Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
File: y34FPHGZWsyb8TM_55w9W_1ulk4.mft (raw, json)
Hash identifier: kTsyA1JOhDDu3qbLv+5FZtFPcAdDAIX6V15wcnmm4gE=
Subject key identifier: EF:61:7F:F2:3F:B9:61:88:F0:51:09:BF:AA:35:C4:1B:3D:69:FD:F7
Authority key identifier: CB:7E:05:3C:71:99:5A:CC:9B:F1:33:3F:E7:9C:3D:5B:FD:6E:96:4E
Certificate issuer: /CN=cb7e053c71995acc9bf1333fe79c3d5bfd6e964e
Certificate serial: 019D371B572BD45DE7F8BB4A8ED2D6D4C0AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
Manifest number: 0EFD
Signing time: Sun 29 Mar 2026 01:00:31 +0000
Manifest this update: Sun 29 Mar 2026 01:00:31 +0000
Manifest next update: Mon 30 Mar 2026 01:00:31 +0000
Files and hashes: 1: o0HqlxaDoWc3G-_HSVzsO-Lq4bU.roa (hash: HuIvoJlDnjzT1p9vthorLP3YOQAv0oGxz+pUKFAvCsk=)
2: y34FPHGZWsyb8TM_55w9W_1ulk4.crl (hash: 9V8gv/UrohN8SE9zxO1OKQ3tkk5Kae7YPzeMgCFTiso=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:57:2b:d4:5d:e7:f8:bb:4a:8e:d2:d6:d4:c0:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb7e053c71995acc9bf1333fe79c3d5bfd6e964e
Validity
Not Before: Mar 29 01:00:31 2026 GMT
Not After : Mar 30 01:00:31 2026 GMT
Subject: CN=ef617ff23fb96188f05109bfaa35c41b3d69fdf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:73:8a:7a:fc:81:2d:71:80:cc:6b:5f:63:27:
79:1e:63:7d:0e:f5:98:c9:8b:2e:c8:2f:e8:58:fb:
8b:b2:f2:b8:af:09:36:77:67:94:20:49:24:d9:a5:
09:ec:1d:7e:e9:58:b0:6f:da:a7:d1:e3:5b:80:9c:
2a:47:08:12:18:ec:91:0d:42:96:74:b3:8b:bc:e9:
6a:15:84:38:f7:4b:ea:e5:8e:6a:a2:c6:b1:8a:29:
39:54:4d:e0:6c:9e:ae:66:8a:1f:c1:4f:77:b8:8e:
6c:b9:0d:95:45:6a:ea:27:23:6c:10:a7:26:36:0e:
7a:df:1b:ca:16:7d:17:e1:61:96:31:41:2e:b8:2a:
11:d4:3d:ce:69:ab:3f:af:d6:c0:c4:2b:91:ad:d3:
10:1f:fc:d9:de:15:f7:1f:6d:bc:41:76:7d:fb:d4:
1e:d9:aa:f0:a8:03:c1:c0:a4:50:f4:d0:54:8c:86:
27:e7:a6:5a:35:99:0b:53:47:56:15:80:01:71:46:
ba:f5:f8:b3:e0:10:18:5d:4c:f0:22:1f:82:a1:43:
51:2a:f3:74:b6:61:22:39:2c:ee:74:8f:21:59:46:
f2:b9:87:c3:0e:d3:c7:49:4c:30:71:cb:bb:82:1c:
92:76:84:bd:89:ff:56:f9:d5:ee:0c:fa:f9:44:b3:
03:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:61:7F:F2:3F:B9:61:88:F0:51:09:BF:AA:35:C4:1B:3D:69:FD:F7
X509v3 Authority Key Identifier:
keyid:CB:7E:05:3C:71:99:5A:CC:9B:F1:33:3F:E7:9C:3D:5B:FD:6E:96:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:87:5e:19:7a:44:e9:bc:ee:18:c9:50:cd:1d:d6:18:a0:66:
22:41:fc:97:7f:fd:09:a2:7b:21:a0:dd:92:55:dc:df:e6:70:
93:e4:e1:f1:77:f5:59:c5:d1:61:e4:65:4f:e5:d7:8b:6a:c1:
f1:df:d6:0a:65:9f:d5:34:6e:19:83:6a:63:70:98:70:7b:5b:
4f:54:49:01:c5:76:0f:8a:0b:dc:24:bc:45:80:13:4e:22:95:
87:ff:f7:65:eb:ab:7b:75:80:09:08:73:2d:b0:c8:ce:d3:65:
7a:eb:76:86:56:76:e7:82:87:95:a8:5d:c4:c1:af:ed:70:b3:
bf:36:28:25:a1:c5:ad:b0:d1:55:db:d0:cc:b2:42:76:f1:7e:
d1:54:27:40:83:2a:8d:49:97:f1:62:12:22:68:24:ad:8e:20:
89:85:cb:0e:0e:4c:88:a4:a7:c6:79:9a:dc:04:90:d8:c5:36:
7f:40:c0:3a:bf:25:5a:cd:e7:a3:97:57:47:38:54:01:58:4c:
56:ca:9b:1c:ce:f7:f4:03:cb:c5:cf:ad:f8:81:3b:9e:d5:f5:
14:19:5a:47:ac:b4:13:86:58:08:de:de:a0:55:60:e1:a9:55:
60:37:a6:63:c0:10:e5:1b:6e:a8:b7:8e:11:61:c5:52:21:06:
cb:08:ff:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:52 2026 by rpki-client