Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
File: yjNIUNrzcSIFIBmSKevekO8osBg.mft (raw, json)
Hash identifier: oHjK5E9PQb0AXyFnsw9u3sqLMsn5drYnKOSN64xGvy0=
Subject key identifier: 8C:66:94:57:17:30:E7:92:C2:62:56:6B:40:2C:24:45:3F:CF:8B:28
Authority key identifier: CA:33:48:50:DA:F3:71:22:05:20:19:92:29:EB:DE:90:EF:28:B0:18
Certificate issuer: /CN=ca334850daf371220520199229ebde90ef28b018
Certificate serial: 019CBA39ECF85E5BC69B34D835ACD724496D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
Manifest number: 08CB
Signing time: Wed 04 Mar 2026 19:01:24 +0000
Manifest this update: Wed 04 Mar 2026 19:01:24 +0000
Manifest next update: Thu 05 Mar 2026 19:01:24 +0000
Files and hashes: 1: XQZYtmJX7BpNzPu03srU_4VYUsc.roa (hash: Bjg0iayeOq8sVWJ1lC2MT+jpchRq5ORWkMqvwpb8VDY=)
2: yjNIUNrzcSIFIBmSKevekO8osBg.crl (hash: hC+ZyAKIc8PS04/t1rHIbhR0IiR1nAgoOcBobOjXF74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Mar 2026 14:20:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ba:39:ec:f8:5e:5b:c6:9b:34:d8:35:ac:d7:24:49:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca334850daf371220520199229ebde90ef28b018
Validity
Not Before: Mar 4 19:01:24 2026 GMT
Not After : Mar 5 19:01:24 2026 GMT
Subject: CN=8c6694571730e792c262566b402c24453fcf8b28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b5:c3:49:b7:4d:48:57:5b:5e:04:09:ea:c0:
65:54:fd:88:8b:79:39:68:00:b7:51:00:d1:93:d6:
56:14:d9:d6:74:6a:80:1f:40:7e:55:3f:2a:a1:30:
b6:72:c1:bc:f4:c9:80:b5:86:cd:5c:14:48:c5:47:
b5:98:4b:23:0f:10:71:05:fd:2c:32:d9:a5:38:d2:
12:06:3c:52:77:5f:0b:e0:f4:cd:4b:01:3e:4a:21:
d0:65:03:1e:f9:40:ce:54:cb:8c:1d:96:5c:8c:2a:
c7:59:84:79:c7:a2:8b:b7:f2:ac:10:ef:63:2e:4f:
5a:48:7e:3b:95:08:a1:e6:ba:ea:dd:3b:5f:fa:93:
26:58:e4:ce:d9:fd:d5:d7:20:91:58:5a:1e:f5:12:
8b:22:cf:e6:56:79:f0:6f:06:cc:df:e5:62:9a:e0:
92:6f:47:c4:69:b0:b4:6f:65:10:00:35:58:1d:f8:
68:89:c9:cf:19:1e:36:52:21:d5:99:b3:7c:76:e8:
cb:36:9f:f4:95:11:15:a6:8a:52:d6:b0:63:4e:8f:
ee:67:e7:95:aa:3f:84:df:71:d5:b3:a5:94:a2:9c:
3c:99:56:c4:bc:61:c6:6d:9a:d4:71:a3:a1:3a:bc:
68:1f:f2:55:5e:7a:5b:0a:3e:2a:f9:8c:7b:29:61:
af:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:66:94:57:17:30:E7:92:C2:62:56:6B:40:2C:24:45:3F:CF:8B:28
X509v3 Authority Key Identifier:
keyid:CA:33:48:50:DA:F3:71:22:05:20:19:92:29:EB:DE:90:EF:28:B0:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:b7:c3:9a:68:d5:7d:a0:c9:e6:fa:9d:3a:b1:08:d3:79:7e:
49:c1:33:fd:fc:05:82:d8:a8:45:11:4a:32:fa:dc:86:ea:33:
4b:ad:f9:e1:df:1d:3d:87:bd:a3:10:83:17:82:40:db:b1:c8:
64:5b:4a:37:8c:31:6b:36:dd:71:a2:03:f2:57:f2:86:c2:49:
b8:77:29:23:5f:c2:90:86:33:70:9d:08:cf:e5:e0:ba:fa:78:
24:36:bb:cf:58:f7:db:35:8c:a8:87:63:3b:d8:b9:73:7a:32:
9c:c5:58:6f:d9:6f:bb:d9:b8:6f:55:b3:4a:32:0d:9d:ba:81:
6d:9b:db:cf:8f:f9:4f:ba:80:11:b5:a1:15:5a:8c:03:e7:9d:
39:b5:c9:6f:3d:db:47:ae:42:30:03:5a:19:82:89:48:36:f2:
f2:10:3a:bc:ba:54:cd:3b:04:8a:06:2d:c2:cb:93:82:f2:ce:
ca:b9:a1:ff:a1:39:91:bb:e8:9a:5f:e8:e2:1e:45:fa:4b:4e:
12:94:72:6c:21:1d:ae:e6:92:70:28:4e:fe:04:7a:67:74:d2:
d8:2b:41:52:3c:e0:ce:2f:89:7d:7f:f9:9d:29:54:e4:ae:9c:
9d:2a:30:8b:8d:5f:e0:75:d4:84:46:28:1b:92:e2:24:26:0d:
7e:16:50:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 4 20:48:32 2026 by rpki-client