Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
File: y34FPHGZWsyb8TM_55w9W_1ulk4.mft (raw, json)
Hash identifier: fLwCrJBltxFMTj4vwzXcaC23dzZlcA9+q7d3oWz21Lo=
Subject key identifier: FF:B0:A5:54:AB:F9:82:5C:EF:28:E6:04:BB:E3:1C:EA:D5:9C:E5:97
Authority key identifier: CB:7E:05:3C:71:99:5A:CC:9B:F1:33:3F:E7:9C:3D:5B:FD:6E:96:4E
Certificate issuer: /CN=cb7e053c71995acc9bf1333fe79c3d5bfd6e964e
Certificate serial: 019CAA21645664685CF72F2E9E1E827E8320
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
Manifest number: 0EB4
Signing time: Sun 01 Mar 2026 16:00:40 +0000
Manifest this update: Sun 01 Mar 2026 16:00:40 +0000
Manifest next update: Mon 02 Mar 2026 16:00:40 +0000
Files and hashes: 1: o0HqlxaDoWc3G-_HSVzsO-Lq4bU.roa (hash: HuIvoJlDnjzT1p9vthorLP3YOQAv0oGxz+pUKFAvCsk=)
2: y34FPHGZWsyb8TM_55w9W_1ulk4.crl (hash: 477yR8wordLNlU/lCawvdCMsNdKbU++nP8UWZSohGSA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:64:56:64:68:5c:f7:2f:2e:9e:1e:82:7e:83:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb7e053c71995acc9bf1333fe79c3d5bfd6e964e
Validity
Not Before: Mar 1 16:00:40 2026 GMT
Not After : Mar 2 16:00:40 2026 GMT
Subject: CN=ffb0a554abf9825cef28e604bbe31cead59ce597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:24:3a:c7:94:77:71:cd:d1:c0:ff:45:c4:dc:
0d:9e:34:02:19:31:8f:c1:b4:f3:a3:f9:e8:e1:0b:
75:4c:d5:66:02:9a:e0:5f:89:d0:10:1f:34:7f:26:
91:b2:41:df:61:06:79:07:6f:15:a4:07:b6:8d:d7:
51:b4:f8:8d:69:ea:9c:c7:eb:a8:b3:83:d5:5a:3d:
c5:6b:d8:19:4c:ee:be:18:d4:12:c1:98:6e:88:4c:
ff:5f:b6:f7:bd:31:c9:3e:2c:f7:82:81:3a:f4:6f:
51:7e:2f:98:d6:63:ba:59:b8:54:4c:63:a7:ea:05:
ed:d2:b4:6a:37:8e:5f:9d:50:95:75:13:74:a7:99:
52:62:a9:92:2b:44:a2:01:32:32:de:71:b4:33:1f:
8d:31:05:a2:7a:0f:3a:ff:ed:9f:45:f2:50:e6:2e:
ef:70:b8:1d:ea:11:d1:3d:6d:d3:d1:13:50:d5:5e:
bd:30:54:6c:11:28:8a:2a:66:02:3a:4d:f9:1e:3a:
77:ec:71:ac:6d:8c:13:1e:0b:50:a7:24:36:2c:38:
87:0b:52:ca:d3:0c:80:b1:f4:62:4d:0b:b6:6b:da:
a1:06:b7:36:13:cb:a4:d9:87:85:53:ed:94:dd:e2:
b2:de:4b:15:b0:b5:a4:31:94:35:e7:bb:7f:f4:ab:
88:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:B0:A5:54:AB:F9:82:5C:EF:28:E6:04:BB:E3:1C:EA:D5:9C:E5:97
X509v3 Authority Key Identifier:
keyid:CB:7E:05:3C:71:99:5A:CC:9B:F1:33:3F:E7:9C:3D:5B:FD:6E:96:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:9e:33:c5:e9:50:ec:e6:87:4a:c5:ef:b0:25:e1:40:ef:43:
dc:ee:08:da:70:55:e8:5d:a5:a4:c1:fc:16:d9:e2:5b:cd:09:
09:58:ba:6a:ce:3c:c8:ba:73:14:51:0a:23:b1:bf:79:5d:31:
32:b4:3d:90:97:8a:1a:02:65:e7:42:50:bf:ab:75:75:8b:83:
62:42:e1:c2:fd:e2:b9:b3:f6:cd:58:bd:bf:23:c9:d9:6a:5c:
59:18:76:9f:14:98:1f:9a:e2:ad:c5:1e:a3:96:c0:a8:cc:0d:
ed:a1:e2:40:a5:43:e0:79:31:39:c3:22:1c:3a:5c:98:fb:1f:
db:f2:99:6e:17:41:e4:62:2a:b5:02:8f:f5:d4:4c:46:f7:91:
7a:22:f5:76:f6:33:ea:ad:ca:08:cf:20:83:a9:a4:0f:01:e4:
2e:c3:7d:3b:8d:f5:81:0a:a0:af:e7:7c:61:36:9c:96:21:f5:
2f:c9:72:ad:2c:c1:66:f1:2d:de:5b:d2:a1:f7:8f:9a:5f:8b:
9b:fc:68:e7:88:0d:21:25:d4:1e:3f:6b:62:16:0d:ea:f3:f5:
e0:5d:7e:12:af:2e:73:93:2a:6a:f5:48:b5:88:7a:06:72:b2:
b3:42:70:1b:e0:cf:e7:64:82:e8:5f:d9:70:8d:f3:10:40:03:
4e:48:a8:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:27:58 2026 by rpki-client