Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/b30916-2125-4a4f-9a36-2641975443ff/1/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.mft
File: y07YjFv7wrlW_Lsw0U6DK9u5YQ0.mft (raw, json)
Hash identifier: 29sk7NWUl38I4IE9hFHpCBeqWQocUMxMbpNdc+Gt7Qg=
Subject key identifier: 68:BC:00:45:5E:CF:46:F5:3D:B2:E8:28:E3:2B:4D:8D:26:B8:A5:BD
Authority key identifier: CB:4E:D8:8C:5B:FB:C2:B9:56:FC:BB:30:D1:4E:83:2B:DB:B9:61:0D
Certificate issuer: /CN=cb4ed88c5bfbc2b956fcbb30d14e832bdbb9610d
Certificate serial: 019CB02458A500E40DCE8D6DF9E7B3DE83CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/b30916-2125-4a4f-9a36-2641975443ff/1/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.mft
Manifest number: 0671
Signing time: Mon 02 Mar 2026 20:01:37 +0000
Manifest this update: Mon 02 Mar 2026 20:01:37 +0000
Manifest next update: Tue 03 Mar 2026 20:01:37 +0000
Files and hashes: 1: 1-wZ-dGJD7TkcwZp0aHH7GFaEZLg.roa (hash: mvCPOF4PLAlLp3trYs0EdaoYFPkfsfUwTcZFYIhMgoo=)
2: y07YjFv7wrlW_Lsw0U6DK9u5YQ0.crl (hash: 23sdcO+rEHAhmOz5g47vjnNkcuA9qggkjDzzLCTm8Vs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/b30916-2125-4a4f-9a36-2641975443ff/1/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/b30916-2125-4a4f-9a36-2641975443ff/1/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b0:24:58:a5:00:e4:0d:ce:8d:6d:f9:e7:b3:de:83:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb4ed88c5bfbc2b956fcbb30d14e832bdbb9610d
Validity
Not Before: Mar 2 20:01:37 2026 GMT
Not After : Mar 3 20:01:37 2026 GMT
Subject: CN=68bc00455ecf46f53db2e828e32b4d8d26b8a5bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f3:b6:40:f3:53:ca:7f:0a:e9:44:fc:e9:dd:
a9:69:6a:22:66:98:08:f4:89:2d:3f:9b:23:f2:a0:
db:ae:eb:63:83:d2:70:25:70:d0:54:8e:dc:5d:fb:
88:d4:a4:89:4f:92:78:d5:70:d7:0d:38:04:4e:b4:
a7:7f:42:a7:2e:5c:91:04:45:b3:94:c6:27:c8:8b:
87:a0:2f:32:5f:70:33:4b:b9:b9:ce:09:78:97:94:
16:f3:ce:bd:eb:10:9f:5a:aa:27:78:f3:77:5b:72:
d7:a6:c6:bd:d0:78:de:43:ce:16:46:32:85:a3:d9:
4d:43:8e:34:33:a3:51:37:6c:d1:a5:d2:9f:6b:ca:
2c:6a:af:74:2f:fa:99:c6:b3:78:df:19:7a:2c:ba:
51:2c:ad:59:ee:0c:1e:88:7d:4a:d2:09:1e:d0:d8:
cf:7f:01:1b:84:9a:93:4f:c3:26:01:a8:51:06:66:
c4:b4:6d:f6:d2:fd:12:26:66:8a:1d:c5:b2:27:8d:
a4:ef:a1:85:c4:0f:20:9d:75:7a:4b:ca:96:2d:a0:
17:94:f1:60:7d:6f:48:ee:dd:44:34:b6:56:af:b5:
af:e3:3a:3d:7c:32:48:f3:8e:83:97:05:3e:cc:ca:
6e:de:78:d3:cc:12:ff:ad:ed:12:c5:e1:e4:f0:59:
79:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:BC:00:45:5E:CF:46:F5:3D:B2:E8:28:E3:2B:4D:8D:26:B8:A5:BD
X509v3 Authority Key Identifier:
keyid:CB:4E:D8:8C:5B:FB:C2:B9:56:FC:BB:30:D1:4E:83:2B:DB:B9:61:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/b30916-2125-4a4f-9a36-2641975443ff/1/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/b30916-2125-4a4f-9a36-2641975443ff/1/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:f3:6e:f0:9e:a8:4b:ee:0a:73:f1:3e:ae:92:5e:12:f8:8f:
8f:7a:9e:f5:f2:9e:fd:b9:1c:7b:8c:98:a2:5c:01:13:bd:6d:
0c:a4:c1:ff:c6:38:47:43:5b:ae:f3:61:11:ae:7e:0d:82:07:
b2:a4:6b:ad:82:31:17:d4:9e:73:9f:bf:bf:25:f9:83:5f:b9:
f3:7f:a9:75:80:c3:b7:b9:1d:6f:63:2c:af:98:6f:68:0c:76:
0a:11:35:4d:49:b8:55:83:99:7c:d1:28:65:72:29:7a:3c:a8:
87:d4:e3:cf:20:ce:b4:87:a8:6a:85:4d:e1:a7:62:75:ae:80:
5b:14:e6:a7:4a:f8:fb:9c:d1:23:99:d8:dd:1e:05:2e:44:54:
f2:94:cf:71:d7:c4:12:81:ac:df:6a:0c:71:b6:d0:5a:55:62:
fe:cc:22:cc:41:a5:6c:f3:63:00:3a:7d:e3:36:e3:64:f0:a5:
84:a8:0d:09:b5:f0:65:70:e3:12:e3:8a:ce:d8:27:b8:c4:09:
c4:d2:7c:07:82:77:b6:d6:4c:df:03:d8:54:d7:02:4b:65:08:
a3:d6:42:3a:74:cb:fa:31:57:73:36:5e:9e:43:fd:7f:e6:78:
74:c7:c2:ab:ee:f3:2f:93:e1:17:aa:18:75:4c:6a:04:ee:73:
d0:f2:fd:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZywJFilAOQNzo1t+eez3oPNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiNGVkODhjNWJmYmMyYjk1NmZjYmIzMGQxNGU4MzJiZGJi
OTYxMGQwHhcNMjYwMzAyMjAwMTM3WhcNMjYwMzAzMjAwMTM3WjAzMTEwLwYDVQQD
Eyg2OGJjMDA0NTVlY2Y0NmY1M2RiMmU4MjhlMzJiNGQ4ZDI2YjhhNWJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr/O2QPNTyn8K6UT86d2paWoiZpgI
9IktP5sj8qDbrutjg9JwJXDQVI7cXfuI1KSJT5J41XDXDTgETrSnf0KnLlyRBEWz
lMYnyIuHoC8yX3AzS7m5zgl4l5QW88696xCfWqonePN3W3LXpsa90HjeQ84WRjKF
o9lNQ440M6NRN2zRpdKfa8osaq90L/qZxrN43xl6LLpRLK1Z7gweiH1K0gke0NjP
fwEbhJqTT8MmAahRBmbEtG320v0SJmaKHcWyJ42k76GFxA8gnXV6S8qWLaAXlPFg
fW9I7t1ENLZWr7Wv4zo9fDJI846DlwU+zMpu3njTzBL/re0SxeHk8Fl5rwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGi8AEVez0b1PbLoKOMrTY0muKW9MB8GA1UdIwQY
MBaAFMtO2Ixb+8K5Vvy7MNFOgyvbuWENMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveTA3WWpGdjd3cmxXX0xzdzBVNkRLOXU1WVEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9iMzA5MTYtMjEyNS00YTRmLTlhMzYt
MjY0MTk3NTQ0M2ZmLzEveTA3WWpGdjd3cmxXX0xzdzBVNkRLOXU1WVEwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC9iMzA5MTYtMjEyNS00YTRmLTlhMzYtMjY0MTk3NTQ0M2Zm
LzEveTA3WWpGdjd3cmxXX0xzdzBVNkRLOXU1WVEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFvNu8J6o
S+4Kc/E+rpJeEviPj3qe9fKe/bkce4yYolwBE71tDKTB/8Y4R0NbrvNhEa5+DYIH
sqRrrYIxF9Sec5+/vyX5g1+583+pdYDDt7kdb2Msr5hvaAx2ChE1TUm4VYOZfNEo
ZXIpejyoh9TjzyDOtIeoaoVN4adida6AWxTmp0r4+5zRI5nY3R4FLkRU8pTPcdfE
EoGs32oMcbbQWlVi/swizEGlbPNjADp94zbjZPClhKgNCbXwZXDjEuOKztgnuMQJ
xNJ8B4J3ttZM3wPYVNcCS2UIo9ZCOnTL+jFXczZenkP9f+Z4dMfCq+7zL5PhF6oY
dUxqBO5z0PL9oA==
-----END CERTIFICATE-----
Generated at Tue Mar 3 01:15:53 2026 by rpki-client