Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
File: lYj7Sw-weytS4w2SGYmPKM-8mi0.mft (raw, json)
Hash identifier: 8ibFxRHYF5tfBPmnH6SCf7Xl5mS2+woq1xdTZmpcWSs=
Subject key identifier: 97:AA:FD:20:AD:EC:A7:6E:AD:34:CD:5D:88:90:05:7F:12:2A:45:92
Authority key identifier: 95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
Certificate issuer: /CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Certificate serial: 019D38664EBF0F7D7082E8327D51FB26B5AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
Manifest number: 160C
Signing time: Sun 29 Mar 2026 07:02:02 +0000
Manifest this update: Sun 29 Mar 2026 07:02:02 +0000
Manifest next update: Mon 30 Mar 2026 07:02:02 +0000
Files and hashes: 1: lYj7Sw-weytS4w2SGYmPKM-8mi0.crl (hash: W58qnjSSvY3cM5FoFuwzft2iICwp1EM5/XYGQvFoTZg=)
2: nwCKURFvKAdbQU38fWCHq9Su4qo.roa (hash: C9xiWCIHazX19G/OBW1EkzJey6ARQXArUE2/+FTm9Z4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:4e:bf:0f:7d:70:82:e8:32:7d:51:fb:26:b5:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Validity
Not Before: Mar 29 07:02:02 2026 GMT
Not After : Mar 30 07:02:02 2026 GMT
Subject: CN=97aafd20adeca76ead34cd5d8890057f122a4592
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d2:91:38:75:9c:9d:a8:e6:55:e6:e3:72:0f:
61:fc:a8:89:37:74:60:7f:25:c7:1b:9c:3f:3f:e8:
9d:68:27:a4:bd:6f:3c:01:95:b1:ea:ea:e6:bf:cf:
2b:f5:2f:2a:de:e5:9b:b9:87:62:a1:1b:39:a7:d3:
d1:97:d3:3e:b0:e6:be:8a:dd:88:6a:64:8b:be:1a:
a0:83:60:93:74:91:61:37:5d:a1:89:2f:66:61:4e:
77:d0:ce:37:2b:e9:7a:1d:33:10:e6:d8:d2:5b:c6:
18:ac:a4:6b:80:b5:2e:ef:85:71:3d:98:0a:16:2f:
27:6f:82:f7:99:b0:66:ad:6d:58:4d:1f:f0:0f:29:
6a:d0:0d:7c:22:80:11:48:f7:7b:c3:a7:f0:7b:80:
32:49:f2:b0:37:8b:3c:0b:46:70:82:64:45:63:f5:
78:51:db:92:99:c4:70:c0:f6:d7:13:b2:12:c0:1f:
98:e3:4e:a8:10:a2:56:d3:83:bf:a1:e4:45:21:ea:
0b:bb:1c:e7:07:ba:d2:19:3d:e0:d8:17:92:e4:a8:
fe:ed:4c:bb:af:9b:55:5b:35:9c:08:f5:93:fc:b3:
4b:c5:e0:8a:83:4a:94:b2:7a:c2:0d:29:9a:f3:6a:
22:03:6c:3d:95:b7:01:e0:c2:c7:35:0f:1e:dd:c7:
22:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:AA:FD:20:AD:EC:A7:6E:AD:34:CD:5D:88:90:05:7F:12:2A:45:92
X509v3 Authority Key Identifier:
keyid:95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:59:ed:ed:a0:8a:a6:97:e2:1b:e6:17:44:a5:d1:1f:bd:ec:
62:42:80:d9:94:87:5f:2b:25:52:d0:2f:69:53:d1:35:e9:d8:
ad:42:bd:de:8c:d5:4d:96:b0:30:f7:a3:54:a4:6b:eb:7e:9e:
0e:4a:87:b2:2e:5f:f0:28:14:b6:1b:4c:4a:9d:f3:20:c5:44:
d3:d8:d3:b2:b0:60:c1:f0:6a:d7:9d:f2:19:fa:cd:d4:4c:76:
a4:67:97:85:82:35:07:f1:65:0c:21:fe:06:f6:2c:21:3d:84:
f4:7d:74:9c:ab:27:86:3e:19:94:94:95:e8:0d:b3:bd:2c:1a:
e8:d9:42:d1:c3:dc:76:e4:ac:15:82:3d:98:33:58:74:f1:9b:
e9:b1:f7:5a:66:32:ea:27:37:8c:53:fd:96:a0:7c:74:94:87:
d2:ce:96:d8:55:18:2d:42:71:19:b2:2b:ed:a0:c5:4d:f8:27:
a7:af:f5:43:e8:bb:99:2e:a3:9b:3d:2a:9e:45:84:1d:d1:0e:
de:72:bb:c6:15:4e:68:7c:21:5e:a0:4d:2d:7d:3b:27:ab:2b:
4b:28:95:81:9b:c8:7a:52:0f:7c:9c:b3:ee:d4:96:34:cf:2a:
5c:33:d7:ae:18:98:c0:da:58:6c:14:81:15:13:80:9e:ae:53:
3b:24:6e:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:10 2026 by rpki-client