Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/b89e86-bfb4-4af6-8448-1f0dd9fdf5f3/1/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.mft
File: y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.mft (raw, json)
Hash identifier: mnBDPqpoEWglgsom3qvS+NghPmBXQVu7lNlUOKNxUf8=
Subject key identifier: 2F:01:9D:89:02:AA:DC:C8:E1:FC:0C:23:42:69:6B:46:2E:07:4E:6A
Authority key identifier: CB:54:27:FD:5D:20:58:5E:97:C2:F2:77:1D:48:09:BF:63:41:DA:A1
Certificate issuer: /CN=cb5427fd5d20585e97c2f2771d4809bf6341daa1
Certificate serial: 019D37C0C4388BA8280DEE31A5FD654D84CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/b89e86-bfb4-4af6-8448-1f0dd9fdf5f3/1/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.mft
Manifest number: 0997
Signing time: Sun 29 Mar 2026 04:01:13 +0000
Manifest this update: Sun 29 Mar 2026 04:01:13 +0000
Manifest next update: Mon 30 Mar 2026 04:01:13 +0000
Files and hashes: 1: Yk7Zbmt1P-AiIfkBAo3jSWo7vlg.roa (hash: GlJGpBWeWcsOeO74Qp/VHrmeF+iq8Z/F3boS8FvHYJQ=)
2: y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.crl (hash: LWDVIqzMSITGLjis8UCOwzWV6d9hNC3N2/KOABUil0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/b89e86-bfb4-4af6-8448-1f0dd9fdf5f3/1/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/b89e86-bfb4-4af6-8448-1f0dd9fdf5f3/1/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.mft
rsync://rpki.ripe.net/repository/DEFAULT/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:c4:38:8b:a8:28:0d:ee:31:a5:fd:65:4d:84:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb5427fd5d20585e97c2f2771d4809bf6341daa1
Validity
Not Before: Mar 29 04:01:13 2026 GMT
Not After : Mar 30 04:01:13 2026 GMT
Subject: CN=2f019d8902aadcc8e1fc0c2342696b462e074e6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:c9:e2:0b:98:19:39:00:eb:84:5e:2d:22:99:
38:96:c8:f0:9d:74:0e:5e:b8:2f:71:72:63:d7:68:
fc:2d:ce:28:1f:9e:5d:09:95:78:bf:8d:65:25:91:
b1:22:19:8a:94:c8:79:7c:99:4c:6e:c6:b7:5f:79:
85:14:7d:1f:24:41:50:c0:60:85:69:de:18:e2:82:
a4:fe:bc:1e:8d:ca:70:ee:5e:49:52:e4:ef:a2:c1:
6b:3d:12:28:6b:2b:9c:12:8f:4b:73:41:01:ef:d1:
65:3f:f2:85:27:c2:d1:f6:1a:ec:f0:fd:3e:06:93:
2b:64:6c:29:53:44:e5:b7:e3:4d:e2:1f:df:d7:ec:
b1:8e:45:ea:72:f2:58:0a:e2:ba:ca:ba:0f:3a:61:
5b:26:d9:c5:4f:76:06:31:43:9d:18:14:94:85:1b:
2f:cb:f2:10:8b:fa:67:68:d1:7a:af:c1:2d:73:2f:
0f:4f:7c:5b:3c:49:00:49:49:93:93:25:01:14:d4:
d0:0d:52:5f:23:a4:f6:42:c7:ec:62:62:57:79:d3:
c8:f8:e1:e7:58:3b:74:61:25:9f:84:70:46:38:cc:
b6:29:91:bb:a6:80:29:a8:cb:8b:63:6a:fc:a9:23:
8f:95:00:94:50:10:13:4e:22:52:da:5f:e2:ff:b2:
41:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:01:9D:89:02:AA:DC:C8:E1:FC:0C:23:42:69:6B:46:2E:07:4E:6A
X509v3 Authority Key Identifier:
keyid:CB:54:27:FD:5D:20:58:5E:97:C2:F2:77:1D:48:09:BF:63:41:DA:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b89e86-bfb4-4af6-8448-1f0dd9fdf5f3/1/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b89e86-bfb4-4af6-8448-1f0dd9fdf5f3/1/y1Qn_V0gWF6XwvJ3HUgJv2NB2qE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:28:d5:97:dd:8b:23:24:ab:c7:8b:2f:6c:13:0e:5d:56:73:
2f:3a:1e:c9:84:0f:93:93:e2:3f:02:88:dd:f8:8b:8e:55:94:
50:1d:50:ce:0f:d2:35:86:50:3a:ed:98:cc:e1:a2:ce:88:83:
72:38:1c:ff:e5:ab:e3:59:85:f5:82:24:3b:11:bd:44:34:4f:
a0:c5:0f:a3:57:fe:6f:61:8e:58:ec:09:e0:f8:a8:2f:48:03:
c8:9f:a7:3f:a0:fd:f6:74:53:df:f6:aa:00:c1:9e:00:83:ea:
c1:30:df:5b:24:ec:7f:c3:e3:6f:19:22:d4:66:43:1e:bc:ff:
0e:c0:44:a0:6f:19:78:fe:0b:7c:da:15:77:3f:b2:b3:68:be:
70:92:49:a8:08:bb:a1:45:e8:1b:e3:41:9a:1b:54:52:45:d1:
0d:5f:e2:75:01:30:65:09:4a:03:4c:f9:7c:d6:2c:49:46:41:
94:28:2f:1b:9e:31:8e:24:ab:51:06:9f:f7:a2:7d:e1:74:19:
5e:88:0b:f7:ab:e4:4c:0b:f7:28:88:81:e5:48:12:af:3e:df:
50:48:a4:fa:d5:8f:df:bf:61:ca:3d:d4:7a:c6:17:09:81:ca:
d3:b4:1b:d2:1c:35:89:8c:80:a0:d4:37:d1:84:c2:be:3d:73:
c8:b8:78:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:27 2026 by rpki-client