Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft
File: yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft (raw, json)
Hash identifier: Ns4srCwCW+KzOHixceGvelbnl/OGLHeoBmV7bHHk8D0=
Subject key identifier: A9:3F:BD:17:11:17:FD:59:82:F7:31:54:5F:9E:61:2B:26:3E:AA:77
Authority key identifier: CA:AC:C4:FE:BB:48:79:96:D4:EE:01:D5:3B:11:F8:42:03:CA:83:67
Certificate issuer: /CN=caacc4febb487996d4ee01d53b11f84203ca8367
Certificate serial: 019D382E1B89F9FA5636151EEC4C4E8BC679
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yqzE_rtIeZbU7gHVOxH4QgPKg2c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft
Manifest number: 03EC
Signing time: Sun 29 Mar 2026 06:00:38 +0000
Manifest this update: Sun 29 Mar 2026 06:00:38 +0000
Manifest next update: Mon 30 Mar 2026 06:00:38 +0000
Files and hashes: 1: wD8_-hEjASCZZpotXoShnTDKTeU.roa (hash: eQRgbUsop5I6bDoMNdewwPQSLHLClo0n6vUjAG9/Tq4=)
2: yqzE_rtIeZbU7gHVOxH4QgPKg2c.crl (hash: PjuWeb266Cktozq20s9+BDUDkNUYuGB6lq7OWYWqZgY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft
rsync://rpki.ripe.net/repository/DEFAULT/yqzE_rtIeZbU7gHVOxH4QgPKg2c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:1b:89:f9:fa:56:36:15:1e:ec:4c:4e:8b:c6:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caacc4febb487996d4ee01d53b11f84203ca8367
Validity
Not Before: Mar 29 06:00:38 2026 GMT
Not After : Mar 30 06:00:38 2026 GMT
Subject: CN=a93fbd171117fd5982f731545f9e612b263eaa77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0e:78:77:20:a5:60:ab:76:52:16:af:5d:44:
c9:66:66:3a:7a:ab:ae:b4:61:0f:38:8c:c8:89:ce:
7a:91:a2:cf:7e:0b:d2:7e:a4:05:01:6e:5d:fe:9c:
a2:9a:f2:e0:a7:6f:90:05:7f:3b:88:ac:22:a8:e8:
49:b1:53:af:e3:25:64:6d:73:ef:e5:f6:59:07:28:
1d:00:17:66:4c:d3:ef:32:4b:2b:83:85:70:b7:e7:
eb:bb:f0:e9:49:bb:5d:98:28:79:d8:79:f2:a4:dd:
4e:52:31:2a:88:b7:f9:e5:ad:14:48:59:b3:f9:28:
76:f9:a7:a1:d1:24:d9:a1:a3:14:13:30:8a:3e:68:
66:ea:70:9d:56:06:02:80:3f:46:39:12:4b:b7:30:
57:72:f1:94:70:3a:f1:32:32:0e:a9:c6:8c:ad:0d:
ad:66:b2:32:97:9f:5b:24:ea:96:5a:d1:19:b6:71:
2d:1f:67:56:f1:7f:9a:56:31:b8:34:95:be:15:5f:
e6:d9:b9:15:d4:6e:6f:78:3b:97:ab:23:2c:75:a7:
37:59:34:85:dd:3a:65:2c:45:a0:ec:fa:df:75:ba:
66:3a:2c:7c:21:5d:bb:35:cb:6a:f8:1a:25:82:7d:
74:87:9e:3a:aa:b0:b9:74:18:98:be:5b:4f:98:e2:
18:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:3F:BD:17:11:17:FD:59:82:F7:31:54:5F:9E:61:2B:26:3E:AA:77
X509v3 Authority Key Identifier:
keyid:CA:AC:C4:FE:BB:48:79:96:D4:EE:01:D5:3B:11:F8:42:03:CA:83:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yqzE_rtIeZbU7gHVOxH4QgPKg2c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d3:77:aa:c0:08:69:a5:69:45:69:1b:6e:fc:13:da:11:ad:1c:
41:ce:1d:9c:08:16:45:c3:b8:bf:e2:71:e2:5c:fb:e5:fa:6b:
1c:f0:9a:67:74:a8:3d:54:e9:44:79:05:5b:53:72:c5:d1:fc:
3b:9a:74:8c:75:e6:44:b4:bc:16:1f:d5:c0:c6:32:88:71:72:
05:dd:5f:8e:0b:f5:13:82:c1:d2:24:ca:3d:fc:8c:6c:38:87:
da:c8:a7:4f:8f:1f:5e:06:0f:3d:51:61:23:0d:91:65:07:41:
b3:9f:78:61:8d:13:d0:5d:b2:44:c2:aa:0e:a4:fc:f6:ea:28:
ad:e1:91:b0:39:b6:26:55:e7:a2:d9:dc:14:de:ab:15:8e:cf:
0e:67:fb:81:eb:0e:33:a0:9c:89:45:2f:6b:fa:92:4d:b6:a2:
d8:af:86:47:a9:0c:7b:2d:5a:10:56:43:de:1b:a3:29:42:9d:
62:71:fb:40:c3:79:70:e4:15:dc:50:6f:ee:e6:76:5e:b9:c9:
7d:03:6c:8f:21:31:77:38:b1:e9:03:b7:c1:8d:96:80:2c:38:
32:ae:1a:49:f1:b0:86:fe:2f:a4:19:23:81:ef:b3:72:6f:26:
cb:ae:4c:f9:92:79:72:57:21:08:cb:22:49:39:1f:9a:4a:f8:
e2:9e:51:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:27:20 2026 by rpki-client