Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/b569be-543a-4b59-8ad0-6560ce4ad06d/1/iyTYS_9MkhfR3vpd0zTIyFMiams.mft
File: iyTYS_9MkhfR3vpd0zTIyFMiams.mft (raw, json)
Hash identifier: TsqLySXCR4yhCSYod3iZBt3VoqOFfPF8Uddt2n5nAjM=
Subject key identifier: AF:4B:5C:BC:31:0C:9C:18:CC:B2:86:2C:98:E4:28:1E:56:93:03:9B
Authority key identifier: 8B:24:D8:4B:FF:4C:92:17:D1:DE:FA:5D:D3:34:C8:C8:53:22:6A:6B
Certificate issuer: /CN=8b24d84bff4c9217d1defa5dd334c8c853226a6b
Certificate serial: 019CB05B3E000556895BCA50055161CDE7AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iyTYS_9MkhfR3vpd0zTIyFMiams.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/b569be-543a-4b59-8ad0-6560ce4ad06d/1/iyTYS_9MkhfR3vpd0zTIyFMiams.mft
Manifest number: 57
Signing time: Mon 02 Mar 2026 21:01:35 +0000
Manifest this update: Mon 02 Mar 2026 21:01:35 +0000
Manifest next update: Tue 03 Mar 2026 21:01:35 +0000
Files and hashes: 1: iyTYS_9MkhfR3vpd0zTIyFMiams.crl (hash: GfNba3GfcX6XV3rHFf8JStWJbOpm86iFETmElCXhq+I=)
2: uv1ygUlcXrGSDECbU5SJQezpERk.roa (hash: heh+HmefIR2zFpP0zIec4O9N2L5u5pbDsZ881lNVG4E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/b569be-543a-4b59-8ad0-6560ce4ad06d/1/iyTYS_9MkhfR3vpd0zTIyFMiams.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/b569be-543a-4b59-8ad0-6560ce4ad06d/1/iyTYS_9MkhfR3vpd0zTIyFMiams.mft
rsync://rpki.ripe.net/repository/DEFAULT/iyTYS_9MkhfR3vpd0zTIyFMiams.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 21:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b0:5b:3e:00:05:56:89:5b:ca:50:05:51:61:cd:e7:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b24d84bff4c9217d1defa5dd334c8c853226a6b
Validity
Not Before: Mar 2 21:01:35 2026 GMT
Not After : Mar 3 21:01:35 2026 GMT
Subject: CN=af4b5cbc310c9c18ccb2862c98e4281e5693039b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:92:04:18:af:a2:b7:ff:47:6d:8d:57:00:a1:
e7:38:ca:fe:2e:e0:60:39:1b:c6:fc:ba:26:34:b7:
56:b7:21:d1:66:58:67:5b:4e:e5:4c:6a:51:8c:ec:
82:d2:21:7b:93:e4:26:bd:e6:94:5f:fe:6c:df:80:
59:da:8e:d3:d8:9a:6e:1f:b0:e2:65:1a:99:1b:2f:
7e:c4:7d:1d:2a:a1:6b:23:9c:94:37:b1:8d:5b:ec:
02:f8:2b:11:51:e0:41:05:a5:04:00:17:71:67:c3:
0e:b6:06:75:b5:68:6e:4c:f1:c8:d1:c3:1d:33:8d:
0e:ef:64:dc:1a:e6:ee:46:12:33:b2:a1:13:e6:2b:
a4:04:f6:06:19:62:30:df:00:54:05:ff:cc:9b:e7:
4c:b7:71:ca:72:43:75:d4:9f:6b:56:a4:1d:93:22:
1f:05:88:c0:00:55:fe:89:87:79:e5:0f:fe:df:a8:
f6:9e:74:82:f5:fb:a7:d7:06:5a:0b:23:d6:2a:42:
1f:e6:c3:cf:01:26:6b:3e:8f:1f:10:0d:d0:4b:05:
51:fa:62:aa:82:8a:fd:a5:35:52:f4:42:ab:89:a9:
31:f3:7c:2d:2f:ab:a8:b3:b8:28:4b:fe:3d:ca:db:
ee:51:52:54:7e:3b:02:d0:f7:51:12:fe:42:57:ac:
8f:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:4B:5C:BC:31:0C:9C:18:CC:B2:86:2C:98:E4:28:1E:56:93:03:9B
X509v3 Authority Key Identifier:
keyid:8B:24:D8:4B:FF:4C:92:17:D1:DE:FA:5D:D3:34:C8:C8:53:22:6A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iyTYS_9MkhfR3vpd0zTIyFMiams.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/b569be-543a-4b59-8ad0-6560ce4ad06d/1/iyTYS_9MkhfR3vpd0zTIyFMiams.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/b569be-543a-4b59-8ad0-6560ce4ad06d/1/iyTYS_9MkhfR3vpd0zTIyFMiams.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:d3:b0:1a:41:06:86:39:34:f2:4a:81:b9:cf:64:7f:35:82:
ef:20:11:18:cf:bf:0f:f1:e6:e9:be:8c:b8:8a:ee:41:d5:2f:
71:9d:4d:f2:b8:23:09:4d:b2:67:8d:e6:12:af:96:21:f4:71:
b6:3b:40:e2:86:11:ef:11:69:16:42:68:33:69:4b:bc:04:0e:
47:d9:0e:9a:9f:06:d6:38:bb:ba:bc:c4:07:ce:e8:6d:b5:c6:
1d:42:81:3b:42:74:b2:34:0b:af:44:9b:a7:70:26:bb:e4:9f:
5d:4a:e9:46:f2:50:49:c0:43:c8:ee:f5:97:03:ee:06:23:47:
ec:e5:4f:4d:8c:b3:39:6f:4e:34:b6:e7:37:20:e7:9d:08:5a:
d2:4c:b8:9c:5f:3a:1d:16:22:d0:21:1f:37:54:07:a4:92:e6:
9e:40:40:e6:6b:3e:3e:17:64:22:ba:e7:84:96:19:97:d5:d7:
a0:36:92:21:de:69:54:f5:77:1c:9f:6e:04:bc:12:39:7d:40:
35:f0:ed:29:4f:d0:bf:3a:da:8f:eb:3d:74:13:25:5a:c5:11:
65:4f:88:82:45:fb:8f:0f:c4:0f:a9:b3:26:32:96:c5:6d:ee:
8d:ae:08:21:6f:1c:6e:fd:db:bf:c0:b9:80:0f:01:f7:6b:c6:
4c:5f:e3:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 01:57:15 2026 by rpki-client