Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
File: y6AXGgLV5KdftAY1VFrgBkyMzK0.mft (raw, json)
Hash identifier: tclwlD5WKzE8EWW6SeHEqPDo6N4tIia/wX7S8u1fLr4=
Subject key identifier: 88:45:F3:F2:4A:E4:DB:06:13:86:32:1C:35:9C:DB:39:2F:01:7A:2E
Authority key identifier: CB:A0:17:1A:02:D5:E4:A7:5F:B4:06:35:54:5A:E0:06:4C:8C:CC:AD
Certificate issuer: /CN=cba0171a02d5e4a75fb40635545ae0064c8cccad
Certificate serial: 019D389BABA1F0430A5140988B297C793B7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y6AXGgLV5KdftAY1VFrgBkyMzK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
Manifest number: 159C
Signing time: Sun 29 Mar 2026 08:00:19 +0000
Manifest this update: Sun 29 Mar 2026 08:00:19 +0000
Manifest next update: Mon 30 Mar 2026 08:00:19 +0000
Files and hashes: 1: UxOjp8XUs-Ky59G3Ao0aGxBbUxk.roa (hash: IG/Uj+pARjcg7xsZwOswZLWfcj4Zeh91EtnXY1KelO4=)
2: y6AXGgLV5KdftAY1VFrgBkyMzK0.crl (hash: vX+d1kYUH2wby2/AxZU9xMXyx8b32NpryPGlLiKOUEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/y6AXGgLV5KdftAY1VFrgBkyMzK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:ab:a1:f0:43:0a:51:40:98:8b:29:7c:79:3b:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cba0171a02d5e4a75fb40635545ae0064c8cccad
Validity
Not Before: Mar 29 08:00:19 2026 GMT
Not After : Mar 30 08:00:19 2026 GMT
Subject: CN=8845f3f24ae4db061386321c359cdb392f017a2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:9b:80:1c:c6:3b:86:07:f9:fa:02:c0:51:c4:
e1:25:31:b7:5e:f3:7c:79:34:3d:ee:92:4d:58:ae:
57:ef:db:41:67:2a:4a:1e:2c:67:20:89:37:4d:37:
81:68:53:7b:a7:8b:ad:0b:55:d6:6e:6d:f7:15:b9:
84:0a:35:cc:94:dd:ca:34:76:f4:f9:f1:23:ef:b3:
02:a8:d1:bb:19:a4:78:99:79:12:70:b7:f7:40:2c:
54:df:0a:e0:07:23:2b:73:d8:80:f4:66:e2:6d:f6:
68:3c:da:f9:db:46:a1:15:ac:cb:c4:bf:a8:25:12:
8e:1d:9e:db:eb:c1:90:b7:bf:7b:06:5e:06:52:f1:
2c:bb:de:9c:e1:6b:fa:92:31:12:4b:fb:9c:ca:63:
81:71:62:62:90:f7:26:7e:05:9a:32:3b:04:ca:27:
3b:88:55:16:e0:e8:ea:0c:55:4d:0a:94:8e:39:90:
d0:e9:4e:1b:9d:f4:85:13:be:60:77:ca:a0:f7:ce:
50:33:24:af:d6:eb:e8:cf:c8:2a:20:c4:3a:04:00:
fd:6b:4c:af:f0:29:ef:39:d5:d7:72:b1:c5:d1:e3:
3e:72:6c:3b:03:ea:a7:af:8b:1c:6c:b8:3e:2a:72:
83:c8:03:93:38:c5:62:b1:dd:80:df:a3:d9:f6:25:
a3:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:45:F3:F2:4A:E4:DB:06:13:86:32:1C:35:9C:DB:39:2F:01:7A:2E
X509v3 Authority Key Identifier:
keyid:CB:A0:17:1A:02:D5:E4:A7:5F:B4:06:35:54:5A:E0:06:4C:8C:CC:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y6AXGgLV5KdftAY1VFrgBkyMzK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:63:11:89:3f:96:f5:64:bd:bb:2d:c5:1b:05:2d:77:02:d5:
49:56:a5:ed:65:42:7f:1e:58:69:20:21:da:3d:f0:1b:78:a2:
97:1e:34:7d:ee:a8:22:18:7f:10:fc:36:b1:ae:e0:6b:1b:6d:
a0:11:a0:14:15:43:f5:a1:51:d7:91:96:95:75:90:4e:0e:72:
f1:82:c8:07:18:83:4d:43:2e:3f:3f:fd:ab:e1:0b:5f:80:2c:
29:a7:8d:08:35:49:00:fe:0b:ed:73:bd:20:1e:ac:6c:73:92:
9f:da:76:d9:77:80:88:f9:58:3c:38:87:e6:6e:8e:da:1d:92:
6a:2b:bd:56:71:cb:5b:2b:7e:8c:eb:eb:97:e0:9c:49:ec:6c:
81:c4:6c:40:0c:61:8f:b8:ef:65:b6:47:4f:e4:65:6f:bd:68:
94:e5:2f:57:6f:fd:ba:8d:50:f9:98:5d:2a:99:34:03:20:67:
05:38:c6:70:ca:ee:2a:b2:33:92:03:e6:cd:b7:1b:42:05:2b:
54:0d:37:1f:94:77:18:86:f6:d1:29:e6:cd:42:d6:64:57:7f:
f6:26:5d:7a:72:f6:61:0d:44:e7:7c:fd:ac:ab:74:ce:9e:7b:
7e:20:2a:b8:ee:4b:3c:57:3c:1c:03:8c:70:77:ab:41:3c:e6:
c2:2a:c6:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:23 2026 by rpki-client