Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
File: yF0BtEKUbhkkMT1WTzG35C4kVec.mft (raw, json)
Hash identifier: LX5R4jZb/VqNvLk8oQSonzeeNd3ohDCMSqOiIeKjpiU=
Subject key identifier: 6D:9F:32:37:C0:D4:88:00:AA:6B:0E:9D:39:2B:5A:68:80:AE:BB:12
Authority key identifier: C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
Certificate issuer: /CN=c85d01b442946e1924313d564f31b7e42e2455e7
Certificate serial: 019CAD5954355C930DE1B1E56338DB36930C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
Manifest number: 0CC9
Signing time: Mon 02 Mar 2026 07:00:38 +0000
Manifest this update: Mon 02 Mar 2026 07:00:38 +0000
Manifest next update: Tue 03 Mar 2026 07:00:38 +0000
Files and hashes: 1: sKXRq8aEnFIgbr4b51dpoMmQO8Y.roa (hash: c2iR1V9JRLqe/KQCQ1Fbh3FmzQaok+nemeB5OzyBRRk=)
2: yF0BtEKUbhkkMT1WTzG35C4kVec.crl (hash: mxHWHBKL517OmL8X7+18xwWOwTQiUD/X3B0JLV1TtW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:54:35:5c:93:0d:e1:b1:e5:63:38:db:36:93:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c85d01b442946e1924313d564f31b7e42e2455e7
Validity
Not Before: Mar 2 07:00:38 2026 GMT
Not After : Mar 3 07:00:38 2026 GMT
Subject: CN=6d9f3237c0d48800aa6b0e9d392b5a6880aebb12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c7:6d:f2:d1:6a:e0:02:dc:d0:f5:fe:f0:73:
90:d3:64:9a:5b:b8:82:51:78:38:5b:66:06:93:d5:
5b:1d:61:ad:4d:47:d4:6d:06:e4:c3:e5:d6:4e:b7:
02:65:46:3e:bf:0f:26:71:48:30:2f:52:4a:8e:ad:
94:b3:5c:b3:ca:2f:1f:cd:ec:41:53:05:21:4b:fc:
ef:43:98:86:37:93:23:72:9c:d2:fe:45:85:a3:6c:
3a:e4:3e:c8:92:86:2f:d0:8b:4d:d4:c3:1c:95:84:
20:54:6b:ce:c5:a5:92:36:8e:11:45:47:45:b0:4c:
bb:2f:be:f7:07:7b:7a:1b:a1:98:52:d8:1e:d6:8f:
ac:c7:72:e7:8f:d2:60:48:50:66:8f:c2:6d:6e:47:
09:1d:d2:c1:6a:75:fd:b1:44:ec:99:3d:42:84:f0:
ea:99:45:45:46:51:fd:66:a6:d1:ac:19:0a:cc:f8:
bc:28:fd:9d:0f:1d:04:19:19:99:21:79:4a:a2:68:
db:dc:8a:25:d4:15:03:0a:04:3a:a9:a1:c8:3b:15:
c1:8c:20:8d:2c:d0:81:7e:9b:c3:4e:de:ba:2d:ae:
d3:52:40:e9:a2:19:1b:99:f5:92:e2:9b:2b:7d:7f:
c5:0b:30:e5:45:eb:d5:07:00:46:cb:ab:ee:cc:12:
72:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:9F:32:37:C0:D4:88:00:AA:6B:0E:9D:39:2B:5A:68:80:AE:BB:12
X509v3 Authority Key Identifier:
keyid:C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:ae:db:af:64:e6:1c:d2:58:50:6c:ca:03:9d:05:01:16:73:
92:21:f0:b1:79:dc:d6:d7:81:90:dc:d1:74:56:6d:5a:31:94:
ac:97:7e:fc:f6:80:cf:d7:7a:12:9d:ca:cb:96:85:d8:a5:d2:
ff:74:95:18:9b:db:11:3e:97:9b:94:f0:b3:d1:4b:79:d4:1d:
27:89:e3:cb:83:fe:b0:0f:ac:c4:11:ed:c8:4e:7a:b3:1a:82:
ce:bf:b5:99:a8:67:0b:4c:72:37:0e:c5:9c:17:ca:19:ef:7e:
fb:26:99:ca:da:e2:01:79:cc:f1:cb:2b:74:e5:fd:ef:2b:7c:
c5:bb:c6:66:9f:f2:52:8b:2d:2c:63:15:a9:1f:3e:4a:86:90:
07:eb:b7:69:9b:fb:68:ec:bc:0d:57:89:97:ea:d5:26:66:ab:
f8:8c:4d:ca:31:20:61:7f:a8:c9:10:65:2a:cc:48:02:ea:29:
b0:c5:dc:e7:66:02:74:46:da:5b:ee:34:3a:77:e5:f5:ac:01:
62:35:13:5f:65:9a:4f:28:a1:6e:60:c3:29:d1:36:a0:46:58:
0b:20:f4:19:60:23:be:c3:f3:fd:3a:9a:66:7a:0e:28:a3:61:
30:fd:cb:e4:92:91:c6:6e:c0:c3:3d:2d:9b:25:6d:7a:e9:94:
e6:f1:c4:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:32:06 2026 by rpki-client