Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
File: ydWxKeBvlSRoXnABAoQfctaRXDM.mft (raw, json)
Hash identifier: PHiiNnVWrBAjGdKybXUf6a+F1Pc6HBTm6vkUPlPFw1I=
Subject key identifier: D3:F0:0A:DE:DB:91:53:54:B5:30:7F:4E:48:86:7E:DE:38:CC:D6:17
Authority key identifier: C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
Certificate issuer: /CN=c9d5b129e06f9524685e700102841f72d6915c33
Certificate serial: 019CAB6B99D857F90F8469736C640897038E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
Manifest number: 0629
Signing time: Sun 01 Mar 2026 22:01:21 +0000
Manifest this update: Sun 01 Mar 2026 22:01:21 +0000
Manifest next update: Mon 02 Mar 2026 22:01:21 +0000
Files and hashes: 1: kwFPG9hW2RnxD_y7iGiEkD7ds7s.roa (hash: oBOX2hL6Q0voGuCACiRactuFniCHTuH8t84KLSlEN9Y=)
2: ydWxKeBvlSRoXnABAoQfctaRXDM.crl (hash: Rq1GrGkMsm/4yxoj9pj1a/tp6wbum9CuTq55cq/SEWs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:99:d8:57:f9:0f:84:69:73:6c:64:08:97:03:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d5b129e06f9524685e700102841f72d6915c33
Validity
Not Before: Mar 1 22:01:21 2026 GMT
Not After : Mar 2 22:01:21 2026 GMT
Subject: CN=d3f00adedb915354b5307f4e48867ede38ccd617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:cf:ee:f5:ac:fc:5b:63:59:51:bc:c1:92:63:
00:60:67:79:47:8f:fd:f8:7c:fb:fb:57:d4:c8:51:
17:d6:b5:5f:bf:e9:cf:e0:a5:0b:59:52:5d:93:84:
31:d4:50:10:e0:32:17:72:9b:d0:10:7a:09:5a:00:
7e:96:f4:41:84:99:00:c6:a5:fd:6d:a5:ba:4e:8a:
3b:22:01:6f:d5:5b:a5:6b:ef:09:61:dd:ad:a5:cf:
e4:f1:81:81:3d:89:e2:ea:e5:ab:5d:fd:5b:e4:e0:
3f:d2:15:75:94:75:87:eb:9a:3b:44:41:f2:00:e4:
cb:aa:21:16:f8:2d:67:02:5b:ec:4c:d8:3f:19:36:
8b:4b:3d:11:af:53:13:75:db:5c:21:77:8e:05:4e:
6a:03:7b:73:3e:4f:14:06:4e:a1:92:b6:f8:28:48:
72:92:f8:58:54:49:63:45:70:b5:35:7a:14:87:34:
6f:c8:68:88:5f:17:56:59:35:98:d8:7a:81:95:2b:
8d:e5:46:06:23:40:28:1f:6c:94:17:dd:c1:bd:38:
6c:24:2f:40:51:f6:d6:af:e6:a6:f5:57:74:5f:c4:
62:3b:89:df:6a:76:95:2e:7e:09:94:eb:f2:9a:48:
94:6d:b9:8d:54:9d:14:fe:fd:97:e4:0a:5d:a0:71:
d3:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:F0:0A:DE:DB:91:53:54:B5:30:7F:4E:48:86:7E:DE:38:CC:D6:17
X509v3 Authority Key Identifier:
keyid:C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:c5:62:8d:fd:b2:8a:33:31:53:86:a3:30:bd:c4:6c:08:10:
65:d3:2f:e8:26:29:5b:94:47:65:52:f2:fa:f5:9b:f7:c4:9e:
e2:a8:86:89:b0:8f:81:0f:ee:c4:73:a6:4a:2d:ba:9b:d5:00:
6e:6d:99:64:ac:28:58:c1:06:b6:dd:02:47:55:f2:0b:90:25:
a4:4f:2d:60:c7:3a:1e:5c:f6:48:62:3f:d4:1b:16:af:b8:d6:
df:f4:15:b0:81:b7:cf:0a:b8:a6:b1:77:aa:9c:7c:d3:b8:89:
f9:e5:7e:06:1d:19:a8:cb:64:27:d1:d8:d8:f1:02:7c:00:0e:
a1:16:08:a3:fe:2d:7b:c5:50:1c:3f:ae:28:0e:30:cf:9a:fe:
b9:a2:d7:3f:43:d1:8d:b9:da:5e:c7:08:f7:ac:98:52:be:81:
aa:3f:53:b7:14:a3:5b:2e:b7:9d:2b:36:93:3e:c7:0b:04:45:
f4:e5:9d:c2:84:13:49:e1:3e:fd:ff:88:3d:86:1b:46:02:3d:
38:6e:fc:11:9c:a6:02:bb:46:07:95:af:9a:52:72:7e:a4:9d:
4c:c6:57:41:7d:36:52:4e:20:16:22:a0:42:55:76:cb:a5:15:
15:9f:53:cc:07:68:44:71:1c:63:73:89:5e:81:af:63:3f:ee:
a5:66:8d:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:59:07 2026 by rpki-client