Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft
File: yp4g0QNLRO916V_ffriIFbb30vg.mft (raw, json)
Hash identifier: 8GIQ1YDIH+kcchW2hLKr8JtJHSTjoWSuAuIZRa2z4GE=
Subject key identifier: EE:EC:21:E6:FE:27:EE:22:9E:56:E5:B1:E6:05:CD:E9:01:B8:B4:E1
Authority key identifier: CA:9E:20:D1:03:4B:44:EF:75:E9:5F:DF:7E:B8:88:15:B6:F7:D2:F8
Certificate issuer: /CN=ca9e20d1034b44ef75e95fdf7eb88815b6f7d2f8
Certificate serial: 019CACB4DA435EADFF5CF7F5C075C2E1C5C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yp4g0QNLRO916V_ffriIFbb30vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft
Manifest number: 10A3
Signing time: Mon 02 Mar 2026 04:00:59 +0000
Manifest this update: Mon 02 Mar 2026 04:00:59 +0000
Manifest next update: Tue 03 Mar 2026 04:00:59 +0000
Files and hashes: 1: D3wkpKKSoJovDsiCfvbh1DYTkx8.roa (hash: c0FcHGYTB+tG9IR/+QbyBfjUn2VqFpbtfy3DDserGhM=)
2: KSjHgXPRASqnBW1tjOtvhmkWPHE.roa (hash: h5XvzMTTFxSuHg9vWwCmjacM7SXacJTLfB8wl2n3Cec=)
3: yp4g0QNLRO916V_ffriIFbb30vg.crl (hash: npTS01xlDPMCBxYHL9ovBFL71aLfqXZuz9WE5ahbwWo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/yp4g0QNLRO916V_ffriIFbb30vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 04:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:da:43:5e:ad:ff:5c:f7:f5:c0:75:c2:e1:c5:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca9e20d1034b44ef75e95fdf7eb88815b6f7d2f8
Validity
Not Before: Mar 2 04:00:59 2026 GMT
Not After : Mar 3 04:00:59 2026 GMT
Subject: CN=eeec21e6fe27ee229e56e5b1e605cde901b8b4e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:eb:63:42:e0:0a:36:69:02:e0:98:36:d9:ce:
10:d1:37:af:4e:49:28:a2:7d:5e:e8:ba:14:c9:b3:
a0:d1:2b:24:2d:fb:6f:09:27:d5:8e:9c:99:ee:5b:
05:d7:07:c9:d6:82:f7:e8:cd:67:3f:df:64:63:a7:
97:a1:16:1b:49:56:cb:20:b4:0c:ac:01:a5:ba:2a:
cd:ae:30:da:82:1a:07:48:24:d3:37:8f:30:e7:15:
e7:95:c6:53:04:4c:08:97:fa:aa:cf:6f:d6:24:5c:
c7:15:7f:d9:ca:33:4e:94:96:28:b4:ef:3d:b0:e1:
12:d0:67:35:3c:2e:c2:5a:36:96:27:c5:73:92:c7:
05:7f:22:9e:4a:92:31:ea:ce:24:51:07:97:65:b7:
fc:49:1e:ff:23:57:94:22:13:8c:f9:d4:94:0b:75:
eb:48:04:6f:f4:09:49:6f:a7:b3:6f:21:36:82:29:
74:e2:9c:a9:3f:65:e4:3e:5e:18:62:9b:33:d0:5e:
ba:b8:ab:14:4d:4a:00:52:97:f4:4e:1d:96:1b:d5:
0e:3d:a7:69:97:7a:a7:7a:e0:16:ef:fb:c4:c9:4e:
b2:0c:dc:df:67:bb:1e:fa:19:44:bf:e5:69:c9:1e:
40:e8:16:f1:aa:a1:26:ac:5a:8d:6a:9f:54:fa:40:
66:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:EC:21:E6:FE:27:EE:22:9E:56:E5:B1:E6:05:CD:E9:01:B8:B4:E1
X509v3 Authority Key Identifier:
keyid:CA:9E:20:D1:03:4B:44:EF:75:E9:5F:DF:7E:B8:88:15:B6:F7:D2:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yp4g0QNLRO916V_ffriIFbb30vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:34:ce:9d:a8:13:82:3a:59:c4:52:13:87:b4:1c:16:ba:12:
0f:e2:f8:91:71:59:94:e1:98:b1:97:cd:2f:2e:00:34:c4:88:
c3:04:40:ee:e1:2d:b1:7f:9c:1c:51:c9:e5:09:65:6a:a0:80:
76:1b:6a:c3:0c:80:7b:65:3d:53:b7:b1:c3:6b:82:1f:5e:50:
33:40:0b:84:85:93:9e:9c:f2:b8:54:01:86:0e:50:36:41:77:
fb:08:b4:b5:f5:cd:7f:76:a6:dc:c7:41:fb:a1:cb:cb:89:b7:
a0:7f:65:4b:a4:a4:42:cc:25:8b:54:91:1a:82:ca:3c:64:8c:
f6:ea:2c:cb:c2:b0:ac:0c:17:eb:cc:f2:86:b5:eb:3d:54:e2:
2c:47:d8:0c:74:13:40:33:db:96:02:2f:3b:19:c4:05:f0:9a:
db:10:e8:bf:20:31:8b:57:fc:6e:06:d1:62:a6:64:1f:4a:86:
fd:ca:0f:96:08:b9:50:fc:ee:45:46:34:26:d9:e4:67:08:59:
ec:7a:09:fa:c8:af:8a:3c:9a:94:3d:fb:cb:55:a5:cd:5f:8d:
a4:c3:b1:b3:35:e0:a9:16:c5:48:90:b8:64:4e:73:56:d8:45:
eb:c1:9b:e4:1d:c4:d1:25:ae:da:05:82:51:47:48:b8:92:79:
0e:bf:e3:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:53:19 2026 by rpki-client