Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
File: A_P-YHUIK-jliDKbQ9dhv257AdA.mft (raw, json)
Hash identifier: iSfx7PLroIx44OZOwHm5PkSh0oLUeaekZDROIuNEuPk=
Subject key identifier: 10:B6:FF:D8:ED:A6:4E:EF:1E:35:F8:92:A0:AC:91:FB:13:1D:89:51
Authority key identifier: 03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0
Certificate issuer: /CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
Certificate serial: 019D371B2AC83B9A9E5BD39EB9C98994DFBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
Manifest number: 0AC2
Signing time: Sun 29 Mar 2026 01:00:20 +0000
Manifest this update: Sun 29 Mar 2026 01:00:20 +0000
Manifest next update: Mon 30 Mar 2026 01:00:20 +0000
Files and hashes: 1: A_P-YHUIK-jliDKbQ9dhv257AdA.crl (hash: qur7EOGDI4008VHtnguarlKoluLaSpm3Q28TmsESry4=)
2: y8-TomRf2SfXgjAfIqDbASYx4Kw.roa (hash: uG779XP+SowZScRgyybF2Yr7PqJO6NR4pXnq6h4jggk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:2a:c8:3b:9a:9e:5b:d3:9e:b9:c9:89:94:df:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
Validity
Not Before: Mar 29 01:00:20 2026 GMT
Not After : Mar 30 01:00:20 2026 GMT
Subject: CN=10b6ffd8eda64eef1e35f892a0ac91fb131d8951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ed:94:89:f4:06:89:fc:06:19:05:f1:c0:7e:
9a:b6:b2:b1:57:53:8f:11:6c:95:c6:0f:d1:3d:44:
a0:31:bf:74:60:f8:3e:d8:08:ce:98:86:24:c2:d0:
be:a8:a5:9b:83:27:6c:3b:46:f8:d8:1e:ab:07:93:
50:58:01:49:fe:e6:b7:12:5f:b7:5b:fc:63:8d:6a:
35:f9:aa:7f:a3:f2:2a:08:91:02:00:a0:69:26:73:
f1:2e:db:46:e7:36:8b:6c:12:bf:b4:a7:7d:29:05:
27:66:b5:a7:c6:eb:df:af:08:27:02:49:0c:07:f0:
ca:ba:a6:de:64:a3:95:45:00:b9:7f:37:a9:7b:95:
a3:0a:87:2b:17:aa:4d:88:ca:04:0e:f1:4a:bc:25:
8f:68:9e:63:11:91:8c:8a:19:90:f6:14:15:cf:8c:
94:d7:07:77:ac:19:79:f4:dc:7b:d6:fc:78:14:bc:
84:f4:f2:21:e1:0a:00:40:28:c7:8a:75:f2:27:af:
d8:9e:8b:7f:e8:05:f6:d6:1b:44:9e:48:b6:15:dc:
1f:19:0d:0e:55:2e:86:86:bf:f5:2b:33:44:8f:89:
5a:ef:fc:a9:80:81:94:00:44:83:0d:1b:43:10:a6:
c6:e9:4a:7c:32:82:65:33:39:e5:ac:4f:a8:a9:eb:
77:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:B6:FF:D8:ED:A6:4E:EF:1E:35:F8:92:A0:AC:91:FB:13:1D:89:51
X509v3 Authority Key Identifier:
keyid:03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:a3:5d:4b:f1:64:65:4e:b7:d0:8d:36:ce:d2:67:b5:b9:52:
d4:94:9d:85:29:84:b7:bf:a1:89:ef:57:c5:09:58:04:f6:b1:
56:14:d3:21:fd:a8:12:a0:71:5c:9d:6f:cb:46:ba:ee:ab:e7:
85:f4:a8:f2:1f:67:2e:8c:32:7c:f4:64:2e:bd:8a:c2:17:13:
a3:c3:ed:b2:40:07:7e:00:da:db:83:8d:12:9c:4a:8b:20:df:
18:9e:1e:b7:95:5e:25:45:c3:68:63:6a:e4:9c:9d:42:1f:07:
70:66:0f:9d:13:72:ec:35:01:cf:56:f6:eb:ce:0a:9f:fe:5b:
30:25:fd:62:b3:d7:6d:83:28:49:36:1a:89:37:81:b6:07:87:
b3:c3:b8:5e:fd:35:8c:2d:f3:21:6d:95:64:38:d0:2a:65:92:
72:d4:da:ce:8e:9a:93:fc:00:b8:c9:99:ec:b8:c4:24:14:f6:
96:76:c3:76:26:dc:7a:73:14:c1:ba:0e:18:1b:a3:52:75:05:
39:54:6a:f7:12:89:98:66:b7:54:57:40:3e:00:65:38:49:43:
39:8f:d6:e4:2a:20:b0:f9:bb:ea:8a:a1:6a:aa:29:4a:58:8f:
b7:c0:86:60:f2:b7:c1:88:65:0a:a6:40:6d:88:e1:00:37:62:
f2:07:df:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:32:06 2026 by rpki-client