Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
File: y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft (raw, json)
Hash identifier: zb40lCgvhCSaeAgzPZmD64ZiMpUgZhf6mhnUYrBpYj4=
Subject key identifier: D9:E8:E2:F0:0F:94:D8:38:9F:CA:6D:D1:A8:0A:24:65:99:05:B4:33
Authority key identifier: CB:B5:25:E2:63:A9:5B:16:52:06:4B:DF:F8:96:4D:4B:F6:2B:53:3D
Certificate issuer: /CN=cbb525e263a95b1652064bdff8964d4bf62b533d
Certificate serial: 019CA945F97A8B4ADC49927E4CAA868EBB36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
Manifest number: 04F9
Signing time: Sun 01 Mar 2026 12:01:00 +0000
Manifest this update: Sun 01 Mar 2026 12:01:00 +0000
Manifest next update: Mon 02 Mar 2026 12:01:00 +0000
Files and hashes: 1: mQ0ACAyJhS24Ge7JfejryYjhrr4.roa (hash: vb4PW+qjvJj8W9hO5gMvw1SrDAuFxyDok45TJihaRuk=)
2: y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl (hash: SCWFGpFq/cKnbAbNL/4DEhRr0SdYlIPyR61ukV7HSFY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 12:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:45:f9:7a:8b:4a:dc:49:92:7e:4c:aa:86:8e:bb:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbb525e263a95b1652064bdff8964d4bf62b533d
Validity
Not Before: Mar 1 12:01:00 2026 GMT
Not After : Mar 2 12:01:00 2026 GMT
Subject: CN=d9e8e2f00f94d8389fca6dd1a80a24659905b433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:e6:6f:b6:71:64:01:ad:26:e1:15:c8:6d:1d:
f5:94:c0:9e:7a:21:1b:b5:4e:83:35:18:13:05:83:
97:ad:ae:be:cf:42:9f:88:42:09:7c:11:28:cc:86:
7e:bf:ce:5c:05:b2:74:b1:1b:37:0f:7d:76:3e:13:
20:c5:5b:e7:29:46:18:dd:fb:ef:da:76:23:25:15:
60:62:b2:8e:01:01:17:09:79:29:9a:33:b1:d5:28:
50:95:dc:bb:65:e2:38:23:b5:f6:11:12:fe:6a:b6:
a0:4f:57:ec:0f:fa:a2:bd:a9:fa:00:ef:98:f5:d9:
a4:4a:13:ef:88:b3:be:ef:8a:80:63:1d:a8:6b:9a:
69:a6:b9:8b:fb:6e:01:f2:ba:28:de:69:2d:3d:83:
7b:e3:25:13:93:20:f7:10:29:f8:64:0a:e6:3d:e0:
2b:60:1a:91:fb:24:8f:7a:24:77:ea:87:03:1c:cc:
81:e4:1b:3e:49:f9:14:1d:63:b9:3a:c0:f4:c7:15:
39:52:f1:90:be:2b:61:96:ad:ec:a4:11:1e:94:48:
b1:8a:f8:e7:4b:d3:79:a5:8b:05:9a:5f:c0:66:e4:
de:e5:ad:52:0c:44:8a:e5:d1:e2:65:7c:54:62:08:
42:81:75:74:36:dd:02:7c:17:8d:da:82:45:e2:73:
3b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:E8:E2:F0:0F:94:D8:38:9F:CA:6D:D1:A8:0A:24:65:99:05:B4:33
X509v3 Authority Key Identifier:
keyid:CB:B5:25:E2:63:A9:5B:16:52:06:4B:DF:F8:96:4D:4B:F6:2B:53:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:4d:76:d0:a6:54:3e:2f:b4:9f:31:f0:a3:07:66:5e:dd:5d:
03:23:4b:c6:75:b8:c3:9c:22:c9:0a:dd:38:1f:23:b4:75:1b:
cf:8a:e8:f8:2e:42:ba:9c:49:89:b8:d4:4c:f6:46:05:a8:1b:
b2:6f:9d:45:68:39:2f:2e:bb:b3:c0:7b:a5:ba:2c:bb:fe:ef:
c0:50:63:22:67:7f:a1:f7:41:29:5b:a2:dc:83:7e:60:be:bc:
05:91:9b:9f:70:ca:2f:f1:29:2e:6f:df:12:57:fc:54:53:2e:
2c:1e:12:ea:4a:4d:cf:2e:ed:9c:8b:d4:71:75:bd:ae:bb:e5:
01:a1:93:a6:3e:f4:6c:08:bd:11:37:75:45:4f:08:0e:b6:43:
3c:7d:a8:a1:fb:60:f3:44:1c:cb:93:bb:f9:5f:46:85:fd:ab:
fa:0c:ed:f3:dc:f1:c5:6e:74:5c:6e:69:9e:08:ac:fe:c6:fc:
f0:c6:65:a5:4c:9e:a4:1a:1d:2a:85:9f:a1:ea:e4:50:b5:9a:
45:bf:37:da:62:e5:3b:f8:09:d2:9d:6b:b6:ac:f7:d2:39:1e:
8b:ba:7f:3c:fa:62:40:56:9b:0e:96:e2:07:de:4c:c9:99:46:
6b:18:2d:4e:d9:91:bf:7b:1b:5c:35:74:cd:70:7c:75:e2:31:
43:20:ff:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:58:46 2026 by rpki-client