Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
File: yikNsvcpBfDbYmsAW6zwiHjRe6w.mft (raw, json)
Hash identifier: wQ3QBbyV6kx31bBpJ7p00epJnZKTyPttz1qjBnsGhWs=
Subject key identifier: 34:EA:79:AC:8A:EA:7F:C9:1B:D7:F4:A9:77:AE:A2:47:DE:B3:08:38
Authority key identifier: CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
Certificate issuer: /CN=ca290db2f72905f0db626b005bacf08878d17bac
Certificate serial: 019CF9F4484BC39908EB1798AA0CBAF02B77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
Manifest number: 0C99
Signing time: Tue 17 Mar 2026 04:01:01 +0000
Manifest this update: Tue 17 Mar 2026 04:01:01 +0000
Manifest next update: Wed 18 Mar 2026 04:01:01 +0000
Files and hashes: 1: CitEHd6r_CsQSgbionGA1eBcMLU.roa (hash: 1rANra1AzVxMgl8VcJaThBHrC2EUS4bUsTwEZ+EKh0w=)
2: GcvVWNFfgF0wu0Nfjs_BudGQw9Y.roa (hash: KB0pqrvO6Erz4/rIYGhqqlfhiTfb86tI38IPNb7s0Ow=)
3: WubjxHCSaP4QHue8QiWJLn9wu24.roa (hash: gOCleJwqwii3IPAc/S3k490GMZ5rkPiOH6rY9OCeZlc=)
4: cP554_mw0i_-2i5ondqs4ybL7Sk.roa (hash: 2BFM3dBYEA6Al1rq89/1sEyXAEFO0eUAmQaufDFqA9A=)
5: ktjIcji8JZjmvPNVbyNsDh1AaNI.roa (hash: OhINTejQ3OUauCVxjnxjYQBZeRf8l4Bc1ZHLwTdPGVQ=)
6: mYlVHFIkWhjce6SZlz3waAY66A8.roa (hash: 4EmaIQp2LaV/4WUzCFLlD6HjVOOnifTa9SWdZEfSqzY=)
7: yikNsvcpBfDbYmsAW6zwiHjRe6w.crl (hash: Qv3343AGLtI4f99wKeehwccFJR1LTneSZWz9FUbNCqU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Mar 2026 00:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:f9:f4:48:4b:c3:99:08:eb:17:98:aa:0c:ba:f0:2b:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca290db2f72905f0db626b005bacf08878d17bac
Validity
Not Before: Mar 17 04:01:01 2026 GMT
Not After : Mar 18 04:01:01 2026 GMT
Subject: CN=34ea79ac8aea7fc91bd7f4a977aea247deb30838
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:74:36:f7:68:85:33:98:4f:e8:93:6f:61:b2:
7d:f2:93:7b:17:f1:f7:f5:67:e4:3e:8b:fe:2a:76:
1c:fd:d3:f5:bf:28:81:99:92:c4:8f:b6:1e:35:01:
b0:a3:30:e4:a0:8e:f4:54:3b:27:99:cd:f3:27:5c:
83:f1:6f:ac:9b:2e:e5:bf:bd:ba:f6:91:df:49:3a:
c1:79:82:10:58:08:e5:ae:bc:21:54:04:07:f2:b9:
56:c0:ff:b3:78:54:cb:01:c1:d4:83:1d:a2:f5:60:
b3:c9:a4:cd:8c:df:be:03:48:cc:df:3c:7a:a9:cf:
9d:7d:7d:05:4c:11:ec:62:95:d8:81:2e:9d:9a:18:
cb:ea:d5:2b:d9:f7:10:b2:16:a9:a5:86:09:ba:85:
c6:3c:40:9a:97:c3:f2:1d:0a:2a:f5:80:e7:d6:6c:
f4:2c:69:1b:1e:4f:e7:78:6b:12:4c:53:97:de:4e:
ad:73:77:60:7c:68:19:86:d0:2a:1f:fb:e4:09:2e:
0f:2d:9b:b0:00:6a:e6:96:e4:89:41:08:dc:fb:59:
be:28:a9:0e:c9:10:d9:e0:75:ff:76:5d:12:36:71:
0a:44:3e:34:e6:12:f9:c1:a6:2d:0c:9a:bc:7e:cf:
94:ee:62:6f:6b:35:38:95:0d:23:f3:47:bf:d8:09:
a9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:EA:79:AC:8A:EA:7F:C9:1B:D7:F4:A9:77:AE:A2:47:DE:B3:08:38
X509v3 Authority Key Identifier:
keyid:CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:e2:53:49:ea:c7:48:22:51:4a:24:07:d9:f0:4e:96:96:2c:
78:70:15:15:53:ff:0b:4b:6f:66:b7:91:fa:62:a7:76:64:62:
81:c4:e1:9e:4e:4b:c2:86:6d:9c:f7:94:b2:fe:38:54:49:f6:
05:6d:c3:a1:73:e7:64:7c:38:8f:db:25:3c:d7:5b:ff:2a:89:
4b:cc:ef:03:02:fc:b4:a9:7c:68:e4:d5:e4:81:0b:f2:23:57:
2c:3d:b7:7a:01:01:63:68:1f:fe:88:48:bb:e3:2f:be:2d:77:
a4:1e:2d:86:53:e3:8f:df:a4:48:97:6d:96:e1:95:1d:11:8d:
05:02:cf:a6:df:48:69:83:1b:bb:92:c6:cf:0d:09:a4:08:c0:
c4:a1:56:b5:19:a9:36:58:5d:08:b9:1d:e1:4e:23:eb:83:aa:
fa:17:0f:3a:c6:b5:81:e4:bc:23:89:de:0c:09:7c:eb:0c:d3:
09:3c:c2:ea:3a:a7:f0:fd:3d:38:db:75:18:59:6a:4c:e2:23:
89:da:73:4a:34:8f:74:57:27:ac:64:43:67:2f:12:0e:36:1d:
7d:12:76:78:23:3f:34:46:71:22:61:5e:58:4d:7e:8a:7d:aa:
c5:8f:44:62:fb:6b:86:38:10:0b:dd:a7:4a:89:9c:be:eb:f6:
82:bf:6a:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 17 06:04:33 2026 by rpki-client