Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft
File: YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft (raw, json)
Hash identifier: OKcfxJPBrCIvB5TsN6kQVKWe3TOp6HKCNr4IW4cnLoI=
Subject key identifier: AD:F1:72:D0:04:EE:52:93:3A:9F:21:6D:8F:D1:1E:44:C2:4E:79:B8
Authority key identifier: 61:2C:1C:53:F6:C1:D9:96:23:6C:BB:37:BA:32:47:67:03:99:A6:2D
Certificate issuer: /CN=612c1c53f6c1d996236cbb37ba3247670399a62d
Certificate serial: 019D37C010439EEDE7A3CCC7C82CEE3896C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft
Manifest number: 0FB5
Signing time: Sun 29 Mar 2026 04:00:26 +0000
Manifest this update: Sun 29 Mar 2026 04:00:26 +0000
Manifest next update: Mon 30 Mar 2026 04:00:26 +0000
Files and hashes: 1: U9pPpVserKeOyR7cf6mDMG3akbI.roa (hash: hACJJYL/ibjkbFYfmPGmA0g3KxmvcYZIZ/l3HP0kGcc=)
2: YSwcU_bB2ZYjbLs3ujJHZwOZpi0.crl (hash: V/V2W3RiwyssKIqcj0Eo13JFCbpcLeWlQgxoEEFe+T4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:10:43:9e:ed:e7:a3:cc:c7:c8:2c:ee:38:96:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=612c1c53f6c1d996236cbb37ba3247670399a62d
Validity
Not Before: Mar 29 04:00:26 2026 GMT
Not After : Mar 30 04:00:26 2026 GMT
Subject: CN=adf172d004ee52933a9f216d8fd11e44c24e79b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:38:4f:0a:83:8e:96:70:b8:04:31:9f:7a:24:
76:a6:12:20:32:cc:1d:a1:20:71:e3:32:c2:3c:59:
ea:47:18:f9:17:49:69:64:67:c2:2e:1d:9b:15:45:
6b:fb:a1:01:82:ec:fd:55:01:17:6b:dc:d2:2e:67:
02:8a:68:80:08:79:12:3d:e4:d5:33:6d:53:4d:37:
d5:7e:1b:5b:6e:45:27:8b:d4:f3:9e:36:ea:5c:85:
94:96:84:0a:63:dc:9f:6b:54:6d:dc:bf:c4:41:ad:
fe:bc:1b:fc:83:f5:f6:b2:ca:bd:47:a9:3c:30:5e:
5d:75:a5:b5:e7:90:43:af:a7:d4:a9:46:fd:6a:f8:
b7:b8:f3:1f:91:10:74:53:7b:c2:7d:92:53:37:27:
20:c8:b8:a5:6c:a5:32:e2:c7:6b:9f:b4:1d:94:6a:
9e:2a:6a:78:76:a9:c0:7c:f2:2b:cc:0b:7e:54:58:
0d:e4:f4:a6:3d:39:24:c6:09:7f:73:9d:62:fb:2f:
b0:19:0c:ae:7c:9a:a4:57:d4:eb:17:e4:53:fd:71:
3d:a0:48:03:24:4b:c6:bf:e1:94:3a:dc:52:73:b9:
f9:b6:74:80:20:44:a3:39:08:da:b4:bb:6d:7c:de:
57:00:d9:d6:7a:1e:5c:f0:72:31:2f:d3:98:49:17:
28:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:F1:72:D0:04:EE:52:93:3A:9F:21:6D:8F:D1:1E:44:C2:4E:79:B8
X509v3 Authority Key Identifier:
keyid:61:2C:1C:53:F6:C1:D9:96:23:6C:BB:37:BA:32:47:67:03:99:A6:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/f0078e-d0c7-428e-9524-ecaf578a34e3/1/YSwcU_bB2ZYjbLs3ujJHZwOZpi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:a2:4b:82:b1:0d:13:92:05:5c:df:e3:ea:99:33:60:8b:bd:
4b:c3:89:51:bf:fd:6c:a4:4a:fb:31:37:53:af:eb:75:3c:d4:
8e:51:4f:4d:80:e8:e1:3b:3b:f0:8e:7c:33:9f:20:85:cd:b4:
7e:a2:49:51:29:be:03:e0:de:2e:fb:f7:3d:7a:ce:ba:82:56:
6b:78:96:07:c4:3f:4b:45:d7:f3:01:95:da:4a:63:b2:3e:d1:
16:da:c7:db:a5:05:0a:cf:d6:0f:e6:d8:6d:ad:82:c1:84:77:
e5:f7:46:d9:ef:5a:35:52:80:b8:c9:38:f4:2c:37:ed:65:76:
b4:6e:26:63:3f:ec:de:ce:ac:cb:dc:4e:4c:bf:cb:f0:93:20:
25:6b:a3:8e:52:ad:f4:a4:a7:0c:30:de:8d:fc:ae:f0:d0:be:
3e:90:f0:22:41:9a:6a:bf:9d:9f:5c:05:34:6b:a4:7d:fc:ef:
e2:c7:eb:d2:f2:35:11:8f:34:f5:cb:2d:a1:68:06:d2:f3:f3:
41:b9:a1:00:9b:b0:c8:33:0a:ce:63:96:cf:47:a4:c7:50:c3:
28:72:89:00:92:f2:b6:33:41:d5:a6:06:0e:62:66:23:b6:9d:
1e:07:bc:b7:32:dc:2d:d2:40:8c:21:71:c8:9d:9b:10:68:15:
23:2f:66:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:01:08 2026 by rpki-client