Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft
File: yohtVYfshfcSQs1XztQJVEUoFo0.mft (raw, json)
Hash identifier: FiN2533loCnI3HR4Oc4g83Z9/jLU0GqyL4wv8PL/zsM=
Subject key identifier: 8B:6D:29:DF:E5:AD:CB:6B:DB:86:51:8D:26:EA:39:B0:DA:77:EA:E6
Authority key identifier: CA:88:6D:55:87:EC:85:F7:12:42:CD:57:CE:D4:09:54:45:28:16:8D
Certificate issuer: /CN=ca886d5587ec85f71242cd57ced409544528168d
Certificate serial: 019CC63E2E22160F5C413F36C46D7C314ECA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yohtVYfshfcSQs1XztQJVEUoFo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft
Manifest number: 0608
Signing time: Sat 07 Mar 2026 03:01:29 +0000
Manifest this update: Sat 07 Mar 2026 03:01:29 +0000
Manifest next update: Sun 08 Mar 2026 03:01:29 +0000
Files and hashes: 1: I2kHiqxmSF3p6V9W7eV_eTfDN3k.roa (hash: fCpVVld0L94vFLqVKGMCfHN/hOXwKxcQlDEoGOWDUFo=)
2: XExavfpXuaZ3MydZbyDnyFn5ni0.roa (hash: WQdTsTZhStmdezt2VotpAadyLft0mMYrZPTmmKNNRro=)
3: yohtVYfshfcSQs1XztQJVEUoFo0.crl (hash: KOUH8PW353/vCuc9qdScvioWlZ5fkS2bAMv9bbsziDI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/yohtVYfshfcSQs1XztQJVEUoFo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 03:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c6:3e:2e:22:16:0f:5c:41:3f:36:c4:6d:7c:31:4e:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca886d5587ec85f71242cd57ced409544528168d
Validity
Not Before: Mar 7 03:01:29 2026 GMT
Not After : Mar 8 03:01:29 2026 GMT
Subject: CN=8b6d29dfe5adcb6bdb86518d26ea39b0da77eae6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0f:4b:48:68:c2:80:a6:05:b3:93:45:a6:ec:
fd:0a:fa:c3:f8:d4:21:95:08:b4:eb:64:3d:3d:52:
aa:34:b3:ba:50:f0:78:c0:83:e2:46:cc:64:47:91:
64:2c:5f:2f:b0:8e:b1:b3:1e:23:86:da:ac:73:cd:
71:08:71:30:e8:f4:cb:36:8a:80:e0:a5:6d:8d:45:
d1:a2:4e:6a:c3:18:3b:32:86:fd:9a:fc:a6:c9:3b:
60:f5:a2:b4:4e:2a:d4:1e:ee:bd:dc:75:69:09:25:
2e:b5:e5:f7:1b:bb:d2:9a:99:00:c2:ca:4d:8f:e7:
8c:dd:80:bd:f7:cc:50:a8:bd:14:54:0a:84:e1:1b:
15:ac:b6:d8:ca:3f:50:26:99:0c:f1:87:b1:21:88:
16:78:d1:b2:22:4a:a5:03:38:f7:f2:01:7b:7e:71:
96:1a:9b:bc:0c:d2:d1:d0:17:15:5a:fd:98:49:3a:
ea:03:04:cb:ca:84:ec:42:db:cb:bc:9c:50:82:0b:
e8:a7:6e:5d:98:d7:79:ef:9f:5b:35:0d:6d:13:6b:
05:39:50:5b:a1:96:2a:f5:3d:24:4b:2b:18:e5:7f:
18:a6:68:8e:77:8b:c6:93:09:34:a2:71:27:7a:99:
50:c3:60:ea:32:cd:5d:1e:e3:f2:42:66:96:f1:e6:
09:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:6D:29:DF:E5:AD:CB:6B:DB:86:51:8D:26:EA:39:B0:DA:77:EA:E6
X509v3 Authority Key Identifier:
keyid:CA:88:6D:55:87:EC:85:F7:12:42:CD:57:CE:D4:09:54:45:28:16:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yohtVYfshfcSQs1XztQJVEUoFo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:c4:95:82:14:bf:39:e0:ef:51:3a:70:6d:6c:5b:ca:7c:8e:
6c:2d:4b:f0:cc:76:3c:fb:77:4f:d4:2b:cc:fd:e5:fb:f3:63:
20:29:b6:04:75:82:c9:f9:d6:2b:e5:64:36:ad:d9:f2:f2:e9:
a9:46:f5:d9:b1:25:f4:db:4b:df:18:a8:ac:e1:fd:b5:e4:82:
13:99:ff:68:4c:30:af:bf:02:d3:1f:f7:ba:76:1c:e1:81:14:
aa:ce:cc:70:c3:ea:83:00:1f:be:70:f0:e3:84:04:1f:5d:0a:
62:33:48:2a:5d:6e:b7:7f:f6:79:2d:aa:6f:53:2e:2c:23:f5:
5e:7e:59:ef:26:7b:42:99:7a:10:ec:ed:4b:cd:73:b6:ff:65:
97:d6:37:95:44:c1:82:a5:55:9d:c7:bc:6c:ae:12:92:e0:80:
6d:39:13:65:c7:1c:33:29:d6:02:e3:77:13:33:14:13:ca:38:
f7:c6:ef:22:49:1d:27:03:89:bd:1b:33:ec:ac:c8:ef:d4:52:
0c:f3:ef:50:f9:70:de:aa:36:21:5a:1a:7f:be:81:54:ca:3d:
0e:fc:ec:1a:a9:09:52:0b:f9:69:de:da:7e:ff:1a:4b:e7:11:
24:c7:57:45:fa:ea:0d:ab:67:55:d5:29:35:04:86:78:5c:69:
a3:36:31:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 7 12:44:26 2026 by rpki-client