:d6:57:1c:e9:70:be:51:66:73:70:8a:79:
8c:df:3d:df:ba:bb:b0:b0:48:a8:77:90:f2:47:cd:
37:b2:3c:b9:e9:07:1c:23:aa:a1:16:05:dc:3b:21:
37:ef:8e:de:6a:a2:29:ca:5e:ad:86:36:dc:28:a7:
60:b0:83:25:fb:70:f1:b0:79:56:91:d4:e2:fb:48:
9c:d5:b6:9a:94:36:89:84:8f:a9:b6:9d:2f:a9:bd:
67:7b:9a:ae:fc:12:fd:3d:57:1b:33:ed:c1:19:73:
c8:44:e5:68:9a:f9:ad:d2:d2:6d:44:f5:37:23:8e:
15:55:61:5c:ba:ac:89:75:60:63:60:9b:ea:48:ac:
42:82:c4:aa:18:5b:ab:1e:92:03:bb:e4:31:bd:58:
c4:59:c3:f8:73:d0:02:8f:00:b1:b1:9d:b1:66:0a:
fc:b0:c5:2d:32:c4:ce:bb:a6:12:cf:8d:3c:4e:63:
4b:39:d7:fc:eb:60:40:ea:32:f0:0b:f1:d7:d5:30:
34:3d:7f:53:ab:18:ad:c8:49:61:b1:c3:b0:3a:40:
09:7d:66:32:44:b6:95:41:c9:dd:c2:ce:9d:43:d5:
60:c4:8d:13:52:24:75:53:f3:4a:6c:e2:66:bd:5b:
ab:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:AD:7E:16:F8:72:B7:7F:DA:48:42:EA:08:21:3D:D4:72:EE:6B:99
X509v3 Authority Key Identifier:
keyid:63:64:2C:1C:A3:D3:8C:7E:15:E6:87:E0:D9:48:5C:78:26:93:8C:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2QsHKPTjH4V5ofg2UhceCaTjBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4f5903-ff9f-4ec6-86c0-07b0ea75c24b/1/Y2QsHKPTjH4V5ofg2UhceCaTjBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:70:f5:b4:f7:75:b5:c9:4f:8e:b8:bc:8f:49:e9:88:7c:37:
2b:2d:8e:5c:00:fb:f0:d5:0c:0e:58:99:36:eb:95:91:3d:27:
c7:fa:0d:7b:8e:82:8b:73:32:d9:39:92:6c:72:cf:fa:ee:3f:
09:0b:f2:24:fc:79:f5:df:69:cb:25:de:5d:35:2c:02:aa:88:
74:ca:81:5b:8e:81:9a:0a:50:c6:c5:5c:22:a7:a2:fb:08:35:
d0:41:ce:eb:52:da:df:af:c2:3d:0d:89:c2:0b:42:8c:92:5d:
fd:b2:51:dc:72:14:bc:bf:f4:80:48:4b:be:9a:95:b9:1e:c9:
77:e4:c8:25:c2:cd:48:95:7f:dc:e6:c3:c0:92:b6:2f:18:69:
90:8f:74:bf:f6:73:dc:8c:60:c0:55:de:83:e3:00:0b:e7:9f:
32:b8:68:56:51:1f:24:39:52:38:f1:fa:57:44:a7:6d:48:5b:
c1:6c:16:1e:67:15:e7:f9:69:f5:1f:c9:93:f8:94:a4:41:bb:
61:0b:aa:98:2d:77:2d:00:14:04:68:4f:6d:47:13:bb:48:84:
dd:fd:62:b1:13:df:00:4b:2f:d3:11:c2:62:d5:10:93:70:46:
05:83:2c:b6:34:7e:f0:57:f2:dd:ae:f5:1a:c8:a8:10:d3:58:
60:85:33:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:49:22 2026 by rpki-client