Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.mft
File: y_9_1-4R7_iRSjFQ_NFqZIo8fzA.mft (raw, json)
Hash identifier: vrjPFTwgjAaFcIFXeUY7aG3GRynobII0fQDjNOBWOJQ=
Subject key identifier: 38:28:17:73:F5:11:3B:DD:AE:7D:01:86:DE:12:2A:51:CB:44:77:8F
Authority key identifier: CB:FF:7F:D7:EE:11:EF:F8:91:4A:31:50:FC:D1:6A:64:8A:3C:7F:30
Certificate issuer: /CN=cbff7fd7ee11eff8914a3150fcd16a648a3c7f30
Certificate serial: 019D3909D014F3804CD55F25EE9A423B97E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.mft
Manifest number: 07EB
Signing time: Sun 29 Mar 2026 10:00:37 +0000
Manifest this update: Sun 29 Mar 2026 10:00:37 +0000
Manifest next update: Mon 30 Mar 2026 10:00:37 +0000
Files and hashes: 1: blvAUQ_vYzlmQ7upxenWGMgFKTU.roa (hash: yNaiIOARrLN2kHH5nOuqLzuUV9KxxDnEpy1TNN43VTU=)
2: y_9_1-4R7_iRSjFQ_NFqZIo8fzA.crl (hash: rf8aQFTx8BS0bmRojQYFGsOUivjsYNtl6ZebOmH1oXU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.mft
rsync://rpki.ripe.net/repository/DEFAULT/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:d0:14:f3:80:4c:d5:5f:25:ee:9a:42:3b:97:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbff7fd7ee11eff8914a3150fcd16a648a3c7f30
Validity
Not Before: Mar 29 10:00:37 2026 GMT
Not After : Mar 30 10:00:37 2026 GMT
Subject: CN=38281773f5113bddae7d0186de122a51cb44778f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e1:4c:50:6f:0a:41:26:c1:9d:d0:ec:75:50:
ac:55:27:60:df:a4:a0:7e:e2:43:e1:c4:6f:39:71:
5b:2d:54:c0:73:df:b4:65:e0:ae:27:a0:28:b2:dc:
e4:c2:83:23:40:44:2d:3a:86:31:4d:3d:4d:59:40:
f5:8e:5d:c6:9d:e2:3b:7b:aa:fc:ef:dd:fc:9b:fc:
22:cc:a6:7d:2f:61:f3:43:ef:7d:2b:5c:5f:61:bf:
04:97:88:56:8c:86:1d:47:24:51:c0:1b:be:2d:f1:
f2:82:a8:15:b9:78:8b:ee:bc:f8:bf:cf:0b:f9:d1:
e9:3d:ab:21:69:76:4a:8d:c8:53:76:4b:64:60:bf:
df:ea:ab:75:fd:64:8e:6f:93:89:75:94:e6:f0:a8:
e0:cb:1a:a8:ab:3e:db:eb:05:3c:2d:f6:4a:42:37:
54:57:8c:ce:d1:a2:66:76:07:fc:34:9f:01:66:0e:
ee:71:fd:cf:6d:9a:00:62:da:0f:57:34:f5:b6:0b:
46:7b:40:16:69:2f:ae:22:6b:d5:33:5e:ec:f8:a3:
3d:84:ad:6e:1a:86:71:e9:30:d6:e3:ac:56:6a:3f:
31:e2:ee:4c:61:de:a8:40:86:67:42:2b:c6:bd:d5:
00:e7:e0:33:73:8c:65:02:aa:cf:88:4f:50:95:cd:
b9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:28:17:73:F5:11:3B:DD:AE:7D:01:86:DE:12:2A:51:CB:44:77:8F
X509v3 Authority Key Identifier:
keyid:CB:FF:7F:D7:EE:11:EF:F8:91:4A:31:50:FC:D1:6A:64:8A:3C:7F:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/858143-af0c-493e-8ed1-9f5f780569a1/1/y_9_1-4R7_iRSjFQ_NFqZIo8fzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:fe:c8:93:44:79:f4:37:cf:15:4b:05:0e:1d:33:88:aa:f9:
2f:71:34:a0:20:c4:c4:13:3d:94:5d:72:db:a3:35:e2:73:cb:
84:1a:cd:9a:83:44:c4:4e:60:6a:e7:63:9b:69:b0:87:49:72:
3f:f9:1f:e6:c9:17:9b:08:81:9c:32:44:c4:0f:82:d7:21:ea:
4e:05:cc:b8:50:90:73:da:e3:9b:10:8f:33:20:7d:75:4c:af:
86:c9:86:6a:39:91:74:07:5a:dd:e5:1b:5a:89:87:c5:84:69:
89:b2:c5:de:c5:44:56:f3:08:ef:b2:92:7c:c2:1c:8b:74:40:
e9:7d:52:9a:4a:8c:59:23:ac:91:6c:8d:43:dd:a3:04:98:08:
2c:0d:22:2a:cf:2d:20:d4:08:71:7e:99:26:00:0f:23:aa:bf:
c8:72:20:29:1c:6d:9b:db:73:ff:0a:84:8c:db:71:f6:35:24:
83:50:e8:23:88:ee:f4:f8:f2:f2:37:72:00:86:72:5b:f7:2c:
1d:95:7c:7d:a1:0f:9f:80:c0:2b:df:a2:8a:c8:0b:40:ea:b1:
67:d6:43:18:26:af:3e:b2:47:26:66:6f:a4:db:f4:2a:a0:25:
ad:fd:5c:05:fa:75:9d:9b:55:d3:8e:d0:dd:48:75:8b:ed:25:
5f:99:f2:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:33:09 2026 by rpki-client