Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/f2ec53-223b-4b3b-9d20-ceec5a739c72/1/0YpW1qFOZ2P8dzOopflDHbdWjLU.mft
File: 0YpW1qFOZ2P8dzOopflDHbdWjLU.mft (raw, json)
Hash identifier: QR++Wvd17/6Rvc9Ws9aqzORN6Yni9ClSh4+0yB2iOjA=
Subject key identifier: 3A:FC:9A:A4:B5:DB:C4:27:84:D8:5A:1E:86:19:1B:35:59:15:5F:6C
Authority key identifier: D1:8A:56:D6:A1:4E:67:63:FC:77:33:A8:A5:F9:43:1D:B7:56:8C:B5
Certificate issuer: /CN=d18a56d6a14e6763fc7733a8a5f9431db7568cb5
Certificate serial: 019CAAFD2F88A9F53C3F7D00AC964D251AD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YpW1qFOZ2P8dzOopflDHbdWjLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/f2ec53-223b-4b3b-9d20-ceec5a739c72/1/0YpW1qFOZ2P8dzOopflDHbdWjLU.mft
Manifest number: 17DB
Signing time: Sun 01 Mar 2026 20:00:45 +0000
Manifest this update: Sun 01 Mar 2026 20:00:45 +0000
Manifest next update: Mon 02 Mar 2026 20:00:45 +0000
Files and hashes: 1: 0YpW1qFOZ2P8dzOopflDHbdWjLU.crl (hash: o5zAJP2Wm7BOZSZfnFbcGJlg0ErZg8/m+Yns7BD2sow=)
2: 1-BUCojs1oWaXAaxy03s5Db9MiJk.roa (hash: tiMBJlRoBCDWpjG2YxYym9l9MTTcSiD5be7NjPI5OEw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/f2ec53-223b-4b3b-9d20-ceec5a739c72/1/0YpW1qFOZ2P8dzOopflDHbdWjLU.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/f2ec53-223b-4b3b-9d20-ceec5a739c72/1/0YpW1qFOZ2P8dzOopflDHbdWjLU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0YpW1qFOZ2P8dzOopflDHbdWjLU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:2f:88:a9:f5:3c:3f:7d:00:ac:96:4d:25:1a:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d18a56d6a14e6763fc7733a8a5f9431db7568cb5
Validity
Not Before: Mar 1 20:00:45 2026 GMT
Not After : Mar 2 20:00:45 2026 GMT
Subject: CN=3afc9aa4b5dbc42784d85a1e86191b3559155f6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:62:f0:fa:0d:3b:87:82:1e:a2:5e:df:2d:17:
97:58:8e:3c:64:ba:2c:9f:f6:8a:71:06:5a:d6:07:
a5:f7:64:7a:cf:fa:d5:8b:ab:fa:e1:5e:e5:8f:c2:
4b:50:49:8c:70:cf:75:56:62:50:af:67:ae:41:f6:
53:58:54:87:76:01:e3:75:1c:71:6d:c9:30:6e:46:
49:eb:75:62:f3:74:52:8d:65:ef:09:0c:44:21:4d:
a6:69:47:15:c4:78:28:ab:a4:4f:9b:79:f2:ce:ed:
4d:6a:4c:c3:be:14:e9:38:f0:34:a9:4d:be:bc:45:
ee:7b:ab:30:55:68:48:6a:89:06:94:59:f4:1f:61:
5c:f5:25:ab:6e:34:cd:a9:24:c8:9d:d1:e9:3f:99:
00:7e:b5:c2:2a:69:ef:87:0e:75:bf:6a:3e:af:fa:
9c:38:74:e6:db:84:96:d2:b5:21:6e:cf:6e:0a:a6:
0f:96:b5:b1:f6:56:89:bf:1f:86:f4:b5:65:fe:9b:
10:86:b6:c0:8f:65:87:78:11:94:62:08:9d:46:f5:
5e:f0:bc:95:21:af:6b:fa:7d:6c:a9:08:f1:ca:15:
ce:ab:6a:1b:a6:9c:9d:8c:33:91:2b:49:cc:4c:6d:
e3:18:a0:f5:22:e8:88:8b:0c:b7:21:14:35:d3:d4:
da:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:FC:9A:A4:B5:DB:C4:27:84:D8:5A:1E:86:19:1B:35:59:15:5F:6C
X509v3 Authority Key Identifier:
keyid:D1:8A:56:D6:A1:4E:67:63:FC:77:33:A8:A5:F9:43:1D:B7:56:8C:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YpW1qFOZ2P8dzOopflDHbdWjLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/f2ec53-223b-4b3b-9d20-ceec5a739c72/1/0YpW1qFOZ2P8dzOopflDHbdWjLU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/f2ec53-223b-4b3b-9d20-ceec5a739c72/1/0YpW1qFOZ2P8dzOopflDHbdWjLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:6d:6d:c2:87:0a:e4:ae:82:45:92:b4:78:dc:f2:0b:68:3b:
09:a7:f5:fe:72:eb:7c:a4:16:0b:44:84:05:ae:c4:ca:c2:4c:
19:33:93:b5:38:be:4d:13:08:78:d8:97:11:5c:90:40:b0:b6:
da:c3:91:61:7f:0d:88:9c:31:cc:9b:05:07:52:29:b5:3e:86:
49:a0:40:d6:d4:b9:4b:c8:f0:b0:cd:20:1d:5e:3e:ef:e6:f1:
ab:91:d8:a8:5b:a1:9c:7e:a0:a0:b8:3d:9c:67:ab:fe:7f:af:
05:7e:e7:c6:0e:ea:fe:db:9a:65:75:12:23:14:7e:16:5b:17:
e6:fa:c8:5b:8b:bf:f2:71:99:c6:01:51:9a:19:63:c6:f9:d4:
57:a0:6c:88:ab:98:7a:37:82:bc:85:26:88:1e:f3:2c:21:0e:
a0:41:76:70:69:53:9c:88:6a:5c:91:b3:a1:a6:5c:a9:35:27:
10:53:8e:7d:73:55:24:a6:29:8b:67:3f:5a:0e:73:de:5d:c3:
0f:6d:01:82:8d:cd:44:3b:09:39:d6:c1:2a:0a:af:5c:eb:14:
fa:9b:69:26:1f:a2:20:9f:bc:32:6a:08:53:ff:4f:1c:d0:89:
c5:6e:2f:aa:30:d5:65:cd:1e:70:17:0d:23:25:22:2c:fa:17:
5d:96:40:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:27:26 2026 by rpki-client