Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.mft
File: pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.mft (raw, json)
Hash identifier: sYVS+n+EQxslj+21pmO2S7Es6Y3WysKnQAjrR3369mk=
Subject key identifier: 0E:BD:41:F7:11:3C:DF:64:A2:17:D5:AD:53:BC:D7:AD:2B:E8:E0:55
Authority key identifier: A5:8D:49:83:C9:C6:3B:D8:A1:58:00:3C:58:5F:43:D9:94:C1:2D:C2
Certificate issuer: /CN=a58d4983c9c63bd8a158003c585f43d994c12dc2
Certificate serial: 019D05C14DDA09883B5F2E61110C2DAAEEF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.mft
Manifest number: 0CD7
Signing time: Thu 19 Mar 2026 11:00:47 +0000
Manifest this update: Thu 19 Mar 2026 11:00:47 +0000
Manifest next update: Fri 20 Mar 2026 11:00:47 +0000
Files and hashes: 1: NncLDck5QCsXoP-zdGMzAoehMpc.asa (hash: Ct9G108vU2K9LuYOAFXT37wdYPmx9qzQzjeMUoqKDE8=)
2: jp2UFYGcsehDO-4gfejiaCOzrJw.asa (hash: fxeg6hVvgjfs2m8eyuQiBn+zKpG0DqwOznKeAA9KOJE=)
3: pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.crl (hash: lQjoGZdCHPIfqNnnYDQVcxQSXUcxpla7NnMviBbRG8g=)
4: xSbXTvUREzkzc7-l2JL6Gfg8LbE.roa (hash: /FjGi3zucL1NzNe41iFvx0RHmpavP7RfeWxzQfA6e5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.mft
rsync://rpki.ripe.net/repository/DEFAULT/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Mar 2026 08:03:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:05:c1:4d:da:09:88:3b:5f:2e:61:11:0c:2d:aa:ee:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a58d4983c9c63bd8a158003c585f43d994c12dc2
Validity
Not Before: Mar 19 11:00:47 2026 GMT
Not After : Mar 20 11:00:47 2026 GMT
Subject: CN=0ebd41f7113cdf64a217d5ad53bcd7ad2be8e055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:53:d8:3c:1b:fb:db:20:e9:0c:67:ef:d2:00:
2d:a5:ca:37:2d:37:fd:ce:a8:c7:51:6a:9e:18:4a:
54:78:eb:99:f3:b8:c3:0d:bf:f3:0d:27:83:0a:3f:
98:c1:db:6a:84:ad:2d:47:50:42:39:2d:0d:2a:d5:
23:23:be:7a:c5:9d:ba:3d:c2:31:f9:5c:97:bc:70:
af:85:cf:6c:0f:ad:f7:bd:b2:1d:57:ac:93:4f:de:
dc:39:e6:f4:73:a8:bd:83:bd:ef:cd:73:96:ab:f2:
b6:1c:3b:83:68:0f:11:fa:a5:ae:6d:36:b3:20:bb:
28:43:18:70:95:fc:d2:5b:5f:84:8f:b6:f2:f6:f8:
ea:ad:47:1a:cb:f9:cc:79:2d:c3:50:58:57:db:e7:
6c:ac:df:e0:b9:b1:40:24:6f:3e:2f:2f:dd:a2:12:
fd:71:2a:8d:44:99:d0:05:26:e0:7c:38:25:19:29:
e1:3d:c7:52:d9:2f:1d:72:1d:3e:6b:b4:56:ed:be:
33:12:7e:8f:95:fc:3f:4d:d1:60:fd:b1:c3:9c:5b:
d8:8e:46:dd:53:2a:4b:29:d2:f7:8e:3c:51:03:06:
0d:95:1a:2e:2a:24:37:a3:e8:78:51:80:bb:aa:7b:
89:69:a8:1a:00:b1:b3:cc:e7:49:e7:db:8b:59:c2:
c9:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:BD:41:F7:11:3C:DF:64:A2:17:D5:AD:53:BC:D7:AD:2B:E8:E0:55
X509v3 Authority Key Identifier:
keyid:A5:8D:49:83:C9:C6:3B:D8:A1:58:00:3C:58:5F:43:D9:94:C1:2D:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:e6:93:c9:59:54:f2:db:a8:1d:6f:c7:74:fb:0b:3a:3c:bc:
31:c9:7b:65:6f:94:5d:a9:bf:a2:15:0f:0b:48:66:79:e3:33:
84:b2:7b:c4:83:8d:95:ba:93:48:4c:83:eb:7e:30:04:7c:8e:
0e:8e:f5:a7:48:8e:24:78:67:7f:ff:c0:67:30:3a:54:d9:de:
dc:f1:7f:15:ab:4f:8e:33:dc:23:45:c2:6a:e9:6c:0c:27:91:
cf:e2:b6:fb:14:77:0f:d3:0d:9a:2a:1e:64:d5:5c:a5:8d:a8:
ce:55:96:40:c6:ae:79:aa:28:69:81:bc:f7:1f:d4:40:e6:38:
93:3d:a3:fd:08:44:cf:bc:35:0e:91:e8:80:b5:ca:35:fc:5d:
0c:86:16:d7:4d:ad:8a:aa:b0:ce:c0:1c:c9:0a:55:e9:3f:af:
96:17:49:ac:98:c0:01:c3:31:06:59:8d:96:07:a5:35:ae:c8:
36:48:68:8f:d7:f7:ce:a2:0e:15:d8:05:f4:b6:10:88:ea:cc:
f0:a4:c8:48:a0:dc:e4:3d:64:11:6e:4c:0d:96:10:41:1e:31:
5d:17:61:86:d7:2c:d9:05:fb:81:99:84:6f:8b:10:10:c9:4c:
78:f4:43:ef:1d:29:a6:3d:76:4d:09:21:17:1f:dc:40:18:a7:
d6:be:83:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 19 19:17:23 2026 by rpki-client