Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.mft
File: yAYJ8hhRvff3TtGPDwnfku23U1U.mft (raw, json)
Hash identifier: QRWaS1YFlAocFohLHtAN43a6U038LM0DBWCLW3+cY5g=
Subject key identifier: 4D:DE:8D:71:95:A3:46:10:BC:62:72:FB:A0:29:9E:7C:BA:84:F5:FD
Authority key identifier: C8:06:09:F2:18:51:BD:F7:F7:4E:D1:8F:0F:09:DF:92:ED:B7:53:55
Certificate issuer: /CN=c80609f21851bdf7f74ed18f0f09df92edb75355
Certificate serial: 019CAB6B8549005132CFA0758DB34D399D52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yAYJ8hhRvff3TtGPDwnfku23U1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.mft
Manifest number: 100B
Signing time: Sun 01 Mar 2026 22:01:16 +0000
Manifest this update: Sun 01 Mar 2026 22:01:16 +0000
Manifest next update: Mon 02 Mar 2026 22:01:16 +0000
Files and hashes: 1: 7dhm2Zcd4Yp-TNCgcfPEdG07eU0.roa (hash: Ku59KYA/bpOTiSrNCRzEUdSrtiwxD1BQ8G4rzI5+xwk=)
2: yAYJ8hhRvff3TtGPDwnfku23U1U.crl (hash: fms/wL51E1+uPCXORGs+oUjusGpnDAkiFARnFBHoXSI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.mft
rsync://rpki.ripe.net/repository/DEFAULT/yAYJ8hhRvff3TtGPDwnfku23U1U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:85:49:00:51:32:cf:a0:75:8d:b3:4d:39:9d:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c80609f21851bdf7f74ed18f0f09df92edb75355
Validity
Not Before: Mar 1 22:01:16 2026 GMT
Not After : Mar 2 22:01:16 2026 GMT
Subject: CN=4dde8d7195a34610bc6272fba0299e7cba84f5fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:58:80:54:a7:78:6f:19:d4:df:fb:e6:98:42:
58:35:f6:f9:e4:e6:0b:85:1e:9e:e3:88:14:24:fa:
97:1d:20:d5:d6:5c:00:2f:16:04:9e:13:af:ca:ec:
2c:ba:58:cd:20:cb:ea:ce:77:4c:56:55:0c:b4:33:
1d:a8:cb:85:84:78:6b:3d:db:6e:96:22:89:d1:3c:
b1:c2:6d:02:01:07:8c:65:4f:ab:29:4d:95:d5:38:
cc:92:10:b3:88:21:34:91:f5:f3:27:79:94:fc:70:
8d:11:10:70:45:37:53:9b:a2:44:9d:ad:eb:79:57:
e8:72:06:bf:f3:13:68:e0:35:f7:c4:97:0f:d6:6c:
09:27:ef:16:84:2f:22:0d:d9:48:10:82:47:43:b5:
9b:e7:41:04:48:b6:cc:70:eb:b7:e3:b6:fe:ca:23:
60:07:f1:10:17:84:bf:a0:49:e2:ce:12:66:1c:ca:
6d:78:3d:22:b7:ae:0f:e0:b1:fe:37:6c:16:df:53:
5a:6a:6e:9b:ed:e7:1f:57:1a:44:af:02:16:0e:3c:
ca:33:b2:e6:07:da:bf:a1:6b:27:29:40:56:72:a1:
48:db:95:59:8a:38:38:82:22:f9:1d:30:86:3f:fa:
25:ee:21:a3:3c:7a:51:6d:f3:ee:ca:98:c8:cc:da:
36:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:DE:8D:71:95:A3:46:10:BC:62:72:FB:A0:29:9E:7C:BA:84:F5:FD
X509v3 Authority Key Identifier:
keyid:C8:06:09:F2:18:51:BD:F7:F7:4E:D1:8F:0F:09:DF:92:ED:B7:53:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yAYJ8hhRvff3TtGPDwnfku23U1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:c7:ef:6e:53:a0:61:4b:2e:4b:69:80:98:82:e1:96:2e:4c:
5b:b5:ac:d6:6f:dc:ae:75:36:96:03:42:63:3f:50:cc:e2:da:
19:64:fe:50:2e:30:d3:21:94:3d:9f:02:06:71:a1:3d:da:97:
70:23:70:f5:5c:41:18:93:31:33:97:aa:7d:d1:bc:3e:90:41:
14:89:1d:92:2b:aa:b6:c2:c1:40:6b:8c:69:ad:b6:5e:1e:8f:
79:5b:93:89:eb:04:04:79:65:2a:13:cd:a9:65:80:00:22:f1:
65:d6:1e:40:cd:f0:b8:99:af:0a:f6:cd:42:00:fe:a0:2a:41:
6e:cf:ca:1d:5e:f1:d0:a6:18:d3:74:40:ad:3e:7b:5c:88:e9:
8c:cd:55:c3:7c:32:74:cd:2f:f8:26:64:dc:37:c9:27:6b:4c:
d0:ee:d1:b1:be:10:91:81:50:d3:28:e7:e6:e2:e9:ee:62:2e:
c5:9c:21:0b:6a:67:39:d5:37:9f:50:04:74:12:b9:8e:44:5e:
af:bc:fb:61:6e:d1:6f:db:8c:d9:fa:f6:a5:30:5c:38:bf:bd:
ed:65:58:d4:11:09:4b:34:5e:44:e0:3c:61:e9:e5:16:aa:1f:
74:81:ea:bb:fb:1b:69:f4:83:47:1a:c8:3b:4d:17:0b:28:c4:
58:04:19:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:10:07 2026 by rpki-client