Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
File: y78j_5hnaDYlSUYv4JLGMV6sykA.mft (raw, json)
Hash identifier: Z0EUT5JWW017Zc70uwaBAmv53C0azW2qHVFqMTM+4ac=
Subject key identifier: DC:2B:58:18:10:49:7C:F5:3F:0F:C9:D4:CF:DA:09:8E:66:B4:66:D3
Authority key identifier: CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40
Certificate issuer: /CN=cbbf23ff986768362549462fe092c6315eacca40
Certificate serial: 019CAC47331A17FFD3A239951E3495713365
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
Manifest number: 1846
Signing time: Mon 02 Mar 2026 02:01:13 +0000
Manifest this update: Mon 02 Mar 2026 02:01:13 +0000
Manifest next update: Tue 03 Mar 2026 02:01:13 +0000
Files and hashes: 1: 1-eZ3i0dxANHC7WiRV9EvIipS61A.roa (hash: Ak1nuU6x8cZ4QdQ6COojFaQA6BvDEXKIeiGaihwMfjI=)
2: y78j_5hnaDYlSUYv4JLGMV6sykA.crl (hash: sbJ/hjNT8VRltG981yIvo47YavcLN0pff7emswnx+XE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:33:1a:17:ff:d3:a2:39:95:1e:34:95:71:33:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbbf23ff986768362549462fe092c6315eacca40
Validity
Not Before: Mar 2 02:01:13 2026 GMT
Not After : Mar 3 02:01:13 2026 GMT
Subject: CN=dc2b581810497cf53f0fc9d4cfda098e66b466d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:3e:cb:da:87:5a:80:2c:5c:32:22:93:c0:2c:
29:7d:cf:0a:ad:42:73:f9:b7:d7:93:4b:34:80:eb:
ea:1d:25:da:a5:0e:03:db:53:eb:f0:03:1b:83:e3:
14:5a:fc:b9:34:3d:40:11:42:53:02:b1:79:9d:b9:
f5:a0:41:22:1e:43:d7:14:a0:2d:db:ac:d6:35:7b:
e7:60:ad:0b:e6:a9:48:6c:07:3c:68:4f:e0:9b:c7:
8f:18:51:98:33:00:f8:bb:c7:d7:27:96:f6:9b:0b:
9a:1a:65:17:62:df:61:e7:82:84:ad:7d:98:56:79:
12:05:4c:1f:4d:01:d6:cf:38:c7:36:9c:00:24:0d:
1e:7d:20:10:31:70:88:9a:24:bb:ec:0a:68:70:b1:
eb:83:65:1b:57:3e:7c:42:64:ce:1b:02:8c:42:59:
43:f6:af:61:c0:ac:d5:71:71:a3:bd:2b:f1:ee:6c:
1f:d7:86:78:fe:fc:60:ef:3b:c7:61:61:be:1f:f7:
04:f9:56:e8:3b:68:4a:2c:27:87:c2:e1:bb:25:3f:
f0:d3:51:47:a1:1c:93:7d:8a:bd:d2:f6:94:83:00:
31:45:eb:b4:f6:77:9f:27:2b:cf:cf:55:45:e8:8b:
73:81:51:b8:83:bf:04:cf:ae:c5:5e:15:7f:2f:0e:
07:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:2B:58:18:10:49:7C:F5:3F:0F:C9:D4:CF:DA:09:8E:66:B4:66:D3
X509v3 Authority Key Identifier:
keyid:CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:0b:59:76:36:f7:69:0a:04:09:7d:d6:1b:63:15:eb:5d:ce:
1c:88:73:cd:c7:ac:87:28:a1:cb:e0:00:44:47:79:a9:04:e2:
1d:fd:74:fe:ef:eb:31:95:60:ee:97:5c:f3:f0:81:84:05:fa:
0e:b7:9d:b6:5f:53:09:b2:4c:7c:91:fe:e7:23:60:28:fd:63:
40:37:43:cb:4c:9b:4c:98:fa:7f:da:9f:1c:40:c9:02:44:0a:
f8:d8:88:f7:d6:4a:c5:08:79:46:48:47:24:4a:2f:2c:d1:77:
32:47:cb:83:5f:30:2a:8b:aa:62:e8:57:87:3e:f2:5e:46:94:
ee:be:d7:a5:47:96:9f:06:78:d2:1a:f8:bc:45:d6:c5:ab:ef:
01:93:7a:74:2a:fd:38:68:90:92:de:96:ad:6e:d2:20:dd:04:
38:fc:87:9b:52:33:1a:31:2e:7a:e2:03:19:f5:a9:c9:d8:37:
51:9b:fa:37:f2:06:91:a5:52:b9:ae:d2:b5:5b:c9:c6:34:e0:
de:46:ac:6e:00:2e:4d:b3:58:13:77:36:54:b4:14:2f:41:71:
89:2c:2c:a8:cb:89:76:01:eb:c7:be:a8:2d:10:42:60:a9:4c:
72:10:39:6a:eb:3a:b3:f3:d3:47:f4:87:0a:b3:93:b5:67:ee:
84:dc:a7:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:44:25 2026 by rpki-client