Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
File: dy9wNcKJOyjNBP0amzys0kKMjf0.mft (raw, json)
Hash identifier: g7G1t1CfKF7N8+7x5Jj3gflKh+gSeI6L4ZdvgI49j94=
Subject key identifier: 74:CD:50:1A:2D:1A:82:E7:20:92:F2:4F:58:B0:B9:BA:32:E4:EC:C7
Authority key identifier: 77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
Certificate issuer: /CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Certificate serial: 019CADC8466187532257280C0733A0B8D111
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
Manifest number: 0564
Signing time: Mon 02 Mar 2026 09:01:49 +0000
Manifest this update: Mon 02 Mar 2026 09:01:49 +0000
Manifest next update: Tue 03 Mar 2026 09:01:49 +0000
Files and hashes: 1: 8Qo74UQPSqvugCWFfb9DBf7wKqE.roa (hash: M/pOvg/hdX2EdZ83UmfDv3mPILFnj+u5MLVly1CyGXs=)
2: NZYrDqHNM7w06ZqIbetRmQuvkI8.roa (hash: aqDX81Tnke9g7oa5zcmS5K2aP4v9bwtCbdPJWZIvsEE=)
3: dy9wNcKJOyjNBP0amzys0kKMjf0.crl (hash: rygxZcH6l6EpONS95hvpGEOnn1xDdUuqafebRvmBZP0=)
4: j7E0VOUyJDRGY1mXB_LTgfCHtec.roa (hash: DmIJX6VYUzzGV5IX9wpqM+xTHY2Teuv8gdmzrljcdLA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c8:46:61:87:53:22:57:28:0c:07:33:a0:b8:d1:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Validity
Not Before: Mar 2 09:01:49 2026 GMT
Not After : Mar 3 09:01:49 2026 GMT
Subject: CN=74cd501a2d1a82e72092f24f58b0b9ba32e4ecc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:6d:24:f3:b9:c5:30:d6:26:cf:c8:d5:c2:d0:
a0:20:f4:44:12:de:a9:05:b8:fc:2c:b5:6d:00:c7:
ed:f5:f6:5f:70:f4:48:d2:57:8e:04:a7:34:d5:a9:
14:32:0c:da:bd:9a:f1:9d:58:09:1d:5b:33:4b:83:
15:6d:d7:56:71:a5:ad:85:d3:9d:24:fa:81:50:56:
2f:c9:13:4d:49:a4:8f:ac:aa:ac:9a:c7:6e:2a:a5:
52:bb:65:4e:36:7e:35:8b:c6:cd:9c:e2:7a:14:74:
d6:05:69:35:f9:ae:cc:85:28:b9:4c:26:1b:e3:b6:
85:2b:52:b9:dc:86:e3:c1:2d:0f:89:f9:7c:80:86:
19:42:f8:d0:76:71:98:cd:5c:fc:e9:51:bb:da:1a:
f2:3d:e3:85:38:8b:b5:a2:24:af:ca:c1:22:94:2d:
81:06:2b:ad:9a:38:87:98:ca:c3:74:84:bb:93:25:
eb:d3:1f:ab:bf:19:7d:d6:25:a9:10:84:92:a9:e2:
4b:7a:a2:6b:fd:87:89:40:b6:2f:18:52:68:ed:21:
7b:36:00:4f:81:a2:78:bb:e2:40:e8:ea:1b:2d:0d:
eb:08:6c:dc:81:2a:e8:a5:04:36:f1:f8:10:fc:43:
ad:ee:ee:ce:70:31:5d:b9:0e:6d:80:56:a4:2d:c6:
30:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:CD:50:1A:2D:1A:82:E7:20:92:F2:4F:58:B0:B9:BA:32:E4:EC:C7
X509v3 Authority Key Identifier:
keyid:77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:08:10:ce:64:5e:86:b5:5e:6c:e2:79:9a:00:b4:51:be:3d:
f6:cc:45:b2:00:46:74:80:bc:e3:a5:2b:c4:e2:3a:c8:bc:c6:
4a:50:4a:4e:4c:e7:68:52:dc:3b:81:6e:30:66:a4:a5:35:63:
00:18:a7:1a:71:c9:8a:e8:87:50:2d:36:ce:81:5b:7d:e7:2f:
0d:ce:cf:1f:c1:20:90:92:82:b9:91:bc:d1:3a:f6:61:25:23:
f4:13:ae:ce:69:97:86:54:83:88:e4:72:3d:d6:69:ab:25:5b:
ca:cb:e8:80:6d:36:e9:15:04:e1:a8:98:c8:40:8a:da:ed:5f:
0a:6e:61:3f:7d:a9:dc:ba:86:f1:96:13:a0:7e:e2:75:c7:60:
9d:02:4e:01:41:e4:6a:6b:9f:98:2b:b2:4b:3b:24:1c:79:e7:
ca:01:e7:43:73:af:f0:f5:ec:8f:f9:ce:eb:d6:28:eb:36:10:
80:da:8f:aa:a7:4e:91:2c:af:b5:67:24:dc:14:c0:67:8b:7c:
35:70:10:7f:13:a9:ee:d0:83:24:6a:f2:aa:f2:30:8c:80:b4:
68:74:a7:c3:5e:e2:5c:a6:f0:c7:6e:16:12:20:86:aa:d6:c7:
31:27:46:6d:85:d5:b2:68:5a:6e:e0:59:1c:c7:d6:d0:6a:97:
b1:9d:64:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:30:44 2026 by rpki-client