Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.mft
File: Ym0k1r81OWP-WvolsKWWZxUqhtA.mft (raw, json)
Hash identifier: rxN0Jknim+atBfnJQVT5dfVyV4Niej5LCl7dT7lmwYw=
Subject key identifier: 94:9A:EC:23:ED:B2:0C:D0:A5:7D:8D:55:05:E4:A3:CB:1F:55:15:C8
Authority key identifier: 62:6D:24:D6:BF:35:39:63:FE:5A:FA:25:B0:A5:96:67:15:2A:86:D0
Certificate issuer: /CN=626d24d6bf353963fe5afa25b0a59667152a86d0
Certificate serial: 019CC3067F7D3B8461E5AC46422017068FE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ym0k1r81OWP-WvolsKWWZxUqhtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.mft
Manifest number: 0FE2
Signing time: Fri 06 Mar 2026 12:01:48 +0000
Manifest this update: Fri 06 Mar 2026 12:01:48 +0000
Manifest next update: Sat 07 Mar 2026 12:01:48 +0000
Files and hashes: 1: BOEi7NrSCNnbOJagz6PacwPyCow.roa (hash: gcJkZ8tsvtRiMSl8JsUfBFpQEizMhx1qFKi60dWgXD0=)
2: Ym0k1r81OWP-WvolsKWWZxUqhtA.crl (hash: C3XoWrtfQj/ildRNlyViKj12RMBRH/tVXSVsknwH9S0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ym0k1r81OWP-WvolsKWWZxUqhtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Mar 2026 10:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c3:06:7f:7d:3b:84:61:e5:ac:46:42:20:17:06:8f:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=626d24d6bf353963fe5afa25b0a59667152a86d0
Validity
Not Before: Mar 6 12:01:48 2026 GMT
Not After : Mar 7 12:01:48 2026 GMT
Subject: CN=949aec23edb20cd0a57d8d5505e4a3cb1f5515c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:7f:94:52:8a:2d:81:fc:35:56:18:bb:21:ea:
7c:f0:6d:39:6d:4e:e0:97:9d:9b:66:8f:26:94:3b:
8c:5e:7c:d2:f1:08:bc:78:8a:2d:bc:fb:df:61:46:
19:21:fd:89:7f:31:e5:ef:fb:38:55:4d:b5:4e:27:
d3:f9:08:03:cd:a9:2b:28:3f:c5:f9:95:c3:6f:bf:
91:ec:b4:bb:17:f1:dc:46:49:d8:12:9e:76:2f:45:
ce:84:85:94:28:60:35:9c:5b:bb:68:2d:55:27:9c:
fe:9c:14:b1:de:28:0f:64:0a:88:92:6b:ad:39:58:
4f:27:8b:d1:a1:6f:84:41:ca:92:d3:e5:b9:93:61:
1a:5b:4e:1d:9c:95:36:18:58:23:83:14:55:e8:60:
ef:64:80:8a:0f:5c:aa:3f:c4:3a:3c:10:67:8b:a8:
5b:0c:87:e9:84:00:27:52:00:a4:33:ea:80:21:97:
02:72:96:0a:68:25:9d:ec:ec:f7:3d:c0:01:89:64:
3d:db:a3:2e:36:9a:17:e6:96:74:e4:08:1d:1f:51:
34:77:dc:5a:64:75:cf:ce:24:d2:23:80:c4:53:a5:
d5:56:12:04:ce:5d:71:a2:df:c4:2a:1d:89:d4:cc:
08:b3:40:ef:58:bf:50:91:87:16:d5:e7:da:49:2f:
e2:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:9A:EC:23:ED:B2:0C:D0:A5:7D:8D:55:05:E4:A3:CB:1F:55:15:C8
X509v3 Authority Key Identifier:
keyid:62:6D:24:D6:BF:35:39:63:FE:5A:FA:25:B0:A5:96:67:15:2A:86:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ym0k1r81OWP-WvolsKWWZxUqhtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:4a:fe:90:16:b4:d1:e5:f0:45:87:f2:a8:18:c7:b7:a2:22:
9a:36:c5:4d:d5:00:fe:0a:10:f3:b5:66:7b:18:67:92:a8:5c:
80:28:98:b6:9f:dd:08:19:be:8c:19:7b:39:27:08:e8:de:04:
ba:c9:40:91:1b:6c:25:ab:43:d2:78:cd:51:19:3f:7c:3a:f1:
84:f2:98:93:e6:6e:39:70:2a:d1:ee:9e:e5:fd:d2:99:77:5e:
78:02:93:12:c8:47:ec:2c:0a:11:75:80:6f:6e:dc:71:bf:5d:
b0:c8:67:00:53:16:7e:dc:f1:12:bf:41:32:2a:df:51:ca:78:
42:4e:5f:a5:0c:9b:13:ce:62:ed:10:26:7d:dc:04:f3:11:d0:
cd:9d:bb:ec:bf:c1:ca:cd:ad:97:08:85:ad:00:78:f9:62:95:
99:16:52:19:39:5b:29:87:7b:f8:5e:ed:7b:0f:b4:de:0e:06:
b0:86:3e:a2:07:ed:84:2a:42:91:f4:3d:ba:a1:85:b3:95:e6:
88:56:de:82:76:fa:5d:e4:f4:c3:64:70:94:e9:03:30:cd:6d:
2c:59:ff:66:fd:e5:11:2c:a6:ba:bf:0f:6c:83:8e:35:64:81:
86:6b:7f:ba:1e:92:7d:32:2c:8a:3b:17:40:45:25:98:33:03:
a7:96:9e:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 6 20:17:02 2026 by rpki-client