Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
File: kY74I7sEHqOsfIk2x1C2AYE34s0.mft (raw, json)
Hash identifier: JoItg9SCZdWZNWeunRbGxCZjJB8aGegbcJ2fYYkYGY8=
Subject key identifier: 26:A3:F2:9B:5A:B2:00:64:2F:71:13:38:E1:02:54:E2:F5:5E:9F:B7
Authority key identifier: 91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD
Certificate issuer: /CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
Certificate serial: 019D38D2D310A4F0FCF96C7CE5F962011182
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 09:00:33 +0000
Manifest this update: Sun 29 Mar 2026 09:00:33 +0000
Manifest next update: Mon 30 Mar 2026 09:00:33 +0000
Files and hashes: 1: SAktSd8Yfiv8Z7AAoq9HqjAql5s.roa (hash: LtM8gbZ0jSfixz/hSjfeNQJi14O3+yjoZzQHAO5Ggx8=)
2: V7G0PqLXvHbILX1LHpBG4YAR7P8.roa (hash: dlrYc64tSG90TWHPrXR+wF6FxKtROact/mSKSd7YezI=)
3: kY74I7sEHqOsfIk2x1C2AYE34s0.crl (hash: DjS8Bdd/AmGbMwTY5mgwCTZSCLNUZ19qLcyRuUL4PtY=)
4: phk0DUtP9juLO6Rie2WITcEati8.roa (hash: e91L1Q+nTnPD/oJ6jV8Vk2fQsj6tkZNRhSrVTsD9WQs=)
5: ycEAE8U3GOcT-dI1EM9rShcAaZs.roa (hash: xuaS4IHUOmueIKBaxW7itaqT5M/7ix/11RW1ctyKbMg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:d3:10:a4:f0:fc:f9:6c:7c:e5:f9:62:01:11:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
Validity
Not Before: Mar 29 09:00:33 2026 GMT
Not After : Mar 30 09:00:33 2026 GMT
Subject: CN=26a3f29b5ab200642f711338e10254e2f55e9fb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:76:e0:88:f1:71:12:23:ad:59:a2:58:9e:87:
1d:41:ce:21:56:30:2a:52:fb:84:1e:e1:3b:24:d8:
dd:3d:c3:8c:72:84:a3:e4:e4:dc:93:ca:05:48:a5:
e1:28:db:5f:b4:c3:66:7d:98:17:33:a8:c9:61:55:
23:8a:03:66:bd:bf:ee:dd:6f:79:6f:c7:cb:8b:19:
f1:1f:b7:6c:47:19:1b:7a:90:08:5b:9d:a0:d9:44:
b0:59:6f:4e:30:74:1f:19:7f:45:c9:a9:d6:c6:86:
16:1b:17:da:df:41:8b:80:32:71:16:a9:81:19:03:
e9:52:e8:0d:2a:61:e8:3d:57:b2:1f:33:d1:f4:08:
5e:71:93:a6:74:17:62:aa:52:46:9a:56:a2:ab:5f:
01:e6:ec:f6:a7:d8:28:87:fa:d2:15:1c:47:ef:5c:
00:c4:a6:c3:b3:e2:65:53:fb:78:b9:3d:f9:68:ac:
22:18:06:24:51:a9:92:00:5a:06:58:51:4f:7a:f4:
ae:95:a3:3b:b1:d4:0a:84:0c:57:7d:f3:de:ec:ba:
79:81:0a:da:74:3e:97:db:bf:dd:40:82:a2:80:7b:
5a:c7:a0:a3:69:c0:5a:7c:b6:bd:75:0f:13:e8:96:
2a:fa:33:8f:76:39:cb:79:89:ef:2b:97:be:87:94:
e5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:A3:F2:9B:5A:B2:00:64:2F:71:13:38:E1:02:54:E2:F5:5E:9F:B7
X509v3 Authority Key Identifier:
keyid:91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:9e:34:58:d1:25:81:3f:fa:6c:88:6e:e1:0b:84:1e:f1:10:
ae:20:6d:32:bc:82:62:96:7d:e1:5d:ef:78:04:2c:8c:02:e8:
b3:d7:a6:bd:f2:fd:91:fe:db:3d:88:ee:34:52:cf:fd:99:9a:
26:31:d0:81:08:b3:72:26:ec:c9:6e:39:04:6b:96:8f:10:ba:
72:34:bc:83:69:42:b4:41:8e:60:40:ec:d6:a1:16:1e:b5:bc:
0c:49:b8:d3:8b:b8:18:94:95:39:d2:ad:19:1d:68:4f:b6:b4:
59:af:16:f7:e2:24:5a:19:88:ab:c8:20:0a:89:bd:72:e6:86:
3c:3e:2d:7b:ea:03:2d:f1:6b:1d:5c:b0:b8:8d:bd:c3:94:fe:
a4:94:47:86:ee:06:96:26:47:e2:c2:6f:68:a3:45:6c:fe:0d:
bb:29:7a:fe:a5:3c:9a:da:df:ae:ac:bc:5a:a9:a6:9e:a4:9f:
9d:68:58:9b:e5:39:2a:2b:1a:7a:7d:bf:b9:5b:e6:c3:dd:33:
a9:8d:58:3c:df:53:6c:3a:01:8f:31:28:70:75:92:75:e5:a7:
19:5f:ad:e9:c1:f3:11:51:04:4c:e0:a7:b0:f6:4f:b3:02:ef:
bf:91:1b:df:26:08:7d:d8:bf:91:3e:86:54:d2:8b:74:00:eb:
95:9a:e2:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:14:41 2026 by rpki-client