Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft
File: y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft (raw, json)
Hash identifier: RlTfcl3kW2VRGGsn9tXnd43+7Lvhotk1Qiw6Jq65NiA=
Subject key identifier: 47:A2:0D:3D:60:67:F3:D7:49:45:FA:19:99:CA:C3:DC:8B:23:B1:7A
Authority key identifier: CB:B9:96:FF:05:5D:65:75:E0:1F:2E:64:D9:A3:B3:82:83:47:02:D1
Certificate issuer: /CN=cbb996ff055d6575e01f2e64d9a3b382834702d1
Certificate serial: 019D3789344D9BBF2E439316FE4B0AE9D91C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y7mW_wVdZXXgHy5k2aOzgoNHAtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft
Manifest number: 0D6A
Signing time: Sun 29 Mar 2026 03:00:31 +0000
Manifest this update: Sun 29 Mar 2026 03:00:31 +0000
Manifest next update: Mon 30 Mar 2026 03:00:31 +0000
Files and hashes: 1: gISB5XKycKPv5hrE5ng7DwaTFZs.roa (hash: sJhtL2wlmJpjXzVIWne8fY+2r1IBnfbZ2BjwXpNs+R8=)
2: y7mW_wVdZXXgHy5k2aOzgoNHAtE.crl (hash: 3iimKnpai18fiCfoYZdKAvoF86pgHEZA819CssTpLXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/y7mW_wVdZXXgHy5k2aOzgoNHAtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:34:4d:9b:bf:2e:43:93:16:fe:4b:0a:e9:d9:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbb996ff055d6575e01f2e64d9a3b382834702d1
Validity
Not Before: Mar 29 03:00:31 2026 GMT
Not After : Mar 30 03:00:31 2026 GMT
Subject: CN=47a20d3d6067f3d74945fa1999cac3dc8b23b17a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5f:a0:3c:99:0e:7c:ad:6c:00:e1:08:34:4f:
b5:f1:d7:7c:c6:9a:61:7a:db:de:32:fd:29:fe:1c:
1e:b9:fb:ee:44:e6:03:1f:71:db:7e:29:93:b3:ca:
16:ed:42:3b:aa:25:0c:1e:7f:3a:67:15:28:68:cc:
29:30:03:43:fd:d1:b3:f8:5f:c6:04:89:0e:2e:5b:
b5:28:61:9e:b5:d0:eb:fa:90:76:79:f5:41:d5:9a:
f9:0d:85:b8:d4:61:2b:8b:88:5b:6b:e0:cd:8f:df:
5f:bd:26:3f:f9:05:ba:7c:29:2e:4b:15:30:c8:2c:
c4:4b:26:8d:a2:b7:a4:bd:3e:68:a6:3e:7b:ea:c0:
4b:db:22:c5:eb:c5:e1:e4:e5:c8:e9:79:c2:92:19:
0f:8b:cd:86:24:1b:f8:9d:58:49:da:3c:4a:91:ba:
4e:0f:db:fa:bc:88:49:6e:a7:99:d3:c2:fd:ee:32:
b8:a1:5b:b9:d2:8e:ac:28:fd:98:cf:6f:c1:44:92:
8f:fe:d8:0d:76:49:56:f3:36:a4:94:97:3d:9c:13:
db:18:0f:ee:e7:01:0d:42:08:91:99:6e:21:87:de:
6b:3e:8f:60:b2:fb:0d:bb:b3:47:90:7c:5b:2d:b5:
b5:05:4c:21:63:1c:61:1b:43:ff:fe:e7:29:5d:ab:
ea:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:A2:0D:3D:60:67:F3:D7:49:45:FA:19:99:CA:C3:DC:8B:23:B1:7A
X509v3 Authority Key Identifier:
keyid:CB:B9:96:FF:05:5D:65:75:E0:1F:2E:64:D9:A3:B3:82:83:47:02:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y7mW_wVdZXXgHy5k2aOzgoNHAtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5571f9-d9bb-4e78-bad6-09d4231c1c99/1/y7mW_wVdZXXgHy5k2aOzgoNHAtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:83:ec:11:7f:23:a4:0f:e7:65:1a:a8:63:bd:1a:3c:2a:db:
7e:fa:2f:f2:89:3a:96:4d:b0:cf:0a:7c:5a:59:da:11:dc:42:
9d:f5:51:e9:cb:44:bb:ac:34:0c:ff:76:b2:af:95:cc:c9:5c:
ce:86:21:91:3e:d1:9f:7c:b4:df:04:67:aa:64:b7:ab:c9:76:
c8:90:00:02:f0:e5:33:2c:6a:d9:64:3e:72:d2:23:5f:67:fb:
71:83:78:21:a0:0d:f1:d9:83:10:c2:ca:51:63:f5:92:68:25:
57:5b:d1:e7:53:e6:86:04:01:8c:39:a5:6e:34:2f:4d:6b:f7:
54:88:ca:b9:28:8b:77:42:06:04:95:67:b7:87:47:b0:43:1b:
24:69:7b:e3:68:54:00:32:2e:65:3e:9f:bb:b6:18:ce:67:e8:
2a:d7:45:f3:d9:66:d8:b2:0f:2c:5a:ef:02:19:09:0e:40:a3:
57:75:b7:52:4e:22:77:49:c1:db:2f:46:c1:f8:1a:e8:47:61:
7e:12:83:78:da:c2:be:5e:f4:c8:fd:41:3d:c6:46:31:67:e5:
f6:bb:a7:93:1e:c3:46:34:da:19:d6:cc:79:f2:0d:12:54:a8:
51:b6:3a:2d:f9:ad:01:8f:3c:d3:75:b4:5b:41:4a:ac:e1:8d:
a3:f3:09:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:33:36 2026 by rpki-client