Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
File: yikNsvcpBfDbYmsAW6zwiHjRe6w.mft (raw, json)
Hash identifier: WqUpVkCFaqAxwbSGgjDJ7m7Mj7tfnSF5D1/4PwkbB30=
Subject key identifier: 2E:EB:F1:D4:F4:DF:EB:1E:8B:20:8F:C1:84:D3:D1:8A:59:5A:83:EE
Authority key identifier: CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
Certificate issuer: /CN=ca290db2f72905f0db626b005bacf08878d17bac
Certificate serial: 019D2E188AD522978C0A4B1BE87C5D85887C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
Manifest number: 0CB4
Signing time: Fri 27 Mar 2026 07:00:53 +0000
Manifest this update: Fri 27 Mar 2026 07:00:53 +0000
Manifest next update: Sat 28 Mar 2026 07:00:53 +0000
Files and hashes: 1: CitEHd6r_CsQSgbionGA1eBcMLU.roa (hash: 1rANra1AzVxMgl8VcJaThBHrC2EUS4bUsTwEZ+EKh0w=)
2: GcvVWNFfgF0wu0Nfjs_BudGQw9Y.roa (hash: KB0pqrvO6Erz4/rIYGhqqlfhiTfb86tI38IPNb7s0Ow=)
3: WubjxHCSaP4QHue8QiWJLn9wu24.roa (hash: gOCleJwqwii3IPAc/S3k490GMZ5rkPiOH6rY9OCeZlc=)
4: cP554_mw0i_-2i5ondqs4ybL7Sk.roa (hash: 2BFM3dBYEA6Al1rq89/1sEyXAEFO0eUAmQaufDFqA9A=)
5: ktjIcji8JZjmvPNVbyNsDh1AaNI.roa (hash: OhINTejQ3OUauCVxjnxjYQBZeRf8l4Bc1ZHLwTdPGVQ=)
6: mYlVHFIkWhjce6SZlz3waAY66A8.roa (hash: 4EmaIQp2LaV/4WUzCFLlD6HjVOOnifTa9SWdZEfSqzY=)
7: yikNsvcpBfDbYmsAW6zwiHjRe6w.crl (hash: xb8pYTm0x6CagWEgPWHOY07MtcHKmdfk64VZ6jB72+4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Mar 2026 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2e:18:8a:d5:22:97:8c:0a:4b:1b:e8:7c:5d:85:88:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca290db2f72905f0db626b005bacf08878d17bac
Validity
Not Before: Mar 27 07:00:53 2026 GMT
Not After : Mar 28 07:00:53 2026 GMT
Subject: CN=2eebf1d4f4dfeb1e8b208fc184d3d18a595a83ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b3:ea:bc:f8:cf:c0:31:7a:c9:17:06:06:8c:
74:59:10:da:29:94:bd:3f:d9:de:a0:e8:26:52:d8:
e0:3d:11:a6:44:86:59:6c:2e:38:5d:bc:e6:0f:cd:
b9:c3:22:7a:39:6f:58:fb:cd:03:3e:78:74:90:87:
05:13:55:71:67:93:87:59:cc:9b:a2:e0:3d:1f:db:
a2:ff:35:58:3c:88:28:07:e8:42:19:dd:42:23:cc:
19:02:b2:50:83:be:ba:87:b0:11:57:64:4e:44:68:
40:f2:66:89:3f:03:72:8e:e7:0c:72:21:08:e9:72:
be:d9:bb:0a:62:66:72:3c:77:c9:af:74:26:a3:70:
db:32:2f:ed:99:7f:bf:a9:da:c9:52:1b:18:b6:d1:
d6:f7:fe:a5:85:f8:d1:9e:a2:6a:f7:f7:94:a7:0d:
49:ab:d1:80:89:cd:d1:7e:ca:4c:08:9a:63:fe:3b:
44:a3:3c:f6:3e:a6:22:d7:89:b5:71:53:3d:69:5b:
3a:15:5f:e4:69:c2:67:53:3e:66:61:8b:66:ae:42:
4e:e9:c4:fe:dc:74:c7:1d:8d:5c:db:44:0d:0d:40:
35:2c:70:05:21:6a:23:96:5b:f9:9e:67:c4:38:69:
56:0b:8b:41:5f:3e:75:a4:a7:1a:06:8f:b0:0d:0c:
33:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:EB:F1:D4:F4:DF:EB:1E:8B:20:8F:C1:84:D3:D1:8A:59:5A:83:EE
X509v3 Authority Key Identifier:
keyid:CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:f0:76:02:61:5e:83:eb:f4:4f:4b:aa:aa:b0:ac:45:36:43:
f3:1d:06:7a:26:eb:3d:8f:06:2f:5a:60:ab:e1:59:8f:8c:79:
f2:a7:d1:a7:e4:a3:51:b9:cb:82:ae:1b:20:1c:6f:9d:c7:bf:
9b:07:ab:44:be:5f:6a:19:77:26:c8:01:d8:4e:a2:e2:d6:fd:
04:ef:f9:c7:f5:60:6d:af:7b:36:90:e1:34:a9:dd:21:70:0c:
41:ed:c8:e3:04:e7:55:64:29:96:fb:4e:79:40:4d:fb:3b:73:
81:a0:05:e9:69:d2:2c:74:41:f3:c1:33:85:db:24:ad:f9:94:
45:92:56:0e:79:ae:f2:c1:9d:69:31:b2:88:2b:87:9c:6d:37:
05:ee:7f:05:61:33:ac:03:27:52:05:a5:3b:61:1e:59:8f:28:
f3:9d:54:bf:ce:df:31:57:b4:5e:68:25:25:fe:82:97:4e:58:
24:2f:a4:3f:d0:2f:cc:f4:56:f3:41:54:00:2d:87:40:00:95:
10:a1:07:72:5b:e4:78:e6:5f:91:40:75:09:7c:f3:8d:19:54:
6c:da:76:05:a5:64:aa:5a:d5:4d:6a:73:19:9a:a3:35:8f:63:
4d:b0:ff:8a:e9:62:3c:2d:00:64:8d:5e:ae:b0:80:16:57:01:
ee:11:5e:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 10:19:56 2026 by rpki-client