Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
File: hYYCc-snGSK59-yPSlkQFjVtcys.mft (raw, json)
Hash identifier: 51iTW1Rfqbk5hIdRCF0fVMIS9gvk2ScWUwPMWfCaZe8=
Subject key identifier: 07:85:18:F4:7B:DB:06:97:E1:97:C4:82:18:05:21:F0:55:E6:DD:E6
Authority key identifier: 85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
Certificate issuer: /CN=85860273eb271922b9f7ec8f4a591016356d732b
Certificate serial: 019CAB6B2C47BD3EB76960CFEFF1AB492126
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
Manifest number: 0D65
Signing time: Sun 01 Mar 2026 22:00:53 +0000
Manifest this update: Sun 01 Mar 2026 22:00:53 +0000
Manifest next update: Mon 02 Mar 2026 22:00:53 +0000
Files and hashes: 1: 72huANhGHbmrRv6vwHaFuRxH93o.roa (hash: 6k3oTSasmHujZ7G15o1f502jXxJRPUSaLMNOAO2t2nc=)
2: hYYCc-snGSK59-yPSlkQFjVtcys.crl (hash: VzIgGG8O28vO0ZYiTwuVamQQ9Rku3vNaoOCb7y7bAsI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:2c:47:bd:3e:b7:69:60:cf:ef:f1:ab:49:21:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85860273eb271922b9f7ec8f4a591016356d732b
Validity
Not Before: Mar 1 22:00:53 2026 GMT
Not After : Mar 2 22:00:53 2026 GMT
Subject: CN=078518f47bdb0697e197c482180521f055e6dde6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c0:de:80:12:66:ed:96:5c:9c:6d:c6:e6:df:
13:da:b1:f0:d0:13:88:23:4a:dd:63:e0:88:2f:49:
e9:4e:91:96:35:43:58:19:46:0b:19:b3:24:40:c8:
84:22:a1:1c:67:e5:83:71:7f:0b:9e:e3:4f:67:6d:
3a:b7:06:72:15:f2:84:be:de:f4:8f:a3:be:ec:c4:
39:1e:b7:fb:55:db:92:d1:3a:4e:f2:85:14:a6:4e:
66:aa:a9:5c:70:cd:c9:87:6f:bf:ab:90:16:0f:7e:
0a:0c:a5:a4:8e:65:aa:81:9d:ef:d6:52:bb:88:b6:
f6:68:af:2e:f5:49:59:4f:1f:2c:e9:f2:5f:02:ec:
d3:9d:cd:15:d3:7a:ac:57:03:3e:f3:49:f8:08:6b:
80:0f:d0:f5:c5:38:71:f2:cb:6c:40:3e:ba:1f:11:
fa:44:2f:02:a2:27:0b:64:fb:6d:fd:ab:ad:8c:6e:
95:69:94:81:40:86:cf:13:73:22:51:2c:ca:89:70:
0f:c7:31:c1:4e:82:56:82:87:17:7a:af:d1:69:92:
a1:9a:ac:07:19:c7:9a:d0:32:10:35:00:83:5b:9a:
9b:16:21:96:b1:59:f7:83:d5:72:83:bf:61:a7:c1:
a7:93:8a:0f:98:bc:06:ed:a7:2a:c8:7c:5b:a8:4b:
42:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:85:18:F4:7B:DB:06:97:E1:97:C4:82:18:05:21:F0:55:E6:DD:E6
X509v3 Authority Key Identifier:
keyid:85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:ca:8a:90:14:55:d7:ed:dc:c0:15:4b:46:f8:46:eb:5b:9d:
a7:00:8e:7d:a4:ad:58:66:bb:cb:ad:e7:f4:dc:1d:1e:a0:97:
b7:51:16:b3:22:01:75:6d:3e:7d:cd:5a:9c:d7:7e:c6:15:c8:
ab:8a:32:a0:de:b2:a6:ff:bc:38:9b:18:43:3d:a8:d8:9d:7f:
01:ee:de:ef:f5:81:e0:4c:00:5a:d3:e7:42:20:2b:22:8f:5b:
f8:9d:17:1f:2d:e2:2a:f5:03:7b:dd:54:85:b9:8d:f2:a5:c9:
e6:05:7a:78:d5:cc:c6:3d:ea:69:c1:89:54:57:32:c9:90:40:
0a:60:78:46:c4:b5:d7:f3:c4:c7:51:32:14:d2:65:e8:fb:27:
16:ee:e2:b1:1f:63:6e:a1:c0:fc:93:a8:11:2a:79:c1:14:c9:
bb:77:71:80:a3:80:1c:30:11:07:70:cb:48:28:74:51:73:8c:
3d:68:da:66:ed:27:08:fc:17:ec:f0:0d:b2:67:6e:1a:ed:bc:
b6:1b:0f:d5:3f:ec:ac:17:fb:1d:53:2a:77:08:dd:37:1c:3a:
c8:ea:a1:c5:8e:55:32:af:09:a1:a0:a7:f7:ca:7a:02:77:80:
d0:e6:9e:24:f2:ab:41:72:2a:1a:67:fc:2e:fa:34:4e:e2:de:
2b:cb:83:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:55:58 2026 by rpki-client