Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/8cf962-074f-41ac-ae2a-816203d21d12/1/Y1OCnAYaivJt6Ub8noGIXHTBdMc.mft
File: Y1OCnAYaivJt6Ub8noGIXHTBdMc.mft (raw, json)
Hash identifier: s6G34JT1lP6lpDQI5pR3TGp2vZXfzyqwEWQMSxTxd/o=
Subject key identifier: 78:9E:BE:23:2B:E2:0D:72:F1:B3:91:32:0B:E0:AB:74:D9:A0:E3:CC
Authority key identifier: 63:53:82:9C:06:1A:8A:F2:6D:E9:46:FC:9E:81:88:5C:74:C1:74:C7
Certificate issuer: /CN=6353829c061a8af26de946fc9e81885c74c174c7
Certificate serial: 019D37F70655D01280B355AB0E0BB921F37B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y1OCnAYaivJt6Ub8noGIXHTBdMc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/8cf962-074f-41ac-ae2a-816203d21d12/1/Y1OCnAYaivJt6Ub8noGIXHTBdMc.mft
Manifest number: 0A91
Signing time: Sun 29 Mar 2026 05:00:28 +0000
Manifest this update: Sun 29 Mar 2026 05:00:28 +0000
Manifest next update: Mon 30 Mar 2026 05:00:28 +0000
Files and hashes: 1: Y1OCnAYaivJt6Ub8noGIXHTBdMc.crl (hash: h9Qmgu4Wyp89WPF/jk5vxgYZk6QqIxklNYIqWl1sw4E=)
2: vvXDEA3-oSwvWKl3m20Q9UrS6wI.roa (hash: mQvtqYD2eC+84hVmHavb+1UIl2NHrV+2/J+tCnR9oyI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/8cf962-074f-41ac-ae2a-816203d21d12/1/Y1OCnAYaivJt6Ub8noGIXHTBdMc.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/8cf962-074f-41ac-ae2a-816203d21d12/1/Y1OCnAYaivJt6Ub8noGIXHTBdMc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y1OCnAYaivJt6Ub8noGIXHTBdMc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:06:55:d0:12:80:b3:55:ab:0e:0b:b9:21:f3:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6353829c061a8af26de946fc9e81885c74c174c7
Validity
Not Before: Mar 29 05:00:28 2026 GMT
Not After : Mar 30 05:00:28 2026 GMT
Subject: CN=789ebe232be20d72f1b391320be0ab74d9a0e3cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:35:b6:54:11:94:0a:26:42:b4:6d:65:30:de:
b5:d0:9d:b3:64:27:b3:48:0a:a9:c1:dd:71:22:80:
55:c3:96:2e:1c:c7:df:91:12:1e:cf:29:8a:32:6d:
60:f6:7f:3d:b8:f1:13:e6:2d:6d:3f:f7:14:ec:a3:
87:01:0b:96:16:85:2c:44:32:5d:b3:12:f8:1e:7e:
a4:d5:46:00:b4:14:2d:65:7d:db:c6:9b:e9:d5:9b:
20:0d:ce:9d:ea:1d:77:3a:b9:15:a0:d0:56:65:83:
00:13:53:a7:35:02:6d:75:9a:e4:1f:d4:37:c9:86:
58:a2:ed:32:2f:28:c3:db:12:f4:8b:ed:f2:40:c0:
5f:3a:e3:04:7e:cb:f0:64:0f:80:8f:26:9e:f9:50:
ad:ae:e0:40:45:2c:00:d8:e6:95:93:33:ca:e9:a0:
4c:c0:9c:37:20:b6:96:2a:67:7d:9d:8d:b8:68:e9:
88:51:52:2c:cc:a6:c7:ad:49:8f:da:3f:ec:f0:90:
61:7a:19:d9:86:d8:f3:58:2d:89:74:51:79:fa:5b:
5b:12:cd:71:27:14:82:c8:8d:b8:4f:f6:6e:54:d4:
5b:64:e9:28:22:b7:73:5f:de:3d:da:9f:72:c3:69:
61:f0:04:f1:1a:ec:4e:41:16:01:c4:6e:99:90:ff:
d0:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:9E:BE:23:2B:E2:0D:72:F1:B3:91:32:0B:E0:AB:74:D9:A0:E3:CC
X509v3 Authority Key Identifier:
keyid:63:53:82:9C:06:1A:8A:F2:6D:E9:46:FC:9E:81:88:5C:74:C1:74:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y1OCnAYaivJt6Ub8noGIXHTBdMc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/8cf962-074f-41ac-ae2a-816203d21d12/1/Y1OCnAYaivJt6Ub8noGIXHTBdMc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/8cf962-074f-41ac-ae2a-816203d21d12/1/Y1OCnAYaivJt6Ub8noGIXHTBdMc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:bc:f1:48:57:2b:2c:cc:dd:e1:3e:80:67:68:94:c5:3b:14:
18:11:09:c7:e2:23:7f:fe:8e:10:fb:0a:94:78:be:37:09:1e:
65:f5:39:69:9d:b6:83:a1:73:39:bd:cb:15:d6:5c:00:78:cb:
f7:76:9e:ec:ce:82:b4:7e:1a:10:a4:48:17:43:d0:87:f3:fa:
ce:71:a5:14:a3:05:d2:ae:41:c5:8b:21:81:cd:ba:28:74:22:
c4:98:c4:48:32:90:df:db:0f:36:b7:9f:9d:ab:2e:29:35:a9:
da:72:5f:c7:b4:d7:8c:80:4b:7b:b0:70:bc:9b:04:ce:be:4f:
f2:f9:5b:eb:64:75:cc:8a:6b:ee:92:c6:f0:6f:96:56:d2:40:
1d:a6:64:ae:6d:81:be:a1:bd:c2:32:c7:19:8b:e7:82:21:1a:
87:2c:f9:c0:cf:6e:f2:51:62:21:86:06:4f:ed:d4:38:9c:86:
57:6d:89:df:6d:77:9c:d5:d2:77:a0:16:07:df:98:04:d5:bf:
93:8c:b3:b4:a5:45:84:df:98:32:c1:cb:e1:c1:88:71:89:b5:
c7:b6:18:4f:41:29:62:3f:e9:ac:5a:8f:87:44:20:fc:ee:bf:
22:e4:c1:11:8b:27:67:7f:3b:da:53:03:eb:55:a5:c3:29:31:
fe:ec:2f:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:27 2026 by rpki-client